$ rpki-client -vvf rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/6C5A7912ED2311E680140D19C4F9AE02.roa File: 6C5A7912ED2311E680140D19C4F9AE02.roa (raw, json) Hash identifier: eMi2yq9I2MPYaPzqg2XL7DC7JwJfMQi8ycwnLu24i5s= Subject key identifier: 87:AB:C9:93:A9:7F:45:5E:46:9A:1A:93:8F:A2:5D:52:12:34:5B:85 Certificate issuer: /CN=A918770D/serialNumber=1BAF8251D1A13F4188060AB19A030D36CAA7ABD4 Certificate serial: 1B5D Authority key identifier: 1B:AF:82:51:D1:A1:3F:41:88:06:0A:B1:9A:03:0D:36:CA:A7:AB:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/6C5A7912ED2311E680140D19C4F9AE02.roa Signing time: Thu 30 May 2024 17:07:05 +0000 ROA not before: Thu 30 May 2024 17:07:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135371 IP address blocks: 103.215.192.0/22 maxlen: 22 103.215.192.0/24 maxlen: 24 103.215.193.0/24 maxlen: 24 103.215.194.0/24 maxlen: 24 103.215.195.0/24 maxlen: 24 157.119.76.0/22 maxlen: 22 157.119.76.0/24 maxlen: 24 157.119.77.0/24 maxlen: 24 157.119.78.0/24 maxlen: 24 157.119.79.0/24 maxlen: 24 2406:e480::/32 maxlen: 32 2406:e480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.crl rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7005 (0x1b5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918770D/serialNumber=1BAF8251D1A13F4188060AB19A030D36CAA7ABD4 Validity Not Before: May 30 17:07:05 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658b238-960b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1b:5e:71:43:a0:7a:74:8a:a5:ba:87:0d:88: c7:85:60:c5:6a:f2:c4:c7:24:58:26:65:60:b0:47: 91:15:2d:4e:0a:70:37:09:5c:6d:6b:82:a4:79:a8: 91:c6:01:e8:8b:55:ff:f6:74:82:69:54:b7:a4:85: 53:18:79:ce:fe:68:81:03:a5:34:ff:39:1e:09:ee: 14:b4:ea:42:7c:f3:9c:24:83:7a:9a:83:98:6b:f5: 36:9d:74:0f:d2:44:38:35:8d:32:86:9b:66:b3:5e: e8:8c:e4:c7:6a:82:f8:15:3f:fb:e5:3c:d3:d3:03: 40:73:be:87:9a:b0:e0:ee:60:16:fa:a0:18:20:9b: c2:c2:18:ff:90:fb:e8:22:a7:05:bb:ef:67:60:04: ee:fd:7f:20:45:99:6d:21:2a:21:d3:46:be:b1:37: 60:0e:58:df:3e:2e:54:ef:a3:7d:ce:79:9a:e7:c7: 06:12:10:a9:04:31:e6:83:cb:6a:bc:af:34:89:87: d0:ea:a9:81:e8:f1:e1:8e:2f:8e:ca:98:cd:c7:9b: 45:cd:54:62:f2:28:f6:93:69:9f:dd:c0:bf:2f:40: bf:69:a2:72:db:f2:78:4a:42:b2:61:67:fa:c1:63: 4a:4b:c6:a9:e9:9b:e3:b7:fd:fc:11:63:bf:22:94: af:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:AB:C9:93:A9:7F:45:5E:46:9A:1A:93:8F:A2:5D:52:12:34:5B:85 X509v3 Authority Key Identifier: keyid:1B:AF:82:51:D1:A1:3F:41:88:06:0A:B1:9A:03:0D:36:CA:A7:AB:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/6C5A7912ED2311E680140D19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.192.0/22 