$ rpki-client -vvf rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/6AC2B9AA187B11ED92148716C4F9AE02.roa File: 6AC2B9AA187B11ED92148716C4F9AE02.roa (raw, json) Hash identifier: bd6xDrsI8VNBf0/b6lDTgdvsxuTBwH6yXjfUiwvhRpg= Subject key identifier: FF:00:44:B5:EC:8E:AA:75:35:40:5F:39:D9:DE:C6:C5:0C:7B:AD:C4 Certificate issuer: /CN=A9138478/serialNumber=34E8C662AA9DCD51950DF5FAC405ACF16C8D30A0 Certificate serial: 069B Authority key identifier: 34:E8:C6:62:AA:9D:CD:51:95:0D:F5:FA:C4:05:AC:F1:6C:8D:30:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOjGYqqdzVGVDfX6xAWs8WyNMKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/6AC2B9AA187B11ED92148716C4F9AE02.roa Signing time: Tue 22 Oct 2024 22:31:39 +0000 ROA not before: Tue 22 Oct 2024 22:31:39 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134072 IP address blocks: 103.76.112.0/22 maxlen: 22 103.76.112.0/24 maxlen: 24 103.76.113.0/24 maxlen: 24 103.76.114.0/24 maxlen: 24 103.76.115.0/24 maxlen: 24 116.206.116.0/22 maxlen: 22 116.206.116.0/24 maxlen: 24 116.206.117.0/24 maxlen: 24 116.206.118.0/24 maxlen: 24 116.206.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/NOjGYqqdzVGVDfX6xAWs8WyNMKA.crl rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/NOjGYqqdzVGVDfX6xAWs8WyNMKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOjGYqqdzVGVDfX6xAWs8WyNMKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1691 (0x69b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138478/serialNumber=34E8C662AA9DCD51950DF5FAC405ACF16C8D30A0 Validity Not Before: Oct 22 22:31:39 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671827cb-33b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0d:32:27:c7:00:c2:e2:c3:b2:ed:86:00:5e: 14:b9:e0:1d:26:79:63:6e:97:8e:2a:bc:91:58:f1: c1:89:64:b8:c4:02:b1:c0:fc:fc:27:dd:d4:27:20: 8d:28:4e:f5:d1:f3:19:45:92:c2:27:ea:a2:9d:16: 8b:c4:e7:e6:b8:53:72:96:e1:39:7a:13:a2:64:2d: 33:45:a5:bc:38:df:89:06:ae:7b:fc:8c:6a:82:eb: 92:c2:55:75:8f:4e:45:0b:be:86:1d:21:6e:de:e4: 9b:27:5b:af:7d:8d:6f:d6:e7:8a:09:90:08:53:5f: 45:af:2c:c2:e1:df:cb:9d:73:aa:ee:5d:63:9e:15: ad:40:b7:f7:5a:d4:d7:9e:11:b8:42:e7:f9:d5:18: 93:8c:48:f8:7f:a2:88:ff:da:4d:1c:de:da:b7:da: 91:e9:b3:70:38:f9:19:bb:27:dc:92:d0:f0:40:ee: 58:cf:19:b0:9e:b3:2f:b1:95:bd:95:e9:ab:b6:b5: 6b:bc:62:9f:b6:79:7c:05:4e:ba:fb:8e:55:d4:9d: 14:a7:a9:77:03:be:f6:93:b1:75:82:03:4a:f4:47: cc:d6:44:c0:04:7a:47:e2:01:38:03:42:60:6c:99: 15:46:f2:e2:6b:b2:23:4e:97:0c:7a:0f:e0:54:88: 02:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:00:44:B5:EC:8E:AA:75:35:40:5F:39:D9:DE:C6:C5:0C:7B:AD:C4 X509v3 Authority Key Identifier: keyid:34:E8:C6:62:AA:9D:CD:51:95:0D:F5:FA:C4:05:AC:F1:6C:8D:30:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/NOjGYqqdzVGVDfX6xAWs8WyNMKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOjGYqqdzVGVDfX6xAWs8WyNMKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/6AC2B9AA187B11ED92148716C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.112.0/22 116.206.116.