$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/3ED2E738F0C511E9AD7DCC11C4F9AE02.roa File: 3ED2E738F0C511E9AD7DCC11C4F9AE02.roa (raw, json) Hash identifier: sDU0CzCwuoT0jsGzITGNqVvjEqL0/qHnbm4MS2vPAPc= Subject key identifier: FE:B9:D7:73:6C:F4:F7:51:A3:B4:6B:DA:83:B8:76:0A:CF:CE:AA:80 Certificate issuer: /CN=A91D2659/serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Certificate serial: 0C1B Authority key identifier: 6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/3ED2E738F0C511E9AD7DCC11C4F9AE02.roa Signing time: Fri 16 Aug 2024 18:46:52 +0000 ROA not before: Fri 16 Aug 2024 18:46:52 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139251 IP address blocks: 103.140.98.0/23 maxlen: 24 2001:df0:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:09:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2659/serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Validity Not Before: Aug 16 18:46:52 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66bf9e9c-bf13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9b:e9:02:ed:d8:db:a5:55:ad:08:f2:86:44: 94:de:18:9d:9b:34:26:e5:2e:fb:97:c2:c4:ec:57: 40:a2:80:ed:93:60:33:2f:22:d1:2c:93:e7:fd:72: 4b:b4:0d:38:df:fe:3c:95:04:fb:ea:cf:ef:9f:91: 5a:9c:62:bf:c3:71:e6:bc:38:d7:c9:49:d1:99:74: c6:b6:77:0c:15:94:95:5d:f4:51:8b:2d:3a:77:9a: bb:53:0e:1d:66:2b:00:fa:cd:db:6c:12:48:9a:83: 76:6a:57:cf:34:89:74:7b:db:ee:f4:f8:3e:16:71: bc:16:fb:4d:3c:08:c5:4b:b5:7a:8f:95:40:62:09: 81:fa:54:d7:16:11:8d:b4:56:56:96:9d:5e:b5:c6: ac:4d:c2:9a:5f:3b:d1:ae:34:5e:c4:59:1a:c0:a6: b0:f1:56:61:1b:f6:6a:82:d9:31:b3:91:1d:65:11: 45:4f:db:05:ec:bb:da:0e:15:fe:23:4f:94:bc:42: 2f:65:1a:ff:22:26:e1:39:21:f1:16:18:dc:d1:ed: 83:e6:c4:34:ef:c5:46:54:43:84:07:83:99:58:00: a8:4c:ff:fe:cf:f1:2a:0f:f8:8b:bc:f7:6d:75:65: 12:33:cc:de:80:3d:35:38:b6:b4:6f:50:73:d8:cd: 17:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B9:D7:73:6C:F4:F7:51:A3:B4:6B:DA:83:B8:76:0A:CF:CE:AA:80 X509v3 Authority Key Identifier: keyid:6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/3ED2E738F0C511E9AD7DCC11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.98.0/23 IPv6: 2001:df0:b980::/48 Signature Algorithm: sha256WithRSAEncryption 9b:4b:a2:e3:b4:ba:92:a2:3e:55:3e:2d:3d:f4:26:98:d6:b1: c9:85:c2:ee:aa:be:5a:ec:97:81:c6:ec:97:ac:c9:23:2d:9e: b4:25:9b:2a:90:15:26:89:89:70:9d:aa:46:89:2e:4e:cf:73: 65:a6:9d:74:53:a2:79:b0:00:f8:ea:46:74:80:7a:9a:a9:c9: ac:40:1c:c7:72:a2:2e:c2:83:c8:b1:c2:90:e8:33:cc:73:08: fe:36:a2:16:bc:79:6e:73:86:7f:13:17:bd:ef:ac:c3:a4:7f: ec:a0:25:b3:cc:ba:8d:4e:6d:97:e4:0f:38:6b:b9:93:05:ce: 17:5b:4c:41:af:61:fa:45:e9:f4:75:01:3f:5e:86:39:7b:02: 1a:ac:2e:6c:4e:b6:0b:e1:ce:df:78:5d:38:15:02:a4:d2:37: 1d:99:b6:84:4f:95:ad:4d:8d:df:10:7d:c7:8e:17:ea:e0:da: 5b:18:40:ac:8b:d9:3b:ab:29:02:39:28:77:44:aa:6d:48:4d: 8f:b2:60:30:5d:8a:07:7a:4a:7d:a0:10:68:99:1e:84:95:84: e4:b4:e3:d9:f7:2d:1d:04:11:8a:9b:4a:0c:f0:70:e5:66:f2: d8:4f:25:97:63:e1:20:39:c3:9c:10:c7:29:d2:2c:18:6d:fd: dc:fc:a2:2f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI2NTkxMTAvBgNVBAUTKDZBN0M4NjIwQjAxMTkxMzVBNEUyOTY3MTEwMjAyRTdB OTIxMEZENzYwHhcNMjQwODE2MTg0NjUyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmOWU5Yy1iZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJvpAu3Y26VVrQjyhkSU3hidmzQm5S77l8LE7FdAooDtk2AzLyLRLJPn/XJL tA043/48lQT76s/vn5FanGK/w3HmvDjXyUnRmXTGtncMFZSVXfRRiy06d5q7Uw4d ZisA+s3bbBJImoN2alfPNIl0e9vu9Pg+FnG8FvtNPAjFS7V6j5VAYgmB+lTXFhGN tFZWlp1etcasTcKaXzvRrjRexFkawKaw8VZhG/Zqgtkxs5EdZRFFT9sF7LvaDhX+ I0+UvEIvZRr/IibhOSHxFhjc0e2D5sQ078VGVEOEB4OZWACoTP/+z/EqD/iLvPdt dWUSM8zegD01OLa0b1Bz2M0XbQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP6513Ns 9PdRo7Rr2oO4dgrPzqqAMB8GA1UdIwQYMBaAFGp8hiCwEZE1pOKWcRAgLnqSEP12 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjY1OS9DNDY4RTlDNkYw QzMxMUU5OTI2Q0NEMEVDNEY5QUUwMi9hbnlHSUxBUmtUV2s0cFp4RUNBdWVwSVFf WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FueUdJTEFSa1RXazRwWnhFQ0F1ZXBJUV9YWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI2NTkvQzQ2OEU5QzZGMEMzMTFFOTkyNkNDRDBFQzRGOUFFMDIvM0VEMkU3MzhG MEM1MTFFOUFEN0RDQzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjGIwDwQCAAIwCQMHACABDfC5gDANBgkqhkiG9w0BAQsF AAOCAQEAm0ui47S6kqI+VT4tPfQmmNaxyYXC7qq+WuyXgcbsl6zJIy2etCWbKpAV JomJcJ2qRokuTs9zZaaddFOiebAA+OpGdIB6mqnJrEAcx3KiLsKDyLHCkOgzzHMI /jaiFrx5bnOGfxMXve+sw6R/7KAls8y6jU5tl+QPOGu5kwXOF1tMQa9h+kXp9HUB P16GOXsCGqwubE62C+HO33hdOBUCpNI3HZm2hE+VrU2N3xB9x44X6uDaWxhArIvZ O6spAjkod0SqbUhNj7JgMF2KB3pKfaAQaJkehJWE5LTj2fctHQQRiptKDPBw5Wby 2E8ll2PhIDnDnBDHKdIsGG393PyiLw== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:18 2024 by rpki-client on console-ams.rpki-client.org