$ rpki-client -vvf rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/4D6D5554DB8011ED91D54A2BC4F9AE02.roa File: 4D6D5554DB8011ED91D54A2BC4F9AE02.roa (raw, json) Hash identifier: /9Uf2838bCZKpE133UWLyKcpXUA7N6aybd5lPLH4kiM= Subject key identifier: C6:0C:24:17:A7:01:5E:77:31:46:B7:78:D0:AB:3B:4D:BC:DE:B3:D2 Certificate issuer: /CN=A917E951/serialNumber=1A0F786F11B8E17D45DE1EDCE61E1600DD4930A4 Certificate serial: E6 Authority key identifier: 1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/4D6D5554DB8011ED91D54A2BC4F9AE02.roa Signing time: Sat 29 Jun 2024 06:07:04 +0000 ROA not before: Sat 29 Jun 2024 06:07:04 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151183 IP address blocks: 103.131.102.0/24 maxlen: 24 103.131.103.0/24 maxlen: 24 2001:df2:43c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.crl rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E951/serialNumber=1A0F786F11B8E17D45DE1EDCE61E1600DD4930A4 Validity Not Before: Jun 29 06:07:04 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667fa488-1e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:55:ee:0c:14:32:d5:0f:a9:41:87:43:a7:14: fb:d8:18:2e:9f:f2:03:05:e7:2b:02:83:4b:55:aa: ef:7d:81:3b:35:8a:f3:3f:3b:24:d3:4f:4f:ce:33: 40:0c:31:a3:44:99:45:80:12:93:10:b6:07:37:35: 3c:c0:15:44:0c:16:f1:4c:23:69:6b:dc:3f:e4:cc: ba:98:0c:8a:97:2b:2a:70:96:cd:60:34:6b:2a:41: de:71:b2:2e:94:53:f4:93:af:3d:14:1a:4f:b8:d8: 68:bd:70:f9:0d:0c:bd:0d:b2:e9:0d:70:db:b4:42: 0e:2a:29:0d:d2:31:b1:09:20:36:09:f9:89:e3:c4: 98:9c:14:88:36:76:ad:fa:5a:51:54:dc:65:d9:1c: 28:40:e8:6a:88:53:95:7b:aa:ab:61:f1:02:8e:cb: 4e:c4:cc:e5:6c:e3:5f:72:53:70:c5:85:6c:39:52: ab:72:d9:27:7e:af:7a:e8:8f:46:7b:8f:87:b4:fc: e1:43:ff:79:51:48:59:7f:85:0d:79:71:8b:a9:ff: 55:3a:8d:d7:5a:ab:68:c4:1b:94:6b:9b:94:5f:b4: eb:cf:fc:f6:4d:87:14:d7:f4:c1:96:ae:5d:38:a9: 19:21:4f:e2:b3:70:01:4c:cc:31:7c:0b:b4:a3:9c: 8c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:0C:24:17:A7:01:5E:77:31:46:B7:78:D0:AB:3B:4D:BC:DE:B3:D2 X509v3 Authority Key Identifier: keyid:1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/4D6D5554DB8011ED91D54A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.102.0/23 IPv6: 2001:df2:43c0::/48 Signature Algorithm: sha256WithRSAEncryption c9:02:b2:bd:6b:17:9c:1a:4a:31:92:81:38:48:31:fa:71:53: 66:90:6d:0b:08:ea:d1:4e:f5:99:49:66:bf:53:5b:0e:03:7b: 0b:76:8c:12:0e:f4:d6:c1:44:44:a6:83:26:8b:90:a4:b4:2a: 8e:39:a9:78:fe:02:6c:0a:1c:87:5b:14:e0:43:f7:a1:2f:1b: 3e:41:ec:7f:aa:49:69:76:25:46:bb:0f:cb:93:69:3d:83:74: ad:95:df:5c:8b:15:92:f4:b2:36:64:ae:54:b6:b0:d9:a6:00: 7e:99:01:de:a4:8d:46:73:3a:76:64:59:d6:77:ed:da:a7:35: 67:aa:21:46:c3:0f:d3:de:b4:65:46:2a:e8:71:1f:4b:01:25: 31:79:e8:e5:1f:18:c9:57:62:d4:33:09:00:01:de:34:77:f9: c0:03:0e:89:40:0b:a8:13:ad:25:3e:7a:f9:21:8e:95:22:c5: e0:14:06:0d:83:6d:65:88:7d:72:8f:9b:e7:56:af:e4:8d:b3: 11:04:04:74:3a:ba:9b:21:42:b4:a0:1c:b5:2a:75:97:b5:5f: ec:e5:1a:4d:ca:e0:b6:1d:7b:3d:57:17:e7:7b:d2:be:be:d0: 59:49:b2:f0:ed:04:54:fb:c8:05:e4:91:47:c2:df:ac:5a:3a: db:1d:a5:f4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U5NTExMTAvBgNVBAUTKDFBMEY3ODZGMTFCOEUxN0Q0NURFMUVEQ0U2MUUxNjAw REQ0OTMwQTQwHhcNMjQwNjI5MDYwNzA0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmYTQ4OC0xZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFXuDBQy1Q+pQYdDpxT72Bgun/IDBecrAoNLVarvfYE7NYrzPzsk009PzjNA DDGjRJlFgBKTELYHNzU8wBVEDBbxTCNpa9w/5My6mAyKlysqcJbNYDRrKkHecbIu lFP0k689FBpPuNhovXD5DQy9DbLpDXDbtEIOKikN0jGxCSA2CfmJ48SYnBSINnat +lpRVNxl2RwoQOhqiFOVe6qrYfECjstOxMzlbONfclNwxYVsOVKrctknfq966I9G e4+HtPzhQ/95UUhZf4UNeXGLqf9VOo3XWqtoxBuUa5uUX7Trz/z2TYcU1/TBlq5d OKkZIU/is3ABTMwxfAu0o5yMgQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMYMJBen AV53MUa3eNCrO0283rPSMB8GA1UdIwQYMBaAFBoPeG8RuOF9Rd4e3OYeFgDdSTCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTk1MS82RjQ5Qjk5MkRC NzExMUVEOTUwM0Q4NURDNEY5QUUwMi9HZzk0YnhHNDRYMUYzaDdjNWg0V0FOMUpN S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnOTRieEc0NFgxRjNoN2M1aDRXQU4xSk1LUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U5NTEvNkY0OUI5OTJEQjcxMTFFRDk1MDNEODVEQzRGOUFFMDIvNEQ2RDU1NTRE QjgwMTFFRDkxRDU0QTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFng2YwDwQCAAIwCQMHACABDfJDwDANBgkqhkiG9w0BAQsF AAOCAQEAyQKyvWsXnBpKMZKBOEgx+nFTZpBtCwjq0U71mUlmv1NbDgN7C3aMEg70 1sFERKaDJouQpLQqjjmpeP4CbAoch1sU4EP3oS8bPkHsf6pJaXYlRrsPy5NpPYN0 rZXfXIsVkvSyNmSuVLaw2aYAfpkB3qSNRnM6dmRZ1nft2qc1Z6ohRsMP0960ZUYq 6HEfSwElMXno5R8YyVdi1DMJAAHeNHf5wAMOiUALqBOtJT56+SGOlSLF4BQGDYNt ZYh9co+b51av5I2zEQQEdDq6myFCtKActSp1l7Vf7OUaTcrgth17PVcX53vSvr7Q WUmy8O0EVPvIBeSRR8LfrFo62x2l9A== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org