$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/63B7CB76D0E511EA9916E053C4F9AE02.roa File: 63B7CB76D0E511EA9916E053C4F9AE02.roa (raw, json) Hash identifier: I3TylIitR1gs3qeVyLm/iGnBJAcsnmMydwLVLUYv63M= Subject key identifier: 83:6F:2A:B5:B7:8E:3C:23:84:E7:57:F9:EB:54:47:71:18:2F:84:5D Certificate issuer: /CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Certificate serial: 077F Authority key identifier: 82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/63B7CB76D0E511EA9916E053C4F9AE02.roa Signing time: Sun 16 Jun 2024 22:59:24 +0000 ROA not before: Sun 16 Jun 2024 22:59:24 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140659 IP address blocks: 103.151.116.0/23 maxlen: 24 2406:19c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Validity Not Before: Jun 16 22:59:24 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666f6e4c-7e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e5:bb:5e:a7:64:03:56:a4:f0:cd:1f:93:eb: 36:db:e2:07:a5:87:fa:f1:18:e4:c1:e2:4d:59:40: 13:bb:d9:34:34:6d:6d:d0:71:88:d5:87:6e:0d:8e: c9:a5:0d:da:c8:a8:4b:be:4f:4e:a1:71:94:b1:ff: 49:0a:12:21:40:b6:9a:89:5e:cd:43:c8:48:b9:3a: 0d:e4:6e:c8:82:aa:ec:b6:12:c1:f6:7b:e0:cd:cf: 05:a2:4f:7f:b7:7e:2e:6e:4f:95:56:76:c6:82:e7: 5b:be:af:7b:66:f8:8e:cb:db:c0:90:98:fe:e0:f9: 5a:fd:60:d6:63:80:39:f1:65:5b:cf:e6:4a:7c:a5: 43:f5:5e:56:e2:d8:ee:b6:47:fc:cd:36:47:37:02: 65:e2:39:f6:6b:d7:2f:31:31:e3:f4:7c:4c:03:6b: 21:08:c8:04:51:04:70:e8:91:f5:04:cf:2c:04:54: 17:35:46:79:9b:1a:85:be:48:1c:58:21:94:fe:2b: ab:76:00:63:1a:d8:3c:49:04:8b:f9:ff:e3:06:13: 5a:2a:0a:bd:d8:fa:0f:0c:8e:b6:6f:6c:0d:5f:a3: 04:f2:6b:5c:6c:1c:14:5f:4c:91:6a:66:49:9a:47: 7f:e0:a7:76:43:ca:fa:4c:da:43:2c:23:d5:ec:b0: a1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:6F:2A:B5:B7:8E:3C:23:84:E7:57:F9:EB:54:47:71:18:2F:84:5D X509v3 Authority Key Identifier: keyid:82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/63B7CB76D0E511EA9916E053C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.116.0/23 IPv6: 2406:19c0::/32 Signature Algorithm: sha256WithRSAEncryption 57:3a:3f:ba:81:a2:d7:96:c1:22:94:2e:62:b4:25:f8:08:38: 0a:82:6c:69:63:67:39:f7:aa:18:83:41:f5:3f:7c:9c:9f:32: d4:15:5c:ed:26:1d:01:bd:86:f4:4a:4e:50:bf:38:f7:f4:bb: 08:c4:76:a4:fc:04:73:46:66:14:ce:89:97:5c:73:63:1f:0a: c5:35:6e:7a:fb:a8:f2:ec:d2:08:36:25:b3:e0:63:91:c8:e7: b8:9d:55:65:56:57:90:f1:06:e2:9d:b0:57:7e:4f:af:45:09: d2:cb:f8:c8:c0:64:37:77:26:16:81:8b:73:fc:36:59:59:b5: b8:17:e1:49:31:8b:62:06:26:06:53:8f:ea:46:64:78:45:3e: c3:e3:71:ee:02:c8:7a:fc:91:f3:d9:ad:ec:a0:7f:bf:db:8b: a0:1a:32:25:e7:88:7c:08:dc:59:ab:f1:c3:73:87:af:9a:d7: ad:ba:b4:8a:80:b1:7a:ac:4d:da:25:ad:01:8a:f5:33:53:cd: f4:80:92:f7:67:4d:81:64:a6:be:35:4e:cd:b8:fd:3a:52:c8: 9c:73:ce:4a:ba:f6:95:2e:6d:b1:4b:20:5f:9b:2d:34:f4:a2: 1e:76:c8:61:31:82:bf:31:db:c2:00:a3:d1:63:75:ae:58:89: c6:9e:8f:50 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEIxMTAvBgNVBAUTKDgyMzZCQkNENzAyRDQ4MjJGRERENUJCMDU2NjBDRjEw MzhFQzhDN0UwHhcNMjQwNjE2MjI1OTI0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZmNmU0Yy03ZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+W7XqdkA1ak8M0fk+s22+IHpYf68RjkweJNWUATu9k0NG1t0HGI1YduDY7J pQ3ayKhLvk9OoXGUsf9JChIhQLaaiV7NQ8hIuToN5G7IgqrsthLB9nvgzc8Fok9/ t34ubk+VVnbGgudbvq97ZviOy9vAkJj+4Pla/WDWY4A58WVbz+ZKfKVD9V5W4tju tkf8zTZHNwJl4jn2a9cvMTHj9HxMA2shCMgEUQRw6JH1BM8sBFQXNUZ5mxqFvkgc WCGU/iurdgBjGtg8SQSL+f/jBhNaKgq92PoPDI62b2wNX6ME8mtcbBwUX0yRamZJ mkd/4Kd2Q8r6TNpDLCPV7LChSwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFINvKrW3 jjwjhOdX+etUR3EYL4RdMB8GA1UdIwQYMBaAFII2u81wLUgi/d1bsFZgzxA47Ix+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0Qi8yNEE2OEU5Q0Qw RTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFNDTDkzVnV3Vm1EUEVEanNq SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqYTd6WEF0U0NMOTNWdXdWbURQRURqc2pINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEIvMjRBNjhFOUNEMEUzMTFFQTlBNzNCOTRGQzRGOUFFMDIvNjNCN0NCNzZE MEU1MTFFQTk5MTZFMDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnl3QwDQQCAAIwBwMFACQGGcAwDQYJKoZIhvcNAQELBQAD ggEBAFc6P7qBoteWwSKULmK0JfgIOAqCbGljZzn3qhiDQfU/fJyfMtQVXO0mHQG9 hvRKTlC/OPf0uwjEdqT8BHNGZhTOiZdcc2MfCsU1bnr7qPLs0gg2JbPgY5HI57id VWVWV5DxBuKdsFd+T69FCdLL+MjAZDd3JhaBi3P8NllZtbgX4Ukxi2IGJgZTj+pG ZHhFPsPjce4CyHr8kfPZreygf7/bi6AaMiXniHwI3Fmr8cNzh6+a1626tIqAsXqs TdolrQGK9TNTzfSAkvdnTYFkpr41Ts24/TpSyJxzzkq69pUubbFLIF+bLTT0oh52 yGExgr8x28IAo9Fjda5Yicaej1A= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org