$ rpki-client -vvf rpki.apnic.net/member_repository/A912111B/3BD28F1A85F311EBA1042D80C4F9AE02/6D3057FC85F511EBB5C36F09C4F9AE02.roa File: 6D3057FC85F511EBB5C36F09C4F9AE02.roa (raw, json) Hash identifier: HJ5B1NeUHZuSr0dNR5r03BZuHl4ib3IbNLeDtkm6M04= Subject key identifier: 50:91:5B:29:A6:11:19:09:F7:5A:66:75:28:8B:9A:A9:C9:20:E7:F0 Certificate issuer: /CN=A912111B/serialNumber=19A805D026955683F3FEE563F8E6A0A278F0BF71 Certificate serial: 05DC Authority key identifier: 19:A8:05:D0:26:95:56:83:F3:FE:E5:63:F8:E6:A0:A2:78:F0:BF:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GagF0CaVVoPz_uVj-Oagonjwv3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912111B/3BD28F1A85F311EBA1042D80C4F9AE02/6D3057FC85F511EBB5C36F09C4F9AE02.roa Signing time: Fri 20 Sep 2024 23:12:38 +0000 ROA not before: Fri 20 Sep 2024 23:12:38 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141190 IP address blocks: 103.156.54.0/23 maxlen: 24 2406:7e40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912111B/3BD28F1A85F311EBA1042D80C4F9AE02/GagF0CaVVoPz_uVj-Oagonjwv3E.crl rsync://rpki.apnic.net/member_repository/A912111B/3BD28F1A85F311EBA1042D80C4F9AE02/GagF0CaVVoPz_uVj-Oagonjwv3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GagF0CaVVoPz_uVj-Oagonjwv3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1500 (0x5dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912111B/serialNumber=19A805D026955683F3FEE563F8E6A0A278F0BF71 Validity Not Before: Sep 20 23:12:38 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66ee0166-a652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f9:f7:6f:7e:d1:58:7f:be:ee:ed:a3:87:cf: f0:7e:31:a6:b1:69:e1:48:f4:27:bd:4c:cb:27:2d: af:8c:55:b1:9f:ae:d2:0b:a2:8a:bc:6a:60:fa:6f: 6c:cb:4b:4c:8c:00:a2:fc:03:36:f6:fc:2d:d4:2b: 0b:18:8a:87:8f:f8:bb:58:0f:fd:f8:44:b5:27:6e: 88:12:31:d3:ef:ba:ac:6a:72:f2:26:63:8d:56:19: 3f:e7:27:d5:8c:e5:87:05:fe:58:60:5a:16:3e:57: 5b:8c:d3:5d:79:9e:50:76:2b:95:c8:6f:02:93:ea: 62:51:23:99:4a:48:c1:86:6b:ff:7b:2a:99:38:79: 42:de:ff:60:e5:22:29:a5:4e:4c:12:da:09:db:4f: fc:be:3b:39:5a:72:f0:b0:5b:17:d3:51:79:69:9a: be:cc:31:eb:cb:e3:75:aa:8a:0f:4f:7c:5d:5b:3f: f2:b9:89:5a:cc:c0:f4:b4:36:7f:5c:52:9d:fc:48: e4:e3:94:e1:1f:e7:89:2d:b5:37:f6:70:47:fb:c7: cc:b4:ce:d2:5f:62:36:65:1d:bc:e5:fc:6c:a4:a0: f7:ea:45:55:a4:c8:f2:3d:80:14:f2:55:4c:c2:db: 3f:63:57:0e:87:56:01:b0:66:7c:4c:4e:4c:2e:f5: 8e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:91:5B:29:A6:11:19:09:F7:5A:66:75:28:8B:9A:A9:C9:20:E7:F0 X509v3 Authority Key Identifier: