$ rpki-client -vvf rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/EFE689283FDE11EE8EC3E546C4F9AE02.roa File: EFE689283FDE11EE8EC3E546C4F9AE02.roa (raw, json) Hash identifier: wFdzUcR7oncBOhkt6Qq97Sk0B7MxmE0B0n56PLJLLfc= Subject key identifier: E1:DE:B9:D1:54:AA:F4:BA:34:75:80:A9:72:00:40:95:F5:5B:55:01 Certificate issuer: /CN=A91169FB/serialNumber=A9F7B93E9524FC4F1681A892C47322155422B18E Certificate serial: 07B3 Authority key identifier: A9:F7:B9:3E:95:24:FC:4F:16:81:A8:92:C4:73:22:15:54:22:B1:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfe5PpUk_E8WgaiSxHMiFVQisY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/EFE689283FDE11EE8EC3E546C4F9AE02.roa Signing time: Sat 02 Mar 2024 22:00:19 +0000 ROA not before: Sat 02 Mar 2024 22:00:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9919 IP address blocks: 103.6.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/qfe5PpUk_E8WgaiSxHMiFVQisY4.crl rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/qfe5PpUk_E8WgaiSxHMiFVQisY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfe5PpUk_E8WgaiSxHMiFVQisY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1971 (0x7b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91169FB/serialNumber=A9F7B93E9524FC4F1681A892C47322155422B18E Validity Not Before: Mar 2 22:00:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e3a173-ca85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4d:e4:7c:6e:5c:62:54:38:c6:8f:dc:db:08: 02:60:92:97:25:45:7a:ef:06:28:d6:1a:42:26:11: 9f:cb:0a:d0:92:90:f3:ae:d3:08:05:a9:9e:27:60: 9f:09:41:05:58:10:ca:a2:9f:36:ce:bf:dc:ea:b6: 4d:c3:56:f0:a2:7d:9c:b6:96:22:27:e4:1b:e5:c5: df:45:2d:6b:e9:85:c9:39:40:76:40:0b:8b:2c:c3: 77:32:a5:89:c8:9a:36:46:7b:c6:d4:67:73:dd:73: bf:02:85:be:39:7d:5f:16:25:0a:00:76:e9:65:c9: 79:09:4c:b7:c1:68:f1:96:08:b3:5c:b2:37:d8:e9: 5a:1d:62:45:3b:c3:1f:bf:3e:8f:9d:26:70:0f:96: 5b:48:90:94:d7:84:65:fc:ac:e4:bd:20:a0:0d:ca: 3f:49:b2:ef:d6:48:92:6c:2f:42:c2:ef:cf:0b:eb: 3f:dd:9a:9c:26:5d:77:36:42:69:ce:52:be:35:7e: d5:4e:d6:c7:45:44:d5:a3:2d:b0:00:88:6c:51:16: 3e:a7:14:bb:15:c5:74:45:89:f7:3f:ff:dd:12:f0: ce:46:00:24:da:2b:a0:df:41:d7:d3:1b:cb:86:68: 53:b1:1b:f9:68:03:78:f9:51:42:2a:d9:7f:30:df: 00:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DE:B9:D1:54:AA:F4:BA:34:75:80:A9:72:00:40:95:F5:5B:55:01 X509v3 Authority Key Identifier: keyid:A9:F7:B9:3E:95:24:FC:4F:16:81:A8:92:C4:73:22:15:54:22:B1:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/qfe5PpUk_E8WgaiSxHMiFVQisY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfe5PpUk_E8WgaiSxHMiFVQisY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/EFE689283FDE11EE8EC3E546C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.60.0/24 