$ rpki-client -vvf rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7C66BF543BD011ECBCB98F83C4F9AE02.roa File: 7C66BF543BD011ECBCB98F83C4F9AE02.roa (raw, json) Hash identifier: RUHtd9OZ0vr3UAejKMexxPNf55qDglbvNb1fb83zwEk= Subject key identifier: 1C:1F:0A:E3:9F:3B:23:59:2B:03:99:B0:F0:F8:95:96:EC:C7:47:BF Certificate issuer: /CN=A913C40D/serialNumber=8C3814723FC755E9A9BA1BC335664A519BBC1CEE Certificate serial: 038A Authority key identifier: 8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7C66BF543BD011ECBCB98F83C4F9AE02.roa Signing time: Sat 09 Dec 2023 01:53:26 +0000 ROA not before: Sat 09 Dec 2023 01:53:26 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 399955 IP address blocks: 43.251.224.0/22 maxlen: 24 103.43.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.crl rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 02:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 906 (0x38a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C40D/serialNumber=8C3814723FC755E9A9BA1BC335664A519BBC1CEE Validity Not Before: Dec 9 01:53:26 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6573c896-a4c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:a1:8a:d4:78:cb:40:6a:4f:05:d6:dd:5d: 55:b8:7e:90:d9:e7:06:85:49:41:53:45:8e:42:e1: 2f:82:c6:9c:91:7d:b5:f6:ae:71:e9:59:fc:9c:95: d3:68:b3:7c:10:b8:94:3d:b5:31:44:45:8b:fa:e3: 63:49:0d:c7:ca:0c:54:69:9f:ce:ab:0d:83:28:da: a3:bb:05:5e:10:e3:28:7e:3a:73:5d:56:7b:c0:4d: 13:8b:e5:b5:09:cb:70:c2:98:4a:2d:bc:36:eb:04: 8e:54:91:16:dd:66:ff:00:49:95:63:75:ee:57:8a: ae:80:9b:b3:89:44:7c:e3:b8:fc:60:c2:71:11:9b: 84:8b:e8:fd:e5:d8:1c:e3:d3:bb:96:91:84:22:04: 7b:d1:e5:9d:bc:27:1e:dd:4c:1c:5e:8f:85:16:11: 59:c6:0a:c7:7a:bf:c4:78:62:54:95:f4:5e:13:b9: 19:9a:97:d3:f8:f1:a2:91:49:e6:e1:b1:7c:e7:b5: d5:aa:71:ba:89:33:22:35:b7:c8:06:a2:57:b4:8e: 3e:ad:45:11:5a:8e:8a:50:d9:f5:af:47:7b:80:2b: e0:82:90:94:18:d7:97:7c:49:bd:7c:dd:cf:33:fb: 3b:fc:e4:20:f7:7d:11:11:ea:c6:a1:bd:99:77:c9: ce:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:1F:0A:E3:9F:3B:23:59:2B:03:99:B0:F0:F8:95:96:EC:C7:47:BF X509v3 Authority Key Identifier: keyid:8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7C66BF543BD011ECBCB98F83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.224.0/22 103.43.8.0/22 Signature Algorithm: sha256WithRSAEncryption 27:6d:98:7a:5e:8b:33:43:4a:1a:38:e2:0d:10:80:a4:52:17: 38:e0:9d:eb:20:7f:45:fd:35:02:63:e4:f1:88:64:77:0a:66: 94:9d:de:cc:1c:24:e0:ec:a3:01:06:d4:25:f2:ee:4a:46:42: ac:ca:b2:3e:65:8a:19:a2:c3:db:0e:e3:8b:b2:6a:8b:02:ca: b3:25:82:61:36:ff:67:ed:3b:27:b6:b5:b5:c2:c9:ab:62:8f: b8:33:cf:f3:c1:82:37:0d:36:0a:8f:67:c7:a5:07:f4:e4:5f: 28:87:30:70:4d:d4:87:a5:fb:20:bd:4e:4b:5f:e8:e0:88:38: e5:b5:82:81:68:6d:93:30:e2:3e:2a:97:f1:e0:80:bc:c1:71: c6:a1:8a:2c:70:51:b7:74:85:b0:bb:88:6e:c7:3e:8a:5c:f1: 70:e6:0a:8f:9e:6f:59:32:60:95:b2:d3:25:44:8f:b4:3a:58: 84:6e:59:c7:b3:68:39:cb:78:6b:36:48:b9:55:07:d6:56:04: f1:d3:f9:88:46:f3:8b:b2:f6:d3:cc:f0:dd:e8:bd:90:b1:0d: 86:51:94:61:f0:ea:c9:97:43:a6:fe:33:67:e0:0f:4d:23:8a: 30:4d:75:16:14:e0:bb:5d:b7:26:a0:c2:51:bb:72:a2:26:d8: 6a:a5:e5:eb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MEQxMTAvBgNVBAUTKDhDMzgxNDcyM0ZDNzU1RTlBOUJBMUJDMzM1NjY0QTUx OUJCQzFDRUUwHhcNMjMxMjA5MDE1MzI2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczYzg5Ni1hNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4uhitR4y0BqTwXW3V1VuH6Q2ecGhUlBU0WOQuEvgsackX219q5x6Vn8nJXT aLN8ELiUPbUxREWL+uNjSQ3HygxUaZ/Oqw2DKNqjuwVeEOMofjpzXVZ7wE0Ti+W1 CctwwphKLbw26wSOVJEW3Wb/AEmVY3XuV4qugJuziUR847j8YMJxEZuEi+j95dgc 49O7lpGEIgR70eWdvCce3UwcXo+FFhFZxgrHer/EeGJUlfReE7kZmpfT+PGikUnm 4bF857XVqnG6iTMiNbfIBqJXtI4+rUURWo6KUNn1r0d7gCvggpCUGNeXfEm9fN3P M/s7/OQg930REerGob2Zd8nOUwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBwfCuOf OyNZKwOZsPD4lZbsx0e/MB8GA1UdIwQYMBaAFIw4FHI/x1XpqbobwzVmSlGbvBzu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQwRC81MEY3NzVBNjNC Q0MxMUVDQTc5MUYyNURDNEY5QUUwMi9qRGdVY2pfSFZlbXB1aHZETldaS1VadThI TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pEZ1Vjal9IVmVtcHVodkROV1pLVVp1OEhPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MEQvNTBGNzc1QTYzQkNDMTFFQ0E3OTFGMjVEQzRGOUFFMDIvN0M2NkJGNTQz QkQwMTFFQ0JDQjk4RjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr++ADBAJnKwgwDQYJKoZIhvcNAQELBQADggEBACdtmHpe izNDSho44g0QgKRSFzjgnesgf0X9NQJj5PGIZHcKZpSd3swcJODsowEG1CXy7kpG QqzKsj5lihmiw9sO44uyaosCyrMlgmE2/2ftOye2tbXCyatij7gzz/PBgjcNNgqP Z8elB/TkXyiHMHBN1Iel+yC9Tktf6OCIOOW1goFobZMw4j4ql/HggLzBccahiixw Ubd0hbC7iG7HPopc8XDmCo+eb1kyYJWy0yVEj7Q6WIRuWcezaDnLeGs2SLlVB9ZW BPHT+YhG84uy9tPM8N3ovZCxDYZRlGHw6smXQ6b+M2fgD00jijBNdRYU4Ltdtyag wlG7cqIm2Gql5es= -----END CERTIFICATE-----Generated at Thu Apr 25 03:21:55 2024 by rpki-client on console-ams.rpki-client.org