$ rpki-client -vvf rpki.apnic.net/member_repository/A916E2DC/6D89644A6AE711ED94B44C87C4F9AE02/6993B4CCD43B11EDA821F80DC4F9AE02.roa File: 6993B4CCD43B11EDA821F80DC4F9AE02.roa (raw, json) Hash identifier: uxp2G2bghn9NecpAe+byqEWG3Y6T1GBL3cmiQ22tnnk= Subject key identifier: 0D:F2:3D:4F:AC:AC:27:A6:EF:F3:16:CE:9C:BB:86:C6:08:A9:1F:05 Certificate issuer: /CN=A916E2DC/serialNumber=9FAC8AB96A0DA2929FC3D1871BED6F743E8C9577 Certificate serial: 011B Authority key identifier: 9F:AC:8A:B9:6A:0D:A2:92:9F:C3:D1:87:1B:ED:6F:74:3E:8C:95:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6yKuWoNopKfw9GHG-1vdD6MlXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E2DC/6D89644A6AE711ED94B44C87C4F9AE02/6993B4CCD43B11EDA821F80DC4F9AE02.roa Signing time: Thu 11 Apr 2024 05:07:48 +0000 ROA not before: Thu 11 Apr 2024 05:07:48 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149634 IP address blocks: 45.114.160.0/22 maxlen: 24 103.54.112.0/22 maxlen: 24 103.183.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E2DC/6D89644A6AE711ED94B44C87C4F9AE02/n6yKuWoNopKfw9GHG-1vdD6MlXc.crl rsync://rpki.apnic.net/member_repository/A916E2DC/6D89644A6AE711ED94B44C87C4F9AE02/n6yKuWoNopKfw9GHG-1vdD6MlXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6yKuWoNopKfw9GHG-1vdD6MlXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E2DC/serialNumber=9FAC8AB96A0DA2929FC3D1871BED6F743E8C9577 Validity Not Before: Apr 11 05:07:48 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66177023-794f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:be:23:6c:1d:0e:66:0a:b7:b6:5f:16:e9:a6: 71:55:44:2b:aa:f4:7b:12:08:23:c1:ca:dc:c5:9a: 88:ce:f4:00:08:30:04:c8:4a:4d:83:91:71:38:2d: f8:31:fb:e2:3f:cd:e4:9c:de:6a:d3:99:0a:cf:f8: 65:c9:c9:65:4a:dd:15:08:88:57:46:ea:c7:b0:df: 36:26:36:28:b7:6b:1b:f0:c7:83:bb:70:3e:3d:f3: 18:d8:11:20:f1:6b:a4:d5:ef:f6:4e:f2:ed:7a:9b: ec:37:eb:05:2d:f2:58:49:1e:40:b2:b5:5f:c1:64: aa:ee:5b:bf:7e:bf:54:93:17:57:69:7c:53:0e:ea: 06:f0:29:9e:57:88:13:96:af:2e:9a:a0:30:18:ab: 52:75:a3:a9:c2:db:e2:9d:02:cd:11:a3:e6:ec:c6: 1d:84:f5:45:62:d9:07:89:38:54:48:f7:a3:69:ed: 87:03:58:b2:9d:bc:ab:66:c4:8d:09:4c:d0:b8:cf: 53:15:1e:45:04:17:b9:39:58:40:41:1c:25:61:00: 82:20:59:a4:cb:b9:8b:80:7d:04:0a:f2:66:f0:0b: cc:31:58:fd:6c:23:e9:a8:6a:55:9d:05:17:55:5a: fa:1f:b9:8e:54:f9:b6:66:7f:35:3b:42:a7:53:36: 86:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F2:3D:4F:AC:AC:27:A6:EF:F3:16:CE:9C:BB:86:C6:08:A9:1F:05 X509v3 Authority Key Identifier: keyid:9F:AC:8A:B9:6A:0D:A2:92:9F:C3:D1:87:1B:ED:6F:74:3E:8C:95:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E2DC/6D89644A6AE711ED94B44C87C4F9AE02/n6yKuWoNopKfw9GHG-1vdD6MlXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6yKuWoNopKfw9GHG-1vdD6MlXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E2DC/6D89644A6AE711ED94B44C87C4F9AE02/6993B4CCD43B11EDA821F80DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.160.0/22 