$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3EF6/AC4DABC6592811E88E5B446BC4F9AE02/D056896E592A11E889035A70C4F9AE02.roa File: D056896E592A11E889035A70C4F9AE02.roa (raw, json) Hash identifier: tFV3sDzQ0MzS9JiFtiotNFf8xUZyC7UxkWA8BrQBeiQ= Subject key identifier: 91:D0:FC:FE:B7:56:AE:AE:F3:9B:8A:42:BC:B1:9E:F8:E8:79:7A:F4 Certificate issuer: /CN=A91C3EF6/serialNumber=E9FED8C30C715D04ACE175AE9CBD700C19770602 Certificate serial: 143A Authority key identifier: E9:FE:D8:C3:0C:71:5D:04:AC:E1:75:AE:9C:BD:70:0C:19:77:06:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6f7YwwxxXQSs4XWunL1wDBl3BgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3EF6/AC4DABC6592811E88E5B446BC4F9AE02/D056896E592A11E889035A70C4F9AE02.roa Signing time: Thu 08 Aug 2024 17:24:40 +0000 ROA not before: Thu 08 Aug 2024 17:24:40 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137567 IP address blocks: 103.113.184.0/22 maxlen: 24 2402:c040::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3EF6/AC4DABC6592811E88E5B446BC4F9AE02/6f7YwwxxXQSs4XWunL1wDBl3BgI.crl rsync://rpki.apnic.net/member_repository/A91C3EF6/AC4DABC6592811E88E5B446BC4F9AE02/6f7YwwxxXQSs4XWunL1wDBl3BgI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6f7YwwxxXQSs4XWunL1wDBl3BgI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5178 (0x143a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3EF6/serialNumber=E9FED8C30C715D04ACE175AE9CBD700C19770602 Validity Not Before: Aug 8 17:24:40 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66b4ff58-7c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d4:f5:59:e7:3d:1f:bf:a1:e6:e4:43:a6:06: ef:f7:61:a2:69:bd:1e:78:8c:57:08:f6:1e:60:0e: a8:4c:99:b8:87:e0:7d:c1:88:86:14:0f:f4:89:cb: fe:00:8e:24:31:c5:72:9b:4d:33:88:6e:66:3d:85: 78:4d:f0:42:a1:06:ac:3a:ff:b0:59:5f:bb:86:ed: 8e:98:c0:6f:66:29:45:79:9b:ed:a3:df:f0:5c:aa: ff:f3:35:24:70:38:0b:85:28:96:7d:8c:92:82:f6: 50:51:d8:a3:98:0c:78:0c:af:53:61:98:75:0d:90: 6d:11:70:4c:e0:93:e8:a5:ec:e1:f2:bb:be:b0:1e: ea:e3:2b:d8:b0:30:0c:68:d5:ce:04:a0:c4:c9:8d: 0c:b1:78:5b:b1:2c:d2:38:4e:30:93:c5:e0:38:2d: e7:9a:05:d9:42:11:15:5a:c8:ee:d6:14:5b:dc:f8: 76:ae:5a:37:e3:f0:2e:58:5d:a0:b0:d3:d3:5a:2b: 87:ed:a4:71:9e:1a:f4:5b:5b:53:9c:0a:a3:78:9c: 0d:1c:b6:01:a7:50:65:b5:e9:e5:96:fb:b7:b0:dd: 8c:81:bf:be:f1:1c:4b:51:29:47:9c:97:96:91:79: 65:1a:1c:b6:3a:57:a1:82:be:6b:21:6b:f5:21:8e: 0e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D0:FC:FE:B7:56:AE:AE:F3:9B:8A:42:BC:B1:9E:F8:E8:79:7A:F4 X509v3 Authority Key Identifier: keyid:E9:FE:D8:C3:0C:71:5D:04:AC:E1:75:AE:9C:BD:70:0C:19:77:06:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3EF6/AC4DABC6592811E88E5B446BC4F9AE02/6f7YwwxxXQSs4XWunL1wDBl3BgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6f7YwwxxXQSs4XWunL1wDBl3BgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3EF6/AC4DABC6592811E88E5B446BC4F9AE02/D056896E592A11E889035A70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.184.0/22 