$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/6AE91888C5FC11EC9127557EC4F9AE02.roa File: 6AE91888C5FC11EC9127557EC4F9AE02.roa (raw, json) Hash identifier: NWtEcidDTaAEYgYa1ifODhsGODv6GHMJjEUD0pmNCS8= Subject key identifier: 3C:4E:D4:60:44:FB:35:2F:EA:20:1E:FA:03:18:EA:FC:9D:A5:BE:33 Certificate issuer: /CN=A917FFBF/serialNumber=9CFA869DC306357D7AC3092E4FFFD04CA502775E Certificate serial: 016F Authority key identifier: 9C:FA:86:9D:C3:06:35:7D:7A:C3:09:2E:4F:FF:D0:4C:A5:02:77:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPqGncMGNX16wwkuT__QTKUCd14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/6AE91888C5FC11EC9127557EC4F9AE02.roa Signing time: Thu 05 Jan 2023 05:04:07 +0000 ROA not before: Thu 05 Jan 2023 05:04:06 +0000 ROA not after: Sun 31 Mar 2024 00:00:00 +0000 asID: 135386 IP address blocks: 103.177.222.0/23 maxlen: 24 2001:df0:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.crl rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPqGncMGNX16wwkuT__QTKUCd14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Mar 2023 05:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFBF/serialNumber=9CFA869DC306357D7AC3092E4FFFD04CA502775E Validity Not Before: Jan 5 05:04:06 2023 GMT Not After : Mar 31 00:00:00 2024 GMT Subject: CN=63b65a46-96a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b8:83:ec:eb:fe:cd:dc:20:4f:01:81:67:ab: f7:2b:c8:2a:79:35:13:bb:45:7e:22:c2:bf:ad:21: c8:05:68:66:da:53:0b:ad:e6:cd:dd:c7:76:34:46: 32:6e:2d:9c:20:f1:df:c7:14:34:92:c5:e4:b7:e4: 69:8a:c2:f3:55:63:c2:3f:5d:ab:41:a9:a2:f9:fb: fe:ea:f4:10:23:ec:30:f2:1d:da:f2:90:10:01:51: 85:5d:84:a9:6e:f0:3d:6c:90:21:42:35:80:3c:ed: 89:bd:6f:b7:e8:d0:6b:68:d6:a4:71:f5:28:09:9b: 21:42:3b:83:3f:0b:b7:b2:79:c9:0e:1b:59:9a:f1: 88:ff:49:05:42:95:41:f4:54:6a:cc:04:cd:96:d8: e4:69:37:c5:98:3a:1e:0e:33:6a:92:40:0c:0b:58: e7:e7:a5:3b:c8:4f:09:2a:a8:a1:38:6a:92:a0:d0: 45:f1:7d:6c:9e:72:9d:19:87:5d:90:33:72:95:d6: 04:54:e1:b9:72:bc:9d:82:55:10:13:17:71:07:33: f9:92:03:58:b6:49:d7:fb:60:71:3f:56:63:6c:f9: 58:5b:bf:58:3b:41:69:ce:ce:2e:ef:99:45:01:c1: e2:3c:ac:07:68:bf:5f:b9:48:6f:dc:90:b9:39:26: 44:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:4E:D4:60:44:FB:35:2F:EA:20:1E:FA:03:18:EA:FC:9D:A5:BE:33 X509v3 Authority Key Identifier: keyid:9C:FA:86:9D:C3:06:35:7D:7A:C3:09:2E:4F:FF:D0:4C:A5:02:77:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPqGncMGNX16wwkuT__QTKUCd14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/6AE91888C5FC11EC9127557EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.222.0/23 