$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/6D610A58F23711EEA11AA759C4F9AE02.roa File: 6D610A58F23711EEA11AA759C4F9AE02.roa (raw, json) Hash identifier: SDToLq2T7z90cfNjaTZT3zSAgkRp8bhjTtdT/TF1af0= Subject key identifier: 52:A9:9F:CB:B3:A4:FF:A9:9A:BF:44:01:6B:85:F6:80:14:21:4B:11 Certificate issuer: /CN=A9122D51/serialNumber=C4C67EBB6B2DDC6924BBB9655E7E0F8218530C65 Certificate serial: 02 Authority key identifier: C4:C6:7E:BB:6B:2D:DC:69:24:BB:B9:65:5E:7E:0F:82:18:53:0C:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/6D610A58F23711EEA11AA759C4F9AE02.roa Signing time: Thu 04 Apr 2024 03:57:17 +0000 ROA not before: Thu 04 Apr 2024 03:57:17 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 136900 IP address blocks: 103.190.18.0/24 maxlen: 24 103.190.19.0/24 maxlen: 24 2400:8ba0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.crl rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D51/serialNumber=C4C67EBB6B2DDC6924BBB9655E7E0F8218530C65 Validity Not Before: Apr 4 03:57:17 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=660e251c-03aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1a:c1:77:dc:f2:df:ae:cf:69:aa:fc:0a:47: 0a:3b:8e:f2:be:95:db:53:7e:2e:3d:d3:29:a1:e6: cb:9a:97:ce:d1:79:ba:04:fa:29:3c:de:07:7f:ad: 34:3a:69:7e:70:8b:f4:12:b4:da:b7:1e:f6:98:e6: b3:54:03:13:61:b9:9d:c2:bc:e3:19:e6:4e:d8:f0: 37:87:b6:a6:08:d0:82:2f:62:e1:34:b4:32:c5:65: 5b:ac:e7:f9:04:c6:11:fb:0c:05:52:a4:1c:b4:8c: 65:ff:89:38:e7:d9:96:bb:eb:e0:f6:32:cd:71:bc: 5b:47:1b:1e:03:4b:f7:21:12:bc:18:f7:13:93:20: 1b:18:33:ab:c0:ed:e3:37:45:cf:57:cb:ba:e2:ee: 06:bb:a6:b2:e8:84:40:fd:e8:44:7d:95:cd:ee:38: f7:84:c3:9f:24:1d:bf:5e:97:f6:58:a6:10:67:49: 9a:b8:93:c4:79:6e:9b:ff:54:56:f0:37:a9:63:7e: b1:fd:e0:a5:e2:1c:0b:4e:c9:02:97:b0:df:2c:2e: a6:ad:32:bb:cb:55:c6:41:04:18:a8:de:fa:a3:b4: f9:14:50:ce:e6:da:5f:3e:10:53:2b:2d:64:c1:d0: 28:ee:28:7f:71:0a:b3:79:80:91:1b:0d:31:f4:a5: 25:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A9:9F:CB:B3:A4:FF:A9:9A:BF:44:01:6B:85:F6:80:14:21:4B:11 X509v3 Authority Key Identifier: keyid:C4:C6:7E:BB:6B:2D:DC:69:24:BB:B9:65:5E:7E:0F:82:18:53:0C:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/6D610A58F23711EEA11AA759C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.18.0/23 IPv6: 2400:8ba0::/32 Signature Algorithm: sha256WithRSAEncryption 19:73:c7:6a:7c:e0:10:96:97:22:2b:48:1d:96:a7:4f:b0:3b: 