$ rpki-client -vvf rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/6B7E8FC670DE11EC8B944928C4F9AE02.roa File: 6B7E8FC670DE11EC8B944928C4F9AE02.roa (raw, json) Hash identifier: 6b2tMOXqi0MLk/Hu4xH6AhhU3ZFcsYoMzDIzjHh7G84= Subject key identifier: 4E:E2:BD:B3:27:32:91:BA:D0:8E:9A:31:1D:6B:47:29:62:93:6F:45 Certificate issuer: /CN=A9183DB7/serialNumber=E518E94815C46D7D8E6FEF4EBC3D18DF0E21F836 Certificate serial: 0D71 Authority key identifier: E5:18:E9:48:15:C4:6D:7D:8E:6F:EF:4E:BC:3D:18:DF:0E:21:F8:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/6B7E8FC670DE11EC8B944928C4F9AE02.roa Signing time: Wed 02 Oct 2024 18:26:31 +0000 ROA not before: Wed 02 Oct 2024 18:26:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139470 IP address blocks: 103.141.214.0/24 maxlen: 24 103.141.215.0/24 maxlen: 24 2405:22c0::/32 maxlen: 32 2405:22c0::/36 maxlen: 36 2405:22c0:1000::/36 maxlen: 36 2405:22c0:2000::/36 maxlen: 36 2405:22c0:3000::/36 maxlen: 36 2405:22c0:4000::/36 maxlen: 36 2405:22c0:5000::/36 maxlen: 36 2405:22c0:6000::/36 maxlen: 36 2405:22c0:7000::/36 maxlen: 36 2405:22c0:8000::/36 maxlen: 36 2405:22c0:9000::/36 maxlen: 36 2405:22c0:a000::/36 maxlen: 36 2405:22c0:b000::/36 maxlen: 36 2405:22c0:c000::/36 maxlen: 36 2405:22c0:d000::/36 maxlen: 36 2405:22c0:e000::/36 maxlen: 36 2405:22c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.crl rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3441 (0xd71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183DB7/serialNumber=E518E94815C46D7D8E6FEF4EBC3D18DF0E21F836 Validity Not Before: Oct 2 18:26:31 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fd9057-8f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:11:3f:94:e9:eb:d8:d6:b3:a0:97:fe:11:c3: e2:c0:cf:af:67:a8:75:4d:9b:a2:e8:0b:e3:7a:bc: 3e:da:ca:da:7e:05:a8:d7:e1:5d:0a:d9:15:47:b3: bb:a2:fa:c8:f6:7c:19:27:d4:df:2e:20:30:94:fb: 3a:58:11:51:bd:0b:96:9a:03:7c:b6:bf:90:33:a1: c6:37:2b:3d:d0:c4:56:4b:9c:cf:51:b1:4c:cb:4b: 6a:f2:d4:d2:21:cf:26:f7:27:77:46:62:8f:97:f0: 83:2b:c7:21:37:29:dc:e6:03:c0:a0:ca:b7:54:84: 31:6b:53:45:18:37:e4:07:0b:01:6e:ca:87:95:06: 70:89:34:9b:56:3c:4f:36:b9:25:7f:44:f4:65:91: 74:f2:63:5d:e9:01:37:3f:d7:06:01:4f:13:ca:51: 54:64:0f:19:4d:93:c6:c7:ed:4a:25:8e:7f:7c:b8: 14:f8:a7:e9:3a:fb:1a:6a:cc:58:ad:e4:70:bf:b3: b3:eb:9a:62:a5:01:94:d7:4b:11:d2:7e:70:fe:48: e2:79:8b:93:46:de:59:72:b3:5a:05:64:52:c9:9c: 80:c6:1d:70:b9:5d:a8:b4:b8:fa:fe:89:43:61:29: 90:85:1c:31:74:c9:df:00:f4:11:cc:12:f5:58:7f: 12:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E2:BD:B3:27:32:91:BA:D0:8E:9A:31:1D:6B:47:29:62:93:6F:45 X509v3 Authority Key Identifier: