$ rpki-client -vvf rpki.apnic.net/member_repository/A912E898/211C64468C2811E9B02BCD80C4F9AE02/6E37C53C72CA11EC8CE7244BC4F9AE02.roa File: 6E37C53C72CA11EC8CE7244BC4F9AE02.roa (raw, json) Hash identifier: DdiXy8+32tf/iVcw8XMbOe06PWpXsluYWlOEAuHOtIg= Subject key identifier: B9:F9:3C:45:B4:CB:8E:6D:3B:6A:76:B3:21:D5:FE:DD:5B:D4:64:BF Certificate issuer: /CN=A912E898/serialNumber=482DADB992DE2CF1BF990836478E19944995B1E0 Certificate serial: 0DB8 Authority key identifier: 48:2D:AD:B9:92:DE:2C:F1:BF:99:08:36:47:8E:19:94:49:95:B1:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC2tuZLeLPG_mQg2R44ZlEmVseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E898/211C64468C2811E9B02BCD80C4F9AE02/6E37C53C72CA11EC8CE7244BC4F9AE02.roa Signing time: Tue 30 Jan 2024 18:36:42 +0000 ROA not before: Tue 30 Jan 2024 18:36:42 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134715 IP address blocks: 103.133.216.0/22 maxlen: 24 2404:5540::/32 maxlen: 40 2404:5540:400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E898/211C64468C2811E9B02BCD80C4F9AE02/SC2tuZLeLPG_mQg2R44ZlEmVseA.crl rsync://rpki.apnic.net/member_repository/A912E898/211C64468C2811E9B02BCD80C4F9AE02/SC2tuZLeLPG_mQg2R44ZlEmVseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC2tuZLeLPG_mQg2R44ZlEmVseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3512 (0xdb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E898/serialNumber=482DADB992DE2CF1BF990836478E19944995B1E0 Validity Not Before: Jan 30 18:36:42 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b941ba-63b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3a:7a:7d:ae:10:fc:d3:72:cc:34:8b:80:55: 50:a7:77:ac:65:34:72:82:58:1a:20:cf:52:2d:55: 95:0d:c1:33:a7:35:22:13:28:0b:f0:3e:55:f5:f9: 2f:d6:1c:8d:23:31:9c:6c:ba:37:67:28:a5:8a:8a: 16:83:75:5e:ed:e2:f3:60:3b:8d:f2:70:27:8d:95: 1e:be:59:d7:97:e2:18:16:74:a4:be:19:36:3e:1f: 7a:a2:5d:75:de:60:6c:85:ce:c3:4a:04:91:33:8c: ef:95:e9:e9:64:48:7f:43:57:fc:9d:16:38:75:14: 26:ce:5a:18:bf:39:91:6f:05:78:43:91:37:2f:ee: 49:cf:d3:d8:df:b2:44:44:14:18:8e:0b:a9:15:56: f5:bd:02:51:04:09:b6:fb:ec:24:7b:c8:e4:e2:85: 22:1c:cb:2e:8a:3c:cd:e0:7c:8a:1d:27:93:09:1f: 7d:a5:39:db:22:44:6a:cf:9f:94:62:cc:58:ab:53: 97:af:71:b1:c1:7e:fe:27:a7:78:63:40:82:88:28: 32:64:ea:ae:64:36:93:10:82:fb:e0:66:f3:a4:d3: a8:0f:36:83:59:42:56:9d:a8:8e:8e:ce:57:3f:c5: 5a:54:05:7b:06:76:b4:ab:bb:d2:bb:27:b0:bb:cd: 5a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F9:3C:45:B4:CB:8E:6D:3B:6A:76:B3:21:D5:FE:DD:5B:D4:64:BF X509v3 Authority Key Identifier: keyid:48:2D:AD:B9:92:DE:2C:F1:BF:99:08:36:47:8E:19:94:49:95:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E898/211C64468C2811E9B02BCD80C4F9AE02/SC2tuZLeLPG_mQg2R44ZlEmVseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC2tuZLeLPG_mQg2R44ZlEmVseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E898/211C64468C2811E9B02BCD80C4F9AE02/6E37C53C72CA11EC8CE7244BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.216.0/22 IPv6: 2404:5540::/32 Signature Algorithm: sha256WithRSAEncryption 3e:7c:5a:17:5e:fb:21:11:c3:31:18:6a:d4:bd:12:2d:44:d7: 5b:be:73:88:26:ba:b6:93:fd:f1:90:3e:b1:27:41:73:10:d9: 23:89:4a:b6:93:1c:a7:bb:ac:74:24:ad:07:e5:b7:58:bc:4a: 88:43:54:a9:0d:4c:f3:ba:ad:d8:ab:78:f3:4f:d4:dc:8e:63: 36:c8:ac:09:b1:98:b3:77:02:96:07:79:ac:f8:5b:8d:bc:9f: 07:06:ff:93:99:40:33:66:a9:3f:35:d9:b3:5e:2e:86:20:66: 5d:42:2d:8a:54:86:2a:c7:32:9c:48:51:80:40:c5:50:df:94: bf:1e:f1:cf:51:69:b1:17:bf:dc:0c:58:cf:78:e7:d2:2f:67: 54:55:1d:a5:21:d6:d1:af:21:99:86:f6:32:c2:84:d9:8f:c0: 2f:a4:7d:2a:4f:dd:13:73:f6:5b:6e:9f:92:c4:2c:50:4f:d5: 0a:4f:42:81:25:ec:cb:25:3d:3e:44:bb:49:27:ed:5f:38:85: 5e:0f:4d:8a:49:06:96:c8:d5:30:9b:26:14:97:5e:72:81:b0: bf:b9:2c:8c:95:7e:67:4a:4a:f0:9e:70:4e:00:8d:1e:78:e6: 6e:a7:a3:cf:af:c5:4a:e6:b0:f9:6c:0a:ea:d0:47:10:78:fe: e1:f6:15:ab -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU4OTgxMTAvBgNVBAUTKDQ4MkRBREI5OTJERTJDRjFCRjk5MDgzNjQ3OEUxOTk0 NDk5NUIxRTAwHhcNMjQwMTMwMTgzNjQyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5NDFiYS02M2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjp6fa4Q/NNyzDSLgFVQp3esZTRyglgaIM9SLVWVDcEzpzUiEygL8D5V9fkv 1hyNIzGcbLo3ZyiliooWg3Ve7eLzYDuN8nAnjZUevlnXl+IYFnSkvhk2Ph96ol11 3mBshc7DSgSRM4zvlenpZEh/Q1f8nRY4dRQmzloYvzmRbwV4Q5E3L+5Jz9PY37JE RBQYjgupFVb1vQJRBAm2++wke8jk4oUiHMsuijzN4HyKHSeTCR99pTnbIkRqz5+U YsxYq1OXr3GxwX7+J6d4Y0CCiCgyZOquZDaTEIL74GbzpNOoDzaDWUJWnaiOjs5X P8VaVAV7Bna0q7vSuyewu81awQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLn5PEW0 y45tO2p2syHV/t1b1GS/MB8GA1UdIwQYMBaAFEgtrbmS3izxv5kINkeOGZRJlbHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTg5OC8yMTFDNjQ0NjhD MjgxMUU5QjAyQkNEODBDNEY5QUUwMi9TQzJ0dVpMZUxQR19tUWcyUjQ0WmxFbVZz ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDMnR1WkxlTFBHX21RZzJSNDRabEVtVnNlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkU4OTgvMjExQzY0NDY4QzI4MTFFOUIwMkJDRDgwQzRGOUFFMDIvNkUzN0M1M0M3 MkNBMTFFQzhDRTcyNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhdgwDQQCAAIwBwMFACQEVUAwDQYJKoZIhvcNAQELBQAD ggEBAD58Whde+yERwzEYatS9Ei1E11u+c4gmuraT/fGQPrEnQXMQ2SOJSraTHKe7 rHQkrQflt1i8SohDVKkNTPO6rdirePNP1NyOYzbIrAmxmLN3ApYHeaz4W428nwcG /5OZQDNmqT812bNeLoYgZl1CLYpUhirHMpxIUYBAxVDflL8e8c9RabEXv9wMWM94 59IvZ1RVHaUh1tGvIZmG9jLChNmPwC+kfSpP3RNz9ltun5LELFBP1QpPQoEl7Msl PT5Eu0kn7V84hV4PTYpJBpbI1TCbJhSXXnKBsL+5LIyVfmdKSvCecE4AjR545m6n o8+vxUrmsPlsCurQRxB4/uH2Fas= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:58 2024 by rpki-client on console-ams.rpki-client.org