keyid:19:A8:05:D0:26:95:56:83:F3:FE:E5:63:F8:E6:A0:A2:78:F0:BF:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912111B/3BD28F1A85F311EBA1042D80C4F9AE02/GagF0CaVVoPz_uVj-Oagonjwv3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GagF0CaVVoPz_uVj-Oagonjwv3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912111B/3BD28F1A85F311EBA1042D80C4F9AE02/6D3057FC85F511EBB5C36F09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.54.0/23 IPv6: 2406:7e40::/32 Signature Algorithm: sha256WithRSAEncryption 5c:eb:08:cc:0e:69:e1:c6:dd:49:86:7d:8a:2f:19:93:ee:78: c1:3a:22:4e:d8:82:2e:51:33:7e:f7:67:0a:3a:43:f2:bc:06: 3e:65:90:9a:72:4b:a4:94:3f:b3:db:ca:13:72:ee:bc:36:2e: 0a:b6:37:af:d7:a0:71:3a:50:35:c5:ae:0d:37:2e:94:89:1a: 00:d9:f9:43:a1:ed:8a:88:ef:8e:9e:8c:ef:6f:46:9c:6d:b7: be:78:a4:c0:79:2f:69:bc:b4:6b:3e:40:cc:be:18:64:de:f9: d8:d9:b2:ee:36:59:fa:ea:36:e9:75:d6:4c:1c:0c:fb:1d:65: b8:4c:eb:21:43:64:f1:3f:7a:0b:c8:a6:ce:1b:3f:48:10:05: be:63:0a:6b:dc:7d:75:11:d2:42:d0:4c:f7:8f:a9:b2:4e:fb: ee:d4:d6:7d:d2:24:5d:a3:75:6e:af:e8:7b:6a:4c:55:d6:2f: 4f:8b:99:c9:57:46:73:61:56:8c:39:1d:47:94:7d:35:05:29: d6:50:fa:bd:e2:3e:07:96:ce:3d:bb:c8:5d:19:6f:3a:f8:37: 16:f8:8f:a3:5d:fc:89:1f:24:9e:8d:0e:00:d7:f4:b8:cc:07: 57:93:54:ce:79:f9:9d:bd:53:1c:05:a8:53:81:c7:08:24:0d: b7:57:c5:20 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExMUIxMTAvBgNVBAUTKDE5QTgwNUQwMjY5NTU2ODNGM0ZFRTU2M0Y4RTZBMEEy NzhGMEJGNzEwHhcNMjQwOTIwMjMxMjM4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVlMDE2Ni1hNjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/n3b37RWH++7u2jh8/wfjGmsWnhSPQnvUzLJy2vjFWxn67SC6KKvGpg+m9s y0tMjACi/AM29vwt1CsLGIqHj/i7WA/9+ES1J26IEjHT77qsanLyJmONVhk/5yfV jOWHBf5YYFoWPldbjNNdeZ5QdiuVyG8Ck+piUSOZSkjBhmv/eyqZOHlC3v9g5SIp pU5MEtoJ20/8vjs5WnLwsFsX01F5aZq+zDHry+N1qooPT3xdWz/yuYlazMD0tDZ/ XFKd/Ejk45ThH+eJLbU39nBH+8fMtM7SX2I2ZR285fxspKD36kVVpMjyPYAU8lVM wts/Y1cOh1YBsGZ8TE5MLvWOhwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFCRWymm ERkJ91pmdSiLmqnJIOfwMB8GA1UdIwQYMBaAFBmoBdAmlVaD8/7lY/jmoKJ48L9x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTExQi8zQkQyOEYxQTg1 RjMxMUVCQTEwNDJEODBDNEY5QUUwMi9HYWdGMENhVlZvUHpfdVZqLU9hZ29uand2 M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dhZ0YwQ2FWVm9Qel91VmotT2Fnb25qd3YzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjExMUIvM0JEMjhGMUE4NUYzMTFFQkExMDQyRDgwQzRGOUFFMDIvNkQzMDU3RkM4 NUY1MTFFQkI1QzM2RjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnnDYwDQQCAAIwBwMFACQGfkAwDQYJKoZIhvcNAQELBQAD ggEBAFzrCMwOaeHG3UmGfYovGZPueME6Ik7Ygi5RM373Zwo6Q/K8Bj5lkJpyS6SU P7PbyhNy7rw2Lgq2N6/XoHE6UDXFrg03LpSJGgDZ+UOh7YqI746ejO9vRpxtt754 pMB5L2m8tGs+QMy+GGTe+djZsu42WfrqNul11kwcDPsdZbhM6yFDZPE/egvIps4b P0gQBb5jCmvcfXUR0kLQTPePqbJO++7U1n3SJF2jdW6v6HtqTFXWL0+LmclXRnNh Vow5HUeUfTUFKdZQ+r3iPgeWzj27yF0Zbzr4Nxb4j6Nd/IkfJJ6NDgDX9LjMB1eT VM55+Z29UxwFqFOBxwgkDbdXxSA= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:43 2024 by rpki-client on console-fra.rpki-client.org