$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/6880FA2C59D211EAB77C8C13C4F9AE02.roa File: 6880FA2C59D211EAB77C8C13C4F9AE02.roa (raw, json) Hash identifier: IhQ7eTqBdRib/DA5N6YpIbUC+S3mXMSoqBokw69dd1M= Subject key identifier: 77:F2:FA:4C:78:74:14:18:4A:BB:F5:17:EF:8E:35:21:7A:74:A0:B6 Certificate issuer: /CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Certificate serial: 222F Authority key identifier: C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/6880FA2C59D211EAB77C8C13C4F9AE02.roa Signing time: Thu 18 Jan 2024 16:43:10 +0000 ROA not before: Thu 18 Jan 2024 16:43:10 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 56017 IP address blocks: 43.249.176.0/22 maxlen: 24 103.4.72.0/22 maxlen: 24 113.197.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8751 (0x222f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Validity Not Before: Jan 18 16:43:10 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a9551e-2cdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3c:43:01:29:f0:dc:8b:9a:b7:56:5e:05:7f: 8d:cf:3b:75:72:2f:bc:d6:55:20:e8:ca:95:1d:ee: e3:a9:1e:48:f4:2c:a7:7a:e8:9f:a2:90:8e:52:d5: 9e:4d:da:8b:29:23:62:aa:17:c9:4d:e8:08:4f:25: 9f:9f:ae:98:27:a1:70:7b:e6:89:d1:2c:40:c4:e3: cf:30:c4:83:0d:52:ce:31:03:1b:e5:34:8e:5f:1f: 32:43:a2:07:e9:2f:92:5a:1a:14:de:97:9e:fd:1f: d0:24:62:40:45:bf:1f:9b:a5:38:cc:d7:92:35:50: 01:49:6f:06:c2:0e:29:16:a4:3a:62:41:66:b6:6d: ec:98:b4:33:cd:8d:7c:56:7c:97:c9:01:8d:b6:b9: d8:74:2e:45:1b:55:8b:0e:74:87:46:25:c1:c0:3b: b7:97:7b:f0:7e:b8:08:d3:38:b4:44:f0:f0:61:75: f4:9f:0f:93:4f:7c:79:7f:b3:2e:22:cd:e5:4b:44: b1:37:8e:b7:37:84:1d:d9:ea:29:64:1a:e9:87:70: e7:c9:b3:b3:79:33:b9:97:c7:e3:97:b7:bf:fd:c9: 8d:54:10:8f:ae:f5:89:02:c5:f5:c0:03:b0:9e:09: a4:0d:a2:81:4b:6c:6d:ff:3b:26:d7:4a:da:03:96: 67:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:F2:FA:4C:78:74:14:18:4A:BB:F5:17:EF:8E:35:21:7A:74:A0:B6 X509v3 Authority Key Identifier: keyid:C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/6880FA2C59D211EAB77C8C13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.176.0/22 103.4.72.0/22 113.197.68.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:da:ef:65:33:16:ec:22:15:e8:fe:62:29:05:0d:b1:e1:18: 02:9b:b0:c8:ee:ac:1e:08:00:f7:06:72:bd:e8:a2:de:8d:f7: 55:36:69:52:96:c6:b6:38:74:3e:58:6d:11:9d:5b:ce:f1:21: 8f:87:b7:ac:e0:11:77:da:cf:51:47:9a:88:94:ee:f8:c0:ba: 98:74:73:d2:86:91:8a:53:c8:cd:74:64:5b:bf:ff:17:fd:ab: 08:45:cd:5e:a7:1a:8b:26:89:46:8c:94:f8:9a:05:d6:4a:7c: f1:61:6d:3e:6d:28:c1:d5:38:2f:b5:6e:99:0d:cb:06:a5:3a: c3:69:9f:a8:18:68:d8:26:1b:76:26:9b:db:03:08:22:9f:27: c7:10:35:93:95:ab:97:03:2b:41:ef:47:c3:a7:f9:0b:66:1a: 88:ca:40:00:d0:8e:74:4a:bc:35:c2:11:3a:1b:6a:c5:82:18: 25:09:b8:13:41:4a:50:6c:e0:ab:e1:5d:03:cb:19:d5:a1:c9: e4:12:45:53:e2:26:2f:7c:dd:f6:41:88:5b:7c:7f:be:01:50: 8d:b6:0b:bb:5d:2d:42:6f:5e:b3:c8:ee:32:d1:21:a2:c1:4c: da:fb:c9:32:c6:e6:a7:2a:7c:c2:ff:d8:7a:84:ca:d8:d8:5c: 78:7c:75:eb -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICIi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURGRDMxMTAvBgNVBAUTKEM2MDg5RUVCQzU1NkI3N0Y2NEU0NDI0OUE2OEI5NUQ1 QkQ5NDFFNDAwHhcNMjQwMTE4MTY0MzEwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE5NTUxZS0yY2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDxDASnw3Iuat1ZeBX+Nzzt1ci+81lUg6MqVHe7jqR5I9CyneuifopCOUtWe TdqLKSNiqhfJTegITyWfn66YJ6Fwe+aJ0SxAxOPPMMSDDVLOMQMb5TSOXx8yQ6IH 6S+SWhoU3pee/R/QJGJARb8fm6U4zNeSNVABSW8Gwg4pFqQ6YkFmtm3smLQzzY18 VnyXyQGNtrnYdC5FG1WLDnSHRiXBwDu3l3vwfrgI0zi0RPDwYXX0nw+TT3x5f7Mu Is3lS0SxN463N4Qd2eopZBrph3DnybOzeTO5l8fjl7e//cmNVBCPrvWJAsX1wAOw ngmkDaKBS2xt/zsm10raA5ZnzwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHfy+kx4 dBQYSrv1F++ONSF6dKC2MB8GA1UdIwQYMBaAFMYInuvFVrd/ZORCSaaLldW9lB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREZEMy8xRkQxQThCRTk0 ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3QzOWs1RUpKcG91VjFiMlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnaWU2OFZXdDM5azVFSkpwb3VWMWIyVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURGRDMvMUZEMUE4QkU5NDg2MTFFNUFFMEM4QjcyQzRGOUFFMDIvNjg4MEZBMkM1 OUQyMTFFQUI3N0M4QzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIr+bADBAJnBEgDBAJxxUQwDQYJKoZIhvcNAQELBQADggEB AE3a72UzFuwiFej+YikFDbHhGAKbsMjurB4IAPcGcr3oot6N91U2aVKWxrY4dD5Y bRGdW87xIY+Ht6zgEXfaz1FHmoiU7vjAuph0c9KGkYpTyM10ZFu//xf9qwhFzV6n GosmiUaMlPiaBdZKfPFhbT5tKMHVOC+1bpkNywalOsNpn6gYaNgmG3Ymm9sDCCKf J8cQNZOVq5cDK0HvR8On+QtmGojKQADQjnRKvDXCETobasWCGCUJuBNBSlBs4Kvh XQPLGdWhyeQSRVPiJi983fZBiFt8f74BUI22C7tdLUJvXrPI7jLRIaLBTNr7yTLG 5qcqfML/2HqEytjYXHh8des= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:50 2024 by rpki-client on console-fra.rpki-client.org