$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6C1DC926C3E111E9A0172583C4F9AE02.roa File: 6C1DC926C3E111E9A0172583C4F9AE02.roa (raw, json) Hash identifier: zzhtxNfkA/ZreXC5G3egKzrMIBSusSzJhNbC1DjTrKI= Subject key identifier: BA:28:1A:E0:3A:5D:7C:3B:E8:AD:AF:49:6D:37:EA:E1:10:AD:7D:7B Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3414 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6C1DC926C3E111E9A0172583C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:02:39 +0000 ROA not before: Tue 30 Jul 2024 16:02:39 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24211 IP address blocks: 103.49.220.0/22 maxlen: 22 103.49.220.0/23 maxlen: 23 103.49.222.0/23 maxlen: 23 203.190.240.0/21 maxlen: 21 203.190.244.0/23 maxlen: 23 203.190.246.0/23 maxlen: 23 2402:a000::/32 maxlen: 32 2402:a000::/48 maxlen: 48 2402:a000:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13332 (0x3414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jul 30 16:02:39 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66a90e9f-2c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a0:79:37:ea:81:82:cb:0c:5a:e5:b1:17:1a: 90:36:02:84:f0:fa:0b:b9:0e:a1:23:fc:1b:47:6f: f2:b7:5d:4b:aa:46:da:74:22:33:9a:77:c1:83:b2: 5a:5b:a9:9d:7c:a8:26:dd:d9:ac:6c:df:ed:bc:dd: 65:69:5e:7b:3a:e2:f1:ee:22:1c:f7:22:d9:a8:73: 2c:13:08:31:73:57:b8:9f:0c:ff:d7:02:f7:7d:20: 0a:25:07:1b:49:66:2d:58:7d:b8:05:58:d0:42:f9: a8:8a:60:db:0d:c6:a1:db:31:db:15:be:18:0b:07: 14:2e:74:03:93:a7:cb:16:a8:e2:4c:cf:23:5a:7c: 9a:78:03:f4:5b:02:ce:53:50:ab:8e:d4:53:51:00: 64:c7:06:da:cd:c8:8c:3f:1f:cd:1a:55:c5:b9:16: 1d:a8:5f:6f:82:55:08:bf:53:ab:7f:66:c2:90:b1: e8:09:48:67:bd:1d:a4:7c:9a:d8:ac:12:71:d4:e7: eb:6c:1c:98:ae:3e:a6:a7:54:a7:43:90:b9:d2:5d: 34:1a:8a:32:52:fe:0b:b4:09:87:ae:62:66:a4:6d: 72:86:d6:92:5e:27:0a:85:22:95:67:2a:0b:b7:5b: 98:e8:50:b5:94:43:4f:1b:68:52:8e:ac:c9:2f:50: 53:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:28:1A:E0:3A:5D:7C:3B:E8:AD:AF:49:6D:37:EA:E1:10:AD:7D:7B X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6C1DC926C3E111E9A0172583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.220.0/22 203.190.240.0/21 IPv6: 2402:a000::/32 Signature Algorithm: sha256WithRSAEncryption 02:79:f9:42:24:e9:5f:81:af:ae:7f:85:9d:6e:b2:61:33:c1: 9e:0e:51:e9:15:dd:4d:93:53:a5:9f:5d:32:86:95:f8:2c:fe: 2e:eb:02:72:f5:a1:97:3c:0d:28:94:59:45:dc:5d:c1:06:1b: 37:d4:1d:b1:99:4c:4c:38:1a:09:13:b2:e6:52:2e:d3:0d:57: d5:4a:e1:66:52:e4:46:a6:5b:fd:40:2d:55:14:f4:7a:83:46: 88:8f:19:f0:c2:3c:da:bf:e0:9c:7a:33:2c:72:dd:c1:62:c2: 33:0d:15:15:2c:1d:11:5d:3b:03:ed:73:44:6c:06:87:09:3c: 8e:fd:47:b0:63:00:1d:5a:ce:d2:ff:6c:2c:10:b6:ef:3e:44: 35:c2:60:9b:62:a5:f1:e4:fd:08:a6:26:7e:74:33:4b:85:ad: 37:13:77:11:23:c2:2a:84:8a:e0:00:86:a9:ce:08:80:d6:c7: f3:6e:cf:64:0b:99:48:b9:e7:b5:3f:c0:fa:d6:a3:73:9d:68: 93:0c:7e:b2:eb:f1:a4:41:17:92:5b:33:49:03:6b:52:a7:75: a0:fd:33:0d:3d:55:34:f6:4b:bb:a0:cc:ba:a5:e3:87:28:15: 97:ab:e3:6b:94:54:45:a3:9d:b5:50:24:11:71:8f:67:2c:de: 93:6b:d1:44 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwNzMwMTYwMjM5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGU5Zi0yYzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKB5N+qBgssMWuWxFxqQNgKE8PoLuQ6hI/wbR2/yt11LqkbadCIzmnfBg7Ja W6mdfKgm3dmsbN/tvN1laV57OuLx7iIc9yLZqHMsEwgxc1e4nwz/1wL3fSAKJQcb SWYtWH24BVjQQvmoimDbDcah2zHbFb4YCwcULnQDk6fLFqjiTM8jWnyaeAP0WwLO U1CrjtRTUQBkxwbazciMPx/NGlXFuRYdqF9vglUIv1Orf2bCkLHoCUhnvR2kfJrY rBJx1OfrbByYrj6mp1SnQ5C50l00GooyUv4LtAmHrmJmpG1yhtaSXicKhSKVZyoL t1uY6FC1lENPG2hSjqzJL1BTiQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLooGuA6 XXw76K2vSW036uEQrX17MB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNkMxREM5MjZD M0UxMTFFOUEwMTcyNTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnMdwDBAPLvvAwDQQCAAIwBwMFACQCoAAwDQYJKoZIhvcN AQELBQADggEBAAJ5+UIk6V+Br65/hZ1usmEzwZ4OUekV3U2TU6WfXTKGlfgs/i7r AnL1oZc8DSiUWUXcXcEGGzfUHbGZTEw4GgkTsuZSLtMNV9VK4WZS5EamW/1ALVUU 9HqDRoiPGfDCPNq/4Jx6Myxy3cFiwjMNFRUsHRFdOwPtc0RsBocJPI79R7BjAB1a ztL/bCwQtu8+RDXCYJtipfHk/QimJn50M0uFrTcTdxEjwiqEiuAAhqnOCIDWx/Nu z2QLmUi557U/wPrWo3OdaJMMfrLr8aRBF5JbM0kDa1KndaD9Mw09VTT2S7ugzLql 44coFZer42uUVEWjnbVQJBFxj2cs3pNr0UQ= -----END CERTIFICATE-----Generated at Fri Nov 22 02:10:21 2024 by rpki-client on console-fra.rpki-client.org