$ rpki-client -vvf rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/CC954D50577211EEA63EF217C4F9AE02.roa File: CC954D50577211EEA63EF217C4F9AE02.roa (raw, json) Hash identifier: MIHALdRegAwOSR+tY0KjiqNifHvVJUSNetMVKVoFfCo= Subject key identifier: B3:02:AA:D9:CF:15:31:F9:BC:85:10:49:31:47:AA:B7:42:0A:BA:12 Certificate issuer: /CN=A9165CEF/serialNumber=B44A307A58C26D6FAE07FE3F285ED6A382B4CB43 Certificate serial: 04 Authority key identifier: B4:4A:30:7A:58:C2:6D:6F:AE:07:FE:3F:28:5E:D6:A3:82:B4:CB:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tEoweljCbW-uB_4_KF7Wo4K0y0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/CC954D50577211EEA63EF217C4F9AE02.roa Signing time: Wed 20 Sep 2023 05:02:56 +0000 ROA not before: Wed 20 Sep 2023 05:02:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151815 IP address blocks: 103.140.110.0/23 maxlen: 23 103.140.110.0/24 maxlen: 24 103.140.111.0/24 maxlen: 24 2401:3ae0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/tEoweljCbW-uB_4_KF7Wo4K0y0M.crl rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/tEoweljCbW-uB_4_KF7Wo4K0y0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tEoweljCbW-uB_4_KF7Wo4K0y0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165CEF/serialNumber=B44A307A58C26D6FAE07FE3F285ED6A382B4CB43 Validity Not Before: Sep 20 05:02:56 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=650a7cff-b10f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:29:7d:f1:10:de:b6:ae:30:1d:92:01:66:12: b9:43:e0:16:c7:37:36:a2:2c:0b:06:b4:3e:e6:d0: 41:a1:56:eb:ce:01:19:bf:15:3d:d2:24:fe:1e:9d: 80:5e:2d:b6:5d:74:cf:e8:ef:9a:9b:39:31:60:cb: fb:da:b8:00:fb:9c:e5:d3:f7:f9:6f:18:f1:02:02: 87:11:f1:1c:b0:84:55:4e:40:6d:4b:45:bd:47:b3: c7:2e:d3:24:c4:0a:77:dc:ce:09:09:e5:d0:97:70: 16:d8:b3:7b:58:22:ea:18:e5:a8:7c:e9:1e:41:f8: 08:57:93:cf:d3:69:16:a4:1c:54:c6:61:17:d5:f4: 60:d5:d7:cd:65:78:37:1c:9d:03:f3:67:59:64:42: 10:37:d1:fe:65:75:43:8b:66:e2:66:32:01:59:3f: 76:23:69:89:00:e3:09:5c:e5:54:1d:be:9f:48:d4: 03:1d:71:8a:3a:cd:32:12:96:57:37:43:5a:46:f1: 48:41:e5:61:92:7d:8f:e3:d1:b2:bf:0f:c0:01:e6: ca:e0:9f:db:7c:c0:1e:16:8d:aa:ed:78:4b:14:5b: e9:ff:89:55:06:08:58:bf:9b:e3:04:85:fa:9d:c3: 81:c2:09:b4:a3:a5:32:71:eb:14:b0:bf:85:f4:a3: 37:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:02:AA:D9:CF:15:31:F9:BC:85:10:49:31:47:AA:B7:42:0A:BA:12 X509v3 Authority Key Identifier: keyid:B4:4A:30:7A:58:C2:6D:6F:AE:07:FE:3F:28:5E:D6:A3:82:B4:CB:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/tEoweljCbW-uB_4_KF7Wo4K0y0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tEoweljCbW-uB_4_KF7Wo4K0y0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/CC954D50577211EEA63EF217C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.110.0/23 