$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa File: 6B4669CE7B7D11E99F99E776C4F9AE02.roa (raw, json) Hash identifier: 9I4eh2/Gv1Y6RhyOHLVhGV1kHhZP/5i1Nvlh/e0jhQM= Subject key identifier: C2:38:C6:0E:7C:A6:70:9D:8E:69:5B:89:A4:F1:FE:0A:8C:7B:2A:52 Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 24CA Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa Signing time: Tue 12 Mar 2024 18:26:37 +0000 ROA not before: Tue 12 Mar 2024 18:26:37 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 0 IP address blocks: 103.138.210.0/24 maxlen: 24 2001:df0:5580::/48 maxlen: 48 2001:df0:5580:400::/54 maxlen: 54 2001:df0:5580:c00::/54 maxlen: 54 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 18:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9418 (0x24ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: Mar 12 18:26:37 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65f09e5d-6d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ee:16:74:78:77:af:08:5b:60:c3:ec:b5:df: 25:43:69:eb:96:f8:70:85:08:01:9b:d7:00:e3:0c: db:43:2c:40:68:8a:78:1a:f0:a1:4e:50:3f:ec:99: f4:40:cd:1f:d1:cd:61:16:03:f0:b5:c5:61:f7:c3: 54:b8:45:f0:91:ad:18:26:29:e5:ca:de:e0:af:ba: 18:18:ee:98:13:16:07:dc:cc:87:76:e1:20:a0:fe: 9e:de:bd:62:cc:d2:ae:47:68:5a:58:3f:7f:64:ea: 05:78:ae:87:9a:17:31:01:ef:56:37:6d:fd:b3:a1: 87:9e:e8:fd:44:19:59:57:a4:b4:6a:e8:48:51:be: 33:a7:e4:a2:fa:5d:75:11:b0:fc:2e:01:40:6d:c9: e2:a9:44:93:af:0c:2d:9b:f1:f1:94:b1:dc:1c:c1: 74:dd:44:33:6c:af:f7:39:3b:dd:0e:f7:1d:28:e3: b9:9d:60:e9:5c:d9:80:b5:8e:43:91:a0:30:e5:e0: bb:df:81:0f:68:84:4f:ec:35:c7:c5:1a:ac:cd:17: 9c:a7:63:8f:ca:f7:a5:72:a4:cb:b9:13:cf:a8:b1: e4:b2:96:1e:08:2a:5d:8b:b7:2c:5f:22:c5:4a:0f: f4:e1:36:ec:80:f3:d8:64:70:75:93:92:7b:72:af: 18:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:38:C6:0E:7C:A6:70:9D:8E:69:5B:89:A4:F1:FE:0A:8C:7B:2A:52 X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 IPv6: 2001:df0:5580::/48 Signature Algorithm: sha256WithRSAEncryption 37:8d:33:36:4c:b7:bf:7a:e3:8f:37:ea:1e:af:dc:16:ff:f8: ee:fb:2d:af:09:28:8f:19:7c:d1:d3:39:7e:a7:b9:c8:78:8f: 53:7a:8d:14:34:7c:ea:3b:b8:51:f5:25:f0:92:7d:f1:f9:1c: 53:26:a9:fd:75:1b:1b:fd:f0:8d:57:42:89:eb:15:49:ef:7b: 48:e6:14:41:1c:b1:c5:9f:a0:a3:4c:40:4c:f6:2b:c1:0d:c1: 90:28:51:81:aa:07:e9:ae:3c:b4:60:99:16:81:5b:f8:8c:25: 72:7d:6d:93:ec:25:ac:8a:e1:95:41:87:1d:87:dd:69:98:58: bc:99:6e:02:f9:06:e3:02:56:5c:39:5e:62:05:60:fa:6a:1b: 74:41:05:62:80:05:70:42:84:32:b5:72:56:90:95:e7:da:69: cc:fd:3c:f1:c5:b5:a3:1c:cc:11:e5:ce:6b:31:85:da:83:f3: 86:c5:4e:5b:60:86:0f:f1:0a:05:48:89:d3:5c:93:12:75:dd: 2e:82:eb:2a:a8:2d:ed:04:f8:17:58:35:77:e2:45:7d:e1:8c: f8:a2:5c:47:cf:41:0d:be:b0:2d:22:a9:ee:d5:b6:49:d6:c8: 31:77:77:2c:80:a4:18:e7:15:2b:c8:f8:22:60:87:5e:22:3c: 1a:4f:96:cf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICJMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjQwMzEyMTgyNjM3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwOWU1ZC02ZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAse4WdHh3rwhbYMPstd8lQ2nrlvhwhQgBm9cA4wzbQyxAaIp4GvChTlA/7Jn0 QM0f0c1hFgPwtcVh98NUuEXwka0YJinlyt7gr7oYGO6YExYH3MyHduEgoP6e3r1i zNKuR2haWD9/ZOoFeK6HmhcxAe9WN239s6GHnuj9RBlZV6S0auhIUb4zp+Si+l11 EbD8LgFAbcniqUSTrwwtm/HxlLHcHMF03UQzbK/3OTvdDvcdKOO5nWDpXNmAtY5D kaAw5eC734EPaIRP7DXHxRqszRecp2OPyvelcqTLuRPPqLHkspYeCCpdi7csXyLF Sg/04TbsgPPYZHB1k5J7cq8YbQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMI4xg58 pnCdjmlbiaTx/gqMeypSMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvNkI0NjY5Q0U3 QjdEMTFFOTlGOTlFNzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnitIwDwQCAAIwCQMHACABDfBVgDANBgkqhkiG9w0BAQsF AAOCAQEAN40zNky3v3rjjzfqHq/cFv/47vstrwkojxl80dM5fqe5yHiPU3qNFDR8 6ju4UfUl8JJ98fkcUyap/XUbG/3wjVdCiesVSe97SOYUQRyxxZ+go0xATPYrwQ3B kChRgaoH6a48tGCZFoFb+Iwlcn1tk+wlrIrhlUGHHYfdaZhYvJluAvkG4wJWXDle YgVg+mobdEEFYoAFcEKEMrVyVpCV59ppzP088cW1oxzMEeXOazGF2oPzhsVOW2CG D/EKBUiJ01yTEnXdLoLrKqgt7QT4F1g1d+JFfeGM+KJcR89BDb6wLSKp7tW2SdbI MXd3LICkGOcVK8j4ImCHXiI8Gk+Wzw== -----END CERTIFICATE-----Generated at Tue Apr 16 20:13:48 2024 by rpki-client on console-ams.rpki-client.org