$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa File: B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa (raw, json) Hash identifier: SXM3r93+JAbfUFOgTJZWpNNuc7IK/ZoNqCIsmPIym1s= Subject key identifier: D5:89:E8:14:0A:7B:E2:3D:C9:4F:CA:0F:68:D3:72:AF:FE:98:C3:D4 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DC7 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:37:09 +0000 ROA not before: Fri 06 Sep 2024 18:37:09 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 60024 IP address blocks: 103.142.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3527 (0xdc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:37:09 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bd5-54b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0e:7d:06:c8:11:60:8a:fc:c5:65:be:35:af: 8f:d3:05:dd:24:fb:46:9e:30:1d:03:6e:1b:65:0c: 99:46:75:06:2c:3d:8f:24:6a:d2:c0:93:22:de:a0: 28:14:11:ef:e5:27:92:1f:7e:6e:b9:08:b9:77:77: b1:95:fb:9f:b8:a0:c4:95:a1:77:93:a4:9d:8e:2e: 16:40:7f:ec:48:30:c7:59:92:37:8d:86:7c:54:29: cc:b6:51:a1:e6:71:92:2b:28:c6:dd:dc:d6:6d:03: 49:a6:fb:3d:4d:ea:95:05:60:13:33:b6:eb:08:5e: c4:c9:f1:a9:fe:31:92:27:20:b0:b8:83:9a:ad:84: cc:6b:14:cd:06:e7:b5:89:6a:06:77:c1:d7:a6:3f: d6:fd:90:a7:45:af:25:5f:df:17:da:ce:a5:60:df: e1:42:81:67:dc:c2:1a:48:93:d0:48:7b:f1:fb:58: 4e:be:4d:42:bf:aa:e7:a7:2e:7c:83:b9:0a:32:33: 7d:68:72:75:a9:a8:40:a9:12:27:15:8d:61:04:89: e7:2f:f4:ee:08:eb:9f:37:0a:47:63:2c:97:aa:6e: ac:a3:1c:1e:76:21:db:0a:4d:a5:11:dd:0f:43:91: bc:bc:4b:0f:59:09:7b:a4:30:ed:d3:99:83:fe:6d: 8e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:89:E8:14:0A:7B:E2:3D:C9:4F:CA:0F:68:D3:72:AF:FE:98:C3:D4 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.140.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:dc:99:17:9d:cc:ff:8d:47:8f:32:a7:20:cd:59:a9:40:74: 0c:5a:3b:55:a7:19:2b:6a:21:44:cb:b3:df:3c:3a:e6:ef:c2: 83:ba:d7:c0:05:1b:f2:14:bd:09:1b:a7:26:aa:ee:2f:69:af: 79:55:cd:09:ea:1b:49:6c:ce:53:d4:ac:df:d6:57:8b:dc:21: 52:55:16:f9:a3:cf:c7:c8:b3:8b:19:aa:6b:c8:fb:04:02:b1: 85:83:06:47:65:ad:02:11:bc:55:2b:6f:35:2f:c6:f6:f1:69: ad:88:b4:6c:3a:d1:88:ca:c7:bc:4e:62:df:6d:d2:a0:a7:56: f7:fa:20:3d:3d:8b:5f:5c:cf:76:cd:68:dc:32:63:9f:97:65: 5e:51:91:1a:14:05:37:ef:eb:8f:a4:23:1a:22:0c:03:7f:c2: 0b:4b:2e:bd:c5:72:7e:83:8b:42:34:27:1a:52:a7:aa:1e:0e: 4e:99:7d:15:fb:b3:0b:a3:3f:7b:d2:13:10:40:7b:3a:d8:f4: d1:0b:61:ed:8b:16:be:8e:9b:f4:70:47:a8:be:a2:53:a5:6b: ee:80:f6:85:70:d9:0a:f9:b2:64:6b:b8:65:54:b3:5d:c6:3d: 74:a6:80:0b:32:38:62:6b:bd:51:ee:4e:7c:ce:5b:cf:b5:e8: 37:b2:7e:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNzA5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJkNS01NGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ59BsgRYIr8xWW+Na+P0wXdJPtGnjAdA24bZQyZRnUGLD2PJGrSwJMi3qAo FBHv5SeSH35uuQi5d3exlfufuKDElaF3k6Sdji4WQH/sSDDHWZI3jYZ8VCnMtlGh 5nGSKyjG3dzWbQNJpvs9TeqVBWATM7brCF7EyfGp/jGSJyCwuIOarYTMaxTNBue1 iWoGd8HXpj/W/ZCnRa8lX98X2s6lYN/hQoFn3MIaSJPQSHvx+1hOvk1Cv6rnpy58 g7kKMjN9aHJ1qahAqRInFY1hBInnL/TuCOufNwpHYyyXqm6soxwediHbCk2lEd0P Q5G8vEsPWQl7pDDt05mD/m2OuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNWJ6BQK e+I9yU/KD2jTcq/+mMPUMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvQjZBN0Q2RkND QUVBMTFFRThFMUIyRDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjowwDQYJKoZIhvcNAQELBQADggEBAC7cmRedzP+NR48y pyDNWalAdAxaO1WnGStqIUTLs988OubvwoO618AFG/IUvQkbpyaq7i9pr3lVzQnq G0lszlPUrN/WV4vcIVJVFvmjz8fIs4sZqmvI+wQCsYWDBkdlrQIRvFUrbzUvxvbx aa2ItGw60YjKx7xOYt9t0qCnVvf6ID09i19cz3bNaNwyY5+XZV5RkRoUBTfv64+k IxoiDAN/wgtLLr3Fcn6Di0I0JxpSp6oeDk6ZfRX7swujP3vSExBAezrY9NELYe2L Fr6Om/RwR6i+olOla+6A9oVw2Qr5smRruGVUs13GPXSmgAsyOGJrvVHuTnzOW8+1 6Deyfq8= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org