$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/6808E6322F1C11EDA3E29B09C4F9AE02.roa File: 6808E6322F1C11EDA3E29B09C4F9AE02.roa (raw, json) Hash identifier: aEndoa3mlV2G5lXUvKZV7m0E7ZroFHeShuJNQqr4i/I= Subject key identifier: 79:CE:0C:10:EF:34:14:4A:94:F2:26:C3:0E:32:94:26:C3:DD:31:70 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0A59 Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/6808E6322F1C11EDA3E29B09C4F9AE02.roa Signing time: Mon 20 May 2024 03:03:40 +0000 ROA not before: Mon 20 May 2024 03:03:40 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 15412 IP address blocks: 103.6.20.0/22 maxlen: 22 103.11.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2649 (0xa59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: May 20 03:03:40 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=664abd8b-e641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3e:69:fe:13:72:fe:66:cc:8a:02:e8:5d:c9: 62:fc:c6:00:33:a9:5a:d5:f6:c5:d3:5c:02:03:58: 8c:6a:cf:57:2d:93:e2:40:52:1c:c0:c1:78:fc:82: 97:30:06:36:5d:a6:93:63:26:9c:36:66:59:26:2f: 4d:14:20:97:91:1e:9b:25:3a:68:2d:46:73:c3:90: 05:3d:b6:10:4f:ea:b9:59:2f:0d:33:29:3c:80:c8: c1:5e:68:a3:e9:16:f5:8b:81:65:12:42:59:c3:d9: ad:b9:84:36:9b:91:70:89:06:32:a0:91:ab:7e:d5: 61:ef:e8:90:17:d5:8e:c1:7d:48:84:a2:77:0c:d9: 7d:51:8a:66:b4:37:d5:c4:b8:ba:7a:13:15:4b:f3: 4e:e0:26:b5:ba:ec:7d:4e:85:fb:11:c4:1e:ad:13: 8f:83:82:1c:d0:6e:fb:8a:f7:fa:7a:c5:91:e3:9e: f7:a1:8a:76:89:2f:34:5f:7a:29:fe:65:46:38:2c: 0c:18:3a:db:21:40:d8:74:b6:08:13:07:50:af:25: 53:99:21:73:f6:79:20:8e:a8:27:c7:1d:f0:b7:9f: 61:d7:d3:50:d2:bb:bb:91:49:83:b7:4f:5a:7d:b1: 26:c3:4e:87:a0:a2:34:39:d6:d1:15:81:5e:ed:d8: 4d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CE:0C:10:EF:34:14:4A:94:F2:26:C3:0E:32:94:26:C3:DD:31:70 X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/6808E6322F1C11EDA3E29B09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.20.0/22 103.11.237.0/24 Signature Algorithm: sha256WithRSAEncryption a4:97:c3:ed:c0:dc:9a:14:33:e4:94:16:a2:69:98:02:19:24: 45:0f:7f:af:3e:9d:8e:68:7e:a4:bb:ea:1e:73:a4:f3:8b:9e: 80:61:a0:95:20:3b:21:c5:be:74:4d:7b:c5:35:33:f8:25:8b: 98:c2:47:69:d3:05:10:94:8b:54:15:1b:9c:6d:8d:ab:90:8a: b8:bb:ce:b1:fe:0c:06:5d:13:04:0e:ea:26:18:e9:46:84:02: a9:fc:bd:b4:b3:04:cf:17:47:9b:96:2b:3a:70:2c:63:c7:c2: 23:b9:59:70:39:3c:06:17:92:2c:12:27:c6:45:da:75:a3:4f: e2:99:65:65:78:71:d1:6d:55:21:8e:e4:90:56:82:73:22:ca: 67:eb:6a:30:c9:fa:b1:47:87:4e:7f:9b:80:9d:35:11:8b:26: fa:6f:f2:a0:fa:b7:0e:6c:5a:85:bd:2d:44:52:42:9a:b6:18: e0:6c:5f:19:ae:d8:d2:06:be:10:e8:e6:57:4b:3e:57:ed:90: 05:21:4f:f5:20:5c:27:f9:8c:d2:26:49:23:2c:99:d9:a3:bb: 91:83:5b:39:3e:de:63:a1:cb:9f:16:3c:42:63:3e:32:66:76: 9b:0e:c0:62:bd:39:36:91:cc:bb:7c:db:46:da:5d:23:97:b9: b6:9d:2f:3a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICClkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjQwNTIwMDMwMzQwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRhYmQ4Yi1lNjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3z5p/hNy/mbMigLoXcli/MYAM6la1fbF01wCA1iMas9XLZPiQFIcwMF4/IKX MAY2XaaTYyacNmZZJi9NFCCXkR6bJTpoLUZzw5AFPbYQT+q5WS8NMyk8gMjBXmij 6Rb1i4FlEkJZw9mtuYQ2m5FwiQYyoJGrftVh7+iQF9WOwX1IhKJ3DNl9UYpmtDfV xLi6ehMVS/NO4Ca1uux9ToX7EcQerROPg4Ic0G77ivf6esWR4573oYp2iS80X3op /mVGOCwMGDrbIUDYdLYIEwdQryVTmSFz9nkgjqgnxx3wt59h19NQ0ru7kUmDt09a fbEmw06HoKI0OdbRFYFe7dhNvQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHnODBDv NBRKlPImww4ylCbD3TFwMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I3QjIvNDA2NjUwMDg0MTZGMTFFQUI1QzdDQTY1QzRGOUFFMDIvNjgwOEU2MzIy RjFDMTFFREEzRTI5QjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnBhQDBABnC+0wDQYJKoZIhvcNAQELBQADggEBAKSXw+3A 3JoUM+SUFqJpmAIZJEUPf68+nY5ofqS76h5zpPOLnoBhoJUgOyHFvnRNe8U1M/gl i5jCR2nTBRCUi1QVG5xtjauQiri7zrH+DAZdEwQO6iYY6UaEAqn8vbSzBM8XR5uW KzpwLGPHwiO5WXA5PAYXkiwSJ8ZF2nWjT+KZZWV4cdFtVSGO5JBWgnMiymfrajDJ +rFHh05/m4CdNRGLJvpv8qD6tw5sWoW9LURSQpq2GOBsXxmu2NIGvhDo5ldLPlft kAUhT/UgXCf5jNImSSMsmdmju5GDWzk+3mOhy58WPEJjPjJmdpsOwGK9OTaRzLt8 20baXSOXubadLzo= -----END CERTIFICATE-----Generated at Fri May 31 22:13:03 2024 by rpki-client on console-fra.rpki-client.org