$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/6262C03A1F2711EEA1F6981AC4F9AE02.roa File: 6262C03A1F2711EEA1F6981AC4F9AE02.roa (raw, json) Hash identifier: WuGpKJG5aQTILK4jM8boV9np6M5/WjC4HTtBWmjvw+8= Subject key identifier: 2A:B8:62:A0:84:20:98:A2:77:7E:E1:B2:83:3E:A8:5A:12:46:7F:E7 Certificate issuer: /CN=A91B9128/serialNumber=A6DB5ED7F50766D0795BF356BE5523063C60ACDC Certificate serial: 044A Authority key identifier: A6:DB:5E:D7:F5:07:66:D0:79:5B:F3:56:BE:55:23:06:3C:60:AC:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ptte1_UHZtB5W_NWvlUjBjxgrNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/6262C03A1F2711EEA1F6981AC4F9AE02.roa Signing time: Mon 16 Dec 2024 23:52:43 +0000 ROA not before: Mon 16 Dec 2024 23:52:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149019 IP address blocks: 103.176.174.0/23 maxlen: 23 103.176.174.0/24 maxlen: 24 103.176.175.0/24 maxlen: 24 2401:1660::/32 maxlen: 32 2401:1660::/48 maxlen: 48 2401:1660:1::/48 maxlen: 48 2401:1660:2::/48 maxlen: 48 2401:1660:3::/48 maxlen: 48 2401:1660:4::/48 maxlen: 48 2401:1660:5::/48 maxlen: 48 2401:1660:6::/48 maxlen: 48 2401:1660:7::/48 maxlen: 48 2401:1660:8::/48 maxlen: 48 2401:1660:9::/48 maxlen: 48 2401:1660:a::/48 maxlen: 48 2401:1660:b::/48 maxlen: 48 2401:1660:c::/48 maxlen: 48 2401:1660:d::/48 maxlen: 48 2401:1660:e::/48 maxlen: 48 2401:1660:f::/48 maxlen: 48 2401:1660:10::/48 maxlen: 48 2401:1660:11::/48 maxlen: 48 2401:1660:12::/48 maxlen: 48 2401:1660:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/ptte1_UHZtB5W_NWvlUjBjxgrNw.crl rsync://rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/ptte1_UHZtB5W_NWvlUjBjxgrNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ptte1_UHZtB5W_NWvlUjBjxgrNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1098 (0x44a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9128 Validity Not Before: Dec 16 23:52:43 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6760bd4b-ed11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:40:62:36:04:73:b4:cb:fb:98:35:18:c8:85: fc:18:c3:75:bb:37:6a:fe:e1:04:be:2d:33:df:5f: 0a:a3:83:a0:b4:4d:2f:d3:c4:94:a8:ce:44:76:bd: ac:cd:43:3f:82:c0:65:85:c7:ef:75:bf:03:97:52: 90:fc:fe:f9:6c:54:25:5d:98:1b:bc:0c:80:2c:df: 30:08:0b:c5:7c:13:a2:72:0b:ee:1e:2b:1b:8f:81: 5a:30:80:5c:13:f6:2d:22:e6:3c:4a:51:9a:06:c5: f1:9a:92:a8:6b:6e:17:75:2e:e8:0a:25:13:e6:ab: 5b:72:59:cb:4c:c4:f6:3e:d1:7b:f7:6f:7c:f9:1a: 41:60:d4:fe:7e:7b:32:15:e6:b4:1e:79:7d:1a:57: c7:c2:f2:89:5e:fb:46:c9:67:71:90:7f:ee:38:9a: 6f:24:c5:ee:29:4f:ae:6f:a5:02:ac:13:9b:5e:4c: 47:b6:a7:a5:32:6b:a2:29:2e:02:ca:8b:3a:d5:de: de:3f:1f:d7:a0:59:61:b0:26:c3:de:1c:fb:2c:a1: 09:f3:32:c5:92:b9:3c:2f:c0:b4:53:cb:bc:b9:d9: 86:a3:52:3c:a7:75:a6:43:1d:8d:fa:86:43:37:71: b3:04:c7:3a:ed:2a:1d:aa:00:66:53:e4:42:09:58: c7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B8:62:A0:84:20:98:A2:77:7E:E1:B2:83:3E:A8:5A:12:46:7F:E7 