$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/61B3CBDC631911ECAE6AA33DC4F9AE02.roa File: 61B3CBDC631911ECAE6AA33DC4F9AE02.roa (raw, json) Hash identifier: h+OfjjehRIA/zlWGe9h6a4OIJN0B8XRTcU6gU5D8yHA= Subject key identifier: 79:62:C6:02:38:1C:9B:71:98:19:26:CF:24:EF:7D:E0:34:40:4B:77 Certificate issuer: /CN=A91A2BD6/serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Certificate serial: 0311 Authority key identifier: 6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/61B3CBDC631911ECAE6AA33DC4F9AE02.roa Signing time: Tue 21 Nov 2023 02:34:15 +0000 ROA not before: Tue 21 Nov 2023 02:34:15 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149012 IP address blocks: 103.176.82.0/23 maxlen: 23 103.176.82.0/24 maxlen: 24 103.176.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 785 (0x311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2BD6/serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Validity Not Before: Nov 21 02:34:15 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=655c1727-52fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:da:79:ec:0c:90:40:25:83:db:85:4a:0b:92: 4b:9b:66:85:84:c4:78:78:30:5f:17:05:e1:6d:01: 65:77:34:10:a6:e8:b3:da:1b:fb:fc:62:b2:a1:ac: 52:6d:e9:00:cb:84:28:70:27:b7:d7:2a:b3:2a:cf: 11:38:a9:0e:d3:ee:bf:59:1d:92:55:0e:8b:ba:e0: 9d:b9:63:c9:cd:9c:8e:f2:c3:5f:67:6b:dd:65:47: d3:df:d9:c4:70:60:db:86:0e:c6:2c:5d:0e:e0:50: 37:93:fe:13:b2:cb:71:6a:d0:cb:81:b2:74:61:9f: 44:e4:e8:0c:63:43:7e:e1:cf:33:8f:45:8f:65:fd: b9:11:82:dc:e0:78:c5:ac:6d:cc:da:7b:5e:eb:d6: 41:3e:fd:83:e4:24:3f:1d:b9:cc:fe:29:89:fb:aa: bb:cd:06:24:fe:c5:5e:f3:13:0d:1d:4c:8c:74:76: 1d:8a:e2:94:be:4c:4e:50:61:f2:1f:b5:d9:34:5f: ea:d0:85:50:03:1f:6f:45:27:8a:81:26:bb:05:fb: 7f:20:64:2a:df:49:cf:e6:78:ba:fd:b8:be:2f:63: 3a:31:de:3e:54:ac:32:27:0c:4b:3b:4d:53:08:50: be:f7:c1:39:77:c0:27:55:c0:1c:f6:19:5b:05:0c: e3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:62:C6:02:38:1C:9B:71:98:19:26:CF:24:EF:7D:E0:34:40:4B:77 X509v3 Authority Key Identifier: keyid:6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/61B3CBDC631911ECAE6AA33DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.82.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:71:ca:96:da:dd:37:bf:7f:88:ca:89:27:e8:52:b8:ce:6c: 0d:1f:1d:5c:d8:77:41:de:3b:f2:1d:69:72:83:15:f6:d1:cf: a4:8d:56:65:77:a0:79:cf:fa:8d:8e:32:95:30:2f:c9:a3:03: ff:85:a4:46:f1:70:a6:e2:ad:62:bf:d1:f7:20:ad:a1:b0:f0: 64:ec:44:16:16:f2:30:2c:f7:39:7b:e0:6b:93:1d:14:a6:69: 6b:5a:08:d7:56:7a:7b:56:5d:0f:db:d8:a7:39:d2:43:87:d0: 3e:95:ad:53:ed:c1:2a:02:33:1c:85:b8:3c:a0:d3:39:1e:b1: 3b:93:cb:ab:cb:8e:56:95:f6:7d:e2:51:3d:35:01:0c:48:29: 01:4c:bd:14:48:f3:98:ce:f5:94:d4:00:74:d6:a8:92:3f:bc: 8a:ed:4c:e5:04:a8:48:15:a4:40:22:6e:d2:22:df:23:21:2a: c5:ed:e9:c4:a5:d2:cd:20:3e:84:95:93:72:f6:95:66:79:34: 97:86:1b:87:9c:cd:46:f4:ba:37:cf:6f:dd:9d:f9:eb:56:ca: 79:1b:75:b2:6e:b3:af:3d:66:0e:d7:89:a3:24:6f:97:b7:f8: 37:2e:24:c2:45:6b:51:fd:ae:3a:71:3e:74:53:2a:94:c8:5e: a3:26:3b:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJCRDYxMTAvBgNVBAUTKDZBOThDMEMwOENCRDM0MTlBOTA4MkI4NjBEMjlCRkE5 NzJGREYyQTcwHhcNMjMxMTIxMDIzNDE1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVjMTcyNy01MmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudp57AyQQCWD24VKC5JLm2aFhMR4eDBfFwXhbQFldzQQpuiz2hv7/GKyoaxS bekAy4QocCe31yqzKs8ROKkO0+6/WR2SVQ6LuuCduWPJzZyO8sNfZ2vdZUfT39nE cGDbhg7GLF0O4FA3k/4TsstxatDLgbJ0YZ9E5OgMY0N+4c8zj0WPZf25EYLc4HjF rG3M2nte69ZBPv2D5CQ/HbnM/imJ+6q7zQYk/sVe8xMNHUyMdHYdiuKUvkxOUGHy H7XZNF/q0IVQAx9vRSeKgSa7Bft/IGQq30nP5ni6/bi+L2M6Md4+VKwyJwxLO01T CFC+98E5d8AnVcAc9hlbBQzjvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHlixgI4 HJtxmBkmzyTvfeA0QEt3MB8GA1UdIwQYMBaAFGqYwMCMvTQZqQgrhg0pv6ly/fKn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkJENi85QzU4NURCMDYz MTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5OU5CbXBDQ3VHRFNtX3FYTDk4 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FwakF3SXk5TkJtcENDdUdEU21fcVhMOThxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJCRDYvOUM1ODVEQjA2MzE1MTFFQ0JBNTM2OTY5QzRGOUFFMDIvNjFCM0NCREM2 MzE5MTFFQ0FFNkFBMzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsFIwDQYJKoZIhvcNAQELBQADggEBAApxypba3Te/f4jK iSfoUrjObA0fHVzYd0HeO/IdaXKDFfbRz6SNVmV3oHnP+o2OMpUwL8mjA/+FpEbx cKbirWK/0fcgraGw8GTsRBYW8jAs9zl74GuTHRSmaWtaCNdWentWXQ/b2Kc50kOH 0D6VrVPtwSoCMxyFuDyg0zkesTuTy6vLjlaV9n3iUT01AQxIKQFMvRRI85jO9ZTU AHTWqJI/vIrtTOUEqEgVpEAibtIi3yMhKsXt6cSl0s0gPoSVk3L2lWZ5NJeGG4ec zUb0ujfPb92d+etWynkbdbJus689Zg7XiaMkb5e3+DcuJMJFa1H9rjpxPnRTKpTI XqMmO/I= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:26 2024 by rpki-client on console-ams.rpki-client.org