$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/D6A69CF45AD711EF8665FF81C4F9AE02.roa File: D6A69CF45AD711EF8665FF81C4F9AE02.roa (raw, json) Hash identifier: bQFYc9TGCv39aWTUTfzRcDtHtMAg4CgWesOizIV+Kko= Subject key identifier: 2D:1D:6E:3C:8E:9A:0B:26:10:29:05:93:8B:54:53:AE:46:03:D9:6A Certificate issuer: /CN=A91A6D8B/serialNumber=9AB686E3C299AA7E4455493495B46BA5A744099D Certificate serial: AD Authority key identifier: 9A:B6:86:E3:C2:99:AA:7E:44:55:49:34:95:B4:6B:A5:A7:44:09:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/D6A69CF45AD711EF8665FF81C4F9AE02.roa Signing time: Tue 27 Aug 2024 05:49:36 +0000 ROA not before: Tue 27 Aug 2024 05:49:36 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137996 IP address blocks: 103.120.4.0/24 maxlen: 24 103.120.5.0/24 maxlen: 24 2407:b140:1379::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.crl rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6D8B/serialNumber=9AB686E3C299AA7E4455493495B46BA5A744099D Validity Not Before: Aug 27 05:49:36 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cd68f0-f9a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:df:fe:bf:db:62:dd:3a:35:2d:05:ee:c0:d6: a2:24:bb:f6:3c:5f:29:d8:35:cf:bc:1d:b0:5d:4f: f6:3d:fd:59:e8:f6:b7:6d:69:af:e5:4f:ee:99:bd: fe:da:c0:1b:4e:97:1d:1f:11:e1:30:24:d4:cb:0f: 88:f4:ef:80:35:99:fd:1f:02:0a:43:51:ce:7b:52: bd:79:da:79:c2:8d:73:e2:fd:9d:ce:2e:1a:3c:02: 1f:64:d9:1f:86:76:7a:e1:32:3a:ea:a2:57:de:7f: 12:95:43:98:07:a7:48:43:17:56:a1:cc:6f:07:35: 12:34:8c:ed:9e:11:fd:da:c2:69:93:2c:b0:07:2a: 82:02:83:b6:ef:4f:c0:16:0e:79:d6:6f:ce:7c:f3: dc:b6:86:e1:03:77:a4:66:2c:e6:a3:08:2e:3f:3b: 38:dd:15:5e:76:70:77:97:d1:28:60:6c:12:9b:f3: f0:c6:91:36:49:33:6b:5b:10:48:2e:0a:92:5d:5d: b4:48:ad:a9:d5:73:26:7b:62:04:c7:4a:15:1d:ae: 04:57:43:6a:0f:d7:48:19:a0:ca:2f:03:92:d1:69: 65:4f:4d:02:4d:e0:ca:c1:f4:ca:49:eb:df:9d:19: 01:01:85:94:60:81:b7:33:12:a6:c6:d9:ea:e6:26: b6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1D:6E:3C:8E:9A:0B:26:10:29:05:93:8B:54:53:AE:46:03:D9:6A X509v3 Authority Key Identifier: keyid:9A:B6:86:E3:C2:99:AA:7E:44:55:49:34:95:B4:6B:A5:A7:44:09:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/D6A69CF45AD711EF8665FF81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.4.0/23 IPv6: 2407:b140:1379::/48 Signature Algorithm: sha256WithRSAEncryption 33:48:80:6c:c2:fd:f7:09:df:71:bc:0b:62:35:f3:b3:3a:a4: