$ rpki-client -vvf rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/683CDAD0B4C411EE8F1E5D85C4F9AE02.roa File: 683CDAD0B4C411EE8F1E5D85C4F9AE02.roa (raw, json) Hash identifier: jpOm+AzzM4Yjd+hxm5Xa0uKGQEaJYO441Q/17W+FFzA= Subject key identifier: 04:45:D9:41:62:6F:0A:DD:8A:CA:82:D1:25:52:0A:B7:79:5A:79:A5 Certificate issuer: /CN=A9127733/serialNumber=4275515200B039672AFA0E85877D4E3FE70D89D7 Certificate serial: 06B8 Authority key identifier: 42:75:51:52:00:B0:39:67:2A:FA:0E:85:87:7D:4E:3F:E7:0D:89:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/683CDAD0B4C411EE8F1E5D85C4F9AE02.roa Signing time: Wed 06 Nov 2024 22:00:33 +0000 ROA not before: Wed 06 Nov 2024 22:00:33 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 6206 IP address blocks: 103.101.0.0/22 maxlen: 24 2401:c740::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.crl rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127733/serialNumber=4275515200B039672AFA0E85877D4E3FE70D89D7 Validity Not Before: Nov 6 22:00:33 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672be700-e905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:94:9f:07:be:6c:a7:d0:3c:2b:68:b2:b7:7a: 84:e5:b2:ab:2f:ce:fd:ac:54:39:71:3c:f0:9b:ff: 81:c7:6d:1c:36:e4:0d:4b:6f:71:75:4c:ed:66:48: 6c:16:f8:79:8f:59:d7:4a:ea:39:e1:8c:50:ae:e9: ee:b5:7a:6d:d8:fe:32:0a:f7:72:7d:b1:0a:3f:50: 7f:91:7b:a7:8d:a4:a5:9b:8a:61:b6:ce:37:67:aa: 86:43:21:ea:d9:ca:c7:1d:20:f7:ef:39:83:e3:8c: ac:10:fb:bb:3a:09:16:ef:13:2e:ec:35:d7:cb:89: 18:bb:9d:43:97:88:73:1e:94:f1:6b:2a:d3:87:88: dd:eb:19:86:68:a3:2e:e3:ed:59:d3:ca:f8:fd:4b: c1:81:f4:ad:4c:a5:00:1f:45:65:25:a1:6f:6a:f6: 0d:68:88:46:f0:85:7a:6d:1f:05:e5:59:ec:3e:f5: 5b:a7:47:f3:b0:a2:a3:ad:c6:fb:65:8c:87:f8:d1: bb:3e:ad:59:4e:49:42:40:ea:23:09:ec:3d:b5:c0: 0b:34:8d:f9:0e:a1:37:6b:a1:97:38:27:18:5e:3e: 94:11:04:7d:c4:01:b0:20:a4:07:fe:c5:c9:7a:75: 47:b9:64:ad:3a:15:f3:09:4b:f6:94:c4:84:ed:2c: 7c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:45:D9:41:62:6F:0A:DD:8A:CA:82:D1:25:52:0A:B7:79:5A:79:A5 X509v3 Authority Key Identifier: keyid:42:75:51:52:00:B0:39:67:2A:FA:0E:85:87:7D:4E:3F:E7:0D:89:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/683CDAD0B4C411EE8F1E5D85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.0.0/22 IPv6: 2401:c740::/32 Signature Algorithm: sha256WithRSAEncryption 2b:4d:05:b3:d5:36:38:03:06:44:6c:c9:f4:76:52:6c:3a:a0: 