$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/0A7320284D4811EE86B7A71FC4F9AE02.roa File: 0A7320284D4811EE86B7A71FC4F9AE02.roa (raw, json) Hash identifier: SiDzLOasKO+XNvQ+goSOpdOQE3ZO4gyfhkgA7eX7eA0= Subject key identifier: BF:40:14:FF:BB:C7:CB:75:22:EB:3A:9D:40:DE:9E:41:E9:8A:B1:61 Certificate issuer: /CN=A911B5B0/serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Certificate serial: 078F Authority key identifier: 87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/0A7320284D4811EE86B7A71FC4F9AE02.roa Signing time: Sun 30 Jun 2024 22:26:26 +0000 ROA not before: Sun 30 Jun 2024 22:26:26 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135578 IP address blocks: 103.66.176.0/23 maxlen: 23 103.66.176.0/24 maxlen: 24 103.66.177.0/24 maxlen: 24 2406:59c0::/36 maxlen: 36 2406:59c0:1000::/36 maxlen: 36 2406:59c0:2000::/36 maxlen: 36 2406:59c0:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1935 (0x78f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B0/serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Validity Not Before: Jun 30 22:26:26 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6681db92-feea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:11:34:76:d1:0a:fe:bc:63:6c:a8:ef:b6:44: 69:c1:65:29:7b:21:de:10:70:ec:50:28:3c:60:fb: 96:5a:c1:03:1b:a6:41:02:c4:39:f7:34:ce:7d:14: 3c:f2:c2:63:43:95:c9:5c:3c:72:62:37:b1:79:c1: 13:a4:3e:11:d6:b3:c1:bf:2b:bb:15:69:ad:76:96: 6d:7d:27:8a:9d:a2:90:c1:95:07:bb:24:79:0d:a7: b5:bc:53:ab:fe:83:bc:8e:77:3a:7d:00:9e:fd:3d: 5b:26:7a:81:43:06:1e:2e:f2:01:b1:9a:75:f9:98: ce:57:ab:30:62:48:c6:46:bb:0c:b7:d4:e4:8a:f4: b3:18:82:f7:de:93:16:40:5c:57:d5:cb:08:1a:e4: bc:69:67:0a:ef:5e:78:b7:d7:8f:f0:ad:7d:63:15: 80:13:16:ac:77:f4:ca:c2:26:79:20:6b:2c:81:7d: 93:3a:04:9a:ae:2d:ee:f7:70:47:ae:89:7c:af:3a: 40:d1:e7:7c:28:62:2c:eb:ad:4f:97:5e:32:41:06: 1b:09:35:f8:9c:f2:af:35:5a:2c:47:a7:46:18:d9: af:25:92:11:d1:b0:1b:21:90:7a:eb:0a:c0:8e:08: 62:bf:0e:9b:bb:2e:96:3e:04:7e:85:ed:dc:6e:aa: 4f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:40:14:FF:BB:C7:CB:75:22:EB:3A:9D:40:DE:9E:41:E9:8A:B1:61 X509v3 Authority Key Identifier: keyid:87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/0A7320284D4811EE86B7A71FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.176.0/23 IPv6: 2406:59c0::/34 Signature Algorithm: sha256WithRSAEncryption 08:30:b7:e9:b1:2d:da:63:6c:29:92:db:61:fb:86:a8:5c:69: 5e:e1:77:c9:8f:fb:32:bc:39:70:e1:b2:62:3b:32:86:2a:73: 1d:7c:09:70:ea:4f:60:6b:8b:ce:76:eb:c9:d6:96:f9:52:f2: ee:13:40:db:1f:fd:5c:9e:c4:a6:b8:43:47:85:a8:ee:96:fa: 73:69:82:3f:bb:0e:e2:2b:46:8a:1a:ec:ea:f0:58:59:fb:1f: 4b:a1:3e:a4:90:e2:ab:56:e1:f8:3f:54:c1:80:42:63:4d:e9: 3c:fd:1c:77:9c:5f:f4:df:68:f9:c7:02:0f:5b:34:7e:56:0b: 99:e6:60:e1:29:f1:5c:57:67:13:40:b1:f4:6c:30:c1:4e:ca: 63:15:7a:01:fb:8f:20:ce:c4:1e:64:12:f8:12:c9:00:79:80: a6:cb:9d:39:4c:fb:c5:0e:69:6d:41:8d:40:19:de:4b:16:82: 43:d7:f3:e0:0e:08:ce:0b:ac:f3:5d:9a:d2:e5:de:d8:13:8d: 50:b1:3f:cc:23:f0:4c:05:74:39:4d:39:e1:84:f7:4b:01:ec: 71:54:1a:8b:25:39:ec:51:ad:09:9e:3d:79:90:a4:24:8c:38: cb:40:e9:66:bb:3a:50:cd:61:a1:2c:67:6c:26:80:9d:17:ef: 0a:1d:0a:f0 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICB48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjAxMTAvBgNVBAUTKDg3QjJDMEU4Mjk1NDFEMkVGNTI2NjM4NUVCMzk0NkI4 RDUyOTA2MDgwHhcNMjQwNjMwMjIyNjI2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxZGI5Mi1mZWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlBE0dtEK/rxjbKjvtkRpwWUpeyHeEHDsUCg8YPuWWsEDG6ZBAsQ59zTOfRQ8 8sJjQ5XJXDxyYjexecETpD4R1rPBvyu7FWmtdpZtfSeKnaKQwZUHuyR5Dae1vFOr /oO8jnc6fQCe/T1bJnqBQwYeLvIBsZp1+ZjOV6swYkjGRrsMt9TkivSzGIL33pMW QFxX1csIGuS8aWcK7154t9eP8K19YxWAExasd/TKwiZ5IGssgX2TOgSari3u93BH rol8rzpA0ed8KGIs661Pl14yQQYbCTX4nPKvNVosR6dGGNmvJZIR0bAbIZB66wrA jghivw6buy6WPgR+he3cbqpPQQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFL9AFP+7 x8t1Ius6nUDenkHpirFhMB8GA1UdIwQYMBaAFIeywOgpVB0u9SZjhes5RrjVKQYI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCMC9BMkRGNENFQ0RE NEQxMUVBQkI3Njk2N0JDNEY5QUUwMi9oN0xBNkNsVUhTNzFKbU9GNnpsR3VOVXBC Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3TEE2Q2xVSFM3MUptT0Y2emxHdU5VcEJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI1QjAvQTJERjRDRUNERDREMTFFQUJCNzY5NjdCQzRGOUFFMDIvMEE3MzIwMjg0 RDQ4MTFFRTg2QjdBNzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnQrAwDgQCAAIwCAMGBiQGWcAAMA0GCSqGSIb3DQEBCwUA A4IBAQAIMLfpsS3aY2wpktth+4aoXGle4XfJj/syvDlw4bJiOzKGKnMdfAlw6k9g a4vOduvJ1pb5UvLuE0DbH/1cnsSmuENHhajulvpzaYI/uw7iK0aKGuzq8FhZ+x9L oT6kkOKrVuH4P1TBgEJjTek8/Rx3nF/032j5xwIPWzR+VguZ5mDhKfFcV2cTQLH0 bDDBTspjFXoB+48gzsQeZBL4EskAeYCmy505TPvFDmltQY1AGd5LFoJD1/PgDgjO C6zzXZrS5d7YE41QsT/MI/BMBXQ5TTnhhPdLAexxVBqLJTnsUa0Jnj15kKQkjDjL QOlmuzpQzWGhLGdsJoCdF+8KHQrw -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org