$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa File: 568D8AACF00511ED9239BC6EC4F9AE02.roa (raw, json) Hash identifier: kkDE8d3mWSYNpu+aK9mDwlnVUB+hzBT68zCQ1fhGRvc= Subject key identifier: 1E:CF:4B:E7:B4:5D:70:F6:07:19:17:93:C1:44:C5:57:3B:C9:70:E7 Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: C7 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa Signing time: Mon 27 May 2024 06:42:31 +0000 ROA not before: Mon 27 May 2024 06:42:31 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151318 IP address blocks: 103.137.230.0/23 maxlen: 23 103.137.230.0/24 maxlen: 24 103.137.231.0/24 maxlen: 24 2001:df2:66c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: May 27 06:42:31 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66542b57-da8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8f:82:00:77:e0:48:8e:34:d1:6d:aa:21:04: 2f:4e:51:27:42:f4:40:8b:2e:65:84:26:d0:de:a3: f2:a3:a4:0e:50:01:c1:24:33:c6:df:0d:59:56:6b: f1:85:e6:c4:03:02:8f:9e:d9:28:3b:bb:72:de:03: ff:f5:55:e0:26:df:ef:4c:08:d1:b5:37:12:0f:d8: 78:a2:80:6a:6a:8c:d6:bd:c5:c9:e9:b8:12:62:9f: 70:bf:25:b9:22:e2:64:cb:28:c7:02:59:94:6d:cd: fb:66:8b:92:51:44:e5:d8:d1:1a:bd:90:9c:58:15: 81:a8:89:f6:1a:47:5e:9b:79:3f:a8:07:8c:56:5c: 52:27:26:a9:61:36:79:34:bc:77:2c:b9:b4:c1:47: 91:fa:f3:70:80:b5:51:6b:7e:35:92:0a:1b:45:7a: 94:59:f5:24:7c:ae:c7:1e:03:0f:ef:74:a8:cb:a9: 94:4d:ad:88:9c:8e:a0:81:f2:07:be:d5:0a:b7:68: 04:20:96:2a:f2:86:21:4f:22:df:5f:19:c7:ce:c3: a9:ed:98:c4:09:08:41:73:e3:20:0f:ed:19:d9:a4: 2b:4b:97:20:ca:e6:e2:78:3a:b2:3c:e6:ed:2b:df: 49:23:5a:ba:06:d5:91:e9:c1:24:bc:58:74:78:de: b6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:CF:4B:E7:B4:5D:70:F6:07:19:17:93:C1:44:C5:57:3B:C9:70:E7 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.230.0/23 IPv6: 2001:df2:66c0::/48 Signature Algorithm: sha256WithRSAEncryption 24:35:d8:b7:de:c4:08:1f:5e:8e:46:0d:88:6c:99:83:42:3e: e7:d9:df:6f:0c:55:64:44:0c:64:cc:2f:94:91:82:d5:cb:dc: d3:a4:c3:ed:8e:9e:a8:f9:40:13:a6:60:59:f9:77:8a:17:c3: 99:7d:10:b8:8b:08:f4:11:77:2f:3a:53:92:25:7f:34:42:f2: 77:98:25:38:4f:01:68:a6:6f:de:53:9c:00:44:67:08:03:3b: 4b:05:df:a2:22:a7:c4:84:da:8c:e2:5d:20:e4:bc:db:ae:04: 57:cf:81:2b:cd:9f:61:9b:b7:32:2a:3e:92:71:78:ee:a7:5f: ad:95:df:92:f2:8d:b9:ac:13:83:b9:ad:75:ce:1b:f5:c2:16: 5f:83:65:c9:30:94:cb:08:f8:60:63:ed:0f:82:64:7c:28:ef: 90:b2:a2:e5:53:21:cd:af:c4:d8:67:d7:97:e4:bc:d9:05:53: d4:0d:e5:cc:55:4f:bc:2a:ac:6b:f1:e6:1c:e8:7f:e7:0e:98: 83:70:74:05:1f:84:39:b9:8a:1d:1d:b3:34:3d:22:c9:18:2a: b2:07:29:55:2b:e8:9d:08:51:2a:95:4a:b2:5c:f0:7e:01:22: 34:3c:1c:50:2d:aa:cd:86:16:f3:32:51:65:8c:8f:36:bf:c6: e9:bd:66:73 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjQwNTI3MDY0MjMxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU0MmI1Ny1kYThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAno+CAHfgSI400W2qIQQvTlEnQvRAiy5lhCbQ3qPyo6QOUAHBJDPG3w1ZVmvx hebEAwKPntkoO7ty3gP/9VXgJt/vTAjRtTcSD9h4ooBqaozWvcXJ6bgSYp9wvyW5 IuJkyyjHAlmUbc37ZouSUUTl2NEavZCcWBWBqIn2Gkdem3k/qAeMVlxSJyapYTZ5 NLx3LLm0wUeR+vNwgLVRa341kgobRXqUWfUkfK7HHgMP73Soy6mUTa2InI6ggfIH vtUKt2gEIJYq8oYhTyLfXxnHzsOp7ZjECQhBc+MgD+0Z2aQrS5cgyubieDqyPObt K99JI1q6BtWR6cEkvFh0eN62qwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFB7PS+e0 XXD2BxkXk8FExVc7yXDnMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ5RTIvQjY0NDMzODRFRkZGMTFFRDg1NTZFRTU0QzRGOUFFMDIvNTY4RDhBQUNG MDA1MTFFRDkyMzlCQzZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnieYwDwQCAAIwCQMHACABDfJmwDANBgkqhkiG9w0BAQsF AAOCAQEAJDXYt97ECB9ejkYNiGyZg0I+59nfbwxVZEQMZMwvlJGC1cvc06TD7Y6e qPlAE6ZgWfl3ihfDmX0QuIsI9BF3LzpTkiV/NELyd5glOE8BaKZv3lOcAERnCAM7 SwXfoiKnxITajOJdIOS8264EV8+BK82fYZu3Mio+knF47qdfrZXfkvKNuawTg7mt dc4b9cIWX4NlyTCUywj4YGPtD4JkfCjvkLKi5VMhza/E2GfXl+S82QVT1A3lzFVP vCqsa/HmHOh/5w6Yg3B0BR+EObmKHR2zND0iyRgqsgcpVSvonQhRKpVKslzwfgEi NDwcUC2qzYYW8zJRZYyPNr/G6b1mcw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org