66:df:6b:bf:15:b7:7b:0d:f4:8f:01:e2:ac:38:35:fa:93:fb: b4:ca:b0:f0:89:5c:ac:f9:54:ea:3a:40:99:2f:23:45:c3:81: 99:76:52:ec:c1:ec:8f:6f:cd:2a:e2:7d:9e:22:36:d9:32:98: 57:18:3f:2d:2f:41:3a:3a:3a:1d:44:a6:b7:85:57:1a:da:a8: 98:d8:e5:73:ee:da:cc:a1:65:f9:be:bd:90:35:6c:c2:8d:71: e7:d2:00:16:ac:eb:f3:9e:8f:01:86:ef:f4:d8:14:4f:04:e3: 47:fd:1a:cc:1b:b9:fa:00:04:cd:c4:e7:c0:65:3e:31:d6:d2: c8:4a:57:a7:27:ea:45:96:63:50:54:2e:71:98:7a:ea:82:8a: 38:60:f9:27:db:6d:7e:d8:2e:f1:2e:af:2f:42:d0:6e:ab:93: 2f:3d:f4:8c:03:98:ad:18:4d:bd:d9:b1:af:7d:3e:86:df:da: 6c:cf:8b:3e:88:bd:2a:24:14:81:cd:c4:d4:51:c6:aa:75:eb: e7:a5:3a:7b:b9:6f:f4:c7:b2:ba:01:2e:eb:ab:44:6d:57:c4: 81:64:f3:f7:e7:cc:73:90:57:5a:27:34:6f:3b:55:6f:71:42: 14:c9:00:78 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc3MzMxMTAvBgNVBAUTKDQyNzU1MTUyMDBCMDM5NjcyQUZBMEU4NTg3N0Q0RTNG RTcwRDg5RDcwHhcNMjQxMTA2MjIwMDMzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZTcwMC1lOTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5SfB75sp9A8K2iyt3qE5bKrL879rFQ5cTzwm/+Bx20cNuQNS29xdUztZkhs Fvh5j1nXSuo54YxQrunutXpt2P4yCvdyfbEKP1B/kXunjaSlm4phts43Z6qGQyHq 2crHHSD37zmD44ysEPu7OgkW7xMu7DXXy4kYu51Dl4hzHpTxayrTh4jd6xmGaKMu 4+1Z08r4/UvBgfStTKUAH0VlJaFvavYNaIhG8IV6bR8F5VnsPvVbp0fzsKKjrcb7 ZYyH+NG7Pq1ZTklCQOojCew9tcALNI35DqE3a6GXOCcYXj6UEQR9xAGwIKQH/sXJ enVHuWStOhXzCUv2lMSE7Sx8xQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFARF2UFi bwrdisqC0SVSCrd5WnmlMB8GA1UdIwQYMBaAFEJ1UVIAsDlnKvoOhYd9Tj/nDYnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzczMy9BRERDM0IzRTQ1 OEQxMUVCQTM5QUM3NDBDNEY5QUUwMi9RblZSVWdDd09XY3EtZzZGaDMxT1AtY05p ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FuVlJVZ0N3T1djcS1nNkZoMzFPUC1jTmlkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc3MzMvQUREQzNCM0U0NThEMTFFQkEzOUFDNzQwQzRGOUFFMDIvNjgzQ0RBRDBC NEM0MTFFRThGMUU1RDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZQAwDQQCAAIwBwMFACQBx0AwDQYJKoZIhvcNAQELBQAD ggEBACtNBbPVNjgDBkRsyfR2Umw6oGbfa78Vt3sN9I8B4qw4NfqT+7TKsPCJXKz5 VOo6QJkvI0XDgZl2UuzB7I9vzSrifZ4iNtkymFcYPy0vQTo6Oh1EpreFVxraqJjY 5XPu2syhZfm+vZA1bMKNcefSABas6/OejwGG7/TYFE8E40f9GswbufoABM3E58Bl PjHW0shKV6cn6kWWY1BULnGYeuqCijhg+SfbbX7YLvEury9C0G6rky899IwDmK0Y Tb3Zsa99Pobf2mzPiz6IvSokFIHNxNRRxqp16+elOnu5b/THsroBLuurRG1XxIFk 8/fnzHOQV1onNG87VW9xQhTJAHg= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org