13:9c:26:15:aa:c5:d4:c7:b9:43:0d:22:6c:b1:0e:69:08:97: a4:27:9a:00:20:70:be:83:b8:fd:8e:ee:5e:5c:e6:49:4f:aa: b1:88:00:2e:8f:03:2c:6c:20:0a:91:e8:67:bf:5f:ef:5e:72: 71:38:1c:50:55:7c:2c:5a:6d:97:ed:3d:5a:be:5b:48:ea:a5: 80:65:53:1e:a4:bb:e5:b9:7a:05:be:33:03:08:dd:20:14:69: ce:bd:4e:8d:30:c2:b7:ad:78:d8:ff:5d:fa:f5:b0:01:84:06: d7:0e:3a:4a:a5:e3:b7:33:2c:bb:7f:40:11:cb:b1:b7:5b:e1: 58:d0:be:e6:bb:54:8c:18:1b:e8:50:94:87:89:7c:e6:28:b2: da:b5:38:57:64:0d:8d:58:aa:7a:e5:f1:66:21:da:cd:f1:8c: d4:52:11:a4:96:14:04:f1:90:a2:a0:1a:09:ee:b0:7c:7c:ae: 4e:b2:89:9e:c4:06:68:20:9f:ba:4d:62:33:a5:0e:d7:8d:9e: 15:47:c1:e1:e1:c4:2d:43:02:7a:93:62:61:d7:8a:3c:86:2e: f2:fa:6e:ef:75:d0:6d:fd:0b:5f:e5:78:a9:f8:3c:81:7f:22: 15:48:c4:f0 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MkQ1MTExMC8GA1UEBRMoQzRDNjdFQkI2QjJEREM2OTI0QkJCOTY1NUU3RTBGODIx ODUzMEM2NTAeFw0yNDA0MDQwMzU3MTdaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGUyNTFjLTAzYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZGsF33PLfrs9pqvwKRwo7jvK+ldtTfi490ymh5sual87ReboE+ik83gd/rTQ6 aX5wi/QStNq3HvaY5rNUAxNhuZ3CvOMZ5k7Y8DeHtqYI0IIvYuE0tDLFZVus5/kE xhH7DAVSpBy0jGX/iTjn2Za76+D2Ms1xvFtHGx4DS/chErwY9xOTIBsYM6vA7eM3 Rc9Xy7ri7ga7prLohED96ER9lc3uOPeEw58kHb9el/ZYphBnSZq4k8R5bpv/VFbw N6ljfrH94KXiHAtOyQKXsN8sLqatMrvLVcZBBBio3vqjtPkUUM7m2l8+EFMrLWTB 0CjuKH9xCrN5gJEbDTH0pSWzAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUUqmfy7Ok /6mav0QBa4X2gBQhSxEwHwYDVR0jBBgwFoAUxMZ+u2st3Gkku7llXn4PghhTDGUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyRDUxL0VBRTVGQ0FBRjIz NjExRUU4QzhCOTc1OEM0RjlBRTAyL3hNWi11MnN0M0dra3U3bGxYbjRQZ2hoVERH VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveE1aLXUyc3QzR2trdTdsbFhuNFBnaGhUREdVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ1MS9FQUU1RkNBQUYyMzYxMUVFOEM4Qjk3NThDNEY5QUUwMi82RDYxMEE1OEYy MzcxMUVFQTExQUE3NTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWe+EjANBAIAAjAHAwUAJACLoDANBgkqhkiG9w0BAQsFAAOC AQEAGXPHanzgEJaXIitIHZanT7A7E5wmFarF1Me5Qw0ibLEOaQiXpCeaACBwvoO4 /Y7uXlzmSU+qsYgALo8DLGwgCpHoZ79f715ycTgcUFV8LFptl+09Wr5bSOqlgGVT HqS75bl6Bb4zAwjdIBRpzr1OjTDCt6142P9d+vWwAYQG1w46SqXjtzMsu39AEcux t1vhWNC+5rtUjBgb6FCUh4l85iiy2rU4V2QNjViqeuXxZiHazfGM1FIRpJYUBPGQ oqAaCe6wfHyuTrKJnsQGaCCfuk1iM6UO142eFUfB4eHELUMCepNiYdeKPIYu8vpu 73XQbf0LX+V4qfg8gX8iFUjE8A== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org