$ rpki-client -vvf rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/6B7E8FC670DE11EC8B944928C4F9AE02.roa File: 6B7E8FC670DE11EC8B944928C4F9AE02.roa (raw, json) Hash identifier: CBDu90GR3xsviOZ0N0R99O9OMgbT6z9iLxP41yOkSlU= Subject key identifier: 98:4E:B3:C5:78:22:B0:8E:C9:AF:C9:00:95:ED:56:FA:8D:1B:59:B4 Certificate issuer: /CN=A9183DB7/serialNumber=E518E94815C46D7D8E6FEF4EBC3D18DF0E21F836 Certificate serial: 0CA1 Authority key identifier: E5:18:E9:48:15:C4:6D:7D:8E:6F:EF:4E:BC:3D:18:DF:0E:21:F8:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/6B7E8FC670DE11EC8B944928C4F9AE02.roa Signing time: Sat 02 Sep 2023 18:26:08 +0000 ROA not before: Sat 02 Sep 2023 18:26:08 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139470 IP address blocks: 103.141.214.0/24 maxlen: 24 103.141.215.0/24 maxlen: 24 2405:22c0::/32 maxlen: 32 2405:22c0::/36 maxlen: 36 2405:22c0:1000::/36 maxlen: 36 2405:22c0:2000::/36 maxlen: 36 2405:22c0:3000::/36 maxlen: 36 2405:22c0:4000::/36 maxlen: 36 2405:22c0:5000::/36 maxlen: 36 2405:22c0:6000::/36 maxlen: 36 2405:22c0:7000::/36 maxlen: 36 2405:22c0:8000::/36 maxlen: 36 2405:22c0:9000::/36 maxlen: 36 2405:22c0:a000::/36 maxlen: 36 2405:22c0:b000::/36 maxlen: 36 2405:22c0:c000::/36 maxlen: 36 2405:22c0:d000::/36 maxlen: 36 2405:22c0:e000::/36 maxlen: 36 2405:22c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.crl rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3233 (0xca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183DB7/serialNumber=E518E94815C46D7D8E6FEF4EBC3D18DF0E21F836 Validity Not Before: Sep 2 18:26:08 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f37e40-9c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cb:52:4f:fc:c8:9d:37:6b:67:e7:f3:5f:a9: 35:eb:4f:33:2c:53:3f:f9:6d:65:b2:01:d1:27:86: 64:bf:c4:39:25:c9:e1:a4:3c:b8:b2:9b:d4:b3:84: a2:16:fd:5f:76:39:76:e6:d3:76:c7:15:f2:7b:26: 8c:91:18:5d:7a:08:b9:7f:5e:ad:8c:ba:86:e5:70: d7:2d:ee:08:25:6e:d6:d3:63:b3:87:be:ba:0f:fc: 19:e9:ab:46:42:57:7f:30:77:66:08:d1:26:49:49: 16:8e:cc:cc:a7:29:27:13:61:b2:c6:34:b5:ec:8d: 3e:f4:a7:5d:37:3b:c1:4b:0c:fb:e2:f1:ee:0b:ec: d6:b8:93:8a:79:a4:14:1b:18:d5:f7:e5:79:91:46: 63:cb:3f:76:89:2f:4a:43:10:52:d7:79:16:99:74: 54:69:ae:02:16:4b:b2:0c:b1:4f:c1:cb:26:4a:16: b6:72:53:1c:b6:1b:cc:2f:65:4f:8d:3a:e0:97:a6: 18:c2:70:48:0f:b5:f7:09:d4:4e:2c:3c:b7:0e:97: 55:2a:03:a5:fa:d7:8c:a4:39:e0:92:f3:ff:4f:c9: 74:cf:bf:0c:17:09:3d:64:f4:19:64:b4:4c:41:6c: f1:65:7d:54:f4:5b:d7:54:db:00:fa:b7:bb:98:c9: 76:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4E:B3:C5:78:22:B0:8E:C9:AF:C9:00:95:ED:56:FA:8D:1B:59:B4 X509v3 Authority Key Identifier: