$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa File: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (raw, json) Hash identifier: za5V23dtsz617j9FvPb9K7kvDfW4t8T7zFEAYMjrnqs= Subject key identifier: E0:78:0F:15:CF:29:17:20:43:F3:8C:15:B0:37:F9:1E:B7:62:20:1B Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0AEA Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa Signing time: Fri 12 Jan 2024 19:47:11 +0000 ROA not before: Fri 12 Jan 2024 19:47:11 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139841 IP address blocks: 103.146.16.0/24 maxlen: 24 103.146.17.0/24 maxlen: 24 2406:fb40::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 19:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2794 (0xaea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Jan 12 19:47:11 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a1973f-3306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3c:d3:8b:9c:17:68:e2:18:6f:d0:09:c6:49: 11:a5:9f:db:03:3e:80:95:a1:90:fe:05:12:62:25: c0:2d:05:d9:10:4d:dd:97:38:9b:a1:23:91:ab:f2: 5b:98:9d:73:a8:64:0b:b6:89:ab:7b:f2:c6:fe:d7: 59:49:73:c3:42:29:c5:7a:c7:56:d4:ca:98:b5:94: ab:33:05:6e:46:40:fc:da:ba:ac:7a:0b:2a:59:79: 95:61:a8:52:57:ad:3f:7b:9d:fd:86:96:4c:7a:f5: 8a:7b:ba:e0:bc:84:57:ab:43:a9:af:d5:0f:2d:db: ba:fb:46:0f:95:ee:bd:06:a4:24:5a:3d:37:2e:a8: 6f:f8:c1:79:4f:e6:5c:e9:e7:8c:67:8d:06:83:d1: 14:0f:8f:88:d8:9d:a3:8d:85:40:0f:ee:5b:9c:cf: 34:f8:f8:c3:69:31:03:7d:ed:43:e1:e6:02:bb:26: 49:8c:b5:3e:bf:f8:56:36:04:34:90:e8:1a:d5:ff: 81:39:13:21:59:bd:0c:65:9e:05:1e:13:f5:bb:ac: 34:31:be:f9:4f:e8:93:aa:b5:08:aa:84:10:df:e1: 08:4c:46:bc:0f:5c:e7:38:03:f5:83:78:06:b2:57: 14:d4:8a:0b:99:ee:c4:f1:08:1f:24:99:94:3d:84: f8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:78:0F:15:CF:29:17:20:43:F3:8C:15:B0:37:F9:1E:B7:62:20:1B X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.16.0/23 IPv6: 2406:fb40::/32 Signature Algorithm: sha256WithRSAEncryption 67:1e:b0:94:05:f3:74:27:5e:94:6a:25:0e:55:5d:68:16:41: fd:13:68:2c:52:23:db:3d:f0:2c:cf:5b:20:4d:02:2f:a2:cb: 0a:48:4c:21:0a:63:52:91:62:b5:34:c5:5e:c5:bf:46:c9:11: 91:6b:e2:d7:95:bf:1a:fa:6b:a0:f2:7f:5a:39:ba:ef:94:d4: d1:4e:d7:3a:26:33:d0:b8:f8:a7:5e:e6:7a:d1:3d:ae:f8:80: 9b:5e:3c:f4:a0:1d:68:28:b0:13:1f:8a:0f:23:42:44:68:6d: 12:ee:22:8c:39:90:f7:cc:51:53:24:2a:85:da:5c:a0:96:8f: c8:e7:4c:2b:93:8b:10:7f:93:f6:59:25:06:6e:19:e1:87:c3: 81:e8:26:c2:0c:99:25:bc:33:0a:4a:57:d9:db:e1:87:42:16: ff:1f:89:4b:3c:75:39:6e:fa:ee:31:2b:c6:73:b3:6f:67:dd: c7:f0:22:11:67:6e:59:92:3d:25:f3:b3:06:2b:c0:51:45:47: b0:42:7f:89:e4:7c:27:23:be:25:68:22:b3:33:dc:92:0d:51: dc:a4:6b:25:f1:b7:00:e9:67:49:cc:7e:53:46:03:96:10:11: ab:e0:c1:b6:7e:cc:c5:98:fc:a6:fe:a6:9a:f8:07:ca:18:7a: ec:15:e1:95 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjQwMTEyMTk0NzExWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWExOTczZi0zMzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTzTi5wXaOIYb9AJxkkRpZ/bAz6AlaGQ/gUSYiXALQXZEE3dlziboSORq/Jb mJ1zqGQLtomre/LG/tdZSXPDQinFesdW1MqYtZSrMwVuRkD82rqsegsqWXmVYahS V60/e539hpZMevWKe7rgvIRXq0Opr9UPLdu6+0YPle69BqQkWj03Lqhv+MF5T+Zc 6eeMZ40Gg9EUD4+I2J2jjYVAD+5bnM80+PjDaTEDfe1D4eYCuyZJjLU+v/hWNgQ0 kOga1f+BORMhWb0MZZ4FHhP1u6w0Mb75T+iTqrUIqoQQ3+EITEa8D1znOAP1g3gG slcU1IoLme7E8QgfJJmUPYT42QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOB4DxXP KRcgQ/OMFbA3+R63YiAbMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM4QjcvNjY5QjQ1NTIxNzU5MTFFQThCNEE4MDRGQzRGOUFFMDIvRjY2RDNFNEMx NzU5MTFFQTlEOEVGNDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnkhAwDQQCAAIwBwMFACQG+0AwDQYJKoZIhvcNAQELBQAD ggEBAGcesJQF83QnXpRqJQ5VXWgWQf0TaCxSI9s98CzPWyBNAi+iywpITCEKY1KR YrU0xV7Fv0bJEZFr4teVvxr6a6Dyf1o5uu+U1NFO1zomM9C4+Kde5nrRPa74gJte PPSgHWgosBMfig8jQkRobRLuIow5kPfMUVMkKoXaXKCWj8jnTCuTixB/k/ZZJQZu GeGHw4HoJsIMmSW8MwpKV9nb4YdCFv8fiUs8dTlu+u4xK8Zzs29n3cfwIhFnblmS PSXzswYrwFFFR7BCf4nkfCcjviVoIrMz3JINUdykayXxtwDpZ0nMflNGA5YQEavg wbZ+zMWY/Kb+ppr4B8oYeuwV4ZU= -----END CERTIFICATE-----Generated at Fri May 24 21:42:58 2024 by rpki-client on console-ams.rpki-client.org