$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/6AE91888C5FC11EC9127557EC4F9AE02.roa File: 6AE91888C5FC11EC9127557EC4F9AE02.roa (raw, json) Hash identifier: H1TbSfb4htfB0LmY4JPuswNoz4LPXkP4zd4P9+5LYFs= Subject key identifier: EA:91:F4:16:59:06:8C:56:A8:6D:B2:FB:AA:2A:AD:B1:5C:39:FD:82 Certificate issuer: /CN=A917FFBF/serialNumber=9CFA869DC306357D7AC3092E4FFFD04CA502775E Certificate serial: 0237 Authority key identifier: 9C:FA:86:9D:C3:06:35:7D:7A:C3:09:2E:4F:FF:D0:4C:A5:02:77:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPqGncMGNX16wwkuT__QTKUCd14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/6AE91888C5FC11EC9127557EC4F9AE02.roa Signing time: Sat 27 Jan 2024 03:25:25 +0000 ROA not before: Sat 27 Jan 2024 03:25:25 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 135386 IP address blocks: 103.177.222.0/23 maxlen: 24 2001:df0:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.crl rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPqGncMGNX16wwkuT__QTKUCd14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 03:43:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFBF/serialNumber=9CFA869DC306357D7AC3092E4FFFD04CA502775E Validity Not Before: Jan 27 03:25:25 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b477a5-8d25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a1:90:e2:66:20:6c:49:b7:5a:43:8c:76:6f: 33:41:ce:01:29:9c:a3:f7:85:3d:58:6a:cf:0e:8e: fc:fe:0a:7e:1e:09:5d:72:c9:e5:e4:80:96:72:16: 7e:ce:3a:36:50:fc:36:00:6c:e4:01:46:dc:b9:df: 11:d8:da:e7:cb:4f:28:aa:bb:ad:f5:89:5d:36:74: 9a:8a:73:1f:bb:55:21:6d:bb:7d:8d:3d:19:91:a5: 32:79:ec:6c:5b:f4:84:e4:93:cb:7a:e4:12:34:25: b0:b7:25:78:98:90:40:c7:dc:12:12:3d:e6:db:05: 5e:ce:d8:30:6f:05:64:f3:51:a1:34:36:c7:ea:a0: 67:62:c5:d8:a0:c2:78:0b:bc:b4:a0:c5:a1:7d:5d: 31:6e:62:b9:d9:fc:57:d2:19:d4:32:e1:df:09:e1: 26:aa:6f:6f:90:63:0e:89:a1:be:74:71:33:55:78: de:6b:15:85:76:e6:c5:d9:93:d7:7c:b5:77:c9:f1: 4f:bb:fb:64:4f:da:4a:a2:c8:85:a8:2c:f0:b9:64: 01:0a:05:4e:5a:9c:60:05:04:e4:b7:22:6b:4d:a1: e1:50:d6:61:e7:34:ed:65:4e:e5:de:3c:72:f2:89: e5:25:73:73:8f:0d:0f:eb:8a:62:0f:25:bc:e6:f1: 8b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:91:F4:16:59:06:8C:56:A8:6D:B2:FB:AA:2A:AD:B1:5C:39:FD:82 X509v3 Authority Key Identifier: keyid:9C:FA:86:9D:C3:06:35:7D:7A:C3:09:2E:4F:FF:D0:4C:A5:02:77:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPqGncMGNX16wwkuT__QTKUCd14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/6AE91888C5FC11EC9127557EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.222.0/23 