$ rpki-client -vvf rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/6FC4A52C0E9611EF8B4CB827C4F9AE02.roa File: 6FC4A52C0E9611EF8B4CB827C4F9AE02.roa (raw, json) Hash identifier: nHcMgveoHAwIifxJIS7PevVsDeef3KJmiIvXrtXar+Y= Subject key identifier: 72:6F:B3:8B:E0:D2:11:17:77:58:77:49:78:0A:9B:C8:1E:58:4C:05 Certificate issuer: /CN=A9118A69/serialNumber=350731B66044D34A3D2DA7589BD8331D145FE498 Certificate serial: 03 Authority key identifier: 35:07:31:B6:60:44:D3:4A:3D:2D:A7:58:9B:D8:33:1D:14:5F:E4:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQcxtmBE00o9LadYm9gzHRRf5Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/6FC4A52C0E9611EF8B4CB827C4F9AE02.roa Signing time: Fri 10 May 2024 06:27:55 +0000 ROA not before: Fri 10 May 2024 06:27:55 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 0 IP address blocks: 103.142.153.0/24 maxlen: 24 2001:def:c001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/NQcxtmBE00o9LadYm9gzHRRf5Jg.crl rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/NQcxtmBE00o9LadYm9gzHRRf5Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQcxtmBE00o9LadYm9gzHRRf5Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118A69/serialNumber=350731B66044D34A3D2DA7589BD8331D145FE498 Validity Not Before: May 10 06:27:55 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=663dbe6b-61e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c7:be:f9:69:64:48:88:2e:94:27:ba:39:87: 09:e3:e1:59:f8:94:ec:12:75:e7:c9:5e:2c:50:54: a0:3d:9a:da:9a:9d:fd:1c:80:4b:a4:0a:9e:9f:87: fb:ca:c3:ff:19:c1:9a:bc:fb:60:91:13:be:44:3e: 1b:d3:bf:38:bd:50:d6:c1:9d:cb:21:90:42:b5:11: 79:a7:e9:02:64:cf:17:81:02:23:70:e7:e5:ad:eb: 98:37:5f:cd:b3:3f:92:d7:b0:ec:d1:21:6d:e2:21: 40:ff:99:a1:ef:73:f8:e7:3f:96:c0:1c:b3:4a:26: 29:28:44:23:2c:26:c1:72:3e:5d:30:cc:44:02:ba: a8:19:52:5b:06:22:94:7e:38:3a:f4:5b:95:1b:5c: ef:f0:62:db:08:05:77:63:f5:fc:3d:63:70:d8:a3: 55:d4:b3:b7:16:73:12:3d:09:6a:ba:51:8b:d0:c6: b8:c4:28:4a:d4:7f:15:f3:15:07:ba:a5:3c:f0:f8: c0:34:fb:d8:1b:b2:32:5f:50:3d:4d:c2:71:ae:11: d5:4d:69:00:c7:da:a1:40:2e:68:22:3f:9b:eb:98: 1b:14:0e:c2:9d:93:97:ea:77:2f:95:89:57:51:98: 70:23:a8:a6:f5:3c:99:81:1d:a8:a7:93:9a:53:ba: ac:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:6F:B3:8B:E0:D2:11:17:77:58:77:49:78:0A:9B:C8:1E:58:4C:05 X509v3 Authority Key Identifier: keyid:35:07:31:B6:60:44:D3:4A:3D:2D:A7:58:9B:D8:33:1D:14:5F:E4:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/NQcxtmBE00o9LadYm9gzHRRf5Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQcxtmBE00o9LadYm9gzHRRf5Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/6FC4A52C0E9611EF8B4CB827C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.153.0/24 