$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa File: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (raw, json) Hash identifier: jZodcyxZ4nUw78pUbwh5qrFajwuNLHaye10ReDwTgoQ= Subject key identifier: A3:25:EC:91:0B:7B:5D:D6:D4:49:C3:B5:30:D3:23:28:83:12:D1:65 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 0211 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa Signing time: Mon 15 Jul 2024 14:07:48 +0000 ROA not before: Mon 15 Jul 2024 14:07:48 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133368 IP address blocks: 103.189.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:17:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Jul 15 14:07:48 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66952d34-16a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3e:aa:14:6a:e2:9d:11:4d:f1:3f:ef:0f:51: 89:c3:04:68:9f:6f:d8:00:7f:df:26:8d:c4:bf:50: c2:a3:af:f8:40:91:09:56:24:d7:a2:e5:28:f8:44: 48:a8:7a:aa:5e:b4:a7:6b:2c:65:55:d9:4f:93:59: d2:89:ad:57:29:23:f0:15:78:be:68:1a:b3:99:56: 43:3c:2b:81:18:2e:8b:1b:58:a8:83:aa:4b:78:c5: dc:f3:a5:00:25:08:28:2b:e8:09:68:98:d2:25:5f: 9d:99:44:97:29:15:01:ec:1c:99:3c:7e:40:75:96: c7:c5:76:b1:96:04:ff:67:07:55:7d:2f:29:da:cc: cf:4c:9e:d5:92:0c:0b:d9:65:b7:28:8e:42:6c:0b: 01:b6:a5:d9:dd:5b:26:f7:cc:42:07:41:c8:e3:5c: 1d:fa:01:78:41:e7:7f:42:8f:a1:dc:2f:2b:65:ea: 29:bb:22:65:bb:37:3c:be:01:b7:4f:57:47:30:7a: ff:00:49:ae:d9:1a:9b:ec:5d:a3:4c:a0:b6:ad:5d: db:30:90:99:46:27:e8:51:97:97:fd:83:da:c1:82: 49:9b:d0:a5:34:d3:a8:49:ad:e1:f5:98:9d:0c:fc: 9b:ef:26:cb:00:ae:87:4f:bc:1d:a5:76:ca:8e:87: e1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:25:EC:91:0B:7B:5D:D6:D4:49:C3:B5:30:D3:23:28:83:12:D1:65 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.176.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:de:69:f8:3a:a1:e8:45:a6:be:62:84:a3:6f:24:7f:be:25: 37:92:0e:a8:a7:c5:96:75:55:21:32:7e:ec:1c:b8:10:0a:f6: b0:45:12:c0:d7:e7:66:db:77:05:81:b2:9b:a2:c3:5a:bf:e5: 60:4f:a1:16:10:e6:5b:09:1a:59:bd:f8:d3:aa:7c:59:3a:7c: fc:37:fe:db:47:52:0c:fd:78:14:d3:89:86:f0:ed:b0:db:1d: 8b:f3:ff:9b:15:9c:40:dc:bd:b3:56:08:42:9b:74:ad:e0:2d: c1:6c:36:71:8d:0d:48:3a:80:b2:3a:2b:d6:bd:11:a4:54:d8: 06:b1:26:4f:c7:78:da:2c:bf:84:fd:41:70:91:1c:80:dc:55: c5:77:55:4e:9a:ee:ae:ba:80:68:ac:ed:46:a1:c8:43:97:f5: 2e:1c:5b:15:41:9e:91:cf:2c:ec:2e:b2:f9:44:aa:17:25:8e: 63:ac:17:13:61:7f:5e:1d:1f:b2:16:d6:60:ff:77:1c:f7:d8: e0:1d:4f:91:c0:be:3a:a1:68:2d:6f:b3:d4:22:77:c5:3e:aa: 2b:45:bf:63:66:a6:d4:5d:77:f8:0d:b4:a8:5e:bf:38:3a:b5: f2:ab:0a:bd:ec:63:a9:c1:25:3a:93:6f:be:62:0b:47:42:d9: 65:fd:20:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjQwNzE1MTQwNzQ4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk1MmQzNC0xNmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwz6qFGrinRFN8T/vD1GJwwRon2/YAH/fJo3Ev1DCo6/4QJEJViTXouUo+ERI qHqqXrSnayxlVdlPk1nSia1XKSPwFXi+aBqzmVZDPCuBGC6LG1iog6pLeMXc86UA JQgoK+gJaJjSJV+dmUSXKRUB7ByZPH5AdZbHxXaxlgT/ZwdVfS8p2szPTJ7VkgwL 2WW3KI5CbAsBtqXZ3Vsm98xCB0HI41wd+gF4Qed/Qo+h3C8rZeopuyJluzc8vgG3 T1dHMHr/AEmu2Rqb7F2jTKC2rV3bMJCZRifoUZeX/YPawYJJm9ClNNOoSa3h9Zid DPyb7ybLAK6HT7wdpXbKjofhVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKMl7JEL e13W1EnDtTDTIyiDEtFlMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNCRjIvNTA5MDk2QThGNkMzMTFFQzgzM0FFRjM5QzRGOUFFMDIvNkI3QzMzQzhG NkM4MTFFQ0JERjdERDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvbAwDQYJKoZIhvcNAQELBQADggEBAC/eafg6oehFpr5i hKNvJH++JTeSDqinxZZ1VSEyfuwcuBAK9rBFEsDX52bbdwWBspuiw1q/5WBPoRYQ 5lsJGlm9+NOqfFk6fPw3/ttHUgz9eBTTiYbw7bDbHYvz/5sVnEDcvbNWCEKbdK3g LcFsNnGNDUg6gLI6K9a9EaRU2AaxJk/HeNosv4T9QXCRHIDcVcV3VU6a7q66gGis 7UahyEOX9S4cWxVBnpHPLOwusvlEqhcljmOsFxNhf14dH7IW1mD/dxz32OAdT5HA vjqhaC1vs9Qid8U+qitFv2NmptRdd/gNtKhevzg6tfKrCr3sY6nBJTqTb75iC0dC 2WX9IPA= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:54 2024 by rpki-client on console-ams.rpki-client.org