IPv6: 2402:c040::/32 Signature Algorithm: sha256WithRSAEncryption 13:63:d3:ae:ea:63:7d:f3:fe:29:98:39:81:29:7c:de:7f:d3: a9:b3:b8:3e:95:ce:1b:70:fb:aa:82:d9:7b:bc:08:48:2d:a7: 0f:10:75:70:d0:2d:d8:4b:98:82:4c:ca:89:c5:4f:57:6e:7f: bc:26:27:e7:92:98:f0:4a:ee:87:dd:1d:4b:bd:4d:22:34:f2: e8:54:ca:f0:63:5a:7e:0e:c6:a2:d3:61:c2:e1:b1:5f:37:5b: ae:58:04:80:c0:06:6c:86:86:be:80:83:72:b0:8b:3a:a1:51: 3a:5a:32:7a:30:cb:ee:80:80:50:ef:85:e9:9e:84:40:88:e5: 4b:db:ea:65:ac:22:46:1f:17:8a:23:26:fc:6d:7d:03:4f:89: 59:91:00:67:03:3b:20:1d:cc:b1:69:cf:72:1b:08:77:63:42: d1:81:36:67:7d:be:d2:16:9c:88:6d:2d:5c:8c:e8:8d:02:39: b0:38:bf:e3:23:84:7a:cf:f1:5b:bb:3d:c5:d3:b1:70:8d:0b: 75:10:0b:20:44:cd:f3:35:f1:fe:56:a0:71:c7:58:24:c6:8c: ee:7d:90:9e:4f:ed:79:66:ff:a7:dc:80:f3:e9:b9:93:83:fb: e5:d5:e2:fa:95:66:57:03:f5:c8:d8:66:77:6a:96:de:9e:bc: 0b:df:8e:1c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNFRjYxMTAvBgNVBAUTKEU5RkVEOEMzMEM3MTVEMDRBQ0UxNzVBRTlDQkQ3MDBD MTk3NzA2MDIwHhcNMjQwODA4MTcyNDQwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI0ZmY1OC03YzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytT1Wec9H7+h5uRDpgbv92Giab0eeIxXCPYeYA6oTJm4h+B9wYiGFA/0icv+ AI4kMcVym00ziG5mPYV4TfBCoQasOv+wWV+7hu2OmMBvZilFeZvto9/wXKr/8zUk cDgLhSiWfYySgvZQUdijmAx4DK9TYZh1DZBtEXBM4JPopezh8ru+sB7q4yvYsDAM aNXOBKDEyY0MsXhbsSzSOE4wk8XgOC3nmgXZQhEVWsju1hRb3Ph2rlo34/AuWF2g sNPTWiuH7aRxnhr0W1tTnAqjeJwNHLYBp1Bltenllvu3sN2Mgb++8RxLUSlHnJeW kXllGhy2Olehgr5rIWv1IY4OKQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJHQ/P63 Vq6u85uKQryxnvjoeXr0MB8GA1UdIwQYMBaAFOn+2MMMcV0ErOF1rpy9cAwZdwYC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0VGNi9BQzREQUJDNjU5 MjgxMUU4OEU1QjQ0NkJDNEY5QUUwMi82ZjdZd3d4eFhRU3M0WFd1bkwxd0RCbDNC Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZmN1l3d3h4WFFTczRYV3VuTDF3REJsM0JnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNFRjYvQUM0REFCQzY1OTI4MTFFODhFNUI0NDZCQzRGOUFFMDIvRDA1Njg5NkU1 OTJBMTFFODg5MDM1QTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncbgwDQQCAAIwBwMFACQCwEAwDQYJKoZIhvcNAQELBQAD ggEBABNj067qY33z/imYOYEpfN5/06mzuD6Vzhtw+6qC2Xu8CEgtpw8QdXDQLdhL mIJMyonFT1duf7wmJ+eSmPBK7ofdHUu9TSI08uhUyvBjWn4OxqLTYcLhsV83W65Y BIDABmyGhr6Ag3KwizqhUTpaMnowy+6AgFDvhemehECI5Uvb6mWsIkYfF4ojJvxt fQNPiVmRAGcDOyAdzLFpz3IbCHdjQtGBNmd9vtIWnIhtLVyM6I0CObA4v+MjhHrP 8Vu7PcXTsXCNC3UQCyBEzfM18f5WoHHHWCTGjO59kJ5P7Xlm/6fcgPPpuZOD++XV 4vqVZlcD9cjYZndqlt6evAvfjhw= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:25 2024 by rpki-client on console-fra.rpki-client.org