IPv6: 2001:def:c001::/48 Signature Algorithm: sha256WithRSAEncryption 6c:e6:41:7a:2c:cb:2c:b9:1b:d3:17:55:aa:61:d5:d7:5e:58: 02:98:f6:08:55:c1:9f:f1:49:7d:d4:78:b2:06:c2:e9:ed:1a: 49:a4:e5:6f:30:95:73:ab:fc:f7:dc:c7:65:6d:b4:80:94:f7: 76:57:3b:60:72:c4:18:14:4a:88:f8:59:bb:1a:f8:d8:b2:34: 36:9a:ec:a8:70:3a:08:f2:ab:c1:74:e4:6c:7f:1d:71:16:f5: f0:d1:66:3d:f6:13:b8:e9:0d:0f:43:49:d4:20:f7:f5:2e:03: e1:30:2e:1a:14:14:2b:b4:7e:66:93:4d:46:06:03:2a:54:18: 01:75:6b:c6:0c:46:77:11:b0:7a:1a:c9:3c:96:f9:9d:c2:1a: be:6a:56:d0:66:d8:98:d1:a2:bb:b5:f6:f7:f7:80:8a:a6:35: 82:1d:33:74:db:8c:c4:b7:11:5f:9a:13:3c:d4:64:c9:0f:52: 82:f7:dc:3c:f8:5d:38:8e:62:aa:7a:7f:93:01:25:36:18:f6: 84:7c:01:2a:21:7c:07:23:7f:4d:e4:1d:95:b6:62:cf:8c:36: c4:70:a5:6f:00:b0:de:6e:0c:9b:dc:f0:2d:eb:68:fb:e6:ec: 0a:b4:da:9f:cf:04:73:15:07:ea:4f:c5:3a:fc:02:08:3c:fe: a4:74:9e:9a -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OEE2OTExMC8GA1UEBRMoMzUwNzMxQjY2MDQ0RDM0QTNEMkRBNzU4OUJEODMzMUQx NDVGRTQ5ODAeFw0yNDA1MTAwNjI3NTVaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2RiZTZiLTYxZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+x775aWRIiC6UJ7o5hwnj4Vn4lOwSdefJXixQVKA9mtqanf0cgEukCp6fh/vK w/8ZwZq8+2CRE75EPhvTvzi9UNbBncshkEK1EXmn6QJkzxeBAiNw5+Wt65g3X82z P5LXsOzRIW3iIUD/maHvc/jnP5bAHLNKJikoRCMsJsFyPl0wzEQCuqgZUlsGIpR+ ODr0W5UbXO/wYtsIBXdj9fw9Y3DYo1XUs7cWcxI9CWq6UYvQxrjEKErUfxXzFQe6 pTzw+MA0+9gbsjJfUD1NwnGuEdVNaQDH2qFALmgiP5vrmBsUDsKdk5fqdy+ViVdR mHAjqKb1PJmBHaink5pTuqynAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUcm+zi+DS ERd3WHdJeAqbyB5YTAUwHwYDVR0jBBgwFoAUNQcxtmBE00o9LadYm9gzHRRf5Jgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4QTY5L0M2MjAxMUQ2MENF ODExRUY5RUZEQTMxQkM0RjlBRTAyL05RY3h0bUJFMDBvOUxhZFltOWd6SFJSZjVK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlFjeHRtQkUwMG85TGFkWW05Z3pIUlJmNUpnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEE2OS9DNjIwMTFENjBDRTgxMUVGOUVGREEzMUJDNEY5QUUwMi82RkM0QTUyQzBF OTYxMUVGOEI0Q0I4MjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeOmTAPBAIAAjAJAwcAIAEN78ABMA0GCSqGSIb3DQEBCwUA A4IBAQBs5kF6LMssuRvTF1WqYdXXXlgCmPYIVcGf8Ul91HiyBsLp7RpJpOVvMJVz q/z33MdlbbSAlPd2VztgcsQYFEqI+Fm7GvjYsjQ2muyocDoI8qvBdORsfx1xFvXw 0WY99hO46Q0PQ0nUIPf1LgPhMC4aFBQrtH5mk01GBgMqVBgBdWvGDEZ3EbB6Gsk8 lvmdwhq+albQZtiY0aK7tfb394CKpjWCHTN024zEtxFfmhM81GTJD1KC99w8+F04 jmKqen+TASU2GPaEfAEqIXwHI39N5B2VtmLPjDbEcKVvALDebgyb3PAt62j75uwK tNqfzwRzFQfqT8U6/AIIPP6kdJ6a -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:00 2024 by rpki-client on console-ams.rpki-client.org