keyid:E5:18:E9:48:15:C4:6D:7D:8E:6F:EF:4E:BC:3D:18:DF:0E:21:F8:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/6B7E8FC670DE11EC8B944928C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.214.0/23 IPv6: 2405:22c0::/32 Signature Algorithm: sha256WithRSAEncryption 3c:62:03:9d:cc:cb:6f:5b:dd:62:0c:ad:64:7c:d7:ae:6d:8b: da:15:1f:32:99:b5:65:81:8f:c7:7f:52:42:e9:0f:b6:1c:7d: f0:0b:a6:55:3f:b3:7e:3b:cc:41:95:69:66:7e:42:84:cb:99: 3f:f4:a1:c7:90:65:07:f9:02:1b:62:ba:d4:b2:0a:64:fe:71: 0c:e9:d2:51:67:66:01:b8:02:13:6e:04:c8:e3:c9:c6:36:95: 83:2a:ac:bc:82:3e:95:d7:2a:88:ee:ec:69:c2:53:c7:d1:00: e1:a3:f6:57:71:af:c3:bd:87:74:9a:34:af:37:d3:9f:ab:ec: 7d:ad:a0:1e:77:d6:b7:96:3d:35:ad:da:1c:c2:81:ac:58:a4: 13:1c:92:01:82:be:17:7f:43:5e:44:7b:5e:bc:04:b0:b3:63: 12:22:50:1e:8c:60:b2:80:82:0a:9b:46:b3:2d:01:6d:5c:68: 18:b2:a4:3e:19:bd:52:a1:47:45:96:2d:bd:bf:ab:82:95:de: ea:09:74:9a:c5:38:f9:46:e7:9c:cd:9e:df:55:8b:21:8b:bb: 79:7f:63:20:95:f9:a1:15:9d:c5:ce:dc:66:7e:1b:13:d3:50: 87:2f:87:cc:59:7b:43:34:3a:c8:52:05:80:c0:bc:dc:87:88: 3f:10:42:c1 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNEQjcxMTAvBgNVBAUTKEU1MThFOTQ4MTVDNDZEN0Q4RTZGRUY0RUJDM0QxOERG MEUyMUY4MzYwHhcNMjMwOTAyMTgyNjA4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzN2U0MC05YzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3stST/zInTdrZ+fzX6k1608zLFM/+W1lsgHRJ4Zkv8Q5JcnhpDy4spvUs4Si Fv1fdjl25tN2xxXyeyaMkRhdegi5f16tjLqG5XDXLe4IJW7W02Ozh766D/wZ6atG Qld/MHdmCNEmSUkWjszMpyknE2GyxjS17I0+9KddNzvBSwz74vHuC+zWuJOKeaQU GxjV9+V5kUZjyz92iS9KQxBS13kWmXRUaa4CFkuyDLFPwcsmSha2clMcthvML2VP jTrgl6YYwnBID7X3CdROLDy3DpdVKgOl+teMpDngkvP/T8l0z78MFwk9ZPQZZLRM QWzxZX1U9FvXVNsA+re7mMl2xwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJhOs8V4 IrCOya/JAJXtVvqNG1m0MB8GA1UdIwQYMBaAFOUY6UgVxG19jm/vTrw9GN8OIfg2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0RCNy8wRjM3NTk5RUI1 MjExMUU5OEQ4QkFDNTJDNEY5QUUwMi81UmpwU0JYRWJYMk9iLTlPdkQwWTN3NGgt RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVSanBTQlhFYlgyT2ItOU92RDBZM3c0aC1EWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODNEQjcvMEYzNzU5OUVCNTIxMTFFOThEOEJBQzUyQzRGOUFFMDIvNkI3RThGQzY3 MERFMTFFQzhCOTQ0OTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjdYwDQQCAAIwBwMFACQFIsAwDQYJKoZIhvcNAQELBQAD ggEBADxiA53My29b3WIMrWR8165ti9oVHzKZtWWBj8d/UkLpD7YcffALplU/s347 zEGVaWZ+QoTLmT/0oceQZQf5AhtiutSyCmT+cQzp0lFnZgG4AhNuBMjjycY2lYMq rLyCPpXXKoju7GnCU8fRAOGj9ldxr8O9h3SaNK8305+r7H2toB531reWPTWt2hzC gaxYpBMckgGCvhd/Q15Ee168BLCzYxIiUB6MYLKAggqbRrMtAW1caBiypD4ZvVKh R0WWLb2/q4KV3uoJdJrFOPlG55zNnt9ViyGLu3l/YyCV+aEVncXO3GZ+GxPTUIcv h8xZe0M0OshSBYDAvNyHiD8QQsE= -----END CERTIFICATE-----Generated at Thu May 16 20:25:48 2024 by rpki-client on console-ams.rpki-client.org