$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/0A7320284D4811EE86B7A71FC4F9AE02.roa File: 0A7320284D4811EE86B7A71FC4F9AE02.roa (raw, json) Hash identifier: yZGE9NUKytobw2NJNo7Q0ZEPB8cxjTvRwKD5n6D5+gs= Subject key identifier: 28:D9:1F:51:5B:AA:AD:46:A2:0B:1E:44:3B:1C:7E:F1:B0:EB:28:91 Certificate issuer: /CN=A911B5B0/serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Certificate serial: 06F1 Authority key identifier: 87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/0A7320284D4811EE86B7A71FC4F9AE02.roa Signing time: Thu 07 Sep 2023 06:30:31 +0000 ROA not before: Thu 07 Sep 2023 06:30:31 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 135578 IP address blocks: 103.66.176.0/23 maxlen: 23 103.66.176.0/24 maxlen: 24 103.66.177.0/24 maxlen: 24 2406:59c0::/36 maxlen: 36 2406:59c0:1000::/36 maxlen: 36 2406:59c0:2000::/36 maxlen: 36 2406:59c0:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B0/serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Validity Not Before: Sep 7 06:30:31 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64f96e06-352f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9e:79:5e:ba:13:33:7e:07:12:da:52:11:21: 84:cf:78:cc:f1:cc:37:96:13:aa:d7:cd:70:07:aa: 1a:55:6b:53:95:c5:e3:6f:f3:28:ae:eb:c4:0d:79: aa:9a:68:54:f6:e7:19:53:fb:42:fd:bd:08:8e:4f: 4d:38:d2:04:77:a0:45:89:d2:ca:35:89:8c:4d:59: 74:e1:3f:f0:66:a9:b0:9b:fe:2f:9d:08:76:d4:f9: e5:0e:f8:f7:b9:0c:58:f5:33:48:76:0f:9e:12:a3: 26:cd:41:6f:6b:13:52:d6:26:07:8f:41:74:80:90: 8a:e5:7c:2d:26:b9:24:d5:9b:1d:5a:37:b5:86:ac: 58:7c:f7:95:aa:56:9d:6d:a8:02:55:08:f5:69:96: ae:da:f0:4e:b6:1b:0f:52:f2:87:10:4d:83:8f:31: b0:3c:c3:3d:56:f9:9b:86:ad:de:65:ed:97:a5:ca: cb:cd:07:fd:e1:c7:8e:d9:83:12:15:78:84:42:47: 18:fa:e5:3d:f5:14:cf:70:19:f6:a7:33:18:aa:f9: 34:c9:ba:2b:b2:1d:d9:1b:b7:86:41:bd:79:61:df: c7:cb:07:8e:59:11:7e:a1:0a:56:80:16:45:36:b4: ef:97:ba:c6:2f:28:f5:3d:f3:58:a9:17:86:60:c2: 77:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D9:1F:51:5B:AA:AD:46:A2:0B:1E:44:3B:1C:7E:F1:B0:EB:28:91 X509v3 Authority Key Identifier: keyid:87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/0A7320284D4811EE86B7A71FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.176.0/23 IPv6: 2406:59c0::/34 Signature Algorithm: sha256WithRSAEncryption 88:f5:0f:59:51:1d:56:9e:a1:b5:82:cc:b6:73:3d:9a:21:8b: ff:f1:c8:07:df:4e:15:88:3e:ff:a1:ca:6c:fa:7b:7b:74:81: 39:cf:59:d6:8c:bc:04:ea:35:c9:c7:7e:c4:60:4e:8e:0e:0a: a9:a6:d5:e0:0e:ac:79:98:06:7c:5c:36:39:18:7e:d3:6a:73: 41:f1:84:11:e6:e9:9c:5c:18:8c:25:38:d3:85:b1:9e:e9:1b: 6c:f6:54:eb:ff:6c:36:e3:3d:6d:c4:aa:f1:0b:29:da:54:4b: ad:3f:fb:28:22:22:e8:23:f9:95:c2:50:34:23:3e:b1:2c:32: 17:6a:9a:10:51:fb:a9:e5:ea:56:89:a7:57:5f:c7:af:c4:5d: 7d:c8:a0:f9:cd:3e:75:c6:e2:b9:67:98:f1:ef:93:f6:68:20: 6a:f7:cd:ff:64:0a:c2:a2:df:1a:e7:bb:19:03:e1:59:af:ce: 03:71:b6:9a:2d:88:d6:07:8a:08:6a:2f:c6:88:d5:be:94:9b: 91:10:b8:49:64:8f:d6:e2:ac:9d:48:f1:bb:6b:50:78:68:d3: ad:8e:9a:d4:65:da:41:5f:56:63:a0:e4:6b:cd:de:d5:d7:8c: b6:c8:bd:d0:66:76:8a:05:20:dc:6a:4b:a2:ee:c1:5f:16:52: 06:61:d3:dd -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjAxMTAvBgNVBAUTKDg3QjJDMEU4Mjk1NDFEMkVGNTI2NjM4NUVCMzk0NkI4 RDUyOTA2MDgwHhcNMjMwOTA3MDYzMDMxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY5NmUwNi0zNTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3p55XroTM34HEtpSESGEz3jM8cw3lhOq181wB6oaVWtTlcXjb/MoruvEDXmq mmhU9ucZU/tC/b0Ijk9NONIEd6BFidLKNYmMTVl04T/wZqmwm/4vnQh21PnlDvj3 uQxY9TNIdg+eEqMmzUFvaxNS1iYHj0F0gJCK5XwtJrkk1ZsdWje1hqxYfPeVqlad bagCVQj1aZau2vBOthsPUvKHEE2DjzGwPMM9Vvmbhq3eZe2XpcrLzQf94ceO2YMS FXiEQkcY+uU99RTPcBn2pzMYqvk0yborsh3ZG7eGQb15Yd/HyweOWRF+oQpWgBZF NrTvl7rGLyj1PfNYqReGYMJ3qQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCjZH1Fb qq1GogseRDscfvGw6yiRMB8GA1UdIwQYMBaAFIeywOgpVB0u9SZjhes5RrjVKQYI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCMC9BMkRGNENFQ0RE NEQxMUVBQkI3Njk2N0JDNEY5QUUwMi9oN0xBNkNsVUhTNzFKbU9GNnpsR3VOVXBC Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3TEE2Q2xVSFM3MUptT0Y2emxHdU5VcEJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI1QjAvQTJERjRDRUNERDREMTFFQUJCNzY5NjdCQzRGOUFFMDIvMEE3MzIwMjg0 RDQ4MTFFRTg2QjdBNzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnQrAwDgQCAAIwCAMGBiQGWcAAMA0GCSqGSIb3DQEBCwUA A4IBAQCI9Q9ZUR1WnqG1gsy2cz2aIYv/8cgH304ViD7/ocps+nt7dIE5z1nWjLwE 6jXJx37EYE6ODgqpptXgDqx5mAZ8XDY5GH7TanNB8YQR5umcXBiMJTjThbGe6Rts 9lTr/2w24z1txKrxCynaVEutP/soIiLoI/mVwlA0Iz6xLDIXapoQUfup5epWiadX X8evxF19yKD5zT51xuK5Z5jx75P2aCBq983/ZArCot8a57sZA+FZr84DcbaaLYjW B4oIai/GiNW+lJuRELhJZI/W4qydSPG7a1B4aNOtjprUZdpBX1ZjoORrzd7V14y2 yL3QZnaKBSDcakui7sFfFlIGYdPd -----END CERTIFICATE-----Generated at Thu May 16 23:39:13 2024 by rpki-client on console-ams.rpki-client.org