IPv6: 2001:df0:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 1a:71:16:1e:a5:62:55:56:2c:2a:68:0a:8e:46:2d:d8:ae:66: e5:f3:94:eb:27:df:aa:d8:04:92:a0:25:db:ca:74:b7:b7:69: 96:55:4c:3b:18:66:e4:4d:96:ea:95:d9:98:fe:f1:b4:16:9b: b3:a1:b4:f0:bb:cd:2b:25:47:e3:0b:50:60:ef:75:cd:75:2b: c1:57:a5:ff:16:55:12:f7:be:45:81:e9:4a:ce:58:95:b4:e3: a6:c2:fb:d5:56:1b:ed:29:5e:98:aa:6a:7b:fc:94:eb:60:ec: ab:ac:9a:89:30:c2:9c:e9:3c:8c:f2:96:bf:2c:46:b6:8f:3d: 89:7c:52:55:8f:10:7a:c1:12:59:31:75:80:09:09:76:20:58: 91:a2:eb:4f:74:3a:ed:b1:d6:cb:61:f0:9b:86:dd:10:b2:83: 3c:b8:ae:0a:5c:0f:60:bb:2d:56:a1:f9:2f:89:2a:f4:e6:91: f0:37:ef:95:8f:1c:82:46:56:fe:a9:fb:8a:6d:48:35:c8:4d: b2:3f:4b:06:91:00:85:69:38:31:06:e1:09:77:7f:6f:be:c9: 9a:4b:79:be:ef:ba:c5:71:c0:75:7b:1f:ab:94:ab:e8:89:d9: 0e:6f:4e:97:69:51:60:86:cd:58:e8:0a:8a:74:97:da:e5:9e: ca:cc:1c:41 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZGQkYxMTAvBgNVBAUTKDlDRkE4NjlEQzMwNjM1N0Q3QUMzMDkyRTRGRkZEMDRD QTUwMjc3NUUwHhcNMjQwMTI3MDMyNTI1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI0NzdhNS04ZDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaGQ4mYgbEm3WkOMdm8zQc4BKZyj94U9WGrPDo78/gp+Hgldcsnl5ICWchZ+ zjo2UPw2AGzkAUbcud8R2Nrny08oqrut9YldNnSainMfu1Uhbbt9jT0ZkaUyeexs W/SE5JPLeuQSNCWwtyV4mJBAx9wSEj3m2wVeztgwbwVk81GhNDbH6qBnYsXYoMJ4 C7y0oMWhfV0xbmK52fxX0hnUMuHfCeEmqm9vkGMOiaG+dHEzVXjeaxWFdubF2ZPX fLV3yfFPu/tkT9pKosiFqCzwuWQBCgVOWpxgBQTktyJrTaHhUNZh5zTtZU7l3jxy 8onlJXNzjw0P64piDyW85vGLMQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOqR9BZZ BoxWqG2y+6oqrbFcOf2CMB8GA1UdIwQYMBaAFJz6hp3DBjV9esMJLk//0EylAnde MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCRi9FRDUyRjAzMEM1 RjQxMUVDOEU4MEQ4ODZDNEY5QUUwMi9uUHFHbmNNR05YMTZ3d2t1VF9fUVRLVUNk MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25QcUduY01HTlgxNnd3a3VUX19RVEtVQ2QxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZGQkYvRUQ1MkYwMzBDNUY0MTFFQzhFODBEODg2QzRGOUFFMDIvNkFFOTE4ODhD NUZDMTFFQzkxMjc1NTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsd4wDwQCAAIwCQMHACABDfAsQDANBgkqhkiG9w0BAQsF AAOCAQEAGnEWHqViVVYsKmgKjkYt2K5m5fOU6yffqtgEkqAl28p0t7dpllVMOxhm 5E2W6pXZmP7xtBabs6G08LvNKyVH4wtQYO91zXUrwVel/xZVEve+RYHpSs5YlbTj psL71VYb7SlemKpqe/yU62Dsq6yaiTDCnOk8jPKWvyxGto89iXxSVY8QesESWTF1 gAkJdiBYkaLrT3Q67bHWy2Hwm4bdELKDPLiuClwPYLstVqH5L4kq9OaR8DfvlY8c gkZW/qn7im1INchNsj9LBpEAhWk4MQbhCXd/b77Jmkt5vu+6xXHAdXsfq5Sr6InZ Dm9Ol2lRYIbNWOgKinSX2uWeyswcQQ== -----END CERTIFICATE-----Generated at Thu Apr 25 06:17:19 2024 by rpki-client on console-ams.rpki-client.org