$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/B2CC363A2D9211EFA9026B67C4F9AE02.roa File: B2CC363A2D9211EFA9026B67C4F9AE02.roa (raw, json) Hash identifier: bhJIR/f23Hp5SQx/ROy4PGIhz7iLXLSVsOKxh2XvD8E= Subject key identifier: 65:7C:85:70:06:86:DA:EC:89:1C:0A:00:F0:19:D7:76:F7:A2:A3:DD Certificate issuer: /CN=A91A0FC0/serialNumber=03EF0E390A315E5F3C461B0A72B218BEE223E00E Certificate serial: 0D Authority key identifier: 03:EF:0E:39:0A:31:5E:5F:3C:46:1B:0A:72:B2:18:BE:E2:23:E0:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A-8OOQoxXl88RhsKcrIYvuIj4A4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/B2CC363A2D9211EFA9026B67C4F9AE02.roa Signing time: Tue 18 Jun 2024 16:49:16 +0000 ROA not before: Tue 18 Jun 2024 16:49:16 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 149517 IP address blocks: 103.182.62.0/24 maxlen: 24 103.182.63.0/24 maxlen: 24 2001:df0:75c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/A-8OOQoxXl88RhsKcrIYvuIj4A4.crl rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/A-8OOQoxXl88RhsKcrIYvuIj4A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A-8OOQoxXl88RhsKcrIYvuIj4A4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 20:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0FC0/serialNumber=03EF0E390A315E5F3C461B0A72B218BEE223E00E Validity Not Before: Jun 18 16:49:16 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6671ba8c-83dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:c4:d9:15:3a:0b:d9:19:e0:16:f3:b5:26:21: c7:d2:d5:63:9c:51:31:47:13:47:f0:7f:15:f1:8b: 10:7d:d2:f5:35:41:f0:75:46:96:90:18:85:21:71: 44:76:bf:c6:4f:cc:83:71:f2:1c:58:f2:6d:26:37: 4d:4d:63:0e:bb:91:90:2e:62:02:7c:4e:15:c9:bc: 61:7b:f9:42:c4:b1:5d:3a:16:37:e7:3c:e8:57:0d: 72:50:4f:fb:1c:46:3a:80:8f:0b:c1:86:f1:b5:f6: 27:f2:9e:82:99:2a:01:a2:3d:af:d1:43:67:a1:61: 2c:7a:b5:bd:79:af:41:8f:ce:95:c9:01:74:89:46: e5:8f:5f:11:5c:41:5e:e4:50:d2:c6:20:83:f8:0f: 49:bb:c5:07:dc:e6:f0:d5:7f:cd:c8:47:ea:fe:35: 68:04:5a:60:57:a1:f6:7d:b8:6a:a7:72:d4:0b:38: 21:27:73:62:e3:ef:4e:c4:57:52:57:75:f0:50:52: e9:dc:03:9d:72:8a:9e:75:94:63:16:58:f3:44:b0: bf:8f:8a:2c:66:dd:9e:a7:76:23:11:fe:7b:a3:67: 56:67:f6:ee:47:48:56:eb:71:c6:26:90:4b:35:18: 12:02:9d:f6:9e:b8:f6:2e:45:60:d0:2d:36:10:a1: 4e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7C:85:70:06:86:DA:EC:89:1C:0A:00:F0:19:D7:76:F7:A2:A3:DD X509v3 Authority Key Identifier: keyid:03:EF:0E:39:0A:31:5E:5F:3C:46:1B:0A:72:B2:18:BE:E2:23:E0:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/A-8OOQoxXl88RhsKcrIYvuIj4A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A-8OOQoxXl88RhsKcrIYvuIj4A4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/B2CC363A2D9211EFA9026B67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.62.0/23 