$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/CC166DAC0A0811EFBE7E465EC4F9AE02.roa File: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (raw, json) Hash identifier: C3Ga1a9eb1Df3VllPQUKdb207TqBrmGNq5XYCS2u3O0= Subject key identifier: 3F:E0:B9:37:01:1D:B0:83:0B:60:00:35:12:F1:DD:2D:47:80:F7:60 Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: 4A Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/CC166DAC0A0811EFBE7E465EC4F9AE02.roa Signing time: Sun 01 Sep 2024 07:19:19 +0000 ROA not before: Sun 01 Sep 2024 07:19:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131299 IP address blocks: 103.68.112.0/24 maxlen: 24 103.68.113.0/24 maxlen: 24 103.68.114.0/24 maxlen: 24 103.68.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Sep 1 07:19:19 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d41577-026c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:27:31:c9:f0:03:bb:33:87:9b:58:b0:45:1a: 2e:ba:f2:94:41:c8:ef:66:23:08:24:4f:0a:c7:08: 4b:cd:c8:c8:0b:48:31:66:7a:22:de:d1:0a:8b:a4: 32:f2:7a:5a:b7:c2:60:b3:4b:69:09:72:77:24:eb: 35:35:80:59:67:81:c2:67:b7:db:2d:c1:29:92:f4: 3d:99:af:4d:d7:a8:c0:26:21:5f:ef:7b:71:b2:c7: 0a:df:61:b5:e8:f8:f4:a3:8c:ab:76:c3:59:a6:4d: cc:9e:20:c0:91:56:b8:8f:2d:a1:22:c9:9d:e0:7b: ae:14:6e:ed:77:a6:c4:72:79:e6:49:3b:ac:f5:a3: 36:d8:2b:b0:73:86:02:fa:10:53:e7:13:9c:d4:75: 35:2b:00:78:94:7d:d3:a3:27:e7:4d:cf:d8:14:6b: c7:98:ec:db:57:8c:4a:7a:de:dd:a2:60:e6:6a:33: 0c:9d:3e:dc:c7:7b:8e:b6:69:7c:df:f6:4b:53:6d: 11:d9:09:44:ef:8b:5b:b2:43:95:53:2d:b1:09:f8: 4f:df:b0:3b:3c:3c:0c:b8:0d:7b:5a:b5:d9:81:bf: 26:8d:89:e8:07:3e:c1:8a:76:41:f0:89:1c:d0:e5: 7d:d1:d8:ce:15:05:cb:72:fe:ab:6e:ee:b6:ea:77: fd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:E0:B9:37:01:1D:B0:83:0B:60:00:35:12:F1:DD:2D:47:80:F7:60 X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/CC166DAC0A0811EFBE7E465EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.112.0/22 Signature Algorithm: sha256WithRSAEncryption 86:d7:2e:c1:db:27:ef:9b:7f:aa:7c:81:21:62:a5:29:5a:88: b4:00:7f:aa:f8:9a:5c:f1:35:f4:f3:3c:71:75:60:25:0f:fd: d8:64:c2:cc:43:bc:aa:ba:6c:7b:2e:be:a1:03:fa:ff:22:0a: e8:13:48:e8:c7:1f:98:0f:3a:ce:fe:5a:88:c4:31:05:27:c5: 46:19:70:0d:ef:e8:bc:c8:1e:be:42:5e:54:1d:99:66:b1:61: 40:5f:70:6a:61:80:9e:b0:4a:ba:12:dd:d2:60:92:c0:ef:ff: fb:9e:99:4a:f9:ca:10:dc:0b:95:36:45:46:0b:b0:b5:92:b7: 00:fc:d6:c7:f8:4f:eb:33:78:a2:7e:b3:39:a5:fa:ef:97:ed: 52:0d:cd:ca:57:c6:36:b8:39:8d:39:56:d3:4c:c8:28:d9:41: 45:b8:47:ab:e2:b9:06:8e:af:fd:a7:59:51:08:d9:76:56:47: ef:11:d8:7b:2c:4f:50:c4:10:5d:31:4a:95:b8:43:a1:c0:8a: d2:36:d1:e9:ec:a5:10:6f:ef:46:03:5f:67:58:3e:b3:99:0d: e4:34:97:a5:5c:44:14:3f:a0:f8:67:7a:cc:0d:a9:98:81:09: a2:f5:89:b2:e8:23:55:de:cd:23:73:72:fb:23:10:88:b1:02: b6:5b:b7:b5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDMyMzExMC8GA1UEBRMoQzcwREUyNzhBQjc3MjZEMjlDQTNBOEMwMjQwN0FBNUJB RTEyRUMwQTAeFw0yNDA5MDEwNzE5MTlaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDQxNTc3LTAyNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVJzHJ8AO7M4ebWLBFGi668pRByO9mIwgkTwrHCEvNyMgLSDFmeiLe0QqLpDLy elq3wmCzS2kJcnck6zU1gFlngcJnt9stwSmS9D2Zr03XqMAmIV/ve3GyxwrfYbXo +PSjjKt2w1mmTcyeIMCRVriPLaEiyZ3ge64Ubu13psRyeeZJO6z1ozbYK7BzhgL6 EFPnE5zUdTUrAHiUfdOjJ+dNz9gUa8eY7NtXjEp63t2iYOZqMwydPtzHe462aXzf 9ktTbRHZCUTvi1uyQ5VTLbEJ+E/fsDs8PAy4DXtatdmBvyaNiegHPsGKdkHwiRzQ 5X3R2M4VBcty/qtu7rbqd/03AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUP+C5NwEd sIMLYAA1EvHdLUeA92AwHwYDVR0jBBgwFoAUxw3ieKt3JtKco6jAJAeqW64S7Aow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEMzIzLzIyMEExRkQ4MDlF QjExRUZCQzREMTUzNEM0RjlBRTAyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdB by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveHczaWVLdDNKdEtjbzZqQUpBZXFXNjRTN0FvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi9DQzE2NkRBQzBB MDgxMUVGQkU3RTQ2NUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmdEcDANBgkqhkiG9w0BAQsFAAOCAQEAhtcuwdsn75t/qnyB IWKlKVqItAB/qviaXPE19PM8cXVgJQ/92GTCzEO8qrpsey6+oQP6/yIK6BNI6Mcf mA86zv5aiMQxBSfFRhlwDe/ovMgevkJeVB2ZZrFhQF9wamGAnrBKuhLd0mCSwO// +56ZSvnKENwLlTZFRguwtZK3APzWx/hP6zN4on6zOaX675ftUg3NylfGNrg5jTlW 00zIKNlBRbhHq+K5Bo6v/adZUQjZdlZH7xHYeyxPUMQQXTFKlbhDocCK0jbR6eyl EG/vRgNfZ1g+s5kN5DSXpVxEFD+g+Gd6zA2pmIEJovWJsugjVd7NI3Ny+yMQiLEC tlu3tQ== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:30 2024 by rpki-client on console-fra.rpki-client.org