$ rpki-client -vvf rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/6229E2DC5C7911EC8C7BD812C4F9AE02.roa File: 6229E2DC5C7911EC8C7BD812C4F9AE02.roa (raw, json) Hash identifier: wGbE0YkCiIM+SIF6UsXM2Y8Q1BpBKgQHBXubgyLVuBc= Subject key identifier: CB:96:7F:D6:9A:23:86:36:AE:58:E0:CB:CC:78:7F:30:AE:C8:63:38 Certificate issuer: /CN=A91F95E2/serialNumber=410597D5B00043E20AA2409E3271ED4F41E131C7 Certificate serial: 03C6 Authority key identifier: 41:05:97:D5:B0:00:43:E2:0A:A2:40:9E:32:71:ED:4F:41:E1:31:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQWX1bAAQ-IKokCeMnHtT0HhMcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/6229E2DC5C7911EC8C7BD812C4F9AE02.roa Signing time: Sat 05 Oct 2024 01:04:40 +0000 ROA not before: Sat 05 Oct 2024 01:04:40 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147000 IP address blocks: 103.172.174.0/23 maxlen: 24 2001:df7:7580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/QQWX1bAAQ-IKokCeMnHtT0HhMcc.crl rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/QQWX1bAAQ-IKokCeMnHtT0HhMcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQWX1bAAQ-IKokCeMnHtT0HhMcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 966 (0x3c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F95E2/serialNumber=410597D5B00043E20AA2409E3271ED4F41E131C7 Validity Not Before: Oct 5 01:04:40 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=670090a8-eb0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2a:63:8d:c1:88:1d:d6:92:37:38:01:a6:d9: 03:18:2d:91:ae:42:03:40:5d:42:14:be:68:9a:27: 24:7f:7b:25:1a:71:a2:72:6e:00:63:9e:a9:cd:7b: f4:a9:ac:cd:3a:c5:08:41:d3:44:9d:0d:3a:8f:df: b7:2c:7f:f9:2f:ab:cc:7b:42:b9:97:8b:ad:85:97: a3:4c:b0:03:ee:0d:56:d4:b3:ff:bd:f6:e0:a7:b9: 4e:d2:f9:b7:e6:d1:72:e4:e3:90:1a:6b:a4:43:63: a8:28:dc:0b:a6:c5:86:4f:10:f1:3b:1a:e5:c0:ff: c5:83:9f:ee:5e:7f:2b:b0:6a:fd:a7:59:62:76:49: f0:b7:ad:e1:83:65:c0:bf:70:48:f4:61:f7:53:7a: eb:82:35:8c:fb:36:06:58:0d:42:28:06:1f:d1:8f: b0:ba:94:59:10:9f:1a:97:05:c2:dc:d9:bb:c8:7c: bd:9b:73:0b:ad:e7:65:0b:df:71:57:d4:ea:5c:82: c9:22:f5:9d:96:cd:52:98:6f:6f:e2:4d:25:7b:71: 01:18:a4:1a:60:04:40:f6:5b:d1:26:31:d1:ba:c4: d3:34:de:42:54:b9:f8:56:c6:66:f2:75:f8:b9:25: 6b:45:f1:bb:41:78:31:c7:2d:c8:36:95:db:fd:06: 45:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:96:7F:D6:9A:23:86:36:AE:58:E0:CB:CC:78:7F:30:AE:C8:63:38 X509v3 Authority Key Identifier: keyid:41:05:97:D5:B0:00:43:E2:0A:A2:40:9E:32:71:ED:4F:41:E1:31:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/QQWX1bAAQ-IKokCeMnHtT0HhMcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQWX1bAAQ-IKokCeMnHtT0HhMcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/6229E2DC5C7911EC8C7BD812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.174.0/23 