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:0b:c7:60:e4:d5:9f:a2:5f:70:f3:b0:90:f2:a9:01:74:12: fb:e7:4a:68:5e:15:13:2a:37:8e:92:20:69:5f:2c:9b:51:d0: b2:68:bf:a8:cf:48:46:06:8c:07:38:c9:96:8a:c6:ed:54:b4: 33:fe:80:6e:e0:12:16:c9:73:35:44:2a:f8:72:47:8c:7e:7a: d9:00:43:1e:37:23:72:d7:6b:9f:6d:12:6d:8c:07:dc:ca:06: 50:33:d9:4d:0b:bc:69:18:3f:16:b3:92:58:a8:21:e8:35:fc: da:89:8f:85:c4:ec:d8:ac:c3:cb:49:91:43:94:78:58:ad:8b: 64:a4:5d:2d:45:69:99:81:07:81:54:07:69:00:db:6a:e6:a1: 6a:10:31:ad:5d:2b:f8:09:2a:c1:13:a9:e5:6a:1a:16:4b:64: 95:5a:2d:e4:0d:0c:04:80:0f:20:f3:3e:da:ca:cc:68:5b:4a: 24:08:3b:57:d2:12:69:cf:13:c4:65:60:fc:73:68:f8:5b:ef: b9:e2:37:a7:1e:08:c9:30:50:8e:cc:b6:f7:15:3e:d6:c5:60: 0b:95:29:37:90:30:fd:f3:b1:92:d4:7b:a6:8e:9a:ec:d3:f0: b3:0d:8b:35:e8:8e:70:0d:86:17:60:9b:4b:59:34:5e:dd:64: 90:aa:9e:02 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NzgxMTAvBgNVBAUTKDM0RThDNjYyQUE5RENENTE5NTBERjVGQUM0MDVBQ0Yx NkM4RDMwQTAwHhcNMjQxMDIyMjIzMTM5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MjdjYi0zM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1w0yJ8cAwuLDsu2GAF4UueAdJnljbpeOKryRWPHBiWS4xAKxwPz8J93UJyCN KE710fMZRZLCJ+qinRaLxOfmuFNyluE5ehOiZC0zRaW8ON+JBq57/IxqguuSwlV1 j05FC76GHSFu3uSbJ1uvfY1v1ueKCZAIU19FryzC4d/LnXOq7l1jnhWtQLf3WtTX nhG4Quf51RiTjEj4f6KI/9pNHN7at9qR6bNwOPkZuyfcktDwQO5YzxmwnrMvsZW9 lemrtrVrvGKftnl8BU66+45V1J0Up6l3A772k7F1ggNK9EfM1kTABHpH4gE4A0Jg bJkVRvLia7IjTpcMeg/gVIgC9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFP8ARLXs jqp1NUBfOdnexsUMe63EMB8GA1UdIwQYMBaAFDToxmKqnc1RlQ31+sQFrPFsjTCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ3OC82QjhBRDg0RTQz MzAxMUVCQTZFMDIyMUVDNEY5QUUwMi9OT2pHWXFxZHpWR1ZEZlg2eEFXczhXeU5N S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05PakdZcXFkelZHVkRmWDZ4QVdzOFd5Tk1LQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzg0NzgvNkI4QUQ4NEU0MzMwMTFFQkE2RTAyMjFFQzRGOUFFMDIvNkFDMkI5QUEx ODdCMTFFRDkyMTQ4NzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnTHADBAJ0znQwDQYJKoZIhvcNAQELBQADggEBAJ0Lx2Dk 1Z+iX3DzsJDyqQF0EvvnSmheFRMqN46SIGlfLJtR0LJov6jPSEYGjAc4yZaKxu1U tDP+gG7gEhbJczVEKvhyR4x+etkAQx43I3LXa59tEm2MB9zKBlAz2U0LvGkYPxaz klioIeg1/NqJj4XE7Nisw8tJkUOUeFiti2SkXS1FaZmBB4FUB2kA22rmoWoQMa1d K/gJKsETqeVqGhZLZJVaLeQNDASADyDzPtrKzGhbSiQIO1fSEmnPE8RlYPxzaPhb 77niN6ceCMkwUI7MtvcVPtbFYAuVKTeQMP3zsZLUe6aOmuzT8LMNizXojnANhhdg m0tZNF7dZJCqngI= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org