$ rpki-client -vvf rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/60820A4271AC11EDAA89DE61C4F9AE02.roa File: 60820A4271AC11EDAA89DE61C4F9AE02.roa (raw, json) Hash identifier: d6lR5DCUUt64f3jfT2Upe1NvnvCxTNK9tDR0OuYVOnY= Subject key identifier: 7A:FC:2F:45:06:C5:DB:F8:20:5E:5F:14:E6:D6:86:72:3D:F4:E4:16 Certificate issuer: /CN=A91886E3/serialNumber=BBABD3F16E100FD9C95D474884E4DA9CB6FA768D Certificate serial: 0176 Authority key identifier: BB:AB:D3:F1:6E:10:0F:D9:C9:5D:47:48:84:E4:DA:9C:B6:FA:76:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/60820A4271AC11EDAA89DE61C4F9AE02.roa Signing time: Thu 07 Nov 2024 02:15:56 +0000 ROA not before: Thu 07 Nov 2024 02:15:56 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133752 IP address blocks: 103.21.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.crl rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91886E3/serialNumber=BBABD3F16E100FD9C95D474884E4DA9CB6FA768D Validity Not Before: Nov 7 02:15:56 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672c22db-38de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:00:74:65:e6:1f:33:65:b2:d0:d6:ec:e2:8c: 62:a1:f5:84:fe:1b:b2:f4:7e:93:e6:9a:80:f3:ec: cd:db:0a:8e:83:5b:c1:7e:b3:61:e9:96:d7:3f:17: cb:f3:85:b0:09:68:7e:ee:97:ff:8e:c7:4d:9a:59: a8:08:dd:89:bf:2c:5a:0f:75:de:73:51:79:55:ba: c6:21:00:6b:6b:4b:c3:44:41:17:e2:9d:b4:65:bf: 95:5a:10:25:bb:fa:86:de:63:ff:39:70:2d:05:7a: ba:ec:c1:92:63:24:99:e7:0d:7f:97:43:e1:79:5b: f7:bd:ca:98:d8:bd:34:d6:ea:9d:4f:f7:72:9e:2e: f6:ec:7a:72:ee:8d:e1:1f:23:f7:ca:23:9d:13:cb: 30:de:c6:54:80:2e:7a:80:0e:f9:a1:d9:75:e0:19: 9d:86:1f:b1:26:e7:b8:5a:20:6e:a9:b1:49:7f:24: 0a:51:d5:47:3c:92:c7:3e:8f:2f:cf:81:c8:e0:e6: 81:fb:76:c5:3e:e8:51:c4:3f:a9:a2:ac:5e:db:83: da:da:f6:0a:45:90:e0:1f:b9:55:6e:dd:55:29:07: b7:0e:29:b2:63:27:45:b5:b3:e7:82:61:5f:70:3b: 09:3c:6c:a8:ff:c5:e5:0e:d0:36:d2:70:81:20:e1: 10:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:FC:2F:45:06:C5:DB:F8:20:5E:5F:14:E6:D6:86:72:3D:F4:E4:16 X509v3 Authority Key Identifier: keyid:BB:AB:D3:F1:6E:10:0F:D9:C9:5D:47:48:84:E4:DA:9C:B6:FA:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/60820A4271AC11EDAA89DE61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.220.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:d1:67:8c:a1:40:1b:9a:b8:e2:ab:2b:41:65:8e:3c:8a:4b: c3:02:21:fa:e1:56:74:4c:6c:d1:43:06:31:45:56:d7:aa:03: 0b:fd:6a:02:29:00:9d:b2:60:52:b0:6b:a2:e7:87:73:c8:ce: 2f:76:7c:bc:14:01:8d:92:82:b3:81:04:c8:1a:f4:90:be:14: ca:05:31:e4:ce:c3:ef:65:af:cd:10:53:82:58:83:2f:df:cd: 86:fc:1c:c4:cd:80:7f:37:f2:99:9d:95:ee:2e:6c:f7:0f:59: 4f:48:8f:9f:ab:1e:11:f5:f4:c4:32:0e:88:77:cb:50:a5:1d: 90:45:3f:d6:cf:99:d8:ec:47:48:0d:bf:7a:77:f9:40:c5:3f: 43:bb:21:c9:d2:a0:33:ad:43:16:1a:e9:b6:bd:d8:2d:96:c3: 45:d6:de:a7:94:0d:a6:d4:8c:b4:ae:49:98:d3:3f:5b:2a:12: 8c:99:78:1d:96:dc:0e:d3:bc:d1:de:99:fb:5d:49:a8:8a:29: 8c:44:52:a4:35:e6:11:4d:41:a6:44:da:7e:2f:e9:3c:b8:2b: ad:e9:3f:1d:b8:c9:66:d3:45:bb:df:1a:d6:b0:42:77:61:52: d2:47:37:54:12:b7:d4:e1:4a:20:36:47:19:4a:bf:aa:d9:2d: 2a:e3:a8:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg2RTMxMTAvBgNVBAUTKEJCQUJEM0YxNkUxMDBGRDlDOTVENDc0ODg0RTREQTlD QjZGQTc2OEQwHhcNMjQxMTA3MDIxNTU2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjMjJkYi0zOGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAB0ZeYfM2Wy0Nbs4oxiofWE/huy9H6T5pqA8+zN2wqOg1vBfrNh6ZbXPxfL 84WwCWh+7pf/jsdNmlmoCN2JvyxaD3Xec1F5VbrGIQBra0vDREEX4p20Zb+VWhAl u/qG3mP/OXAtBXq67MGSYySZ5w1/l0PheVv3vcqY2L001uqdT/dyni727Hpy7o3h HyP3yiOdE8sw3sZUgC56gA75odl14Bmdhh+xJue4WiBuqbFJfyQKUdVHPJLHPo8v z4HI4OaB+3bFPuhRxD+poqxe24Pa2vYKRZDgH7lVbt1VKQe3DimyYydFtbPngmFf cDsJPGyo/8XlDtA20nCBIOEQ5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHr8L0UG xdv4IF5fFObWhnI99OQWMB8GA1UdIwQYMBaAFLur0/FuEA/ZyV1HSITk2py2+naN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODZFMy8xMjQ3Qjg2MDY2 OTIxMUVEODJCRTcxMzNDNEY5QUUwMi91NnZUOFc0UUQ5bkpYVWRJaE9UYW5MYjZk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U2dlQ4VzRRRDluSlhVZEloT1RhbkxiNmRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg2RTMvMTI0N0I4NjA2NjkyMTFFRDgyQkU3MTMzQzRGOUFFMDIvNjA4MjBBNDI3 MUFDMTFFREFBODlERTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFdwwDQYJKoZIhvcNAQELBQADggEBAG/RZ4yhQBuauOKr K0FljjyKS8MCIfrhVnRMbNFDBjFFVteqAwv9agIpAJ2yYFKwa6Lnh3PIzi92fLwU AY2SgrOBBMga9JC+FMoFMeTOw+9lr80QU4JYgy/fzYb8HMTNgH838pmdle4ubPcP WU9Ij5+rHhH19MQyDoh3y1ClHZBFP9bPmdjsR0gNv3p3+UDFP0O7IcnSoDOtQxYa 6ba92C2Ww0XW3qeUDabUjLSuSZjTP1sqEoyZeB2W3A7TvNHemftdSaiKKYxEUqQ1 5hFNQaZE2n4v6Ty4K63pPx24yWbTRbvfGtawQndhUtJHN1QSt9ThSiA2RxlKv6rZ LSrjqD8= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:00 2024 by rpki-client on console-fra.rpki-client.org