$ rpki-client -vvf rpki.apnic.net/member_repository/A91149EA/F42D4CA273E411EA9AE68072C4F9AE02/6897409A73E811EA93705B7CC4F9AE02.roa File: 6897409A73E811EA93705B7CC4F9AE02.roa (raw, json) Hash identifier: 8MO+sNBEiwlcI2/otkXShyj1mgir6Tk3C5bJL2OwyHE= Subject key identifier: 77:9A:73:93:4F:92:DD:6A:60:E2:15:09:43:5C:EA:CA:F8:FA:56:82 Certificate issuer: /CN=A91149EA/serialNumber=4D5254746FEF72EFB7ACC0C534AD608F50BC3804 Certificate serial: 0996 Authority key identifier: 4D:52:54:74:6F:EF:72:EF:B7:AC:C0:C5:34:AD:60:8F:50:BC:38:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TVJUdG_vcu-3rMDFNK1gj1C8OAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91149EA/F42D4CA273E411EA9AE68072C4F9AE02/6897409A73E811EA93705B7CC4F9AE02.roa Signing time: Mon 02 Sep 2024 20:58:37 +0000 ROA not before: Mon 02 Sep 2024 20:58:37 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137969 IP address blocks: 103.142.172.0/23 maxlen: 23 103.142.172.0/24 maxlen: 24 103.142.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91149EA/F42D4CA273E411EA9AE68072C4F9AE02/TVJUdG_vcu-3rMDFNK1gj1C8OAQ.crl rsync://rpki.apnic.net/member_repository/A91149EA/F42D4CA273E411EA9AE68072C4F9AE02/TVJUdG_vcu-3rMDFNK1gj1C8OAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TVJUdG_vcu-3rMDFNK1gj1C8OAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:46:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2454 (0x996) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91149EA/serialNumber=4D5254746FEF72EFB7ACC0C534AD608F50BC3804 Validity Not Before: Sep 2 20:58:37 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d626fd-abee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a9:97:7c:54:a8:f9:63:ee:c0:3f:e5:eb:48: c5:bd:b1:21:be:cb:29:52:68:31:59:63:e8:37:16: bb:84:4b:c4:ea:16:fd:4f:20:14:36:29:9b:c4:44: 3d:42:db:b1:26:7c:ac:8a:5f:53:68:89:c8:4d:5b: 7c:97:be:f3:37:8f:7d:11:51:20:68:4c:d9:15:73: 1b:54:c8:64:09:61:d6:55:af:04:a5:6c:ae:d3:de: 10:ba:8d:5c:ee:a6:42:72:36:20:ce:e4:2e:76:d9: 31:a6:33:8a:b4:80:06:8d:ee:c6:13:2e:2c:c8:6f: a5:eb:52:e1:eb:29:86:a7:e5:35:26:1a:7c:43:a4: 47:69:ef:21:d2:14:cc:75:f1:21:af:1a:47:0d:68: c8:e0:18:3c:47:37:15:94:0b:da:88:40:51:08:c0: 1d:4d:16:85:ba:36:67:59:18:61:ac:3d:9c:2f:cd: f1:0f:fb:12:ac:6f:22:38:46:5e:ef:ff:2f:79:b1: 52:bc:ab:e7:8b:31:39:6a:11:8e:ad:5e:08:ef:25: f9:99:fe:9d:00:32:6f:25:48:a8:2c:a8:93:3b:40: d8:13:d8:f4:a8:7d:f6:f3:08:0f:cf:3e:86:98:05: e9:b6:d7:35:48:c4:67:7a:bf:0e:f7:e6:bc:28:5e: 3d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9A:73:93:4F:92:DD:6A:60:E2:15:09:43:5C:EA:CA:F8:FA:56:82 X509v3 Authority Key Identifier: