$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/6BC5DC4AB10511E591A3E484C4F9AE02.roa File: 6BC5DC4AB10511E591A3E484C4F9AE02.roa (raw, json) Hash identifier: H9fsyURTb8qh5DVJOvXZinGpj/nUZcubrPdBUX+wonM= Subject key identifier: 18:5C:7D:CD:F6:CA:3B:E6:6F:49:9D:D8:E6:DD:6C:1B:BD:67:78:C6 Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 3408 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/6BC5DC4AB10511E591A3E484C4F9AE02.roa Signing time: Wed 10 Jul 2024 15:50:59 +0000 ROA not before: Wed 10 Jul 2024 15:50:59 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58666 IP address blocks: 103.232.156.0/23 maxlen: 23 103.232.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13320 (0x3408) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: Jul 10 15:50:59 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668eade3-f49a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:83:e6:9a:9f:dd:67:ff:06:3d:2c:ef:dc:43: 93:04:94:f4:8c:00:85:13:ae:da:55:f6:05:09:ff: c3:de:f7:18:bb:e4:2f:e2:93:2b:b1:cf:5d:34:f8: a3:f7:31:dd:2d:78:ca:96:32:f8:bc:a4:c8:0c:48: 23:c0:de:5d:7c:3e:f2:dd:b3:9e:fa:c9:de:c4:40: f1:83:0d:6c:28:53:09:a4:60:7a:25:f6:86:3f:ac: 5c:2d:4f:8a:39:64:d7:87:b8:d1:49:0c:29:2c:7b: a6:c3:c7:c0:6c:6c:ed:fa:17:09:de:13:ca:e0:44: a4:c9:ec:e9:c9:52:73:f3:4e:1f:47:2e:4b:dd:21: 28:dd:0c:02:96:73:7a:05:01:0d:f3:b4:af:e6:08: 4d:15:55:aa:3f:25:60:b2:35:89:81:59:a3:af:9e: 2c:53:a3:9d:5d:53:7f:60:c4:33:c4:c0:92:7a:d9: 4c:e3:b7:b3:d3:ed:c7:6b:cb:64:79:ee:7f:e9:44: ea:12:1c:65:50:48:96:37:0a:fa:e8:3f:f7:66:9e: fd:de:06:d0:a4:1f:db:80:62:60:a0:0e:7e:ae:09: b3:9d:40:29:62:b6:71:3d:dd:aa:22:2d:b6:f5:6c: aa:63:34:e0:07:9f:82:89:d7:94:8a:67:e6:18:5a: a6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:5C:7D:CD:F6:CA:3B:E6:6F:49:9D:D8:E6:DD:6C:1B:BD:67:78:C6 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/6BC5DC4AB10511E591A3E484C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.156.0-103.232.158.255 Signature Algorithm: sha256WithRSAEncryption 36:43:f4:0d:12:f9:f5:23:43:f2:f9:97:bb:21:f3:41:4b:b5: 21:74:3c:af:0d:5b:a9:32:91:42:24:41:c6:be:57:70:47:6d: 6b:60:37:e0:7c:d6:95:13:88:12:70:46:32:67:c2:ba:b0:71: b0:8b:76:a8:02:ba:35:7d:bb:e6:7e:e6:1c:d2:99:29:aa:30: 92:54:6e:75:36:b5:6c:cf:63:f3:c5:64:20:57:e2:aa:f7:a5: 0b:f3:77:90:95:d3:91:a0:d3:e9:49:37:f7:4d:04:3e:2c:a3: f8:f9:0d:f4:9a:46:47:32:77:df:ce:a8:bd:c3:99:f2:f9:28: 39:97:a9:5a:6d:34:5c:ac:c8:c8:45:95:a4:6c:96:77:6e:d2: 25:da:3c:44:18:ba:64:f9:3d:b3:ee:92:de:2a:4c:31:cf:e4: 5f:07:59:ca:29:67:08:b9:a4:aa:f7:0c:ba:fb:37:83:52:62: cd:5f:eb:fe:a1:66:9d:06:f1:98:a3:f1:b8:e8:ab:ef:f5:b0: 14:de:bc:15:86:b6:dc:7b:06:81:eb:fa:60:fe:5d:3e:74:f3: 41:8b:6e:5d:04:02:13:06:ac:a4:49:c4:33:7f:22:38:3c:ca: fd:fa:ef:9b:d5:45:6e:e0:cf:6a:0c:08:5c:21:50:bf:93:fe: 45:a9:65:86 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICNAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjQwNzEwMTU1MDU5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhlYWRlMy1mNDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYPmmp/dZ/8GPSzv3EOTBJT0jACFE67aVfYFCf/D3vcYu+Qv4pMrsc9dNPij 9zHdLXjKljL4vKTIDEgjwN5dfD7y3bOe+snexEDxgw1sKFMJpGB6JfaGP6xcLU+K OWTXh7jRSQwpLHumw8fAbGzt+hcJ3hPK4ESkyezpyVJz804fRy5L3SEo3QwClnN6 BQEN87Sv5ghNFVWqPyVgsjWJgVmjr54sU6OdXVN/YMQzxMCSetlM47ez0+3Ha8tk ee5/6UTqEhxlUEiWNwr66D/3Zp793gbQpB/bgGJgoA5+rgmznUApYrZxPd2qIi22 9WyqYzTgB5+CideUimfmGFqm3QIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBhcfc32 yjvmb0md2ObdbBu9Z3jGMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMxRkUvRDExOEFBQkExREFBMTFFMkEyRUNDQUE2MDhCMDJDRDIvNkJDNURDNEFC MTA1MTFFNTkxQTNFNDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAmfonAMEAGfonjANBgkqhkiG9w0BAQsFAAOCAQEANkP0 DRL59SND8vmXuyHzQUu1IXQ8rw1bqTKRQiRBxr5XcEdta2A34HzWlROIEnBGMmfC urBxsIt2qAK6NX275n7mHNKZKaowklRudTa1bM9j88VkIFfiqvelC/N3kJXTkaDT 6Uk3900EPiyj+PkN9JpGRzJ3386ovcOZ8vkoOZepWm00XKzIyEWVpGyWd27SJdo8 RBi6ZPk9s+6S3ipMMc/kXwdZyilnCLmkqvcMuvs3g1JizV/r/qFmnQbxmKPxuOir 7/WwFN68FYa23HsGgev6YP5dPnTzQYtuXQQCEwaspEnEM38iODzK/frvm9VFbuDP agwIXCFQv5P+Rallhg== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:46 2024 by rpki-client on console-fra.rpki-client.org