$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/7777513828C011EDBEC6D287C4F9AE02.roa File: 7777513828C011EDBEC6D287C4F9AE02.roa (raw, json) Hash identifier: h0fnCGAOQUeiPHljhB1IRW0HYQzSPeOqHRhSNrIf9GY= Subject key identifier: 20:F5:68:3B:42:AC:0D:5F:98:28:4E:A3:10:46:FD:76:01:2B:F3:BC Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 0177 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/7777513828C011EDBEC6D287C4F9AE02.roa Signing time: Tue 21 May 2024 05:08:41 +0000 ROA not before: Tue 21 May 2024 05:08:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 147309 IP address blocks: 103.18.54.0/23 maxlen: 23 103.18.54.0/24 maxlen: 24 103.18.55.0/24 maxlen: 24 2001:df1:33c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 04:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: May 21 05:08:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664c2c58-be4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6d:b3:fc:67:2a:b2:71:46:96:9b:44:4d:c2: 26:9a:d6:91:e0:6b:ad:d5:3d:a1:91:59:a4:6c:9d: 53:80:36:81:93:f0:5d:0c:3a:91:67:59:6c:05:58: c2:51:9a:51:57:c2:17:d8:e9:7d:21:65:e5:e1:0f: c3:46:fd:79:68:1e:6b:41:e9:0e:58:ad:fc:65:6f: bf:35:c2:7a:eb:47:7c:2d:08:3a:4c:5a:49:93:79: 12:48:f3:59:dd:b4:7c:f5:d5:2a:02:73:a5:8b:ea: f9:a1:73:c6:35:63:b8:26:fe:43:b8:61:65:0e:3d: 64:e7:58:b9:3f:3d:44:04:05:b7:df:97:64:2f:2d: 1a:c7:a8:01:94:7a:60:1b:39:f2:8f:04:f2:80:2a: e7:7a:e1:19:a9:af:74:52:0b:33:04:db:27:29:91: 68:10:ef:3b:21:35:4e:85:71:17:79:92:bd:4a:13: c3:c9:0d:94:ee:61:e0:4f:1e:ec:3e:06:6c:f5:7b: 9c:33:72:df:88:55:da:06:5c:bf:52:02:63:86:1f: fc:97:46:6b:f0:bc:05:d4:44:d0:da:7d:f0:8f:27: b5:73:69:16:9c:7a:b5:b2:be:5c:c9:90:b0:3f:28: 18:74:13:3e:ba:3f:08:6a:89:87:61:58:c0:c0:97: b7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F5:68:3B:42:AC:0D:5F:98:28:4E:A3:10:46:FD:76:01:2B:F3:BC X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/7777513828C011EDBEC6D287C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.54.0/23 IPv6: 2001:df1:33c0::/48 Signature Algorithm: sha256WithRSAEncryption a3:35:ae:7a:d3:73:21:d0:f4:03:9e:ee:e8:98:f0:e8:bb:0e: 1a:35:51:fd:96:44:63:97:03:08:0f:90:f9:e6:c4:c9:38:d1: 53:f3:09:99:04:30:f7:63:06:c0:c3:ca:4f:f2:a2:08:4e:71: f1:3a:b2:f8:eb:8d:e1:a4:7f:b8:c1:00:04:47:e3:0c:de:9c: 80:cf:90:ef:57:8d:6b:09:b6:06:5c:68:8c:fe:f5:af:b6:d1: eb:e2:28:1a:d8:40:b3:35:f0:e6:c8:4d:c4:8c:20:26:fa:32: 9e:9b:e1:ba:10:5d:47:aa:94:84:93:b5:d9:6c:cb:59:77:9a: 5b:14:3f:cd:60:df:b3:e8:b1:5d:7a:3e:1b:06:41:60:84:8a: 36:82:15:f6:8b:07:34:d1:46:cb:8c:ed:41:36:38:d4:03:22: e7:da:ba:f6:4d:14:07:19:15:1b:f6:bb:19:d0:31:e1:d3:00: 64:b8:c6:e2:9c:f8:eb:23:87:c2:10:35:e5:b7:21:90:4b:d3: 86:d4:01:54:29:58:06:f0:bc:5b:66:d9:69:88:a8:ea:e6:13: df:8f:bf:57:90:7e:1c:37:cf:35:5f:a1:e9:cf:6d:bc:23:fc: 84:45:d1:d8:14:d3:b0:b4:19:93:21:d9:c5:e1:49:55:cf:47: 26:a1:e3:eb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjQwNTIxMDUwODQxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRjMmM1OC1iZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt22z/GcqsnFGlptETcImmtaR4Gut1T2hkVmkbJ1TgDaBk/BdDDqRZ1lsBVjC UZpRV8IX2Ol9IWXl4Q/DRv15aB5rQekOWK38ZW+/NcJ660d8LQg6TFpJk3kSSPNZ 3bR89dUqAnOli+r5oXPGNWO4Jv5DuGFlDj1k51i5Pz1EBAW335dkLy0ax6gBlHpg GznyjwTygCrneuEZqa90UgszBNsnKZFoEO87ITVOhXEXeZK9ShPDyQ2U7mHgTx7s PgZs9XucM3LfiFXaBly/UgJjhh/8l0Zr8LwF1ETQ2n3wjye1c2kWnHq1sr5cyZCw PygYdBM+uj8IaomHYVjAwJe3LQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCD1aDtC rA1fmChOoxBG/XYBK/O8MB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg0NjUvRDYwRjAyNzIyOEJCMTFFREE1OUMzMDgxQzRGOUFFMDIvNzc3NzUxMzgy OEMwMTFFREJFQzZEMjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnEjYwDwQCAAIwCQMHACABDfEzwDANBgkqhkiG9w0BAQsF AAOCAQEAozWuetNzIdD0A57u6Jjw6LsOGjVR/ZZEY5cDCA+Q+ebEyTjRU/MJmQQw 92MGwMPKT/KiCE5x8Tqy+OuN4aR/uMEABEfjDN6cgM+Q71eNawm2BlxojP71r7bR 6+IoGthAszXw5shNxIwgJvoynpvhuhBdR6qUhJO12WzLWXeaWxQ/zWDfs+ixXXo+ GwZBYISKNoIV9osHNNFGy4ztQTY41AMi59q69k0UBxkVG/a7GdAx4dMAZLjG4pz4 6yOHwhA15bchkEvThtQBVClYBvC8W2bZaYio6uYT34+/V5B+HDfPNV+h6c9tvCP8 hEXR2BTTsLQZkyHZxeFJVc9HJqHj6w== -----END CERTIFICATE-----Generated at Mon May 27 08:07:58 2024 by rpki-client on console-ams.rpki-client.org