$ rpki-client -vvf rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/6D83AA1CBF5711EEAB9A037FC4F9AE02.roa File: 6D83AA1CBF5711EEAB9A037FC4F9AE02.roa (raw, json) Hash identifier: Z5I7rizOo4usDN3wjMviFE9ZSdpuH6TlcLBaleTyiXY= Subject key identifier: 15:D8:25:9F:22:77:3D:DA:F9:75:00:FD:51:C9:B8:52:8A:CF:5C:C1 Certificate issuer: /CN=A918E2AC/serialNumber=F47D0FBB6E8B64ECD991168D8F730F7891E4F44E Certificate serial: 0C8C Authority key identifier: F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/6D83AA1CBF5711EEAB9A037FC4F9AE02.roa Signing time: Tue 30 Jan 2024 10:07:51 +0000 ROA not before: Tue 30 Jan 2024 10:07:51 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 134371 IP address blocks: 103.133.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:58:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3212 (0xc8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E2AC/serialNumber=F47D0FBB6E8B64ECD991168D8F730F7891E4F44E Validity Not Before: Jan 30 10:07:51 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65b8ca77-8b0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:83:5e:ce:ca:b4:3f:f3:63:8c:c2:32:b5:da: 7b:4b:88:7f:46:81:c3:51:da:1d:13:a8:0f:01:ef: 90:d4:c0:e8:6b:5e:e1:c0:c8:2b:18:1f:a2:74:6a: ca:a8:e3:78:a3:d5:18:46:94:f5:0e:41:e5:e5:0b: 6d:df:0f:99:49:e8:11:46:47:00:59:21:1a:ad:56: 37:a2:80:73:47:94:ff:5a:ad:a5:d1:25:a1:4b:da: 51:a0:b0:15:7a:83:05:5f:55:06:3a:3c:5a:11:47: 90:e7:49:a7:45:47:20:0d:14:65:e1:af:23:3f:99: e5:6e:17:3a:61:ee:ef:5a:ef:06:d1:99:6c:79:a5: 19:39:c8:be:64:eb:ad:3e:c9:2d:90:9a:c1:4f:41: b5:b6:11:52:16:0d:2c:29:80:e7:fa:bf:f4:f0:ff: 89:01:7c:ad:4d:59:03:27:32:7d:53:62:3b:55:a0: 0c:81:1b:84:0f:5c:1a:0a:71:c5:b1:01:86:6a:53: e4:b8:fc:98:ef:8f:28:ee:30:f6:b4:b6:4e:58:d6: fa:a4:fd:b1:fd:25:b1:33:7d:d1:66:b9:86:e9:43: 33:f3:ac:0a:bc:24:32:9a:c1:a0:7b:7e:1e:79:2b: c1:3d:55:ff:70:49:5f:03:2f:70:ef:54:19:19:78: aa:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D8:25:9F:22:77:3D:DA:F9:75:00:FD:51:C9:B8:52:8A:CF:5C:C1 X509v3 Authority Key Identifier: keyid:F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/6D83AA1CBF5711EEAB9A037FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.204.0/24 Signature Algorithm: sha256WithRSAEncryption d8:1f:2d:43:a6:c5:be:eb:e2:24:b2:e9:4a:e5:9f:2d:af:ee: 79:43:e7:c7:c5:d8:5a:70:b6:52:d1:87:64:88:64:cb:6e:46: 08:38:00:48:1e:ea:61:3a:f9:ff:3f:c5:64:c8:17:87:7e:26: 67:93:4f:4f:9e:4d:53:c5:ec:e0:ed:e8:ec:98:94:7a:ac:04: 97:11:69:df:f5:80:e7:df:75:c3:24:8d:9f:d7:c7:09:ab:5b: 69:ea:e0:fa:d2:17:e5:cf:ec:a9:b1:22:32:ca:ff:27:be:88: 8b:2b:51:aa:f9:05:bd:42:1e:0e:28:94:e7:07:99:6f:e0:41: 18:a8:65:78:14:d9:f3:96:66:73:48:b6:0b:52:83:46:a6:30: b3:f5:35:d0:ec:b1:53:8b:ac:78:7e:ff:07:bd:ab:d5:db:21: 07:f0:47:a8:4e:af:ef:ad:65:4a:da:c5:eb:83:fa:82:f2:4a: c3:62:ab:b0:68:3a:ca:96:5c:e1:89:cf:95:04:f9:82:25:68: b6:19:63:39:d5:81:c5:3b:9e:f6:ce:14:3a:3f:d1:2f:0e:77: 85:7f:9b:26:8a:a8:84:9c:be:34:20:42:cf:e7:8a:ab:5a:0a: 26:43:1c:7c:a9:d7:3f:27:18:cd:f2:d6:49:50:8d:14:22:75: 8d:a5:04:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyQUMxMTAvBgNVBAUTKEY0N0QwRkJCNkU4QjY0RUNEOTkxMTY4RDhGNzMwRjc4 OTFFNEY0NEUwHhcNMjQwMTMwMTAwNzUxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI4Y2E3Ny04YjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4Nezsq0P/NjjMIytdp7S4h/RoHDUdodE6gPAe+Q1MDoa17hwMgrGB+idGrK qON4o9UYRpT1DkHl5Qtt3w+ZSegRRkcAWSEarVY3ooBzR5T/Wq2l0SWhS9pRoLAV eoMFX1UGOjxaEUeQ50mnRUcgDRRl4a8jP5nlbhc6Ye7vWu8G0ZlseaUZOci+ZOut PsktkJrBT0G1thFSFg0sKYDn+r/08P+JAXytTVkDJzJ9U2I7VaAMgRuED1waCnHF sQGGalPkuPyY748o7jD2tLZOWNb6pP2x/SWxM33RZrmG6UMz86wKvCQymsGge34e eSvBPVX/cElfAy9w71QZGXiqTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBXYJZ8i dz3a+XUA/VHJuFKKz1zBMB8GA1UdIwQYMBaAFPR9D7tui2Ts2ZEWjY9zD3iR5PRO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTJBQy82NDE3MTMxNkNB MzIxMUU5OEJGQ0QzNTJDNEY5QUUwMi85SDBQdTI2TFpPelprUmFOajNNUGVKSGs5 RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlIMFB1MjZMWk96WmtSYU5qM01QZUpIazlFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyQUMvNjQxNzEzMTZDQTMyMTFFOThCRkNEMzUyQzRGOUFFMDIvNkQ4M0FBMUNC RjU3MTFFRUFCOUEwMzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhcwwDQYJKoZIhvcNAQELBQADggEBANgfLUOmxb7r4iSy 6Urlny2v7nlD58fF2FpwtlLRh2SIZMtuRgg4AEge6mE6+f8/xWTIF4d+JmeTT0+e TVPF7ODt6OyYlHqsBJcRad/1gOffdcMkjZ/XxwmrW2nq4PrSF+XP7KmxIjLK/ye+ iIsrUar5Bb1CHg4olOcHmW/gQRioZXgU2fOWZnNItgtSg0amMLP1NdDssVOLrHh+ /we9q9XbIQfwR6hOr++tZUraxeuD+oLySsNiq7BoOsqWXOGJz5UE+YIlaLYZYznV gcU7nvbOFDo/0S8Od4V/myaKqIScvjQgQs/niqtaCiZDHHyp1z8nGM3y1klQjRQi dY2lBPU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org