$ rpki-client -vvf rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/601B8CF6D54F11EE93ED1E3BC4F9AE02.roa File: 601B8CF6D54F11EE93ED1E3BC4F9AE02.roa (raw, json) Hash identifier: KWFbStFkFf6GQmPcZe90F6cDYULKqJF0gEQglndvgSo= Subject key identifier: 3E:94:E7:03:9E:F3:0E:48:66:75:6D:B6:61:10:A9:E9:7C:EF:F6:82 Certificate issuer: /CN=A918B61E/serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770 Certificate serial: 02 Authority key identifier: CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/601B8CF6D54F11EE93ED1E3BC4F9AE02.roa Signing time: Tue 27 Feb 2024 09:05:39 +0000 ROA not before: Tue 27 Feb 2024 09:05:39 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 133129 IP address blocks: 103.252.14.0/23 maxlen: 24 2001:df6:5000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.crl rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B61E/serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770 Validity Not Before: Feb 27 09:05:39 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65dda5e2-0ec3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8b:8c:be:b7:b0:84:bd:4d:f1:6f:61:04:6a: e2:97:70:67:88:09:35:41:de:ec:d4:4c:13:7e:82: 4f:4a:90:a4:64:43:a8:02:b8:7d:bc:01:f1:dc:8b: bf:7b:fc:25:68:35:47:26:26:ea:75:74:0b:9f:32: 46:5b:92:a1:28:90:9e:3a:cb:bc:2c:60:cc:ed:db: ee:59:83:82:fa:f0:11:d6:80:f0:4d:48:8a:2f:b8: 15:a9:b4:ba:86:c2:f2:b8:3e:a0:03:a6:92:3c:03: 43:02:71:9e:1d:be:ab:6e:82:0f:75:db:07:4f:79: f3:3b:a9:eb:ed:36:42:59:4b:59:b4:7d:43:75:3f: ad:0a:e6:99:b2:ad:c3:07:d2:bb:6c:2a:f8:a2:c7: 57:63:11:a4:b9:fa:9e:2b:a6:15:65:18:c2:d0:72: db:44:cc:5f:14:e3:b3:01:0e:59:65:73:38:23:c0: 7d:8c:3b:95:2d:6e:a4:ce:34:aa:91:33:ed:d4:96: cf:dd:d1:bb:8f:d9:be:9d:5d:37:74:25:1e:66:26: d3:06:38:d7:85:d3:15:55:b1:26:75:df:bb:12:57: 41:0c:7e:41:f8:a5:b6:a5:fe:b5:84:81:4e:6a:83: 1c:39:d6:3f:af:c0:32:d7:7e:76:cd:49:45:45:a8: df:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:94:E7:03:9E:F3:0E:48:66:75:6D:B6:61:10:A9:E9:7C:EF:F6:82 X509v3 Authority Key Identifier: keyid:CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/601B8CF6D54F11EE93ED1E3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.14.0/23 IPv6: 2001:df6:5000::/48 Signature Algorithm: sha256WithRSAEncryption c8:e4:12:51:d8:72:04:a0:61:92:b7:46:f4:e6:5d:de:90:88: 57:55:88:a1:01:df:b9:c5:fa:55:b6:76:32:3d:4a:01:c2:e4: cc:f8:51:84:8f:71:43:37:65:2f:1d:d9:3b:1e:0f:17:d2:24: 7f:7f:a2:d1:8f:86:41:82:fc:89:c4:53:0a:36:12:fc:44:c8: a8:b1:6d:f7:cf:6a:f7:7f:75:86:72:dc:fe:0e:1b:41:c0:4a: 56:4d:44:b3:82:74:dc:85:0e:80:72:f1:4e:90:26:af:f4:87: 70:c5:06:22:27:ec:ed:2a:74:4f:53:cd:6f:6d:27:42:b3:78: c8:ae:db:4c:b5:d1:35:ce:74:80:cc:6c:5c:f5:c6:a0:0d:6f: c6:1e:9f:6c:26:92:2b:c2:1e:60:aa:b9:29:fc:d4:42:15:0e: 1f:c1:fb:84:4f:64:43:7e:61:2d:47:bd:75:94:43:b5:34:72: 3d:e5:0c:b4:d2:07:df:48:db:f0:3a:92:c3:65:aa:5a:54:57: 99:cb:5a:98:49:a6:33:d4:ca:b4:64:76:54:30:0c:b3:d4:be: 5d:ed:75:6c:1f:f6:62:db:30:37:d6:0e:62:1c:d9:ad:50:11: 47:4a:49:96:e2:14:b5:71:92:3b:56:da:45:62:f5:ed:8f:75: 02:21:ba:0d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QjYxRTExMC8GA1UEBRMoQ0Q3Qjg2OTU2QkVEOURENjIxNUJFNDg1RjBDNzE1Qjky MEM5QTc3MDAeFw0yNDAyMjcwOTA1MzlaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZGRhNWUyLTBlYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSi4y+t7CEvU3xb2EEauKXcGeICTVB3uzUTBN+gk9KkKRkQ6gCuH28AfHci797 /CVoNUcmJup1dAufMkZbkqEokJ46y7wsYMzt2+5Zg4L68BHWgPBNSIovuBWptLqG wvK4PqADppI8A0MCcZ4dvqtugg912wdPefM7qevtNkJZS1m0fUN1P60K5pmyrcMH 0rtsKviix1djEaS5+p4rphVlGMLQcttEzF8U47MBDlllczgjwH2MO5UtbqTONKqR M+3Uls/d0buP2b6dXTd0JR5mJtMGONeF0xVVsSZ137sSV0EMfkH4pbal/rWEgU5q gxw51j+vwDLXfnbNSUVFqN/vAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUPpTnA57z DkhmdW22YRCp6Xzv9oIwHwYDVR0jBBgwFoAUzXuGlWvtndYhW+SF8McVuSDJp3Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThCNjFFLzgwN0Y5MjU0RDU0 RTExRUU4Q0M5NjUzMEM0RjlBRTAyL3pYdUdsV3Z0bmRZaFctU0Y4TWNWdVNESnAz QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvelh1R2xXdnRuZFloVy1TRjhNY1Z1U0RKcDNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjYxRS84MDdGOTI1NEQ1NEUxMUVFOENDOTY1MzBDNEY5QUUwMi82MDFCOENGNkQ1 NEYxMUVFOTNFRDFFM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWf8DjAPBAIAAjAJAwcAIAEN9lAAMA0GCSqGSIb3DQEBCwUA A4IBAQDI5BJR2HIEoGGSt0b05l3ekIhXVYihAd+5xfpVtnYyPUoBwuTM+FGEj3FD N2UvHdk7Hg8X0iR/f6LRj4ZBgvyJxFMKNhL8RMiosW33z2r3f3WGctz+DhtBwEpW TUSzgnTchQ6AcvFOkCav9IdwxQYiJ+ztKnRPU81vbSdCs3jIrttMtdE1znSAzGxc 9cagDW/GHp9sJpIrwh5gqrkp/NRCFQ4fwfuET2RDfmEtR711lEO1NHI95Qy00gff SNvwOpLDZapaVFeZy1qYSaYz1Mq0ZHZUMAyz1L5d7XVsH/Zi2zA31g5iHNmtUBFH SkmW4hS1cZI7VtpFYvXtj3UCIboN -----END CERTIFICATE-----Generated at Fri May 31 10:01:50 2024 by rpki-client on console-ams.rpki-client.org