IPv6: 2401:3ae0::/32 Signature Algorithm: sha256WithRSAEncryption ad:b3:f4:a3:ce:e4:41:5e:37:06:1f:7d:41:ba:fb:61:b5:22: 4e:30:4e:98:95:70:e4:08:f0:a5:ab:7f:6b:ce:e0:66:84:6b: 66:66:d5:3f:61:3f:e9:5e:ca:53:fe:02:a6:09:e5:f1:32:5b: 2e:c1:02:1b:b9:fb:8c:99:0d:85:7a:47:59:7d:34:69:ab:61: ea:d7:ae:c0:20:3f:e5:08:b4:fd:39:79:d0:58:49:31:b0:f5: 87:24:b7:09:4b:98:7a:6b:c1:63:d6:b6:63:8a:27:27:20:bd: 17:da:27:33:f7:66:8d:33:69:61:18:bd:0b:a0:4e:62:d5:93: fd:9c:99:1a:43:b1:ef:59:3c:26:ed:1d:dc:16:54:a4:6f:46: 12:ce:b4:1b:23:10:77:61:22:38:4b:e9:45:4d:e7:59:76:ef: 81:fc:b0:b3:c9:c0:81:64:24:74:fb:08:27:41:fa:21:00:cd: f3:ce:fe:ab:71:09:66:eb:bc:c7:00:5b:bc:15:1b:84:4d:5c: 96:35:39:15:a7:07:93:d2:1a:5f:58:b7:bc:7c:6a:88:76:82: 72:95:71:11:46:90:64:40:de:0b:07:53:de:33:1a:00:56:82: 0c:db:3c:8b:d0:04:e7:ad:63:48:85:87:fd:67:51:5e:8c:af: 36:92:30:15 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NUNFRjExMC8GA1UEBRMoQjQ0QTMwN0E1OEMyNkQ2RkFFMDdGRTNGMjg1RUQ2QTM4 MkI0Q0I0MzAeFw0yMzA5MjAwNTAyNTZaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MGE3Y2ZmLWIxMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjKX3xEN62rjAdkgFmErlD4BbHNzaiLAsGtD7m0EGhVuvOARm/FT3SJP4enYBe LbZddM/o75qbOTFgy/vauAD7nOXT9/lvGPECAocR8RywhFVOQG1LRb1Hs8cu0yTE CnfczgkJ5dCXcBbYs3tYIuoY5ah86R5B+AhXk8/TaRakHFTGYRfV9GDV181leDcc nQPzZ1lkQhA30f5ldUOLZuJmMgFZP3YjaYkA4wlc5VQdvp9I1AMdcYo6zTISllc3 Q1pG8UhB5WGSfY/j0bK/D8AB5srgn9t8wB4WjarteEsUW+n/iVUGCFi/m+MEhfqd w4HCCbSjpTJx6xSwv4X0ozfdAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUswKq2c8V Mfm8hRBJMUeqt0IKuhIwHwYDVR0jBBgwFoAUtEoweljCbW+uB/4/KF7Wo4K0y0Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1Q0VGLzI3NzQ5QzM2NTc3 MjExRUU5REFFNjE1NUM0RjlBRTAyL3RFb3dlbGpDYlctdUJfNF9LRjdXbzRLMHkw TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdEVvd2VsakNiVy11Ql80X0tGN1dvNEsweTBNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUNFRi8yNzc0OUMzNjU3NzIxMUVFOURBRTYxNTVDNEY5QUUwMi9DQzk1NEQ1MDU3 NzIxMUVFQTYzRUYyMTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWeMbjANBAIAAjAHAwUAJAE64DANBgkqhkiG9w0BAQsFAAOC AQEArbP0o87kQV43Bh99Qbr7YbUiTjBOmJVw5Ajwpat/a87gZoRrZmbVP2E/6V7K U/4Cpgnl8TJbLsECG7n7jJkNhXpHWX00aath6teuwCA/5Qi0/Tl50FhJMbD1hyS3 CUuYemvBY9a2Y4onJyC9F9onM/dmjTNpYRi9C6BOYtWT/ZyZGkOx71k8Ju0d3BZU pG9GEs60GyMQd2EiOEvpRU3nWXbvgfyws8nAgWQkdPsIJ0H6IQDN887+q3EJZuu8 xwBbvBUbhE1cljU5FacHk9IaX1i3vHxqiHaCcpVxEUaQZEDeCwdT3jMaAFaCDNs8 i9AE561jSIWH/WdRXoyvNpIwFQ== -----END CERTIFICATE-----Generated at Fri Jun 7 08:56:40 2024 by rpki-client on console-fra.rpki-client.org