keyid:4D:52:54:74:6F:EF:72:EF:B7:AC:C0:C5:34:AD:60:8F:50:BC:38:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91149EA/F42D4CA273E411EA9AE68072C4F9AE02/TVJUdG_vcu-3rMDFNK1gj1C8OAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TVJUdG_vcu-3rMDFNK1gj1C8OAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91149EA/F42D4CA273E411EA9AE68072C4F9AE02/6897409A73E811EA93705B7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.172.0/23 Signature Algorithm: sha256WithRSAEncryption 13:2c:05:7b:50:9c:d8:ab:38:bc:14:6a:71:45:e6:fc:9e:fb: be:77:6f:13:ac:2b:1d:cb:7e:59:dd:41:04:f9:a0:ca:7d:1e: 77:f1:3b:f7:f7:39:3d:c3:8e:8b:42:a0:28:52:b4:55:fe:10: 3f:83:27:f5:74:68:aa:94:48:8e:b4:9d:b3:86:01:a5:e2:1c: 29:88:6b:e3:7f:62:49:85:8b:ce:40:89:6b:56:ca:2c:93:86: 95:26:73:df:7d:13:00:7a:29:5c:9c:99:46:5e:78:01:ab:ac: bc:8e:13:60:5c:aa:f5:73:11:17:3c:c5:53:09:60:6d:72:f7: 5b:73:3e:86:81:d5:87:40:7b:77:bb:55:1f:9e:8f:d0:70:e3: a0:dd:11:5e:ca:4e:8f:cc:26:9e:35:06:e2:7a:ba:96:7d:72: 7b:3b:86:4e:94:96:36:85:7b:6f:ea:b4:d2:44:7a:89:46:0e: 86:bd:ff:d7:32:df:a4:02:dc:9d:ee:67:92:de:b0:97:e9:91: 93:87:01:98:2c:af:59:a4:92:7c:32:5e:14:3d:dd:86:63:3b: b6:1b:1b:65:ab:81:a9:d7:87:dd:f7:47:36:ca:9f:aa:46:cb: 8a:9e:40:e1:00:7b:53:aa:aa:1d:15:6c:f2:57:f9:e6:84:35: b6:c0:86:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ5RUExMTAvBgNVBAUTKDRENTI1NDc0NkZFRjcyRUZCN0FDQzBDNTM0QUQ2MDhG NTBCQzM4MDQwHhcNMjQwOTAyMjA1ODM3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2MjZmZC1hYmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6mXfFSo+WPuwD/l60jFvbEhvsspUmgxWWPoNxa7hEvE6hb9TyAUNimbxEQ9 QtuxJnysil9TaInITVt8l77zN499EVEgaEzZFXMbVMhkCWHWVa8EpWyu094Quo1c 7qZCcjYgzuQudtkxpjOKtIAGje7GEy4syG+l61Lh6ymGp+U1Jhp8Q6RHae8h0hTM dfEhrxpHDWjI4Bg8RzcVlAvaiEBRCMAdTRaFujZnWRhhrD2cL83xD/sSrG8iOEZe 7/8vebFSvKvnizE5ahGOrV4I7yX5mf6dADJvJUioLKiTO0DYE9j0qH328wgPzz6G mAXpttc1SMRner8O9+a8KF492QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHeac5NP kt1qYOIVCUNc6sr4+laCMB8GA1UdIwQYMBaAFE1SVHRv73Lvt6zAxTStYI9QvDgE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDlFQS9GNDJENENBMjcz RTQxMUVBOUFFNjgwNzJDNEY5QUUwMi9UVkpVZEdfdmN1LTNyTURGTksxZ2oxQzhP QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RWSlVkR192Y3UtM3JNREZOSzFnajFDOE9BUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTQ5RUEvRjQyRDRDQTI3M0U0MTFFQTlBRTY4MDcyQzRGOUFFMDIvNjg5NzQwOUE3 M0U4MTFFQTkzNzA1QjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjqwwDQYJKoZIhvcNAQELBQADggEBABMsBXtQnNirOLwU anFF5vye+753bxOsKx3LflndQQT5oMp9HnfxO/f3OT3DjotCoChStFX+ED+DJ/V0 aKqUSI60nbOGAaXiHCmIa+N/YkmFi85AiWtWyiyThpUmc999EwB6KVycmUZeeAGr rLyOE2BcqvVzERc8xVMJYG1y91tzPoaB1YdAe3e7VR+ej9Bw46DdEV7KTo/MJp41 BuJ6upZ9cns7hk6UljaFe2/qtNJEeolGDoa9/9cy36QC3J3uZ5LesJfpkZOHAZgs r1mkknwyXhQ93YZjO7YbG2WrganXh933RzbKn6pGy4qeQOEAe1Oqqh0VbPJX+eaE NbbAhrk= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org