IPv6: 2001:df7:7580::/48 Signature Algorithm: sha256WithRSAEncryption 2e:8c:00:c9:92:c9:6c:32:ff:9d:c2:cb:8e:ec:89:70:a3:46: fa:7d:2e:e3:ec:a0:1f:e3:54:b3:db:73:76:3a:8a:84:ee:46: e4:66:a9:3d:4f:87:d2:a1:fa:08:5a:5d:ee:f0:13:bd:72:c5: 77:32:82:00:5d:bd:f6:99:d4:6c:8d:5e:ab:7f:aa:3d:4f:a6: 84:fc:be:9c:e8:59:16:5d:71:7a:e9:ab:ff:8b:9c:84:6d:e5: 33:be:6b:0a:5e:d6:ba:ec:25:89:b5:46:6f:87:11:e1:de:fc: b6:00:27:18:c2:49:fe:67:cf:85:14:82:e2:dc:8d:56:02:8c: 7e:7f:12:a1:3b:d8:b0:7b:89:ba:6e:32:45:7e:e2:ea:aa:5d: df:77:f8:0f:f3:d2:1e:a9:4a:b0:99:0f:70:9f:5a:39:75:1a: cb:e3:9e:0c:be:af:17:bf:98:39:ea:0a:cf:90:fd:4a:b9:ff: 1e:24:4d:96:91:05:f7:1d:8a:d4:f2:d9:e1:36:f3:5b:40:be: 07:b0:84:af:0e:4f:68:2a:ad:8c:30:ae:d7:db:5f:20:c3:5b: b1:80:82:7c:f3:96:14:d2:6d:0a:eb:26:81:c3:d7:d6:dd:b0: 59:cf:1b:d5:5b:56:92:03:96:dc:74:7e:a2:de:14:6a:2e:3b: 73:73:33:a7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjk1RTIxMTAvBgNVBAUTKDQxMDU5N0Q1QjAwMDQzRTIwQUEyNDA5RTMyNzFFRDRG NDFFMTMxQzcwHhcNMjQxMDA1MDEwNDQwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwOTBhOC1lYjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwipjjcGIHdaSNzgBptkDGC2RrkIDQF1CFL5omickf3slGnGicm4AY56pzXv0 qazNOsUIQdNEnQ06j9+3LH/5L6vMe0K5l4uthZejTLAD7g1W1LP/vfbgp7lO0vm3 5tFy5OOQGmukQ2OoKNwLpsWGTxDxOxrlwP/Fg5/uXn8rsGr9p1lidknwt63hg2XA v3BI9GH3U3rrgjWM+zYGWA1CKAYf0Y+wupRZEJ8alwXC3Nm7yHy9m3MLredlC99x V9TqXILJIvWdls1SmG9v4k0le3EBGKQaYARA9lvRJjHRusTTNN5CVLn4VsZm8nX4 uSVrRfG7QXgxxy3INpXb/QZFxwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMuWf9aa I4Y2rljgy8x4fzCuyGM4MB8GA1UdIwQYMBaAFEEFl9WwAEPiCqJAnjJx7U9B4THH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTVFMi8xMTg1NDVGQTVD NzUxMUVDODlBQkZBMEJDNEY5QUUwMi9RUVdYMWJBQVEtSUtva0NlTW5IdFQwSGhN Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FRV1gxYkFBUS1JS29rQ2VNbkh0VDBIaE1jYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjk1RTIvMTE4NTQ1RkE1Qzc1MTFFQzg5QUJGQTBCQzRGOUFFMDIvNjIyOUUyREM1 Qzc5MTFFQzhDN0JEODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrK4wDwQCAAIwCQMHACABDfd1gDANBgkqhkiG9w0BAQsF AAOCAQEALowAyZLJbDL/ncLLjuyJcKNG+n0u4+ygH+NUs9tzdjqKhO5G5GapPU+H 0qH6CFpd7vATvXLFdzKCAF299pnUbI1eq3+qPU+mhPy+nOhZFl1xeumr/4uchG3l M75rCl7WuuwlibVGb4cR4d78tgAnGMJJ/mfPhRSC4tyNVgKMfn8SoTvYsHuJum4y RX7i6qpd33f4D/PSHqlKsJkPcJ9aOXUay+OeDL6vF7+YOeoKz5D9Srn/HiRNlpEF 9x2K1PLZ4TbzW0C+B7CErw5PaCqtjDCu19tfIMNbsYCCfPOWFNJtCusmgcPX1t2w Wc8b1VtWkgOW3HR+ot4Uai47c3Mzpw== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:30 2024 by rpki-client on console-ams.rpki-client.org