e1:ef:42:4b:bf:1d:e4:7c:56:ce:5c:1f:62:5d:f3:2f:b3:b7: 31:9f:90:80:26:c3:ef:1a:c8:84:83:23:d8:22:a8:d1:3b:75: 53:01:6e:22:db:66:fa:df:7a:ac:de:62:f6:78:fd:2c:1a:8f: 13:10:48:e9:76:7e:23:37:1e:a8:52:6f:e1:a6:ac:b8:18:12: d2:5c:ec:0d:be:78:eb:48:e5:c7:24:76:a8:be:3d:b1:49:83: 33:d7:b3:c4:79:85:7f:14:56:d4:6a:02:f9:cb:53:15:32:fe: 81:ea:48:ed:04:fe:37:c7:4c:89:93:b6:5b:98:8f:98:94:80: 28:b2:70:73:ac:65:91:6b:af:de:61:03:d3:b2:4f:43:b6:78: fa:b4:ad:f3:d0:98:0b:ab:7a:e7:b7:51:73:6d:8f:8b:8d:61: c6:85:82:87:8c:5e:67:7b:bb:cf:d2:06:d6:4b:87:5a:c0:0d: 98:ec:a2:38:e1:62:b9:dd:1a:12:71:04:b1:f7:e1:0e:dc:ce: 09:be:c2:03:c2:4f:20:12:b2:85:9b:c5:27:9f:2f:e8:6b:99: df:37:79:04:75:26:c2:f9:75:77:18:e1:ae:78:d6:bd:7e:9e: de:53:06:bc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZEOEIxMTAvBgNVBAUTKDlBQjY4NkUzQzI5OUFBN0U0NDU1NDkzNDk1QjQ2QkE1 QTc0NDA5OUQwHhcNMjQwODI3MDU0OTM2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNkNjhmMC1mOWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6N/+v9ti3To1LQXuwNaiJLv2PF8p2DXPvB2wXU/2Pf1Z6Pa3bWmv5U/umb3+ 2sAbTpcdHxHhMCTUyw+I9O+ANZn9HwIKQ1HOe1K9edp5wo1z4v2dzi4aPAIfZNkf hnZ64TI66qJX3n8SlUOYB6dIQxdWocxvBzUSNIztnhH92sJpkyywByqCAoO270/A Fg551m/OfPPctobhA3ekZizmowguPzs43RVednB3l9EoYGwSm/PwxpE2STNrWxBI LgqSXV20SK2p1XMme2IEx0oVHa4EV0NqD9dIGaDKLwOS0WllT00CTeDKwfTKSevf nRkBAYWUYIG3MxKmxtnq5ia2nwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFC0dbjyO mgsmECkFk4tUU65GA9lqMB8GA1UdIwQYMBaAFJq2huPCmap+RFVJNJW0a6WnRAmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkQ4Qi9CMkYyMzVCMjY3 MjAxMUVFQTE0NkMyMkRDNEY5QUUwMi9tcmFHNDhLWnFuNUVWVWswbGJScnBhZEVD WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21yYUc0OEtacW41RVZVazBsYlJycGFkRUNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZEOEIvQjJGMjM1QjI2NzIwMTFFRUExNDZDMjJEQzRGOUFFMDIvRDZBNjlDRjQ1 QUQ3MTFFRjg2NjVGRjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFneAQwDwQCAAIwCQMHACQHsUATeTANBgkqhkiG9w0BAQsF AAOCAQEAM0iAbML99wnfcbwLYjXzszqk4e9CS78d5HxWzlwfYl3zL7O3MZ+QgCbD 7xrIhIMj2CKo0Tt1UwFuIttm+t96rN5i9nj9LBqPExBI6XZ+IzceqFJv4aasuBgS 0lzsDb5460jlxyR2qL49sUmDM9ezxHmFfxRW1GoC+ctTFTL+gepI7QT+N8dMiZO2 W5iPmJSAKLJwc6xlkWuv3mED07JPQ7Z4+rSt89CYC6t657dRc22Pi41hxoWCh4xe Z3u7z9IG1kuHWsANmOyiOOFiud0aEnEEsffhDtzOCb7CA8JPIBKyhZvFJ58v6GuZ 3zd5BHUmwvl1dxjhrnjWvX6e3lMGvA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org