$ rpki-client -vvf rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/6AF8F822FDAB11EAAAB1FB37C4F9AE02.roa File: 6AF8F822FDAB11EAAAB1FB37C4F9AE02.roa (raw, json) Hash identifier: pS3E0icAhyYawyxkXSLUFbWuAzA0NV/jlalvE1DTh1U= Subject key identifier: D0:57:EC:83:1E:A8:74:A7:61:23:16:4C:2C:9E:4B:87:A9:B6:04:9D Certificate issuer: /CN=A9118166/serialNumber=C6D0067F24281CE1F49C90812D15B1F561B95DDE Certificate serial: 073F Authority key identifier: C6:D0:06:7F:24:28:1C:E1:F4:9C:90:81:2D:15:B1:F5:61:B9:5D:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/6AF8F822FDAB11EAAAB1FB37C4F9AE02.roa Signing time: Sun 06 Oct 2024 21:40:38 +0000 ROA not before: Sun 06 Oct 2024 21:40:38 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134518 IP address blocks: 43.246.132.0/22 maxlen: 22 43.246.132.0/23 maxlen: 23 43.246.134.0/23 maxlen: 23 103.194.236.0/22 maxlen: 22 2402:c680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.crl rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118166 Validity Not Before: Oct 6 21:40:38 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670303d5-dcd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:15:6c:37:19:41:3c:4e:c7:05:38:5b:44:45: 0f:b1:1b:51:58:0f:d4:73:cd:fa:6c:f9:97:d4:42: f0:40:3b:02:02:d4:4c:91:44:41:69:72:7a:53:6b: ed:bf:8e:84:b2:4c:16:f4:b8:ee:06:ca:e4:db:9c: ef:31:a2:f7:93:8e:c2:dd:7e:f3:bb:ba:f1:aa:1a: 13:02:66:f5:b2:e6:98:4a:7b:ec:88:e8:bb:46:32: 69:78:f0:c4:64:3a:76:64:18:78:42:5b:56:cc:35: b3:56:e6:be:f2:e1:d1:ad:91:49:4e:c4:68:dd:e8: 11:0c:6d:b0:a7:61:0b:a1:7f:62:36:72:36:d7:1f: a6:78:d9:a8:b1:f9:f6:6f:67:1f:c2:63:68:2d:f1: 87:24:6d:6f:3d:c8:6e:12:26:82:99:c1:80:44:c6: 43:e6:4e:aa:21:0d:66:68:64:04:e0:9f:f8:ae:87: da:4c:65:76:1d:aa:13:3c:a9:97:5d:20:ba:f4:72: 61:d4:e8:7a:07:2a:a9:7b:74:34:b8:70:1c:70:c5: d0:18:fe:16:63:d0:b5:eb:94:44:68:68:f9:d2:6d: 86:3a:41:18:57:f6:d0:15:95:1a:8d:cb:4a:24:77: ed:82:f8:05:c8:fb:ae:71:fb:38:2c:10:cc:8f:ad: c7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:57:EC:83:1E:A8:74:A7:61:23:16:4C:2C:9E:4B:87:A9:B6:04:9D X509v3 Authority Key Identifier: keyid:C6:D0:06:7F:24:28:1C:E1:F4:9C:90:81:2D:15:B1:F5:61:B9:5D:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/6AF8F822FDAB11EAAAB1FB37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.132.0/22 103.194.236.0/22 IPv6: 2402:c680::/32 Signature Algorithm: sha256WithRSAEncryption