$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/6D610A58F23711EEA11AA759C4F9AE02.roa File: 6D610A58F23711EEA11AA759C4F9AE02.roa (raw, json) Hash identifier: JP9Pvfyfa3vW7gxEOqKzfjawNJzZLQs3btJhigzzzxQ= Subject key identifier: 4C:EF:68:09:D2:FB:B1:29:70:C8:72:16:BF:65:1D:DA:B0:3A:68:BF Certificate issuer: /CN=A9122D51/serialNumber=C4C67EBB6B2DDC6924BBB9655E7E0F8218530C65 Certificate serial: 32 Authority key identifier: C4:C6:7E:BB:6B:2D:DC:69:24:BB:B9:65:5E:7E:0F:82:18:53:0C:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/6D610A58F23711EEA11AA759C4F9AE02.roa Signing time: Fri 05 Jul 2024 07:28:29 +0000 ROA not before: Fri 05 Jul 2024 07:28:29 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136900 IP address blocks: 103.190.18.0/24 maxlen: 24 103.190.19.0/24 maxlen: 24 2400:8ba0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.crl rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D51/serialNumber=C4C67EBB6B2DDC6924BBB9655E7E0F8218530C65 Validity Not Before: Jul 5 07:28:29 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6687a09c-add5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:46:04:23:e9:8e:0e:89:0b:7c:30:17:66:c8: e1:d8:43:f6:0c:8d:85:66:12:05:42:75:75:49:7c: 42:fb:e2:ff:fc:29:68:46:20:09:1e:79:2a:bc:63: 54:af:90:d4:83:82:94:38:0f:08:d9:f7:4b:de:fb: e1:03:b2:8b:ca:cb:68:84:4e:62:c8:e5:76:55:e9: 07:b8:4c:41:a2:cc:e6:87:c6:a3:a5:be:da:c8:8b: 02:f3:30:ea:29:7f:62:82:24:c9:52:ae:5e:9c:bf: e4:41:1a:ed:f6:83:c1:34:a0:7a:ac:c1:31:8c:b2: a9:1d:d6:80:fe:52:fd:09:43:45:fb:93:32:33:c2: c2:bd:e6:60:3c:fa:5c:39:99:f4:7d:e2:f4:91:d4: 8d:27:17:e7:9d:62:34:e5:0e:c2:e9:7d:7c:f5:0e: 68:b2:ff:1d:8a:e7:e9:75:fc:65:09:4e:71:1b:1f: 1b:8e:57:f3:9b:de:2a:51:bd:78:71:e4:91:05:18: 0c:79:65:42:a2:b9:0e:f8:69:df:a3:75:7a:2b:39: ef:a8:e1:61:7a:76:98:b4:54:4f:8f:b9:d1:0f:61: 25:59:ae:98:39:bd:48:21:70:65:45:d0:fb:3f:7c: 59:ac:b0:2c:e2:b5:67:74:77:d1:af:1d:3b:0f:89: 13:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:EF:68:09:D2:FB:B1:29:70:C8:72:16:BF:65:1D:DA:B0:3A:68:BF X509v3 Authority Key Identifier: keyid:C4:C6:7E:BB:6B:2D:DC:69:24:BB:B9:65:5E:7E:0F:82:18:53:0C:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/6D610A58F23711EEA11AA759C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.18.0/23 IPv6: 2400:8ba0::/32 Signature Algorithm: sha256WithRSAEncryption 9c:59:07:10:36:ff:b6:78:d0:d4:23:5d:08:5e:41:92:59:91: 