157.119.76.0/22 IPv6: 2406:e480::/32 Signature Algorithm: sha256WithRSAEncryption 84:4f:30:12:4d:a4:7f:eb:84:ab:f2:e3:98:ff:5f:ac:e8:b3: fc:26:23:aa:50:84:c9:0c:7a:fa:fd:ca:cd:0b:b4:50:48:2c: b5:21:4b:37:96:dc:2c:f4:a2:98:73:30:23:15:f4:40:2a:fd: 66:30:f4:d8:b6:6b:82:94:ac:11:ea:c3:65:40:b5:8a:d0:ef: 24:82:e3:40:bf:56:a2:eb:1b:08:d9:6c:77:90:1f:b9:ab:14: 95:26:12:77:75:ae:dc:42:db:28:e3:94:ed:34:61:83:3d:d5: f7:83:d2:97:ef:e4:54:c1:b7:2a:fb:c1:0e:6b:2b:d8:59:90: 5f:4b:98:a8:e5:f5:b5:ab:d3:e7:4a:9d:09:70:38:73:5f:05: aa:f6:50:d8:1d:19:4d:1a:f5:1c:ac:36:75:82:f9:f6:f9:7f: 90:ce:ec:36:25:10:1d:96:06:7d:aa:e3:ab:a4:9c:ff:2c:eb: 2f:43:ea:a8:fa:5d:36:59:0e:d5:6c:d2:b7:e8:18:81:6e:13: f6:27:99:c6:d5:20:a2:53:fa:01:00:ec:b3:45:7c:68:98:c7: 2c:b3:0b:be:80:27:2c:c3:82:00:0c:8b:6e:ac:92:8d:ce:a9: e3:72:b9:cb:97:9f:11:59:bf:f0:ca:34:55:c7:ba:0e:0d:a2: 28:d5:94:08 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICG10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc3MEQxMTAvBgNVBAUTKDFCQUY4MjUxRDFBMTNGNDE4ODA2MEFCMTlBMDMwRDM2 Q0FBN0FCRDQwHhcNMjQwNTMwMTcwNzA1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YjIzOC05NjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRtecUOgenSKpbqHDYjHhWDFavLExyRYJmVgsEeRFS1OCnA3CVxta4KkeaiR xgHoi1X/9nSCaVS3pIVTGHnO/miBA6U0/zkeCe4UtOpCfPOcJIN6moOYa/U2nXQP 0kQ4NY0yhptms17ojOTHaoL4FT/75TzT0wNAc76HmrDg7mAW+qAYIJvCwhj/kPvo IqcFu+9nYATu/X8gRZltISoh00a+sTdgDljfPi5U76N9znma58cGEhCpBDHmg8tq vK80iYfQ6qmB6PHhji+OypjNx5tFzVRi8ij2k2mf3cC/L0C/aaJy2/J4SkKyYWf6 wWNKS8ap6Zvjt/38EWO/IpSvnQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFIeryZOp f0VeRpoak4+iXVISNFuFMB8GA1UdIwQYMBaAFBuvglHRoT9BiAYKsZoDDTbKp6vU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzcwRC8xNzZENDExNEVE MjMxMUU2OTM4RkQzMThDNEY5QUUwMi9HNi1DVWRHaFAwR0lCZ3F4bWdNTk5zcW5x OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c2LUNVZEdoUDBHSUJncXhtZ01OTnNxbnE5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc3MEQvMTc2RDQxMTRFRDIzMTFFNjkzOEZEMzE4QzRGOUFFMDIvNkM1QTc5MTJF RDIzMTFFNjgwMTQwRDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn18ADBAKdd0wwDQQCAAIwBwMFACQG5IAwDQYJKoZIhvcN AQELBQADggEBAIRPMBJNpH/rhKvy45j/X6zos/wmI6pQhMkMevr9ys0LtFBILLUh SzeW3Cz0ophzMCMV9EAq/WYw9Ni2a4KUrBHqw2VAtYrQ7ySC40C/VqLrGwjZbHeQ H7mrFJUmEnd1rtxC2yjjlO00YYM91feD0pfv5FTBtyr7wQ5rK9hZkF9LmKjl9bWr 0+dKnQlwOHNfBar2UNgdGU0a9RysNnWC+fb5f5DO7DYlEB2WBn2q46uknP8s6y9D 6qj6XTZZDtVs0rfoGIFuE/YnmcbVIKJT+gEA7LNFfGiYxyyzC76AJyzDggAMi26s ko3OqeNyucuXnxFZv/DKNFXHug4NoijVlAg= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:09 2024 by rpki-client on console-fra.rpki-client.org