$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/D875D57EF30611EEAFFC0C66C4F9AE02.roa File: D875D57EF30611EEAFFC0C66C4F9AE02.roa (raw, json) Hash identifier: DsVxbJQBFvHguy7znDHJZ9CR2UmTMow8V9P9QuFVJ9Q= Subject key identifier: D3:64:E0:83:A1:3E:86:D0:E2:60:A4:98:C1:CA:C5:FB:3F:70:3F:11 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: D2 Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/D875D57EF30611EEAFFC0C66C4F9AE02.roa Signing time: Thu 17 Oct 2024 04:08:16 +0000 ROA not before: Thu 17 Oct 2024 04:08:16 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138311 IP address blocks: 103.6.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Oct 17 04:08:16 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67108db0-5b23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e4:d4:4f:41:97:12:37:e6:db:1a:7f:57:25: b1:e9:57:8d:df:70:22:4c:39:9c:c3:8a:d3:c5:4e: c8:52:b3:7a:8b:17:f8:e4:5c:2e:a0:66:2b:24:82: 46:72:bb:39:6c:e0:21:f9:a5:3f:58:1a:ab:cc:c3: df:e2:9a:8e:a4:1b:32:a1:72:96:51:9f:fc:04:12: 1c:8d:02:3e:a4:e7:cc:31:94:82:42:51:dc:6f:97: d3:a6:3a:b2:08:cb:e2:53:bc:ff:18:7c:2c:55:27: 89:1b:ce:cd:6e:71:4d:9e:66:fc:e9:9a:bc:48:9b: 1f:33:38:7d:ba:dd:6d:b3:9b:44:b7:93:6d:b5:ab: 6d:0c:54:01:5d:e1:55:45:7f:cb:74:79:0f:f3:99: d9:f4:6e:5c:81:86:a4:18:e5:84:6b:a6:06:ba:09: 17:f0:73:65:92:51:80:38:f3:10:74:a6:89:c2:ec: ef:25:eb:65:57:e6:ad:ee:1c:20:3c:3c:47:83:43: 5f:eb:fd:06:a1:87:6d:47:5d:5a:33:bd:a5:a0:cf: 94:1d:72:42:d7:73:58:a8:f0:17:8e:1b:b5:a6:e2: f1:40:d2:5c:e9:82:de:24:43:42:b1:63:97:db:09: 5e:ee:94:a2:17:bc:e7:5d:41:9c:2e:77:4b:19:a0: f8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:64:E0:83:A1:3E:86:D0:E2:60:A4:98:C1:CA:C5:FB:3F:70:3F:11 X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/D875D57EF30611EEAFFC0C66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.120.0/23 Signature Algorithm: sha256WithRSAEncryption 73:02:82:ee:b4:b1:af:07:ef:aa:1b:61:c1:db:b4:12:73:44: 9a:00:12:b6:05:f7:ee:42:9f:22:34:1d:1b:72:76:70:71:4e: 56:a1:3a:ee:82:ce:d7:76:44:a5:23:c8:24:31:34:39:87:c7: cc:7e:57:60:42:62:70:9b:24:bf:28:ab:9d:7c:85:c0:c8:82: 02:29:ae:9a:19:49:93:0e:1c:b3:d1:14:a6:c9:86:8a:25:d5: 71:35:0f:0e:2a:e3:f4:cd:ec:80:32:17:84:18:39:ee:e7:28: da:67:a8:93:bc:59:29:54:8f:1a:b7:9a:e9:c3:4b:fb:af:f5: dd:1d:33:b7:61:0c:ea:88:ce:87:bb:6f:ff:bf:bb:53:66:7b: 09:a9:9a:de:fa:1f:4a:32:9d:6a:32:f1:e9:40:ab:f0:db:32: d3:d2:6c:0a:66:44:65:c8:65:98:ff:63:cf:b3:31:c7:33:63: 85:f8:92:56:9b:94:8c:d9:61:71:40:9e:2d:9b:0e:73:3a:69: b6:50:2d:30:0e:49:bc:2c:21:58:a8:cc:52:fd:67:07:38:7f: a7:07:68:da:c4:d6:3f:df:d8:20:46:a8:d2:30:84:61:aa:d6: 2d:a1:38:e6:92:55:c9:a1:90:19:23:85:18:12:db:d3:73:f0: 38:53:33:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjQxMDE3MDQwODE2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwOGRiMC01YjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuTUT0GXEjfm2xp/VyWx6VeN33AiTDmcw4rTxU7IUrN6ixf45FwuoGYrJIJG crs5bOAh+aU/WBqrzMPf4pqOpBsyoXKWUZ/8BBIcjQI+pOfMMZSCQlHcb5fTpjqy CMviU7z/GHwsVSeJG87NbnFNnmb86Zq8SJsfMzh9ut1ts5tEt5NttattDFQBXeFV RX/LdHkP85nZ9G5cgYakGOWEa6YGugkX8HNlklGAOPMQdKaJwuzvJetlV+at7hwg PDxHg0Nf6/0GoYdtR11aM72loM+UHXJC13NYqPAXjhu1puLxQNJc6YLeJENCsWOX 2wle7pSiF7znXUGcLndLGaD4swIDAQABo4IClTCCApEwHQYDVR0OBBYEFNNk4IOh PobQ4mCkmMHKxfs/cD8RMB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRCM0YvMUNERjg3RTQ1MTYwMTFFRUIwQTU4MjZBQzRGOUFFMDIvRDg3NUQ1N0VG MzA2MTFFRUFGRkMwQzY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnBngwDQYJKoZIhvcNAQELBQADggEBAHMCgu60sa8H76ob YcHbtBJzRJoAErYF9+5CnyI0HRtydnBxTlahOu6Cztd2RKUjyCQxNDmHx8x+V2BC YnCbJL8oq518hcDIggIprpoZSZMOHLPRFKbJhool1XE1Dw4q4/TN7IAyF4QYOe7n KNpnqJO8WSlUjxq3munDS/uv9d0dM7dhDOqIzoe7b/+/u1Nmewmpmt76H0oynWoy 8elAq/DbMtPSbApmRGXIZZj/Y8+zMcczY4X4klablIzZYXFAni2bDnM6abZQLTAO SbwsIViozFL9Zwc4f6cHaNrE1j/f2CBGqNIwhGGq1i2hOOaSVcmhkBkjhRgS29Nz 8DhTM+c= -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:00 2024 by rpki-client on console-fra.rpki-client.org