$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/177065D62DCF11ED890D1386C4F9AE02.roa File: 177065D62DCF11ED890D1386C4F9AE02.roa (raw, json) Hash identifier: h17kr9/RvOCSnyx3bOjbPuikZlHce4+KUEhku4zqAfk= Subject key identifier: DF:36:25:0F:2D:19:E5:FB:DA:FF:97:C5:51:D1:34:A9:D7:34:69:DA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70E3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/177065D62DCF11ED890D1386C4F9AE02.roa Signing time: Wed 10 May 2023 16:45:39 +0000 ROA not before: Wed 10 May 2023 16:45:39 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150079 IP address blocks: 103.174.126.0/24 maxlen: 24 103.174.127.0/24 maxlen: 24 2001:df1:95c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28899 (0x70e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:45:39 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca33-b037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1b:4c:b0:8b:cd:9d:9d:cb:4c:f7:4c:33:da: d9:9b:c2:9c:ed:24:d1:2e:78:0e:9a:7b:0c:c2:53: 76:e4:03:3a:c5:ff:8f:d6:8b:bc:05:a3:01:22:34: 6f:41:6c:88:d2:af:e8:f3:f8:f5:2c:54:05:15:18: 7a:d6:10:53:b2:e2:c4:e0:98:06:c0:40:b2:6e:64: bd:20:e5:44:d1:d5:c5:cf:97:19:8e:b8:52:b0:60: 38:43:1c:b8:46:b0:af:8e:20:dd:71:64:1e:e1:a9: b4:5a:fc:44:f4:0e:8c:ef:df:57:9f:67:9e:d0:c4: e1:36:76:7e:c6:37:37:c7:cf:cd:15:3a:38:fa:2b: b8:e0:77:35:0d:82:fc:6f:b4:c6:52:0d:71:c4:9c: a1:de:f0:37:2b:e8:37:53:95:a4:b3:8c:50:a5:85: d3:f0:90:9c:6d:35:56:dd:04:c8:56:ca:ef:38:7b: 4b:5d:5d:69:c7:9e:ff:ac:18:e8:42:58:6d:60:bf: e8:06:9e:0d:d8:b7:06:31:b4:8d:b0:dd:4b:4e:aa: b8:bc:0e:fe:b1:d6:f7:e8:08:b5:df:e3:2c:33:09: 89:ce:92:ac:3d:1f:80:46:05:2c:44:58:e9:dc:66: 03:d6:f1:66:f7:37:89:89:da:8b:6a:84:2d:57:b1: 2a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:36:25:0F:2D:19:E5:FB:DA:FF:97:C5:51:D1:34:A9:D7:34:69:DA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/177065D62DCF11ED890D1386C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.126.0/23 IPv6: 2001:df1:95c0::/48 Signature Algorithm: sha256WithRSAEncryption 78:fd:67:f8:ac:e8:61:e4:d2:9f:c4:7d:5e:b2:0a:bf:a6:e6: fe:58:2b:8e:9f:14:73:ab:77:86:6e:33:90:b2:46:85:cf:56: 76:b7:ec:7f:1e:3e:c6:7a:3c:11:55:92:70:ba:d9:5c:b9:58: 47:34:51:ec:49:6a:76:dc:9c:0d:3c:db:6c:7c:13:5b:b7:df: 73:fa:25:d6:ce:09:87:df:72:7d:6a:4c:24:25:61:de:5c:6c: e7:f2:44:1b:d0:70:c1:61:b9:df:23:3d:2e:5c:75:79:fb:ef: ed:ad:55:d4:e6:16:3a:81:2a:dd:42:95:8f:c1:9b:9e:76:95: f7:8c:e0:dc:02:b2:d5:3d:3a:36:b5:bf:68:a3:10:80:c1:e6: 80:61:3b:01:77:f6:68:27:d3:82:ac:e1:70:83:2e:76:ce:fd: 83:47:3f:0a:25:89:f3:b8:a6:76:cc:80:69:0d:bd:55:f8:d4: 90:f6:c6:aa:72:58:dc:fb:70:44:c6:a3:04:7a:3c:08:e0:5e: 8b:5a:48:ba:c7:91:35:49:ce:bd:d4:f3:36:09:d4:b3:5a:b3: 46:b5:94:04:d2:db:f9:8c:45:b4:92:49:92:eb:84:1c:42:54: aa:4d:c8:53:60:ef:34:6c:c1:54:f6:61:c2:21:96:11:c9:22: d9:62:39:a3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICcOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NTM5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2EzMy1iMDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxtMsIvNnZ3LTPdMM9rZm8Kc7STRLngOmnsMwlN25AM6xf+P1ou8BaMBIjRv QWyI0q/o8/j1LFQFFRh61hBTsuLE4JgGwECybmS9IOVE0dXFz5cZjrhSsGA4Qxy4 RrCvjiDdcWQe4am0WvxE9A6M799Xn2ee0MThNnZ+xjc3x8/NFTo4+iu44Hc1DYL8 b7TGUg1xxJyh3vA3K+g3U5Wks4xQpYXT8JCcbTVW3QTIVsrvOHtLXV1px57/rBjo QlhtYL/oBp4N2LcGMbSNsN1LTqq4vA7+sdb36Ai13+MsMwmJzpKsPR+ARgUsRFjp 3GYD1vFm9zeJidqLaoQtV7EqCwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN82JQ8t GeX72v+XxVHRNKnXNGnaMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMTc3MDY1RDYy RENGMTFFRDg5MEQxMzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrn4wDwQCAAIwCQMHACABDfGVwDANBgkqhkiG9w0BAQsF AAOCAQEAeP1n+KzoYeTSn8R9XrIKv6bm/lgrjp8Uc6t3hm4zkLJGhc9Wdrfsfx4+ xno8EVWScLrZXLlYRzRR7ElqdtycDTzbbHwTW7ffc/ol1s4Jh99yfWpMJCVh3lxs 5/JEG9BwwWG53yM9Llx1efvv7a1V1OYWOoEq3UKVj8GbnnaV94zg3AKy1T06NrW/ aKMQgMHmgGE7AXf2aCfTgqzhcIMuds79g0c/CiWJ87imdsyAaQ29VfjUkPbGqnJY 3PtwRMajBHo8COBei1pIuseRNUnOvdTzNgnUs1qzRrWUBNLb+YxFtJJJkuuEHEJU qk3IU2DvNGzBVPZhwiGWEcki2WI5ow== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:27 2024 by rpki-client on console-ams.rpki-client.org