Signature Algorithm: sha256WithRSAEncryption b1:bc:3d:9b:da:d1:f9:a8:8f:3e:a0:53:8e:d7:9e:51:94:24: da:55:94:65:f0:c7:35:3b:c6:9d:13:13:e1:24:ca:eb:9c:d8: a3:88:fc:43:84:32:c4:93:71:ce:97:b8:11:97:ee:8f:1f:45: 92:06:af:33:45:06:25:ad:31:79:d8:17:8b:e9:be:97:28:52: 6c:ac:47:f2:f4:b4:3c:61:96:9e:75:db:f6:0c:8a:2b:38:21: 85:8d:40:97:51:cc:9a:9b:42:6a:83:3c:ff:6f:17:ab:20:ed: fa:c5:fa:c3:8d:b3:b4:86:34:88:72:b5:ee:f6:3e:90:44:28: 2c:b8:e0:72:17:30:5c:ea:13:3d:d9:60:2c:39:ff:2f:2b:3b: e6:76:40:e6:89:cc:50:4e:f5:f4:59:9a:45:43:fa:89:bf:5e: ca:8a:22:e0:1f:44:27:46:fc:5a:15:f6:a8:ad:69:e1:07:5a: d9:11:e3:f1:0b:5c:70:ac:84:17:ca:aa:9c:01:f1:6b:b1:44: af:b5:c2:90:56:a5:48:e3:7b:76:61:57:70:51:ec:f8:52:d8: 9e:bf:e9:f1:1c:c5:c0:fc:92:24:03:71:1a:a7:85:c1:b8:1a: ef:29:27:82:a5:09:21:85:20:5d:ab:8c:d3:2a:da:19:c8:f7: 2b:37:57:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY5RkIxMTAvBgNVBAUTKEE5RjdCOTNFOTUyNEZDNEYxNjgxQTg5MkM0NzMyMjE1 NTQyMkIxOEUwHhcNMjQwMzAyMjIwMDE5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzYTE3My1jYTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAok3kfG5cYlQ4xo/c2wgCYJKXJUV67wYo1hpCJhGfywrQkpDzrtMIBameJ2Cf CUEFWBDKop82zr/c6rZNw1bwon2ctpYiJ+Qb5cXfRS1r6YXJOUB2QAuLLMN3MqWJ yJo2RnvG1Gdz3XO/AoW+OX1fFiUKAHbpZcl5CUy3wWjxlgizXLI32OlaHWJFO8Mf vz6PnSZwD5ZbSJCU14Rl/KzkvSCgDco/SbLv1kiSbC9Cwu/PC+s/3ZqcJl13NkJp zlK+NX7VTtbHRUTVoy2wAIhsURY+pxS7FcV0RYn3P//dEvDORgAk2iug30HX0xvL hmhTsRv5aAN4+VFCKtl/MN8A6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOHeudFU qvS6NHWAqXIAQJX1W1UBMB8GA1UdIwQYMBaAFKn3uT6VJPxPFoGoksRzIhVUIrGO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjlGQi8yMEFENDgzNEJG MzcxMUVBQTNFM0EzNkZDNEY5QUUwMi9xZmU1UHBVa19FOFdnYWlTeEhNaUZWUWlz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FmZTVQcFVrX0U4V2dhaVN4SE1pRlZRaXNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY5RkIvMjBBRDQ4MzRCRjM3MTFFQUEzRTNBMzZGQzRGOUFFMDIvRUZFNjg5Mjgz RkRFMTFFRThFQzNFNTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnBjwwDQYJKoZIhvcNAQELBQADggEBALG8PZva0fmojz6g U47XnlGUJNpVlGXwxzU7xp0TE+Ekyuuc2KOI/EOEMsSTcc6XuBGX7o8fRZIGrzNF BiWtMXnYF4vpvpcoUmysR/L0tDxhlp512/YMiis4IYWNQJdRzJqbQmqDPP9vF6sg 7frF+sONs7SGNIhyte72PpBEKCy44HIXMFzqEz3ZYCw5/y8rO+Z2QOaJzFBO9fRZ mkVD+om/XsqKIuAfRCdG/FoV9qitaeEHWtkR4/ELXHCshBfKqpwB8WuxRK+1wpBW pUjje3ZhV3BR7PhS2J6/6fEcxcD8kiQDcRqnhcG4Gu8pJ4KlCSGFIF2rjNMq2hnI 9ys3V7w= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:36 2024 by rpki-client on console-fra.rpki-client.org