$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/6AF5A9FAC6C811ECA5A9AB33C4F9AE02.roa File: 6AF5A9FAC6C811ECA5A9AB33C4F9AE02.roa (raw, json) Hash identifier: lpKvZue3E1qtxxNfskF9yZrVNx86JncMpp8PU9JrNaA= Subject key identifier: 13:E1:87:8B:33:0E:28:4D:E9:00:2B:A8:85:E8:5F:05:41:E9:4C:FC Certificate issuer: /CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Certificate serial: 02A8 Authority key identifier: 33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/6AF5A9FAC6C811ECA5A9AB33C4F9AE02.roa Signing time: Sat 31 Aug 2024 03:34:56 +0000 ROA not before: Sat 31 Aug 2024 03:34:56 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132742 IP address blocks: 45.122.136.0/22 maxlen: 24 103.63.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Validity Not Before: Aug 31 03:34:56 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d28f60-1d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:4c:41:af:db:24:2d:8c:b4:30:21:35:60:ac: 2b:01:4e:30:2e:53:91:6e:84:cb:e2:6f:99:81:38: 36:6d:c1:f9:45:25:af:a7:c6:da:06:49:8f:c8:bf: 9a:c8:3e:74:28:8e:17:99:66:b8:ae:8a:92:26:f7: 1f:d1:41:18:8a:1e:5f:1e:59:35:61:87:ed:95:65: 81:2c:d5:64:0b:a2:c4:30:33:1c:12:6d:0d:b9:d7: 09:91:6e:53:0a:6f:b2:1d:1d:bb:f8:f2:50:b7:51: 66:81:8e:b2:90:b4:c5:06:9e:96:b6:aa:a4:6a:c4: 33:81:3f:60:07:87:af:0f:28:fb:df:cd:5b:02:cc: 80:ef:e1:a6:b1:13:d6:c2:10:b0:12:dd:4d:c8:a5: a0:99:01:44:ce:66:d7:c2:04:6f:fc:be:a1:5b:48: 59:1f:9b:88:4a:41:3f:7e:e2:3c:a2:08:db:7f:e9: 64:9c:3f:18:c5:74:cc:43:3c:4b:db:65:28:ba:49: cb:2a:26:5b:c4:22:a1:8c:cc:39:46:87:93:5c:c1: 20:2d:37:36:cb:db:be:2c:00:b0:12:80:93:5b:0c: 43:04:63:05:42:c6:5c:80:f0:ef:a2:2c:12:cb:d2: 43:84:b5:d8:dc:03:e9:09:51:46:a7:5d:28:b2:8c: 0c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E1:87:8B:33:0E:28:4D:E9:00:2B:A8:85:E8:5F:05:41:E9:4C:FC X509v3 Authority Key Identifier: keyid:33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/6AF5A9FAC6C811ECA5A9AB33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.122.136.0/22 103.63.4.0/22 Signature Algorithm: sha256WithRSAEncryption 42:70:6c:ac:24:12:3a:55:57:03:60:83:04:1d:e9:73:b1:fa: b6:86:92:56:7d:fe:d1:16:3e:72:e2:97:dd:bc:06:4c:c2:00: e6:36:4c:17:c9:a6:74:ff:6c:0b:ff:c0:c1:a1:9c:e1:5f:9b: 80:ea:db:86:86:66:6c:fc:5c:e1:d9:cb:c4:35:46:87:18:05: b8:2c:e4:f9:60:f4:a2:e7:2f:e3:c6:57:88:0d:90:e7:ea:09: a1:a9:bd:7e:f5:dd:15:0e:b5:01:cc:81:23:37:69:9c:4c:84: 52:99:c4:99:e5:80:ab:0a:f0:55:a2:1d:d6:8e:2a:9e:36:b2: 5e:da:17:a7:32:aa:32:6c:90:9e:83:ea:b5:a5:c6:e4:90:d5: 47:95:d1:4a:9d:a3:ec:ee:86:d7:26:77:17:26:7e:85:90:f3: be:92:03:54:d3:16:9b:2b:a7:6c:97:36:85:c8:2d:37:ff:27: 1f:2b:24:db:73:db:78:aa:e6:c3:86:d6:dd:2a:5c:2e:f6:08: 45:53:d1:e4:48:6b:1d:dc:5a:8e:fd:82:70:cf:f4:b8:5c:2f: a9:99:44:d3:70:97:f0:5b:a7:ca:6b:d9:5f:62:13:49:c3:35: c4:69:be:90:fa:90:2c:5f:bc:9b:63:9f:dd:eb:f0:ed:b5:98: f0:98:b1:14 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMDgxMTAvBgNVBAUTKDMzQjY5NTMyOTU4MDEwMzhGMDE3RkE2NUQ0NzA3ODFB NUNDNzcyQzAwHhcNMjQwODMxMDMzNDU2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyOGY2MC0xZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+kxBr9skLYy0MCE1YKwrAU4wLlORboTL4m+ZgTg2bcH5RSWvp8baBkmPyL+a yD50KI4XmWa4roqSJvcf0UEYih5fHlk1YYftlWWBLNVkC6LEMDMcEm0NudcJkW5T Cm+yHR27+PJQt1FmgY6ykLTFBp6WtqqkasQzgT9gB4evDyj7381bAsyA7+GmsRPW whCwEt1NyKWgmQFEzmbXwgRv/L6hW0hZH5uISkE/fuI8ogjbf+lknD8YxXTMQzxL 22UouknLKiZbxCKhjMw5RoeTXMEgLTc2y9u+LACwEoCTWwxDBGMFQsZcgPDvoiwS y9JDhLXY3APpCVFGp10osowMFwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBPhh4sz DihN6QArqIXoXwVB6Uz8MB8GA1UdIwQYMBaAFDO2lTKVgBA48Bf6ZdRweBpcx3LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUwOC85RUM2MzFFQ0M2 MDkxMUVDQjQ2MEVDNTdDNEY5QUUwMi9NN2FWTXBXQUVEandGX3BsMUhCNEdsekhj c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003YVZNcFdBRURqd0ZfcGwxSEI0R2x6SGNzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMDgvOUVDNjMxRUNDNjA5MTFFQ0I0NjBFQzU3QzRGOUFFMDIvNkFGNUE5RkFD NkM4MTFFQ0E1QTlBQjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteogDBAJnPwQwDQYJKoZIhvcNAQELBQADggEBAEJwbKwk EjpVVwNggwQd6XOx+raGklZ9/tEWPnLil928BkzCAOY2TBfJpnT/bAv/wMGhnOFf m4Dq24aGZmz8XOHZy8Q1RocYBbgs5Plg9KLnL+PGV4gNkOfqCaGpvX713RUOtQHM gSM3aZxMhFKZxJnlgKsK8FWiHdaOKp42sl7aF6cyqjJskJ6D6rWlxuSQ1UeV0Uqd o+zuhtcmdxcmfoWQ876SA1TTFpsrp2yXNoXILTf/Jx8rJNtz23iq5sOG1t0qXC72 CEVT0eRIax3cWo79gnDP9LhcL6mZRNNwl/Bbp8pr2V9iE0nDNcRpvpD6kCxfvJtj n93r8O21mPCYsRQ= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:41 2024 by rpki-client on console-fra.rpki-client.org