$ rpki-client -vvf rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/6C0C85D0A43011ECA230771BC4F9AE02.roa File: 6C0C85D0A43011ECA230771BC4F9AE02.roa (raw, json) Hash identifier: dUee/Bbms779/aJc/DgZhfMMYOVtsmQDkN3x2T2FOz0= Subject key identifier: 15:D8:8F:31:6B:44:6D:46:B5:3F:B5:F5:77:09:0F:15:40:9E:9F:8D Certificate issuer: /CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Certificate serial: 340D Authority key identifier: EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/6C0C85D0A43011ECA230771BC4F9AE02.roa Signing time: Tue 02 Apr 2024 04:38:58 +0000 ROA not before: Tue 02 Apr 2024 04:38:58 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 58470 IP address blocks: 103.65.248.0/23 maxlen: 24 119.160.62.0/24 maxlen: 24 119.160.63.0/24 maxlen: 24 119.160.90.0/24 maxlen: 24 119.160.105.0/24 maxlen: 24 119.160.107.0/24 maxlen: 24 119.160.109.0/24 maxlen: 24 119.160.122.0/24 maxlen: 24 2404:3100:a::/48 maxlen: 48 2404:3100:b::/48 maxlen: 48 2404:3100:c::/48 maxlen: 48 2404:3100:d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 14:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13325 (0x340d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Validity Not Before: Apr 2 04:38:58 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=660b8be2-8b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d1:75:b8:7c:9c:ca:66:75:52:51:62:bb:73: ef:a1:84:78:25:d5:56:e7:86:8a:24:31:f7:01:7b: 4c:e8:8b:fb:b7:51:77:7c:a4:7f:b5:a1:40:7c:0c: 03:b8:19:7b:76:21:4a:eb:75:23:68:dc:7d:7f:a6: d7:5f:d6:1e:b1:09:e0:35:fb:51:a1:a8:f0:ca:c5: 25:9d:1b:d8:8d:f4:48:a8:73:8b:53:d9:ad:2c:d9: 1f:64:8d:08:75:3f:b7:50:1f:ad:54:64:8f:8e:02: 05:49:db:9e:43:5e:4d:42:09:d4:0a:4d:41:b3:5b: 96:ea:db:dc:53:bd:bd:8e:f9:10:7b:03:05:b9:3e: 9e:6d:be:58:18:e0:76:fd:8a:2d:36:cb:b5:8c:2b: 2f:b5:6a:09:c8:4a:71:24:90:66:f6:0d:59:52:d2: 9a:52:a9:74:1f:9d:c0:05:ed:98:53:19:2a:b0:75: d5:98:54:a6:d0:24:02:fe:50:47:34:23:89:ca:a0: b8:ef:c4:cb:f4:20:9c:f1:8a:fe:3c:f4:65:a6:62: 4d:b8:9e:0d:0b:ef:6d:57:d1:1b:44:dd:be:1d:98: cc:17:aa:b5:0e:8d:49:43:6e:ca:ea:1f:50:6d:aa: 68:7a:30:82:e9:3d:39:13:02:40:65:85:b8:b0:ad: 1b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D8:8F:31:6B:44:6D:46:B5:3F:B5:F5:77:09:0F:15:40:9E:9F:8D X509v3 Authority Key Identifier: keyid:EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/6C0C85D0A43011ECA230771BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.248.0/23 119.160.62.0/23 119.160.90.0/24 119.160.105.0/24 119.160.107.0/24 119.160.109.0/24 119.160.122.0/24 IPv6: 2404:3100:a::-2404:3100:d:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1b:79:37:ab:ca:da:81:47:f0:91:3c:c1:d2:ad:92:9c:fd:82: ca:8b:02:4e:96:c7:a0:03:59:51:53:73:c5:e8:55:94:ce:55: 9d:e8:ee:f5:60:11:47:11:b4:67:97:9f:0a:c1:9f:bf:e5:33: 70:b6:59:7d:d8:8c:3b:16:59:8f:f2:0f:a2:2e:3d:cb:28:1b: c5:10:03:3d:02:82:d5:82:8b:6a:13:9d:ce:09:a6:65:27:5e: 66:4d:75:24:2a:d4:46:c5:c3:d8:e9:26:4c:9d:4d:65:60:60: a3:4f:b8:90:7c:51:59:97:00:0c:bb:8c:6f:26:d2:a9:c1:e5: 53:eb:7b:2e:7f:6c:d7:37:41:79:98:c4:5b:c6:a7:b2:a4:d2: e6:fa:c9:0d:60:80:d4:c3:f5:89:7d:84:ec:c5:4a:81:b8:83: 81:42:fb:37:cd:99:99:e9:63:23:ef:f5:1e:bc:1f:a8:0c:b4: b4:47:c6:04:47:49:9f:91:bd:8e:72:ef:a7:65:ff:4a:d3:74: 3b:c3:d8:25:ab:7c:f9:24:ca:1a:f8:1f:02:eb:fb:7c:8e:da: 9a:0e:aa:0e:76:88:a3:6a:02:ef:10:8f:0d:3e:4f:6b:43:de: 8e:5f:ec:2a:62:ad:8e:2c:ea:84:99:b7:c2:ae:55:e8:c3:2e: b7:b3:be:3b -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgICNA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2QjcxMTAvBgNVBAUTKEVFQThBRTgwRDcxM0U2QjIyREIwRUM2MDkxNTdGMEM1 OUE1MkZEN0YwHhcNMjQwNDAyMDQzODU4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBiOGJlMi04YjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtF1uHycymZ1UlFiu3PvoYR4JdVW54aKJDH3AXtM6Iv7t1F3fKR/taFAfAwD uBl7diFK63UjaNx9f6bXX9YesQngNftRoajwysUlnRvYjfRIqHOLU9mtLNkfZI0I dT+3UB+tVGSPjgIFSdueQ15NQgnUCk1Bs1uW6tvcU729jvkQewMFuT6ebb5YGOB2 /YotNsu1jCsvtWoJyEpxJJBm9g1ZUtKaUql0H53ABe2YUxkqsHXVmFSm0CQC/lBH NCOJyqC478TL9CCc8Yr+PPRlpmJNuJ4NC+9tV9EbRN2+HZjMF6q1Do1JQ27K6h9Q bapoejCC6T05EwJAZYW4sK0bIwIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFBXYjzFr RG1GtT+19XcJDxVAnp+NMB8GA1UdIwQYMBaAFO6oroDXE+ayLbDsYJFX8MWaUv1/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDZCNy8xQzE2NjQxQzFE OTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVySXRzT3hna1Zmd3hacFNf WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdxaXVnTmNUNXJJdHNPeGdrVmZ3eFpwU19YOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQ2QjcvMUMxNjY0MUMxRDk3MTFFMjk2RDAzMDgwMDhCMDJDRDIvNkMwQzg1RDBB NDMwMTFFQ0EyMzA3NzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXwYIKwYBBQUHAQcBAf8E UDBOMDAEAgABMCoDBAFnQfgDBAF3oD4DBAB3oFoDBAB3oGkDBAB3oGsDBAB3oG0D BAB3oHowGgQCAAIwFDASAwcBJAQxAAAKAwcBJAQxAAAMMA0GCSqGSIb3DQEBCwUA A4IBAQAbeTerytqBR/CRPMHSrZKc/YLKiwJOlsegA1lRU3PF6FWUzlWd6O71YBFH EbRnl58KwZ+/5TNwtll92Iw7FlmP8g+iLj3LKBvFEAM9AoLVgotqE53OCaZlJ15m TXUkKtRGxcPY6SZMnU1lYGCjT7iQfFFZlwAMu4xvJtKpweVT63suf2zXN0F5mMRb xqeypNLm+skNYIDUw/WJfYTsxUqBuIOBQvs3zZmZ6WMj7/UevB+oDLS0R8YER0mf kb2Ocu+nZf9K03Q7w9glq3z5JMoa+B8C6/t8jtqaDqoOdoijagLvEI8NPk9rQ96O X+wqYq2OLOqEmbfCrlXowy63s747 -----END CERTIFICATE-----Generated at Mon May 20 17:22:07 2024 by rpki-client on console-fra.rpki-client.org