$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/6AFD06C0EB8B11EEA2DC1E49C4F9AE02.roa File: 6AFD06C0EB8B11EEA2DC1E49C4F9AE02.roa (raw, json) Hash identifier: FL+VVzcPFPFYFK/eeGMO2XGhtXdZWZTlmhO3w7UvF4k= Subject key identifier: E4:4D:8B:9E:4C:77:24:A1:0A:40:BC:31:4F:7D:76:C7:13:95:FF:DF Certificate issuer: /CN=A91F7E85/serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886 Certificate serial: 0B46 Authority key identifier: 59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/6AFD06C0EB8B11EEA2DC1E49C4F9AE02.roa Signing time: Tue 14 May 2024 20:29:19 +0000 ROA not before: Tue 14 May 2024 20:29:19 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139026 IP address blocks: 103.138.164.0/23 maxlen: 23 103.138.164.0/24 maxlen: 24 103.138.165.0/24 maxlen: 24 2001:df0:4480::/48 maxlen: 48 2400:a7e0::/32 maxlen: 32 2400:a7e0::/34 maxlen: 34 2400:a7e0:4000::/34 maxlen: 34 2400:a7e0:8000::/34 maxlen: 34 2400:a7e0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.crl rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7E85/serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886 Validity Not Before: May 14 20:29:19 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6643c99e-fe6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:67:a6:db:be:1f:eb:f1:61:ef:92:99:2a:61: 5e:2a:bf:0f:7e:6e:13:e9:05:92:f1:ea:9a:e5:5e: 48:ae:2e:81:71:f2:3b:1a:66:3e:c0:1f:7f:98:09: 54:99:50:41:d6:a6:d8:50:fe:1d:04:76:04:66:14: 4c:19:96:4f:c0:cc:eb:ed:80:47:00:64:e6:10:37: 65:ad:d8:3a:12:f4:43:a5:aa:b6:2b:29:12:6f:af: 2f:4c:96:8b:4a:7d:60:21:e3:bb:f8:e6:22:e0:1f: 3b:f2:ff:d7:78:5c:1e:f4:f6:f8:23:5b:4b:a5:1f: 37:e4:ab:c7:ef:dc:44:eb:e8:d7:41:d7:3b:a7:60: 3a:d3:e3:8f:99:dc:30:c8:ff:68:61:40:0d:c1:66: 9d:d6:3d:3f:53:c0:f0:e6:ab:39:da:87:d3:0b:eb: b6:b9:21:03:7c:13:00:eb:10:39:0b:84:06:12:7e: 01:c3:d7:b2:ce:5b:8d:9f:12:33:53:ec:b1:e7:e7: c9:82:53:a5:aa:a9:51:e6:b4:67:53:62:7c:6b:ad: 04:87:cf:d4:ef:6e:07:a6:85:ff:9d:13:8c:5a:0d: 9a:63:11:be:11:03:e9:50:75:11:8f:da:f5:cd:66: 41:53:ea:dd:a0:4f:01:29:a8:98:a5:7d:a9:f6:d3: e1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:4D:8B:9E:4C:77:24:A1:0A:40:BC:31:4F:7D:76:C7:13:95:FF:DF X509v3 Authority Key Identifier: keyid:59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/6AFD06C0EB8B11EEA2DC1E49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.164.0/23 IPv6: 2001:df0:4480::/48 2400:a7e0::/32 Signature Algorithm: sha256WithRSAEncryption 