$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/6E16949065A011EFA4AA8E6BC4F9AE02.roa File: 6E16949065A011EFA4AA8E6BC4F9AE02.roa (raw, json) Hash identifier: +q7i8FT7aXv5TbfXQs0zmVnbFdJSpOU7FUV6yCY0qyc= Subject key identifier: B3:CC:1D:00:02:64:BD:6C:CE:15:BB:1D:F0:67:82:EB:DE:97:8B:82 Certificate issuer: /CN=A91FA56C/serialNumber=DC7559EE5A225060397338FCAA3803FFAA4B2357 Certificate serial: 03 Authority key identifier: DC:75:59:EE:5A:22:50:60:39:73:38:FC:AA:38:03:FF:AA:4B:23:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HVZ7loiUGA5czj8qjgD_6pLI1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/6E16949065A011EFA4AA8E6BC4F9AE02.roa Signing time: Thu 29 Aug 2024 00:48:39 +0000 ROA not before: Thu 29 Aug 2024 00:48:39 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132158 IP address blocks: 114.30.64.0/21 maxlen: 21 2400:8c80::/32 maxlen: 32 2400:8c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/3HVZ7loiUGA5czj8qjgD_6pLI1c.crl rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/3HVZ7loiUGA5czj8qjgD_6pLI1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HVZ7loiUGA5czj8qjgD_6pLI1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA56C/serialNumber=DC7559EE5A225060397338FCAA3803FFAA4B2357 Validity Not Before: Aug 29 00:48:39 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66cfc567-20d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ef:ab:1b:df:a1:85:54:fe:97:d3:3c:94:3f: a4:af:c2:72:b0:33:fe:b0:fb:60:71:48:95:fb:31: ab:58:82:b6:a3:cc:5f:04:d5:05:c6:7f:81:80:21: c7:bc:23:a4:47:8f:e8:c0:ae:31:d3:3d:e2:cc:38: 52:fa:f3:ab:b0:c2:a8:56:4b:cc:3d:de:92:48:07: 80:59:8c:6e:cc:b9:4e:e2:f4:b7:c9:69:9b:a7:1a: 51:85:e6:96:b3:91:db:49:bc:1d:80:b7:dc:5c:77: cf:32:9e:e7:bc:69:9e:fb:32:6e:2d:f3:be:47:82: 00:52:ed:01:5c:c8:8e:3e:dd:12:53:a0:2b:4a:50: f6:01:36:29:ec:77:5e:76:ce:bd:5e:8e:e4:24:5c: f6:76:ba:cf:40:e6:df:56:53:38:d6:de:62:7f:6e: 7b:0e:6c:dd:7a:4c:9a:50:11:b0:0c:80:b6:b9:18: 3d:f6:56:36:f4:31:17:ba:53:c2:a1:b1:e6:e5:be: ec:82:cb:2d:41:81:08:b1:5f:4c:3a:f1:09:46:3e: 47:72:1b:79:0e:58:e7:c2:30:0c:fe:76:d1:59:36: 24:e0:39:8c:30:34:df:10:d4:a8:25:33:cb:ce:ab: ad:a2:01:ce:92:dd:ad:f2:bc:96:cd:3d:e9:74:fa: 4a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CC:1D:00:02:64:BD:6C:CE:15:BB:1D:F0:67:82:EB:DE:97:8B:82 X509v3 Authority Key Identifier: keyid:DC:75:59:EE:5A:22:50:60:39:73:38:FC:AA:38:03:FF:AA:4B:23:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/3HVZ7loiUGA5czj8qjgD_6pLI1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HVZ7loiUGA5czj8qjgD_6pLI1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/6E16949065A011EFA4AA8E6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.30.64.0/21 