$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/6E3B1338F41211E9AAF5924EC4F9AE02.roa File: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (raw, json) Hash identifier: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs= Subject key identifier: 2C:1B:1A:B6:20:3F:AC:9C:BD:53:3B:EA:BC:7C:86:8F:F1:A2:B5:65 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0C1A Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/6E3B1338F41211E9AAF5924EC4F9AE02.roa Signing time: Wed 04 Sep 2024 19:07:11 +0000 ROA not before: Wed 04 Sep 2024 19:07:11 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 63526 IP address blocks: 103.101.197.0/24 maxlen: 24 103.101.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3098 (0xc1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Sep 4 19:07:11 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d8afde-ac69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:36:55:0f:fa:41:63:bd:e8:da:e0:93:d3:77: 87:76:a0:f1:b2:8b:a6:79:14:81:73:1d:6c:77:86: af:94:9c:af:01:ec:e1:61:74:37:56:85:81:06:5e: 04:70:f8:3c:26:f6:2e:ee:fa:84:b5:ec:08:12:39: db:fe:f4:6f:d2:56:4c:61:02:13:81:16:00:2d:c3: 17:83:03:01:98:f4:48:b6:ac:32:40:3a:bc:7c:08: 0a:4f:29:7e:70:28:94:56:9f:d2:00:ca:7f:44:64: ae:fb:da:73:82:19:f6:61:14:b5:e4:b6:30:a9:55: b9:05:c7:15:0c:54:79:6f:a0:a2:3c:87:c2:04:29: c1:cc:48:ba:8e:e9:cb:ee:92:a7:d8:cb:a6:12:6a: b6:9a:4e:d9:75:c7:44:8a:7b:e3:25:76:e5:04:f0: 5c:ff:de:14:ce:20:a2:c0:46:d9:97:6d:e5:02:87: 83:fe:49:c4:2e:de:d3:1b:6c:ca:07:00:ab:5a:2a: 0a:82:0c:62:cb:3c:f0:4b:2b:b2:8e:33:3b:47:ea: df:dc:8c:a2:d5:2e:dc:c7:21:1f:d9:5e:e4:93:5f: bc:d6:64:c8:4b:3c:c6:e2:5f:0f:15:d3:c9:76:19: 6e:51:c2:a2:54:18:f2:5c:bd:20:a1:ea:5f:6b:e5: 2e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1B:1A:B6:20:3F:AC:9C:BD:53:3B:EA:BC:7C:86:8F:F1:A2:B5:65 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/6E3B1338F41211E9AAF5924EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.197.0/24 103.101.199.0/24 Signature Algorithm: sha256WithRSAEncryption 63:2d:3a:f1:33:e3:be:25:a8:f8:8c:34:14:3b:16:f5:50:63: 62:7b:79:17:16:42:81:d5:12:78:b0:48:48:0c:ae:7c:b0:87: db:69:9f:54:85:48:7e:34:40:50:b3:26:6a:ef:60:4c:da:74: e2:f4:55:cb:ae:72:62:b8:f4:b0:0a:32:a6:2f:61:e9:88:9d: 7d:67:5d:32:25:3b:b5:36:e5:06:31:17:85:c2:cf:7a:9f:f2: f9:64:ba:1a:ea:1c:4a:a9:20:ec:dd:cd:c9:f5:a6:cc:cc:8a: b1:cf:50:da:ee:2b:ff:46:cd:a9:5f:0b:76:a7:5f:cd:25:52: fa:ff:52:4f:ba:c2:9f:27:8f:fd:a9:93:1c:a7:18:8e:d2:b6: 18:10:c3:4e:61:1d:e0:e9:91:33:7c:2e:2c:7f:83:fc:e8:92: 9c:e1:49:99:eb:32:99:d2:ab:a8:da:5d:d0:db:2f:f8:93:da: ac:3d:ce:c4:79:65:11:55:14:71:80:c4:b5:9d:a8:c7:95:06: df:20:05:8a:89:17:98:3c:78:e3:98:ef:bf:eb:29:fb:2c:45: ad:49:e8:f4:2c:52:40:e7:f1:d8:f0:a1:97:38:f2:a2:7c:ac: 10:af:cc:88:9a:55:fb:d9:f5:94:4e:97:0a:98:5e:ed:3f:d9: 4a:e2:3a:bc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjQwOTA0MTkwNzExWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4YWZkZS1hYzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jZVD/pBY73o2uCT03eHdqDxsoumeRSBcx1sd4avlJyvAezhYXQ3VoWBBl4E cPg8JvYu7vqEtewIEjnb/vRv0lZMYQITgRYALcMXgwMBmPRItqwyQDq8fAgKTyl+ cCiUVp/SAMp/RGSu+9pzghn2YRS15LYwqVW5BccVDFR5b6CiPIfCBCnBzEi6junL 7pKn2MumEmq2mk7ZdcdEinvjJXblBPBc/94UziCiwEbZl23lAoeD/knELt7TG2zK BwCrWioKggxiyzzwSyuyjjM7R+rf3Iyi1S7cxyEf2V7kk1+81mTISzzG4l8PFdPJ dhluUcKiVBjyXL0goepfa+UuNwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCwbGrYg P6ycvVM76rx8ho/xorVlMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFCMUEvNTFGRkM0RTRGNDExMTFFOUE0MzVCMDRDQzRGOUFFMDIvNkUzQjEzMzhG NDEyMTFFOUFBRjU5MjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZcUDBABnZccwDQYJKoZIhvcNAQELBQADggEBAGMtOvEz 474lqPiMNBQ7FvVQY2J7eRcWQoHVEniwSEgMrnywh9tpn1SFSH40QFCzJmrvYEza dOL0VcuucmK49LAKMqYvYemInX1nXTIlO7U25QYxF4XCz3qf8vlkuhrqHEqpIOzd zcn1pszMirHPUNruK/9GzalfC3anX80lUvr/Uk+6wp8nj/2pkxynGI7SthgQw05h HeDpkTN8Lix/g/zokpzhSZnrMpnSq6jaXdDbL/iT2qw9zsR5ZRFVFHGAxLWdqMeV Bt8gBYqJF5g8eOOY77/rKfssRa1J6PQsUkDn8djwoZc48qJ8rBCvzIiaVfvZ9ZRO lwqYXu0/2UriOrw= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org