IPv6: 2001:df0:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 31:77:65:50:05:df:a9:2f:ce:58:23:75:50:e0:0e:cf:8c:f4: 5a:00:d8:d0:c8:0e:27:e1:d0:43:65:16:fd:8c:13:2f:fa:63: e8:89:ac:bd:87:0a:af:9a:ed:3f:65:92:87:b7:f1:d0:19:79: a8:62:c2:d8:26:56:f1:a5:55:d4:2d:f9:be:99:57:19:5b:d7: 0e:22:83:ad:d2:01:20:4d:be:41:1f:ea:a1:20:e4:ea:6c:51: 41:7f:ff:ba:ee:3e:48:86:08:a3:85:9c:2c:16:f4:0a:7e:c9: 8c:2c:f1:f3:a5:f0:b3:4c:03:79:da:39:2d:10:41:72:94:0e: 06:68:82:a9:c6:d6:3f:2c:40:f4:fc:3f:75:d8:28:98:df:c0: a2:27:ab:3b:f8:9e:18:d0:19:d9:2f:53:2f:73:6a:3f:9d:b9: b6:78:c2:06:1c:70:f8:83:c7:ed:1a:ac:35:29:e6:80:ff:de: bf:41:de:ea:4a:96:a2:7c:7b:ab:da:3e:95:7b:5d:49:31:13: 68:a3:90:26:53:4f:94:60:53:cb:37:3d:ab:5a:6a:c7:ac:31: e2:98:8d:9d:fe:0f:ac:59:ef:78:17:2c:d9:93:69:60:3f:e3: 32:a6:14:43:1f:05:6c:b2:19:36:38:2c:d5:b6:89:ca:eb:3a: 6d:4a:9e:f6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZGQkYxMTAvBgNVBAUTKDlDRkE4NjlEQzMwNjM1N0Q3QUMzMDkyRTRGRkZEMDRD QTUwMjc3NUUwHhcNMjMwMTA1MDUwNDA2WhcNMjQwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02M2I2NWE0Ni05NmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7iD7Ov+zdwgTwGBZ6v3K8gqeTUTu0V+IsK/rSHIBWhm2lMLrebN3cd2NEYy bi2cIPHfxxQ0ksXkt+RpisLzVWPCP12rQami+fv+6vQQI+ww8h3a8pAQAVGFXYSp bvA9bJAhQjWAPO2JvW+36NBraNakcfUoCZshQjuDPwu3snnJDhtZmvGI/0kFQpVB 9FRqzATNltjkaTfFmDoeDjNqkkAMC1jn56U7yE8JKqihOGqSoNBF8X1snnKdGYdd kDNyldYEVOG5crydglUQExdxBzP5kgNYtknX+2BxP1ZjbPlYW79YO0Fpzs4u75lF AcHiPKwHaL9fuUhv3JC5OSZEPQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDxO1GBE +zUv6iAe+gMY6vydpb4zMB8GA1UdIwQYMBaAFJz6hp3DBjV9esMJLk//0EylAnde MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCRi9FRDUyRjAzMEM1 RjQxMUVDOEU4MEQ4ODZDNEY5QUUwMi9uUHFHbmNNR05YMTZ3d2t1VF9fUVRLVUNk MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25QcUduY01HTlgxNnd3a3VUX19RVEtVQ2QxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZGQkYvRUQ1MkYwMzBDNUY0MTFFQzhFODBEODg2QzRGOUFFMDIvNkFFOTE4ODhD NUZDMTFFQzkxMjc1NTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsd4wDwQCAAIwCQMHACABDfAsQDANBgkqhkiG9w0BAQsF AAOCAQEAMXdlUAXfqS/OWCN1UOAOz4z0WgDY0MgOJ+HQQ2UW/YwTL/pj6ImsvYcK r5rtP2WSh7fx0Bl5qGLC2CZW8aVV1C35vplXGVvXDiKDrdIBIE2+QR/qoSDk6mxR QX//uu4+SIYIo4WcLBb0Cn7JjCzx86Xws0wDedo5LRBBcpQOBmiCqcbWPyxA9Pw/ ddgomN/AoierO/ieGNAZ2S9TL3NqP525tnjCBhxw+IPH7RqsNSnmgP/ev0He6kqW onx7q9o+lXtdSTETaKOQJlNPlGBTyzc9q1pqx6wx4piNnf4PrFnveBcs2ZNpYD/j MqYUQx8FbLIZNjgs1baJyus6bUqe9g== -----END CERTIFICATE-----Generated at Wed Mar 15 11:53:39 2023 by rpki-client on console-fra.rpki-client.org