IPv6: 2400:8c80::/32 Signature Algorithm: sha256WithRSAEncryption 4c:8f:9c:b2:4e:ce:a4:a3:8c:0f:0d:f5:af:27:cb:73:23:50: f1:19:d1:67:ff:ee:51:1e:e7:66:24:1e:67:17:ce:75:82:d7: 6f:d2:2c:64:cd:04:ad:f5:fc:1e:03:03:d6:64:d7:bd:74:9f: 1d:e8:91:a2:f5:f2:e5:13:29:85:c8:d1:e0:ed:2c:7b:e2:82: bd:b4:ff:de:65:2e:71:b9:b3:6a:52:e4:53:6a:24:e7:ac:5c: 09:0d:7e:39:8b:3a:d6:12:f3:6f:dd:73:51:9b:09:05:ee:bb: fd:3c:d4:8d:ab:14:ad:11:76:c1:01:b3:4a:b3:e4:16:f5:37: 98:68:b8:80:b7:e7:cd:b6:2d:96:b6:1e:e9:b3:e9:3e:c6:45: e9:4c:6c:be:31:40:4b:ad:4e:85:a2:cd:5d:3e:2b:f7:23:ac: d5:f2:37:e2:2c:c3:2b:ce:06:81:4e:20:f6:5b:4c:6c:a8:77: ba:df:09:95:61:7f:2e:b3:6f:66:15:10:cf:03:a1:cb:69:d8: 3d:66:01:92:17:53:a4:12:59:f0:da:0c:1e:ec:5f:0b:ef:e3: e8:7c:8d:47:f4:0f:f0:cf:31:f6:58:3d:88:ef:b0:d4:0d:54: a9:8a:87:3b:3d:9a:2d:b5:68:da:2e:2c:d8:78:eb:a4:af:d1: 52:f4:aa:f8 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTU2QzExMC8GA1UEBRMoREM3NTU5RUU1QTIyNTA2MDM5NzMzOEZDQUEzODAzRkZB QTRCMjM1NzAeFw0yNDA4MjkwMDQ4MzlaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2ZjNTY3LTIwZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC476sb36GFVP6X0zyUP6SvwnKwM/6w+2BxSJX7MatYgrajzF8E1QXGf4GAIce8 I6RHj+jArjHTPeLMOFL686uwwqhWS8w93pJIB4BZjG7MuU7i9LfJaZunGlGF5paz kdtJvB2At9xcd88ynue8aZ77Mm4t875HggBS7QFcyI4+3RJToCtKUPYBNinsd152 zr1ejuQkXPZ2us9A5t9WUzjW3mJ/bnsObN16TJpQEbAMgLa5GD32Vjb0MRe6U8Kh seblvuyCyy1BgQixX0w68QlGPkdyG3kOWOfCMAz+dtFZNiTgOYwwNN8Q1KglM8vO q62iAc6S3a3yvJbNPel0+koFAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUs8wdAAJk vWzOFbsd8GeC696Xi4IwHwYDVR0jBBgwFoAU3HVZ7loiUGA5czj8qjgD/6pLI1cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNTZDL0REREU4QzQ4NjRG RjExRUZBNUE4MTE1OEM0RjlBRTAyLzNIVlo3bG9pVUdBNWN6ajhxamdEXzZwTEkx Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM0hWWjdsb2lVR0E1Y3pqOHFqZ0RfNnBMSTFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Qy9ERERFOEM0ODY0RkYxMUVGQTVBODExNThDNEY5QUUwMi82RTE2OTQ5MDY1 QTAxMUVGQTRBQThFNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEA3IeQDANBAIAAjAHAwUAJACMgDANBgkqhkiG9w0BAQsFAAOC AQEATI+csk7OpKOMDw31ryfLcyNQ8RnRZ//uUR7nZiQeZxfOdYLXb9IsZM0ErfX8 HgMD1mTXvXSfHeiRovXy5RMphcjR4O0se+KCvbT/3mUucbmzalLkU2ok56xcCQ1+ OYs61hLzb91zUZsJBe67/TzUjasUrRF2wQGzSrPkFvU3mGi4gLfnzbYtlrYe6bPp PsZF6UxsvjFAS61OhaLNXT4r9yOs1fI34izDK84GgU4g9ltMbKh3ut8JlWF/LrNv ZhUQzwOhy2nYPWYBkhdTpBJZ8NoMHuxfC+/j6HyNR/QP8M8x9lg9iO+w1A1UqYqH Oz2aLbVo2i4s2HjrpK/RUvSq+A== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:06 2024 by rpki-client on console-ams.rpki-client.org