$ rpki-client -vvf rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/CCD6FD9AC92E11ED931E6469C4F9AE02.roa File: CCD6FD9AC92E11ED931E6469C4F9AE02.roa (raw, json) Hash identifier: bAtzTQ6ksGlovLoJiFT89uWNFpngQdeDkCpn1zXsqCU= Subject key identifier: A5:4A:4F:DF:AD:6C:59:99:44:F4:C9:5F:16:89:A6:3F:F4:87:55:9C Certificate issuer: /CN=A918CEC7/serialNumber=41618AE13A41F999C5790428B716FCAE5424A891 Certificate serial: E7 Authority key identifier: 41:61:8A:E1:3A:41:F9:99:C5:79:04:28:B7:16:FC:AE:54:24:A8:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QWGK4TpB-ZnFeQQotxb8rlQkqJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/CCD6FD9AC92E11ED931E6469C4F9AE02.roa Signing time: Thu 23 May 2024 06:10:01 +0000 ROA not before: Thu 23 May 2024 06:10:01 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142120 IP address blocks: 103.166.150.0/23 maxlen: 23 103.166.150.0/24 maxlen: 24 103.166.151.0/24 maxlen: 24 2001:df2:29c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/QWGK4TpB-ZnFeQQotxb8rlQkqJE.crl rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/QWGK4TpB-ZnFeQQotxb8rlQkqJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QWGK4TpB-ZnFeQQotxb8rlQkqJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 06:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CEC7/serialNumber=41618AE13A41F999C5790428B716FCAE5424A891 Validity Not Before: May 23 06:10:01 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664eddb9-0ef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ed:0d:0a:ad:9f:ae:e5:50:ac:02:12:04:0a: 1c:99:97:39:f7:24:30:e4:dd:3c:bb:1e:7f:4d:75: dd:1b:32:e4:4e:b8:d3:e5:ad:f9:55:37:1b:b6:3f: d3:71:2b:29:43:86:0d:fd:92:fe:e6:50:35:61:cf: 2c:0f:b7:35:e1:4b:6f:b0:b1:39:d3:56:8d:71:d9: 84:15:9a:63:2a:e7:a5:f7:ed:35:71:20:3b:d7:0c: a4:d8:f5:c6:1b:89:b3:22:d5:65:af:ba:ff:3a:27: f0:b9:e9:12:4f:33:a4:2d:d8:05:49:85:22:ca:f3: af:12:be:ba:42:fd:c3:8c:a8:90:32:a4:b2:5e:fc: e2:03:4b:09:2c:d7:89:83:b4:cc:3f:69:f7:ea:2b: 6b:f5:ea:39:39:4f:90:bf:63:aa:f8:51:36:cb:c1: ca:85:06:3d:09:a7:b1:08:c4:09:91:c0:2c:5d:c0: ab:13:1f:d0:29:63:3c:e1:6b:75:c1:4c:15:e2:63: 42:54:08:e6:af:76:af:f9:37:81:46:99:c7:17:b7: b5:fd:ce:45:0d:31:8a:55:86:52:f4:52:f3:7c:a6: 07:c6:6d:1c:fe:a2:e5:d1:05:3c:3b:ea:7d:5d:f4: 4d:f0:b4:13:c7:65:77:fd:94:3b:6b:d3:43:ae:f0: 32:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:4A:4F:DF:AD:6C:59:99:44:F4:C9:5F:16:89:A6:3F:F4:87:55:9C X509v3 Authority Key Identifier: keyid:41:61:8A:E1:3A:41:F9:99:C5:79:04:28:B7:16:FC:AE:54:24:A8:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/QWGK4TpB-ZnFeQQotxb8rlQkqJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QWGK4TpB-ZnFeQQotxb8rlQkqJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/CCD6FD9AC92E11ED931E6469C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.150.0/23 