0f:98:af:15:5a:88:22:f3:7c:7d:d6:cb:ef:93:50:9e:7a:a8: 5b:37:3f:51:e9:2e:27:a3:e4:59:4f:34:c8:39:42:da:03:fd: a9:ac:f5:11:b6:a8:f6:73:4e:c1:89:2c:f4:4f:ff:7f:d5:d7: 1c:ff:21:7d:b1:67:97:8c:b2:7f:d4:d3:34:40:42:96:fb:51: 11:d9:b9:4d:d3:51:aa:ac:d6:f6:5d:42:fc:af:69:8a:c6:38: ca:c3:cb:81:1e:64:53:be:4b:6d:10:ab:19:39:88:6d:37:ad: 67:b3:cf:2f:ac:66:e9:8a:f7:3e:33:17:ff:9d:cd:bc:82:9b: 75:2c:f0:f9:74:07:65:33:8f:4b:4c:42:84:52:cd:c5:87:97: 8a:fe:6c:29:25:19:e6:d5:79:b4:d1:f9:39:20:6c:94:41:5e: 35:23:e2:91:67:48:88:1c:d5:74:1c:78:42:f9:10:9d:cc:f0: 2e:a4:95:90:80:e0:ff:b7:8d:ac:a8:6d:14:df:46:1d:29:8d: 3f:ac:7b:92:0c:94:86:09:9c:3a:a7:80:f1:85:4f:df:7b:3e: 00:9e:a5:b1:af:a9:36:bc:df:f3:b8:73:62:3d:35:a5:32:5d: ce:20:18:23 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MkQ1MTExMC8GA1UEBRMoQzRDNjdFQkI2QjJEREM2OTI0QkJCOTY1NUU3RTBGODIx ODUzMEM2NTAeFw0yNDA3MDUwNzI4MjlaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODdhMDljLWFkZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVRgQj6Y4OiQt8MBdmyOHYQ/YMjYVmEgVCdXVJfEL74v/8KWhGIAkeeSq8Y1Sv kNSDgpQ4DwjZ90ve++EDsovKy2iETmLI5XZV6Qe4TEGizOaHxqOlvtrIiwLzMOop f2KCJMlSrl6cv+RBGu32g8E0oHqswTGMsqkd1oD+Uv0JQ0X7kzIzwsK95mA8+lw5 mfR94vSR1I0nF+edYjTlDsLpfXz1Dmiy/x2K5+l1/GUJTnEbHxuOV/Ob3ipRvXhx 5JEFGAx5ZUKiuQ74ad+jdXorOe+o4WF6dpi0VE+PudEPYSVZrpg5vUghcGVF0Ps/ fFmssCzitWd0d9GvHTsPiRNbAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUTO9oCdL7 sSlwyHIWv2Ud2rA6aL8wHwYDVR0jBBgwFoAUxMZ+u2st3Gkku7llXn4PghhTDGUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyRDUxL0VBRTVGQ0FBRjIz NjExRUU4QzhCOTc1OEM0RjlBRTAyL3hNWi11MnN0M0dra3U3bGxYbjRQZ2hoVERH VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveE1aLXUyc3QzR2trdTdsbFhuNFBnaGhUREdVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ1MS9FQUU1RkNBQUYyMzYxMUVFOEM4Qjk3NThDNEY5QUUwMi82RDYxMEE1OEYy MzcxMUVFQTExQUE3NTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWe+EjANBAIAAjAHAwUAJACLoDANBgkqhkiG9w0BAQsFAAOC AQEAnFkHEDb/tnjQ1CNdCF5BklmRD5ivFVqIIvN8fdbL75NQnnqoWzc/UekuJ6Pk WU80yDlC2gP9qaz1Ebao9nNOwYks9E//f9XXHP8hfbFnl4yyf9TTNEBClvtREdm5 TdNRqqzW9l1C/K9pisY4ysPLgR5kU75LbRCrGTmIbTetZ7PPL6xm6Yr3PjMX/53N vIKbdSzw+XQHZTOPS0xChFLNxYeXiv5sKSUZ5tV5tNH5OSBslEFeNSPikWdIiBzV dBx4QvkQnczwLqSVkIDg/7eNrKhtFN9GHSmNP6x7kgyUhgmcOqeA8YVP33s+AJ6l sa+pNrzf87hzYj01pTJdziAYIw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:22 2024 by rpki-client on console-fra.rpki-client.org