$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/B6EB7E8ED14511EC89527642C4F9AE02.roa File: B6EB7E8ED14511EC89527642C4F9AE02.roa (raw, json) Hash identifier: Dao3wjzPku/52BEDR9fs3d2J0BLa408frm3MMRpd2w4= Subject key identifier: 63:9E:40:82:8E:C5:23:B4:58:DC:6B:3E:21:62:05:53:4C:C6:C8:02 Certificate issuer: /CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Certificate serial: 026C Authority key identifier: A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/B6EB7E8ED14511EC89527642C4F9AE02.roa Signing time: Sat 29 Jun 2024 03:33:49 +0000 ROA not before: Sat 29 Jun 2024 03:33:49 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149825 IP address blocks: 103.187.28.0/23 maxlen: 23 103.187.28.0/24 maxlen: 24 103.187.29.0/24 maxlen: 24 2001:df0:b740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Validity Not Before: Jun 29 03:33:49 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667f809d-4ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f6:a3:7b:74:e2:67:6b:ef:b6:01:bd:f1:08: d9:4e:20:96:f1:ad:7a:c7:39:e0:55:79:86:a7:08: 34:17:b2:43:bf:3d:dc:5a:b4:8b:61:60:2a:bf:b3: 8d:2c:d3:c2:58:dc:8f:fa:99:b2:40:ef:ee:db:7c: 48:be:fe:74:5b:df:d6:4c:12:cc:ed:f9:96:d0:c9: 5c:8a:b8:fc:ce:9f:a6:6d:d1:97:3a:e5:79:ad:2e: c2:d1:a6:b7:ff:93:b0:44:5b:8a:cf:82:d4:9c:f0: bc:bb:80:b2:84:b1:eb:0b:64:f2:4b:a0:94:44:fa: 29:aa:bb:0e:81:a3:0b:0a:ff:d5:34:7e:f9:10:88: 8f:72:e3:9f:04:70:79:7d:07:3a:2c:27:be:e2:91: 0f:ad:0f:ea:d1:27:60:a2:14:fe:46:3e:e7:9c:8c: 75:df:94:c2:33:30:dd:5d:e4:3d:f8:3f:1b:b4:ed: 81:80:fc:fd:55:9e:79:eb:f3:76:f2:9a:e6:23:9a: e0:8b:ba:c7:67:37:0d:05:76:7f:bc:2e:7e:5e:27: e9:81:bf:df:ae:89:8a:c7:79:41:62:1b:09:b1:21: 83:49:ef:85:d2:38:16:ae:dd:25:63:8c:9b:ac:02: 1a:40:ad:40:88:ae:69:6d:a7:86:72:03:41:3a:3e: ca:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9E:40:82:8E:C5:23:B4:58:DC:6B:3E:21:62:05:53:4C:C6:C8:02 X509v3 Authority Key Identifier: keyid:A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/B6EB7E8ED14511EC89527642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.28.0/23 IPv6: 2001:df0:b740::/48 Signature Algorithm: sha256WithRSAEncryption 9e:17:2c:e1:ab:82:2c:54:81:45:c6:86:3d:78:0a:ca:23:c8: 05:ed:71:d5:3e:2d:d3:22:80:e2:39:d0:70:19:73:80:87:96: 30:e0:68:1c:91:63:8c:90:38:01:df:14:44:e0:02:fc:2a:31: 00:2f:8f:69:d0:55:36:73:96:8e:d0:96:77:c5:58:5d:86:e2: 5f:22:74:f8:65:96:08:8f:27:d8:bf:22:8f:4b:39:f5:fc:72: b6:00:25:2a:42:54:ab:da:cd:7f:49:6f:96:67:c2:14:09:68: 5c:72:a9:fa:d5:9d:d9:ff:a8:02:71:5f:83:7e:57:51:1b:d5: bb:a6:03:5a:8c:d2:19:2f:5b:0a:b9:58:2a:c3:46:79:37:ef: a0:f1:f2:b4:9d:d4:c3:28:c8:d1:9d:04:0c:68:f4:21:26:1c: f8:77:55:4a:ca:f7:a2:8d:aa:e9:9a:9f:8e:ae:54:1a:f1:5f: 04:3e:fd:e3:f6:97:6f:00:90:5c:e9:2f:b2:2a:b3:a0:7b:c4: b2:56:2c:50:2f:ca:f1:b2:7e:51:9e:7a:f4:28:5f:13:83:92: 5a:be:46:8a:69:ce:03:4a:26:7e:5e:03:63:14:81:8e:bd:a2: f0:5e:41:7f:54:95:c4:cb:ab:19:99:6f:b1:9b:10:6b:6d:29: b2:06:70:f4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERjUxMTAvBgNVBAUTKEE1NzBGMzcwRDU0RUQwMjQ1NEM1N0Y4M0VFQzNFNEY0 NEE3QThCNzYwHhcNMjQwNjI5MDMzMzQ5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmODA5ZC00YmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfaje3TiZ2vvtgG98QjZTiCW8a16xzngVXmGpwg0F7JDvz3cWrSLYWAqv7ON LNPCWNyP+pmyQO/u23xIvv50W9/WTBLM7fmW0Mlcirj8zp+mbdGXOuV5rS7C0aa3 /5OwRFuKz4LUnPC8u4CyhLHrC2TyS6CURPopqrsOgaMLCv/VNH75EIiPcuOfBHB5 fQc6LCe+4pEPrQ/q0SdgohT+Rj7nnIx135TCMzDdXeQ9+D8btO2BgPz9VZ556/N2 8prmI5rgi7rHZzcNBXZ/vC5+Xifpgb/fromKx3lBYhsJsSGDSe+F0jgWrt0lY4yb rAIaQK1AiK5pbaeGcgNBOj7KaQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGOeQIKO xSO0WNxrPiFiBVNMxsgCMB8GA1UdIwQYMBaAFKVw83DVTtAkVMV/g+7D5PRKeot2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURGNS9DMjQwQjc5NEQx NDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBDUlV4WC1EN3NQazlFcDZp M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BYRHpjTlZPMENSVXhYLUQ3c1BrOUVwNmkzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlERjUvQzI0MEI3OTREMTQxMTFFQ0E1NTM4NDNBQzRGOUFFMDIvQjZFQjdFOEVE MTQ1MTFFQzg5NTI3NjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnuxwwDwQCAAIwCQMHACABDfC3QDANBgkqhkiG9w0BAQsF AAOCAQEAnhcs4auCLFSBRcaGPXgKyiPIBe1x1T4t0yKA4jnQcBlzgIeWMOBoHJFj jJA4Ad8UROAC/CoxAC+PadBVNnOWjtCWd8VYXYbiXyJ0+GWWCI8n2L8ij0s59fxy tgAlKkJUq9rNf0lvlmfCFAloXHKp+tWd2f+oAnFfg35XURvVu6YDWozSGS9bCrlY KsNGeTfvoPHytJ3UwyjI0Z0EDGj0ISYc+HdVSsr3oo2q6Zqfjq5UGvFfBD794/aX bwCQXOkvsiqzoHvEslYsUC/K8bJ+UZ569ChfE4OSWr5GimnOA0omfl4DYxSBjr2i 8F5Bf1SVxMurGZlvsZsQa20psgZw9A== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:42 2024 by rpki-client on console-fra.rpki-client.org