X509v3 Authority Key Identifier: keyid:A6:DB:5E:D7:F5:07:66:D0:79:5B:F3:56:BE:55:23:06:3C:60:AC:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/ptte1_UHZtB5W_NWvlUjBjxgrNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ptte1_UHZtB5W_NWvlUjBjxgrNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/6262C03A1F2711EEA1F6981AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.174.0/23 IPv6: 2401:1660::/32 Signature Algorithm: sha256WithRSAEncryption 0e:ca:1c:29:25:59:d2:e3:da:57:a0:a7:58:14:81:ee:76:63: f8:bf:6f:43:6b:80:c7:e1:17:58:d5:b3:a2:8c:65:60:02:eb: 71:9c:f4:fe:d2:bd:df:c8:b6:eb:8f:fa:00:a0:60:e9:d1:9f: ba:ee:cf:89:bb:28:94:6c:c8:47:56:04:34:c9:95:1e:24:ca: 6c:75:aa:2c:70:97:8c:69:2f:9d:18:b2:64:fa:5d:32:db:ff: e4:cb:93:38:4a:be:36:7e:e4:6d:bf:67:87:88:f5:aa:f7:10: 2a:a4:a3:4a:6a:da:d7:b9:61:48:c4:17:2c:9a:55:63:7d:b7: 15:97:5a:06:3f:1b:40:08:e4:64:33:dd:5f:f9:d5:4b:bf:80: d8:7d:2d:c5:a8:94:5f:fa:cb:0c:e6:2b:7b:ee:64:d1:5e:b6: 3a:bb:f5:b8:05:d1:e2:fe:2b:a6:c0:e3:85:7b:25:28:20:10: 24:a4:40:6f:44:8d:f6:b0:10:5a:99:80:8b:15:64:80:1f:33: dc:c5:eb:0b:da:1b:19:1c:77:70:7e:20:bc:a5:0f:03:3f:4f: 11:23:91:7a:e8:3e:20:e5:76:30:f7:3d:5d:21:88:d3:2d:e2: 47:60:11:b2:ef:50:ac:d0:41:eb:1e:6f:4b:15:11:95:f4:cc: a3:81:11:9e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxMjgxMTAvBgNVBAUTKEE2REI1RUQ3RjUwNzY2RDA3OTVCRjM1NkJFNTUyMzA2 M0M2MEFDREMwHhcNMjQxMjE2MjM1MjQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYwYmQ0Yi1lZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukBiNgRztMv7mDUYyIX8GMN1uzdq/uEEvi0z318Ko4OgtE0v08SUqM5Edr2s zUM/gsBlhcfvdb8Dl1KQ/P75bFQlXZgbvAyALN8wCAvFfBOicgvuHisbj4FaMIBc E/YtIuY8SlGaBsXxmpKoa24XdS7oCiUT5qtbclnLTMT2PtF79298+RpBYNT+fnsy Fea0Hnl9GlfHwvKJXvtGyWdxkH/uOJpvJMXuKU+ub6UCrBObXkxHtqelMmuiKS4C yos61d7ePx/XoFlhsCbD3hz7LKEJ8zLFkrk8L8C0U8u8udmGo1I8p3WmQx2N+oZD N3GzBMc67SodqgBmU+RCCVjHeQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCq4YqCE IJiid37hsoM+qFoSRn/nMB8GA1UdIwQYMBaAFKbbXtf1B2bQeVvzVr5VIwY8YKzc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTEyOC84NkE3OTU1NjQ4 NTAxMUVDQkRENDhFNURDNEY5QUUwMi9wdHRlMV9VSFp0QjVXX05XdmxVakJqeGdy TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B0dGUxX1VIWnRCNVdfTld2bFVqQmp4Z3JOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkxMjgvODZBNzk1NTY0ODUwMTFFQ0JERDQ4RTVEQzRGOUFFMDIvNjI2MkMwM0Ex RjI3MTFFRUExRjY5ODFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsK4wDQQCAAIwBwMFACQBFmAwDQYJKoZIhvcNAQELBQAD ggEBAA7KHCklWdLj2legp1gUge52Y/i/b0NrgMfhF1jVs6KMZWAC63Gc9P7Svd/I tuuP+gCgYOnRn7ruz4m7KJRsyEdWBDTJlR4kymx1qixwl4xpL50YsmT6XTLb/+TL kzhKvjZ+5G2/Z4eI9ar3ECqko0pq2te5YUjEFyyaVWN9txWXWgY/G0AI5GQz3V/5 1Uu/gNh9LcWolF/6ywzmK3vuZNFetjq79bgF0eL+K6bA44V7JSggECSkQG9Ejfaw EFqZgIsVZIAfM9zF6wvaGxkcd3B+ILylDwM/TxEjkXroPiDldjD3PV0hiNMt4kdg EbLvUKzQQeseb0sVEZX0zKOBEZ4= -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:35 2025 by rpki-client