$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa File: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (raw, json) Hash identifier: Ex3hSamTcjmrOnWDUYBQcPhfMUnIX35c7QATztNXC6c= Subject key identifier: D7:8B:88:53:33:58:2C:D3:BE:65:10:31:76:2B:60:D7:E6:57:15:3C Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0B79 Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa Signing time: Sun 06 Oct 2024 16:44:42 +0000 ROA not before: Sun 06 Oct 2024 16:44:42 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139841 IP address blocks: 103.146.16.0/24 maxlen: 24 103.146.17.0/24 maxlen: 24 2406:fb40::/32 maxlen: 40 2406:fb40:1::/48 maxlen: 48 2406:fb40:2::/48 maxlen: 48 2406:fb40:3::/48 maxlen: 48 2406:fb40:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Oct 6 16:44:42 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6702be7a-3892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:50:85:35:3f:84:50:c8:73:c2:f9:9d:7d:c8: 5f:79:35:04:f2:db:57:c4:bd:5e:71:9c:67:8a:2c: 77:7b:bc:8d:a6:8c:46:15:6c:07:40:12:52:ad:e7: 73:f5:1e:27:9d:a9:68:4a:db:d2:37:91:f9:a2:39: 44:02:c8:21:1b:71:88:e5:5f:2f:1c:5c:d6:35:b2: c3:07:2e:bd:b1:31:f5:d9:d1:4e:0d:fe:08:7b:f0: c9:06:a3:5b:c7:36:78:e1:6f:7e:b9:63:24:12:da: 99:f1:a4:ef:88:68:31:c7:20:43:af:f8:e8:6b:21: f8:6c:fb:c5:d5:e2:3b:7f:11:84:73:9c:0d:02:68: 0b:4a:30:a3:d1:78:46:5a:6b:7d:8c:39:6a:6f:05: d2:7c:93:98:5b:77:ac:d0:b5:99:09:0a:63:67:4f: df:5e:f7:47:6e:38:8c:18:51:8c:22:41:4b:d7:8a: 9f:25:8f:d3:f4:c7:f9:c0:f9:5b:1f:1b:aa:87:bb: d9:c2:93:8b:e5:0a:d4:6c:17:3e:82:cf:1b:3c:a5: 3e:4f:ee:ef:67:6b:7d:96:8b:45:ab:b3:4d:83:7e: ad:fb:1f:e2:ac:dc:b7:d8:b9:e1:ed:c3:d8:d8:ad: 00:e5:51:b9:4c:ae:84:d2:48:9f:0e:ce:be:0e:36: c3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8B:88:53:33:58:2C:D3:BE:65:10:31:76:2B:60:D7:E6:57:15:3C X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.16.0/23 IPv6: 2406:fb40::/32 Signature Algorithm: sha256WithRSAEncryption 0f:5c:46:d4:ca:6d:14:b5:d7:7c:15:76:ab:53:41:88:fb:82: ee:79:00:c8:14:27:7b:40:49:6e:8d:2e:fd:36:37:36:d2:ee: 62:a6:d2:0c:f9:4e:94:4e:dc:e3:b2:53:e0:6c:ef:c3:62:ea: be:b5:be:b0:07:b0:03:d8:0f:87:d2:06:e6:09:ca:ec:84:80: 8f:a1:70:eb:a0:cf:ee:88:41:f7:f2:0a:49:5b:35:e2:ba:2d: b7:79:6e:b8:1f:4a:a6:5a:8e:58:96:6b:91:c9:da:75:5e:31: 1b:c0:8a:f0:c2:e0:82:e5:2f:c5:dc:dc:44:78:26:85:58:94: 4e:b2:23:a6:d0:16:65:e1:72:b8:12:6f:28:b9:74:d1:17:87: e4:8a:42:cc:69:8b:7f:63:8f:7b:39:0f:f2:0b:75:fc:fb:11: fd:b1:3c:ff:a7:f9:92:35:10:eb:f7:ed:1a:92:01:f6:c7:c3: cd:c1:7e:95:19:a6:85:91:61:8d:6b:b7:a7:77:f7:c3:a2:02: 40:db:32:f3:4f:e5:ab:99:aa:f8:66:2c:cd:0c:ec:ef:d4:21: 0b:09:4b:85:9b:6d:35:47:a5:69:c5:b7:4e:ac:6d:f2:8f:c6: cd:b7:1a:43:c8:22:c6:87:a8:d0:6c:7f:4b:b9:d1:25:67:89: 7d:04:d3:68 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjQxMDA2MTY0NDQyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAyYmU3YS0zODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFCFNT+EUMhzwvmdfchfeTUE8ttXxL1ecZxniix3e7yNpoxGFWwHQBJSredz 9R4nnaloStvSN5H5ojlEAsghG3GI5V8vHFzWNbLDBy69sTH12dFODf4Ie/DJBqNb xzZ44W9+uWMkEtqZ8aTviGgxxyBDr/joayH4bPvF1eI7fxGEc5wNAmgLSjCj0XhG Wmt9jDlqbwXSfJOYW3es0LWZCQpjZ0/fXvdHbjiMGFGMIkFL14qfJY/T9Mf5wPlb Hxuqh7vZwpOL5QrUbBc+gs8bPKU+T+7vZ2t9lotFq7NNg36t+x/irNy32Lnh7cPY 2K0A5VG5TK6E0kifDs6+DjbDIQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNeLiFMz WCzTvmUQMXYrYNfmVxU8MB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM4QjcvNjY5QjQ1NTIxNzU5MTFFQThCNEE4MDRGQzRGOUFFMDIvRjY2RDNFNEMx NzU5MTFFQTlEOEVGNDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnkhAwDQQCAAIwBwMFACQG+0AwDQYJKoZIhvcNAQELBQAD ggEBAA9cRtTKbRS113wVdqtTQYj7gu55AMgUJ3tASW6NLv02NzbS7mKm0gz5TpRO 3OOyU+Bs78Ni6r61vrAHsAPYD4fSBuYJyuyEgI+hcOugz+6IQffyCklbNeK6Lbd5 brgfSqZajliWa5HJ2nVeMRvAivDC4ILlL8Xc3ER4JoVYlE6yI6bQFmXhcrgSbyi5 dNEXh+SKQsxpi39jj3s5D/ILdfz7Ef2xPP+n+ZI1EOv37RqSAfbHw83BfpUZpoWR YY1rt6d398OiAkDbMvNP5auZqvhmLM0M7O/UIQsJS4WbbTVHpWnFt06sbfKPxs23 GkPIIsaHqNBsf0u50SVniX0E02g= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org