b6:cf:7d:32:bc:78:61:76:b9:37:b8:08:a1:51:27:69:a9:a9: 2f:ff:c5:6f:44:2e:b2:0f:bc:e3:da:3b:23:37:37:f4:49:22: 1c:0c:97:51:4d:dc:d6:86:8a:63:26:26:c2:4d:02:26:3c:40: 10:41:60:32:c7:2e:fa:2b:ed:f4:17:32:35:42:6d:6a:ad:83: 0a:70:4e:33:42:51:14:8f:b8:24:0a:1f:60:52:92:0d:81:5c: 52:4f:41:15:31:3b:16:7e:35:f8:67:7c:dc:e4:8d:48:05:38: 5d:53:7c:df:ac:a0:a7:c9:b9:cf:ea:0c:f4:59:6e:d8:ce:e5: f2:c5:5c:22:fc:57:0e:75:1f:8c:71:69:8a:00:e2:16:ac:ee: d5:06:92:2b:4d:b5:26:49:0e:5b:2f:4c:cc:12:d8:a4:a8:3b: 2c:00:eb:68:08:41:0d:0e:43:6a:b1:48:c1:be:0a:00:14:24: 51:b8:57:05:67:ad:83:aa:82:49:8b:bb:96:45:26:43:ae:2e: b4:fc:1e:fa:ed:3a:21:e3:88:cd:0d:43:6f:20:18:fd:7d:ad: 7f:8c:4f:ac:18:22:fe:57:b7:f9:fa:47:2d:59:27:e4:6c:50: 31:14:22:38:45:13:f9:c3:22:a6:3a:19:6a:37:f7:63:ed:d6: 93:30:5c:27 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgxNjYxMTAvBgNVBAUTKEM2RDAwNjdGMjQyODFDRTFGNDlDOTA4MTJEMTVCMUY1 NjFCOTVEREUwHhcNMjQxMDA2MjE0MDM4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAzMDNkNS1kY2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RVsNxlBPE7HBThbREUPsRtRWA/Uc836bPmX1ELwQDsCAtRMkURBaXJ6U2vt v46EskwW9LjuBsrk25zvMaL3k47C3X7zu7rxqhoTAmb1suaYSnvsiOi7RjJpePDE ZDp2ZBh4QltWzDWzVua+8uHRrZFJTsRo3egRDG2wp2ELoX9iNnI21x+meNmosfn2 b2cfwmNoLfGHJG1vPchuEiaCmcGARMZD5k6qIQ1maGQE4J/4rofaTGV2HaoTPKmX XSC69HJh1Oh6Byqpe3Q0uHAccMXQGP4WY9C165REaGj50m2GOkEYV/bQFZUajctK JHftgvgFyPuucfs4LBDMj63HewIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNBX7IMe qHSnYSMWTCyeS4eptgSdMB8GA1UdIwQYMBaAFMbQBn8kKBzh9JyQgS0VsfVhuV3e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODE2Ni8yOEMxRDAyMkZE ODkxMUVBOTQ2M0I2MzVDNEY5QUUwMi94dEFHZnlRb0hPSDBuSkNCTFJXeDlXRzVY ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h0QUdmeVFvSE9IMG5KQ0JMUld4OVdHNVhkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTgxNjYvMjhDMUQwMjJGRDg5MTFFQTk0NjNCNjM1QzRGOUFFMDIvNkFGOEY4MjJG REFCMTFFQUFBQjFGQjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr9oQDBAJnwuwwDQQCAAIwBwMFACQCxoAwDQYJKoZIhvcN AQELBQADggEBALbPfTK8eGF2uTe4CKFRJ2mpqS//xW9ELrIPvOPaOyM3N/RJIhwM l1FN3NaGimMmJsJNAiY8QBBBYDLHLvor7fQXMjVCbWqtgwpwTjNCURSPuCQKH2BS kg2BXFJPQRUxOxZ+NfhnfNzkjUgFOF1TfN+soKfJuc/qDPRZbtjO5fLFXCL8Vw51 H4xxaYoA4has7tUGkitNtSZJDlsvTMwS2KSoOywA62gIQQ0OQ2qxSMG+CgAUJFG4 VwVnrYOqgkmLu5ZFJkOuLrT8HvrtOiHjiM0NQ28gGP19rX+MT6wYIv5Xt/n6Ry1Z J+RsUDEUIjhFE/nDIqY6GWo392Pt1pMwXCc= -----END CERTIFICATE-----Generated at Mon Feb 17 07:12:07 2025 by rpki-client