$ rpki-client -vvf rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/274C6AEA11F811EFAE75044FC4F9AE02.roa File: 274C6AEA11F811EFAE75044FC4F9AE02.roa (raw, json) Hash identifier: kAoCwtSL8DYNhEnCxiYeyq+03pY+E8NsD8+lYLcvbO4= Subject key identifier: 61:97:96:D9:1B:76:6F:16:7D:06:AB:D6:59:EA:21:B5:10:3E:B7:67 Certificate issuer: /CN=A911B6FB/serialNumber=AD234E3F1EBBADAD019FE09AFFF70E8075AFDE17 Certificate serial: 02 Authority key identifier: AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/274C6AEA11F811EFAE75044FC4F9AE02.roa Signing time: Tue 14 May 2024 13:44:58 +0000 ROA not before: Tue 14 May 2024 13:44:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152479 IP address blocks: 103.158.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.crl rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B6FB/serialNumber=AD234E3F1EBBADAD019FE09AFFF70E8075AFDE17 Validity Not Before: May 14 13:44:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66436ada-6aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a5:bc:ca:46:7f:9b:57:b3:c3:bb:c3:23:3e: 0e:19:b4:72:1c:73:88:f3:1e:c4:63:94:d5:e2:d4: 9f:2f:c8:b6:43:55:bc:f8:ba:45:04:6f:2e:39:6a: 79:61:94:58:44:74:1d:6c:a1:f4:e8:3b:7b:3e:04: 37:5b:1c:2e:39:f9:e5:aa:b3:82:0f:0d:04:c6:c5: 1b:04:a0:94:72:a0:04:1c:2e:8c:d5:c0:07:2d:94: 3b:c3:68:bb:79:e0:3a:6a:13:ed:30:a8:55:bb:61: 2b:ee:9e:2e:97:d5:48:67:22:4e:a1:96:b1:7a:d5: a8:cf:9e:90:0b:64:f5:de:ea:35:81:e8:7a:74:08: 3d:a4:b5:2e:1a:39:cf:25:24:87:ac:5d:d3:79:ba: 02:70:b7:77:26:47:0d:40:c4:bf:27:7f:af:84:ad: 5f:5f:a7:6f:99:7d:4d:c4:c8:98:9a:7c:94:50:15: 96:65:2d:54:67:22:6f:a2:ef:df:0e:b3:eb:09:37: 66:84:39:01:12:49:a3:ea:2f:ac:3f:3b:be:39:db: f5:16:1c:1a:47:3a:b6:11:76:4e:52:d0:00:ea:cb: 60:e2:a1:13:b9:31:50:3f:16:61:e8:01:c2:d9:56: cf:30:a9:6f:4e:2f:bb:59:a7:54:3c:d8:9d:24:66: df:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:97:96:D9:1B:76:6F:16:7D:06:AB:D6:59:EA:21:B5:10:3E:B7:67 X509v3 Authority Key Identifier: keyid:AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/274C6AEA11F811EFAE75044FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.118.0/23 Signature Algorithm: sha256WithRSAEncryption 25:91:2b:4b:63:01:3e:99:ad:4c:e1:e8:75:2f:98:06:59:cc: 41:50:bc:8d:d9:e6:1f:c0:3a:b5:aa:87:f7:f3:c3:9e:23:d9: 24:f9:a4:22:fc:9c:44:a5:d7:5f:96:fa:9f:9e:31:3c:32:a1: ea:07:bf:9b:d2:30:95:a9:5c:35:fd:16:b5:96:a0:28:20:58: 88:6e:c5:5f:2a:91:18:e5:23:57:88:9e:b1:df:4e:51:72:06: 9b:3f:a4:97:ac:6b:80:a7:3b:d0:e1:e5:38:bd:51:a4:59:49: 27:02:a8:b7:9a:15:3c:43:15:c4:3a:30:fb:9d:fe:30:da:41: 27:e1:1d:fd:ca:aa:c8:5c:95:21:51:7c:79:e4:48:3c:28:ac: 02:3b:ef:74:22:24:11:c9:af:b0:89:a6:f5:30:4f:ae:ab:85: d5:6c:90:de:5b:99:83:14:87:72:2a:a8:80:3e:60:ac:26:b5: 3d:92:82:16:6c:04:99:e5:52:51:66:88:68:79:9b:bd:30:a4: 0d:69:fb:7a:85:cc:8e:d6:fb:ae:81:8a:55:0c:1a:4d:7e:19: c9:d7:02:cf:c2:13:ff:d7:52:ea:49:06:08:9c:48:95:c0:0c: c5:39:84:6d:ab:9d:6a:14:e0:98:25:dc:91:ba:d8:8a:99:dd: 85:0c:84:23 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QjZGQjExMC8GA1UEBRMoQUQyMzRFM0YxRUJCQURBRDAxOUZFMDlBRkZGNzBFODA3 NUFGREUxNzAeFw0yNDA1MTQxMzQ0NThaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDM2YWRhLTZhYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgpbzKRn+bV7PDu8MjPg4ZtHIcc4jzHsRjlNXi1J8vyLZDVbz4ukUEby45anlh lFhEdB1sofToO3s+BDdbHC45+eWqs4IPDQTGxRsEoJRyoAQcLozVwActlDvDaLt5 4DpqE+0wqFW7YSvuni6X1UhnIk6hlrF61ajPnpALZPXe6jWB6Hp0CD2ktS4aOc8l JIesXdN5ugJwt3cmRw1AxL8nf6+ErV9fp2+ZfU3EyJiafJRQFZZlLVRnIm+i798O s+sJN2aEOQESSaPqL6w/O7452/UWHBpHOrYRdk5S0ADqy2DioRO5MVA/FmHoAcLZ Vs8wqW9OL7tZp1Q82J0kZt/tAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYZeW2Rt2 bxZ9BqvWWeohtRA+t2cwHwYDVR0jBBgwFoAUrSNOPx67ra0Bn+Ca//cOgHWv3hcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCNkZCL0Q5Q0M5RURFMTFG NzExRUY5M0JEOTQ0RUM0RjlBRTAyL3JTTk9QeDY3cmEwQm4tQ2FfX2NPZ0hXdjNo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclNOT1B4NjdyYTBCbi1DYV9fY09nSFd2M2hjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjZGQi9EOUNDOUVERTExRjcxMUVGOTNCRDk0NEVDNEY5QUUwMi8yNzRDNkFFQTEx RjgxMUVGQUU3NTA0NEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeedjANBgkqhkiG9w0BAQsFAAOCAQEAJZErS2MBPpmtTOHo dS+YBlnMQVC8jdnmH8A6taqH9/PDniPZJPmkIvycRKXXX5b6n54xPDKh6ge/m9Iw lalcNf0WtZagKCBYiG7FXyqRGOUjV4iesd9OUXIGmz+kl6xrgKc70OHlOL1RpFlJ JwKot5oVPEMVxDow+53+MNpBJ+Ed/cqqyFyVIVF8eeRIPCisAjvvdCIkEcmvsImm 9TBPrquF1WyQ3luZgxSHciqogD5grCa1PZKCFmwEmeVSUWaIaHmbvTCkDWn7eoXM jtb7roGKVQwaTX4ZydcCz8IT/9dS6kkGCJxIlcAMxTmEbaudahTgmCXckbrYipnd hQyEIw== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:25 2024 by rpki-client on console-fra.rpki-client.org