keyid:E5:18:E9:48:15:C4:6D:7D:8E:6F:EF:4E:BC:3D:18:DF:0E:21:F8:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/6B7E8FC670DE11EC8B944928C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.214.0/23 IPv6: 2405:22c0::/32 Signature Algorithm: sha256WithRSAEncryption 4f:2c:88:97:31:55:db:39:14:9b:c8:a2:f3:ac:c7:dd:63:2a: e3:68:c7:01:6f:d5:a3:c9:b3:99:9d:13:71:c8:70:4b:71:45: c0:0f:74:62:d2:f3:fc:07:0c:46:b1:19:12:64:e4:54:96:01: 38:19:f3:2b:62:8f:61:d1:e9:2f:53:4a:24:9b:3c:8a:50:db: e5:18:f1:08:03:68:3c:0b:64:0b:d9:22:a7:e4:d2:dc:d4:87: 4f:31:4f:bc:99:d1:93:4f:e2:5e:55:b4:83:28:83:bc:c4:ed: 8a:22:83:88:77:f1:29:f0:07:e0:f6:45:92:a8:85:5e:45:4c: ae:24:78:e1:1b:04:df:b6:c1:16:70:59:26:26:bb:05:92:d9: 44:ef:07:4a:6b:01:9e:b7:3a:fb:5d:9a:d5:3d:c5:e0:95:d5: 86:df:0d:78:9a:98:a3:e9:e7:af:52:6c:d4:96:cf:cd:b9:57: d2:f1:13:9f:d5:bb:63:a1:7e:1e:be:b5:2c:78:51:a2:60:9c: 72:50:52:9b:0e:37:6e:9c:66:14:95:8d:8c:3d:83:bf:1f:5d: b5:42:c5:26:06:52:cb:2f:3e:55:3f:db:4a:dd:27:e1:86:a5: 56:a7:74:d2:18:ee:1a:5c:83:14:e7:ee:53:b9:c6:ce:59:9b: 60:0a:53:e5 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNEQjcxMTAvBgNVBAUTKEU1MThFOTQ4MTVDNDZEN0Q4RTZGRUY0RUJDM0QxOERG MEUyMUY4MzYwHhcNMjQxMDAyMTgyNjMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkOTA1Ny04ZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRE/lOnr2NazoJf+EcPiwM+vZ6h1TZui6Avjerw+2srafgWo1+FdCtkVR7O7 ovrI9nwZJ9TfLiAwlPs6WBFRvQuWmgN8tr+QM6HGNys90MRWS5zPUbFMy0tq8tTS Ic8m9yd3RmKPl/CDK8chNync5gPAoMq3VIQxa1NFGDfkBwsBbsqHlQZwiTSbVjxP Nrklf0T0ZZF08mNd6QE3P9cGAU8TylFUZA8ZTZPGx+1KJY5/fLgU+KfpOvsaasxY reRwv7Oz65pipQGU10sR0n5w/kjieYuTRt5ZcrNaBWRSyZyAxh1wuV2otLj6/olD YSmQhRwxdMnfAPQRzBL1WH8SRwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFE7ivbMn MpG60I6aMR1rRylik29FMB8GA1UdIwQYMBaAFOUY6UgVxG19jm/vTrw9GN8OIfg2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0RCNy8wRjM3NTk5RUI1 MjExMUU5OEQ4QkFDNTJDNEY5QUUwMi81UmpwU0JYRWJYMk9iLTlPdkQwWTN3NGgt RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVSanBTQlhFYlgyT2ItOU92RDBZM3c0aC1EWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODNEQjcvMEYzNzU5OUVCNTIxMTFFOThEOEJBQzUyQzRGOUFFMDIvNkI3RThGQzY3 MERFMTFFQzhCOTQ0OTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjdYwDQQCAAIwBwMFACQFIsAwDQYJKoZIhvcNAQELBQAD ggEBAE8siJcxVds5FJvIovOsx91jKuNoxwFv1aPJs5mdE3HIcEtxRcAPdGLS8/wH DEaxGRJk5FSWATgZ8ytij2HR6S9TSiSbPIpQ2+UY8QgDaDwLZAvZIqfk0tzUh08x T7yZ0ZNP4l5VtIMog7zE7Yoig4h38SnwB+D2RZKohV5FTK4keOEbBN+2wRZwWSYm uwWS2UTvB0prAZ63OvtdmtU9xeCV1YbfDXiamKPp569SbNSWz825V9LxE5/Vu2Oh fh6+tSx4UaJgnHJQUpsON26cZhSVjYw9g78fXbVCxSYGUssvPlU/20rdJ+GGpVan dNIY7hpcgxTn7lO5xs5Zm2AKU+U= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org