$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa File: 6B4669CE7B7D11E99F99E776C4F9AE02.roa (raw, json) Hash identifier: TbeZYZ/ugLpIBEyTrrLOrYQk8RdfGeXzfDNRf4SyAPY= Subject key identifier: 38:7B:27:CA:69:3D:4A:5B:96:37:F5:43:9F:3A:83:70:6F:8D:BA:91 Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 2538 Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa Signing time: Fri 16 Aug 2024 18:15:56 +0000 ROA not before: Fri 16 Aug 2024 18:15:56 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 0 IP address blocks: 103.138.210.0/24 maxlen: 24 2001:df0:5580::/48 maxlen: 48 2001:df0:5580:400::/54 maxlen: 54 2001:df0:5580:c00::/54 maxlen: 54 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9528 (0x2538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: Aug 16 18:15:56 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66bf975c-2c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1f:ef:88:35:e9:bd:2a:62:a9:8f:5e:28:aa: d5:9b:af:90:75:5d:54:01:8a:2b:fc:b0:29:a4:62: 1d:78:75:77:c6:5b:bf:0d:61:7c:5a:25:74:ed:63: e4:1d:f2:08:c0:f8:a1:e8:3b:b3:c0:76:88:d6:ac: d1:8f:af:e4:ca:75:93:d0:4e:e6:9b:6a:7d:a9:2e: 44:7a:b8:3c:f3:ea:4b:28:f3:16:de:46:bc:c8:e6: d7:0f:09:e6:1c:2d:5e:ee:5c:45:f8:26:87:c2:e7: ea:7b:18:d0:aa:3a:54:48:6c:58:55:0e:28:79:03: c6:9f:23:20:e8:df:74:c8:3a:dc:fd:61:d6:41:64: 67:41:53:6e:ed:d2:db:45:09:d5:48:d9:fb:99:3a: c0:19:7b:a5:b2:b5:0e:68:96:b5:27:b7:bf:93:b3: 42:9e:ec:3f:06:1f:69:e0:ce:24:9b:b1:6f:91:aa: 73:e2:73:b4:32:e0:7a:ef:be:87:fb:5d:ab:d5:fb: 9e:4a:73:e9:f7:76:9c:f9:1e:a0:6b:98:dc:41:08: 0b:a8:58:60:16:64:b0:d6:41:85:d3:48:9a:79:55: 88:1c:d5:22:95:82:c4:10:48:1d:fe:3a:10:73:8b: 94:18:89:73:1c:9c:1c:eb:5b:02:f4:78:4c:b1:f6: 33:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7B:27:CA:69:3D:4A:5B:96:37:F5:43:9F:3A:83:70:6F:8D:BA:91 X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 IPv6: 2001:df0:5580::/48 Signature Algorithm: sha256WithRSAEncryption 43:b9:dd:e2:58:f6:12:1e:9b:da:02:87:51:3b:9b:d2:ba:a4: 8e:e1:30:85:ab:af:69:31:86:b1:99:c1:80:a8:fe:d1:06:72: 10:1e:94:b5:a4:b4:57:e9:34:cf:22:de:f4:da:24:e1:ac:d2: 15:ec:f3:92:fd:fe:fe:6e:22:5a:af:94:fb:cd:b7:23:b3:77: fe:0b:bc:d7:0d:77:70:a4:5b:38:ec:65:23:23:80:46:5d:98: 45:48:ae:9c:15:49:1a:1e:43:df:ac:2d:0c:a8:8a:10:bc:cd: bc:6c:ee:58:9a:83:2f:8b:88:5e:57:ce:6c:ae:42:61:9e:e0: 10:92:67:43:3d:9b:2e:09:78:ca:b3:31:b0:43:bd:f6:5b:cc: b6:41:67:49:26:77:a8:6d:2e:37:d2:27:da:64:9d:95:0b:6c: fc:aa:cb:a7:d8:cf:f0:ff:b6:73:cb:ea:49:cd:15:80:8f:1c: 29:0a:5d:07:58:12:9a:07:2a:36:82:69:5d:ba:40:a0:fb:7b: 52:05:16:2e:04:12:4b:05:0e:bc:68:25:07:e8:a4:ea:10:ef: 5a:19:6f:af:7c:d5:c5:b8:36:fe:21:a4:2b:d5:e3:f5:65:7e: 3c:2d:82:75:39:a1:da:43:dd:ec:8f:10:44:2f:62:81:87:ed: cc:f9:7d:45 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICJTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjQwODE2MTgxNTU2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmOTc1Yy0yYzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3x/viDXpvSpiqY9eKKrVm6+QdV1UAYor/LAppGIdeHV3xlu/DWF8WiV07WPk HfIIwPih6DuzwHaI1qzRj6/kynWT0E7mm2p9qS5Eerg88+pLKPMW3ka8yObXDwnm HC1e7lxF+CaHwufqexjQqjpUSGxYVQ4oeQPGnyMg6N90yDrc/WHWQWRnQVNu7dLb RQnVSNn7mTrAGXulsrUOaJa1J7e/k7NCnuw/Bh9p4M4km7Fvkapz4nO0MuB6776H +12r1fueSnPp93ac+R6ga5jcQQgLqFhgFmSw1kGF00iaeVWIHNUilYLEEEgd/joQ c4uUGIlzHJwc61sC9HhMsfYzdwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDh7J8pp PUpbljf1Q586g3BvjbqRMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvNkI0NjY5Q0U3 QjdEMTFFOTlGOTlFNzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnitIwDwQCAAIwCQMHACABDfBVgDANBgkqhkiG9w0BAQsF AAOCAQEAQ7nd4lj2Eh6b2gKHUTub0rqkjuEwhauvaTGGsZnBgKj+0QZyEB6UtaS0 V+k0zyLe9Nok4azSFezzkv3+/m4iWq+U+823I7N3/gu81w13cKRbOOxlIyOARl2Y RUiunBVJGh5D36wtDKiKELzNvGzuWJqDL4uIXlfObK5CYZ7gEJJnQz2bLgl4yrMx sEO99lvMtkFnSSZ3qG0uN9In2mSdlQts/KrLp9jP8P+2c8vqSc0VgI8cKQpdB1gS mgcqNoJpXbpAoPt7UgUWLgQSSwUOvGglB+ik6hDvWhlvr3zVxbg2/iGkK9Xj9WV+ PC2CdTmh2kPd7I8QRC9igYftzPl9RQ== -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:15 2024 by rpki-client on console-ams.rpki-client.org