103.54.112.0/22 103.183.64.0/23 Signature Algorithm: sha256WithRSAEncryption a1:61:a8:cc:e9:3c:d2:26:77:5a:81:38:db:f6:82:61:63:ef: b4:24:60:dc:d2:9d:e4:06:8f:af:94:3f:ae:99:ba:04:04:b2: 2f:61:e4:9f:43:d1:e5:a7:0a:75:58:bf:43:49:27:81:2e:f2: ce:4e:14:b3:fe:9a:b2:9c:0c:f5:a3:38:98:03:68:87:b0:db: ce:75:75:fd:60:ff:2b:20:cc:02:77:96:b5:76:55:d0:8d:63: ef:34:89:3a:3c:fd:00:66:4f:6b:57:8a:a7:2e:b5:cc:37:87: b1:18:f6:e4:82:b8:3b:08:7f:37:36:a7:56:75:b8:0d:d8:0e: 00:c3:b6:07:9f:5c:d6:11:ff:c0:5c:1f:9b:98:91:42:07:24: 6b:90:05:4a:73:31:d5:21:09:cb:c4:87:8c:92:b5:bf:8d:8c: e7:99:b2:c1:76:d9:fd:20:48:40:0b:ad:c9:e0:f9:63:2a:c9: 3e:8f:f5:c1:57:35:24:b4:70:87:c5:90:a0:8d:e3:c0:70:13: b1:95:7e:48:5e:46:aa:23:8d:db:14:b0:a4:04:99:fe:ba:1a: 56:e3:84:c7:9d:6e:ae:be:d4:a4:8a:92:08:ba:6d:3d:7d:14: eb:f0:d0:5a:0d:26:7f:88:8b:a4:2b:dd:e1:22:01:20:c5:7b: 4f:88:1f:dc -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkUyREMxMTAvBgNVBAUTKDlGQUM4QUI5NkEwREEyOTI5RkMzRDE4NzFCRUQ2Rjc0 M0U4Qzk1NzcwHhcNMjQwNDExMDUwNzQ4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3NzAyMy03OTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA574jbB0OZgq3tl8W6aZxVUQrqvR7EggjwcrcxZqIzvQACDAEyEpNg5FxOC34 MfviP83knN5q05kKz/hlycllSt0VCIhXRurHsN82JjYot2sb8MeDu3A+PfMY2BEg 8Wuk1e/2TvLtepvsN+sFLfJYSR5AsrVfwWSq7lu/fr9UkxdXaXxTDuoG8CmeV4gT lq8umqAwGKtSdaOpwtvinQLNEaPm7MYdhPVFYtkHiThUSPejae2HA1iynbyrZsSN CUzQuM9TFR5FBBe5OVhAQRwlYQCCIFmky7mLgH0ECvJm8AvMMVj9bCPpqGpVnQUX VVr6H7mOVPm2Zn81O0KnUzaGhQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFA3yPU+s rCem7/MWzpy7hsYIqR8FMB8GA1UdIwQYMBaAFJ+sirlqDaKSn8PRhxvtb3Q+jJV3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTJEQy82RDg5NjQ0QTZB RTcxMUVEOTRCNDRDODdDNEY5QUUwMi9uNnlLdVdvTm9wS2Z3OUdIRy0xdmRENk1s WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL242eUt1V29Ob3BLZnc5R0hHLTF2ZEQ2TWxYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkUyREMvNkQ4OTY0NEE2QUU3MTFFRDk0QjQ0Qzg3QzRGOUFFMDIvNjk5M0I0Q0NE NDNCMTFFREE4MjFGODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAItcqADBAJnNnADBAFnt0AwDQYJKoZIhvcNAQELBQADggEB AKFhqMzpPNImd1qBONv2gmFj77QkYNzSneQGj6+UP66ZugQEsi9h5J9D0eWnCnVY v0NJJ4Eu8s5OFLP+mrKcDPWjOJgDaIew2851df1g/ysgzAJ3lrV2VdCNY+80iTo8 /QBmT2tXiqcutcw3h7EY9uSCuDsIfzc2p1Z1uA3YDgDDtgefXNYR/8BcH5uYkUIH JGuQBUpzMdUhCcvEh4yStb+NjOeZssF22f0gSEALrcng+WMqyT6P9cFXNSS0cIfF kKCN48BwE7GVfkheRqojjdsUsKQEmf66GlbjhMedbq6+1KSKkgi6bT19FOvw0FoN Jn+Ii6Qr3eEiASDFe0+IH9w= -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org