IPv6: 2001:df2:29c0::/48 Signature Algorithm: sha256WithRSAEncryption 1a:1c:c7:89:f4:8e:e1:85:5d:e9:97:30:48:bc:e3:e1:2e:64: 08:8b:92:71:d7:2f:7b:cc:d8:ee:bc:c9:f1:4b:51:3b:e9:9f: f2:b2:c2:2b:f4:89:d7:c8:b5:d9:d3:6d:9a:0e:a2:15:b2:64: 60:e4:e0:1d:69:3b:9f:e4:e5:c6:17:1a:52:05:4e:4c:1b:34: 31:e6:42:ff:f9:84:0b:8e:56:5a:31:e9:49:17:f1:99:2e:20: ff:00:25:4c:a4:80:ea:15:de:c6:b2:2d:b6:82:f1:e8:87:4f: f1:f5:5a:41:74:cf:8d:f9:79:d9:d8:c1:37:10:2b:81:e2:ea: cd:d7:d5:62:03:98:91:13:33:c6:3e:da:8e:32:ff:1f:3c:a1: 9e:57:b5:a3:ba:f3:be:ec:85:e4:6c:58:b3:2d:19:c4:d6:cb: b2:50:52:44:13:c0:36:f4:87:ab:d7:f3:8e:e3:e8:ec:29:2c: 95:88:9f:ce:47:e1:79:aa:c2:7a:0d:da:02:4f:95:52:63:90: ed:34:6d:d4:11:3f:1c:6c:4f:9c:1a:2a:f1:b5:5e:53:70:33: 80:2a:c9:13:97:91:05:e1:35:58:b5:42:2f:94:74:d2:8a:f1: 3c:8c:46:cc:1c:0d:b5:fe:bb:84:55:bd:b6:5d:3a:b4:0a:f0: a1:06:c2:b6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENFQzcxMTAvBgNVBAUTKDQxNjE4QUUxM0E0MUY5OTlDNTc5MDQyOEI3MTZGQ0FF NTQyNEE4OTEwHhcNMjQwNTIzMDYxMDAxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlZGRiOS0wZWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+0NCq2fruVQrAISBAocmZc59yQw5N08ux5/TXXdGzLkTrjT5a35VTcbtj/T cSspQ4YN/ZL+5lA1Yc8sD7c14UtvsLE501aNcdmEFZpjKuel9+01cSA71wyk2PXG G4mzItVlr7r/OifwuekSTzOkLdgFSYUiyvOvEr66Qv3DjKiQMqSyXvziA0sJLNeJ g7TMP2n36itr9eo5OU+Qv2Oq+FE2y8HKhQY9CaexCMQJkcAsXcCrEx/QKWM84Wt1 wUwV4mNCVAjmr3av+TeBRpnHF7e1/c5FDTGKVYZS9FLzfKYHxm0c/qLl0QU8O+p9 XfRN8LQTx2V3/ZQ7a9NDrvAyWQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKVKT9+t bFmZRPTJXxaJpj/0h1WcMB8GA1UdIwQYMBaAFEFhiuE6QfmZxXkEKLcW/K5UJKiR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0VDNy85QkI0RUFCNEM4 N0IxMUVEQTYxMzJBNDBDNEY5QUUwMi9RV0dLNFRwQi1abkZlUVFvdHhiOHJsUWtx SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FXR0s0VHBCLVpuRmVRUW90eGI4cmxRa3FKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OENFQzcvOUJCNEVBQjRDODdCMTFFREE2MTMyQTQwQzRGOUFFMDIvQ0NENkZEOUFD OTJFMTFFRDkzMUU2NDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnppYwDwQCAAIwCQMHACABDfIpwDANBgkqhkiG9w0BAQsF AAOCAQEAGhzHifSO4YVd6ZcwSLzj4S5kCIuScdcve8zY7rzJ8UtRO+mf8rLCK/SJ 18i12dNtmg6iFbJkYOTgHWk7n+TlxhcaUgVOTBs0MeZC//mEC45WWjHpSRfxmS4g /wAlTKSA6hXexrIttoLx6IdP8fVaQXTPjfl52djBNxArgeLqzdfVYgOYkRMzxj7a jjL/Hzyhnle1o7rzvuyF5GxYsy0ZxNbLslBSRBPANvSHq9fzjuPo7CkslYifzkfh earCeg3aAk+VUmOQ7TRt1BE/HGxPnBoq8bVeU3AzgCrJE5eRBeE1WLVCL5R00orx PIxGzBwNtf67hFW9tl06tArwoQbCtg== -----END CERTIFICATE-----Generated at Sat May 25 07:03:51 2024 by rpki-client on console-fra.rpki-client.org