4f:af:0f:16:29:f3:af:94:42:1a:52:b8:5b:e8:76:91:e1:d0: ac:94:a3:bb:1f:9e:0e:d1:07:d9:76:7d:98:fc:7c:9c:5d:65: 5d:ed:c9:30:54:a8:f3:c4:03:16:25:04:c4:8d:01:7b:8f:13: 22:cc:db:eb:d7:1b:2c:bb:99:30:95:53:a8:59:26:e6:91:0f: 33:ad:a4:1c:78:b1:84:86:3a:ad:ca:0e:1b:1a:f8:4a:74:93: ca:95:f1:2d:76:df:80:4c:70:f8:af:40:66:e2:0a:40:7a:4f: d4:43:dc:cf:c5:50:aa:83:6b:b7:a5:e3:a0:5e:56:f1:ee:48: 0a:2f:ec:6d:d3:d9:ab:d8:e7:d3:1c:50:9c:3c:09:98:f7:4e: e0:61:f0:8b:95:fb:e4:36:5e:64:61:e9:40:09:6f:27:d5:d6: b8:28:16:e2:89:ce:d6:e0:27:b1:2a:ca:0b:46:7a:45:74:1a: 27:a9:86:11:cb:0d:8b:ea:99:7a:54:88:cc:83:c2:74:e9:68: ba:39:86:65:29:b9:4d:82:e0:02:42:53:52:66:d0:14:4f:d4: 0d:b5:ea:6a:f1:3c:31:15:82:ba:71:95:45:ad:0b:b9:cb:23: a7:03:c1:2b:ae:95:d0:fc:9d:51:81:14:b7:0e:9d:2c:8c:f6: a5:50:51:ca -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdFODUxMTAvBgNVBAUTKDU5Njg1MkQ1Mjk5NEZCQjY3QTYzNzlBQjFFMEFGNTE0 NTUzRUU4ODYwHhcNMjQwNTE0MjAyOTE5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzYzk5ZS1mZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWem274f6/Fh75KZKmFeKr8Pfm4T6QWS8eqa5V5Iri6BcfI7GmY+wB9/mAlU mVBB1qbYUP4dBHYEZhRMGZZPwMzr7YBHAGTmEDdlrdg6EvRDpaq2KykSb68vTJaL Sn1gIeO7+OYi4B878v/XeFwe9Pb4I1tLpR835KvH79xE6+jXQdc7p2A60+OPmdww yP9oYUANwWad1j0/U8Dw5qs52ofTC+u2uSEDfBMA6xA5C4QGEn4Bw9eyzluNnxIz U+yx5+fJglOlqqlR5rRnU2J8a60Eh8/U724HpoX/nROMWg2aYxG+EQPpUHURj9r1 zWZBU+rdoE8BKaiYpX2p9tPhwwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFORNi55M dyShCkC8MU99dscTlf/fMB8GA1UdIwQYMBaAFFloUtUplPu2emN5qx4K9RRVPuiG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0U4NS9CMkUwRTVBRTFD MzQxMUVBQThFMjVBNUNDNEY5QUUwMi9XV2hTMVNtVS03WjZZM21ySGdyMUZGVS02 SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dXaFMxU21VLTdaNlkzbXJIZ3IxRkZVLTZJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdFODUvQjJFMEU1QUUxQzM0MTFFQUE4RTI1QTVDQzRGOUFFMDIvNkFGRDA2QzBF QjhCMTFFRUEyREMxRTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAFniqQwFgQCAAIwEAMHACABDfBEgAMFACQAp+AwDQYJKoZI hvcNAQELBQADggEBAE+vDxYp86+UQhpSuFvodpHh0KyUo7sfng7RB9l2fZj8fJxd ZV3tyTBUqPPEAxYlBMSNAXuPEyLM2+vXGyy7mTCVU6hZJuaRDzOtpBx4sYSGOq3K Dhsa+Ep0k8qV8S1234BMcPivQGbiCkB6T9RD3M/FUKqDa7el46BeVvHuSAov7G3T 2avY59McUJw8CZj3TuBh8IuV++Q2XmRh6UAJbyfV1rgoFuKJztbgJ7EqygtGekV0 GiephhHLDYvqmXpUiMyDwnTpaLo5hmUpuU2C4AJCU1Jm0BRP1A216mrxPDEVgrpx lUWtC7nLI6cDwSuuldD8nVGBFLcOnSyM9qVQUco= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org