IPv6: 2001:df0:75c0::/48 Signature Algorithm: sha256WithRSAEncryption 98:1c:e5:b5:5c:ad:e5:2f:2b:07:ae:d4:df:a2:14:44:5f:fe: 9a:7a:96:9f:5e:04:22:2b:e7:40:70:6f:20:ab:b7:9c:10:ba: 18:5e:11:dd:94:72:cb:3e:16:fb:91:9d:e5:19:e7:03:51:39: 46:76:4e:9e:82:24:c7:5d:13:ff:ba:81:d8:b4:aa:9d:03:ff: 27:cd:3a:61:0d:6d:be:d3:d0:a1:8f:67:48:b5:ba:c4:d2:cd: 24:dd:66:bb:06:c3:e9:9a:55:9f:e4:04:f9:23:76:f9:87:94: 8c:e7:b4:02:0f:5d:14:f2:97:1a:3d:76:d1:bb:52:0c:de:3b: 9f:5a:94:38:0d:eb:08:30:be:25:8a:2f:c5:f1:be:cd:e6:df: 56:4f:23:90:27:8e:65:97:ec:e8:a0:4d:09:4f:78:7b:c9:86: 48:65:70:6f:64:d2:37:ea:42:0a:fe:bf:de:f9:40:38:12:61: b9:e2:a6:62:b5:05:ca:72:6b:6d:3f:7a:29:a6:da:37:2b:4a: 8b:7e:09:6c:ce:40:75:fc:bd:8b:9e:d5:7b:9d:c6:03:8b:74: 67:70:64:a4:c6:fa:86:1d:fd:c6:4a:b7:66:38:11:e9:bf:8b: 95:28:8e:6f:16:6f:61:28:b0:b2:3b:25:13:b2:45:2f:71:12: 09:a9:50:01 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MEZDMDExMC8GA1UEBRMoMDNFRjBFMzkwQTMxNUU1RjNDNDYxQjBBNzJCMjE4QkVF MjIzRTAwRTAeFw0yNDA2MTgxNjQ5MTZaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzFiYThjLTgzZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD5xNkVOgvZGeAW87UmIcfS1WOcUTFHE0fwfxXxixB90vU1QfB1RpaQGIUhcUR2 v8ZPzINx8hxY8m0mN01NYw67kZAuYgJ8ThXJvGF7+ULEsV06FjfnPOhXDXJQT/sc RjqAjwvBhvG19ifynoKZKgGiPa/RQ2ehYSx6tb15r0GPzpXJAXSJRuWPXxFcQV7k UNLGIIP4D0m7xQfc5vDVf83IR+r+NWgEWmBXofZ9uGqnctQLOCEnc2Lj707EV1JX dfBQUuncA51yip51lGMWWPNEsL+Piixm3Z6ndiMR/nujZ1Zn9u5HSFbrccYmkEs1 GBICnfaeuPYuRWDQLTYQoU6jAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUZXyFcAaG 2uyJHAoA8BnXdveio90wHwYDVR0jBBgwFoAUA+8OOQoxXl88RhsKcrIYvuIj4A4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwRkMwL0NERTA5ODc2OTU3 ODExRUNBMzJDQ0Y1NUM0RjlBRTAyL0EtOE9PUW94WGw4OFJoc0tjcklZdnVJajRB NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQS04T09Rb3hYbDg4UmhzS2NySVl2dUlqNEE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9CMkNDMzYzQTJE OTIxMUVGQTkwMjZCNjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWe2PjAPBAIAAjAJAwcAIAEN8HXAMA0GCSqGSIb3DQEBCwUA A4IBAQCYHOW1XK3lLysHrtTfohREX/6aepafXgQiK+dAcG8gq7ecELoYXhHdlHLL Phb7kZ3lGecDUTlGdk6egiTHXRP/uoHYtKqdA/8nzTphDW2+09Chj2dItbrE0s0k 3Wa7BsPpmlWf5AT5I3b5h5SM57QCD10U8pcaPXbRu1IM3jufWpQ4DesIML4lii/F 8b7N5t9WTyOQJ45ll+zooE0JT3h7yYZIZXBvZNI36kIK/r/e+UA4EmG54qZitQXK cmttP3oppto3K0qLfglszkB1/L2LntV7ncYDi3RncGSkxvqGHf3GSrdmOBHpv4uV KI5vFm9hKLCyOyUTskUvcRIJqVAB -----END CERTIFICATE-----Generated at Wed Jun 19 23:17:49 2024 by rpki-client on console-ams.rpki-client.org