$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/813CF67A858111EB914A5377C4F9AE02.roa File: 813CF67A858111EB914A5377C4F9AE02.roa (raw, json) Hash identifier: QEOVhybwf6Wz+3qRFXxn3E9W4TWcZxLHMSU1XgjYyAo= Subject key identifier: 6D:48:D5:66:AD:29:6C:A5:5D:F3:FF:1B:BA:AA:00:0A:86:F3:E3:C6 Certificate issuer: /CN=A91A1CF4/serialNumber=32A4F670DA0F52858EDDEF0690C8E550DFDB3411 Certificate serial: 0595 Authority key identifier: 32:A4:F6:70:DA:0F:52:85:8E:DD:EF:06:90:C8:E5:50:DF:DB:34:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MqT2cNoPUoWO3e8GkMjlUN_bNBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/813CF67A858111EB914A5377C4F9AE02.roa Signing time: Sat 11 May 2024 00:34:09 +0000 ROA not before: Sat 11 May 2024 00:34:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141988 IP address blocks: 103.163.246.0/23 maxlen: 24 2001:df6:3180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/MqT2cNoPUoWO3e8GkMjlUN_bNBE.crl rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/MqT2cNoPUoWO3e8GkMjlUN_bNBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MqT2cNoPUoWO3e8GkMjlUN_bNBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1429 (0x595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CF4/serialNumber=32A4F670DA0F52858EDDEF0690C8E550DFDB3411 Validity Not Before: May 11 00:34:09 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663ebd00-f71f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b6:1d:d3:d3:57:fa:4b:57:1f:61:93:ab:0c: b8:5c:35:ed:47:1c:d4:44:c8:48:8d:95:ee:10:b4: 6f:a2:ee:95:32:b2:45:89:3d:65:7b:eb:1c:46:ec: 13:9e:21:db:eb:53:2d:08:f0:86:cd:6f:ef:0b:2a: 24:14:08:39:a3:f8:80:d0:b1:33:4d:0b:05:fc:d7: e3:eb:7e:17:c6:dd:96:82:3c:4d:3b:08:44:9b:43: 21:21:2b:91:79:72:83:38:21:e4:7d:74:ce:29:9b: 5a:0c:d4:80:5e:9c:28:67:ba:ce:86:d2:05:b2:c8: 5a:c5:9b:08:80:99:6a:77:00:ad:71:42:a4:6a:07: fe:e2:3e:8e:f2:ef:ea:33:2a:aa:c9:ef:1c:01:a5: 36:7b:89:1d:85:4f:02:94:35:9a:8c:4c:2e:08:6a: ca:b4:6e:b3:52:2a:c8:ff:38:61:2a:37:42:e3:7a: e2:73:16:cf:b7:ca:64:22:f1:29:41:80:7d:f6:ad: 2d:da:7f:df:d6:d4:f8:75:7d:69:dd:d1:c9:7c:8f: 92:9c:f1:6d:44:06:93:0e:98:a4:6a:47:bb:06:0b: ed:1a:35:6a:28:5a:d6:6e:07:75:09:d2:24:c6:ac: 76:d7:67:92:12:e8:65:24:fc:4d:3d:bb:f6:9a:60: 6b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:48:D5:66:AD:29:6C:A5:5D:F3:FF:1B:BA:AA:00:0A:86:F3:E3:C6 X509v3 Authority Key Identifier: keyid:32:A4:F6:70:DA:0F:52:85:8E:DD:EF:06:90:C8:E5:50:DF:DB:34:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/MqT2cNoPUoWO3e8GkMjlUN_bNBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MqT2cNoPUoWO3e8GkMjlUN_bNBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/813CF67A858111EB914A5377C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.246.0/23 IPv6: 2001:df6:3180::/48 Signature Algorithm: sha256WithRSAEncryption 9d:b8:e1:65:9b:8d:52:68:9d:f8:2d:51:23:94:a5:ae:e8:6f: 14:d3:c6:c4:44:1f:3b:9b:0b:49:e6:5d:76:05:99:30:34:4f: 16:66:b2:45:44:13:34:f4:49:b3:14:84:e0:90:fc:cc:47:89: de:ae:85:a1:e8:7e:26:f1:40:85:b4:61:9c:a2:a0:31:78:b9: f5:d7:7b:a0:d9:7f:96:94:76:56:04:fa:95:f1:cc:31:37:06: 9c:ac:c4:ef:ba:31:6e:87:8d:b9:91:50:2a:6e:a4:44:f9:eb: 46:f9:e3:70:9a:bc:40:b8:34:b5:27:7b:5e:45:cd:73:3b:b6: 46:3d:38:e2:62:a9:04:be:2f:d1:22:3c:b6:97:cd:e0:ec:23: d9:31:48:42:7a:83:28:e1:bd:78:13:4e:cc:12:d0:02:17:75: 15:53:0f:20:7c:2b:ea:7d:ca:92:99:39:2d:d9:35:3e:74:14: c8:3d:55:93:c9:3b:72:fb:9a:86:a3:11:9d:2d:db:1f:f9:88: 34:c5:9b:41:10:20:32:21:f3:43:8e:6b:3a:3a:98:20:87:d6: 1d:2e:29:d4:68:98:90:07:04:ec:f9:76:f9:81:16:ba:19:a0: 9c:81:e9:e0:e8:f7:b6:3b:ce:39:e1:e8:4c:26:08:6a:fa:ae: 91:de:62:84 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDRjQxMTAvBgNVBAUTKDMyQTRGNjcwREEwRjUyODU4RURERUYwNjkwQzhFNTUw REZEQjM0MTEwHhcNMjQwNTExMDAzNDA5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlYmQwMC1mNzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bYd09NX+ktXH2GTqwy4XDXtRxzURMhIjZXuELRvou6VMrJFiT1le+scRuwT niHb61MtCPCGzW/vCyokFAg5o/iA0LEzTQsF/Nfj634Xxt2WgjxNOwhEm0MhISuR eXKDOCHkfXTOKZtaDNSAXpwoZ7rOhtIFsshaxZsIgJlqdwCtcUKkagf+4j6O8u/q Myqqye8cAaU2e4kdhU8ClDWajEwuCGrKtG6zUirI/zhhKjdC43ricxbPt8pkIvEp QYB99q0t2n/f1tT4dX1p3dHJfI+SnPFtRAaTDpikake7BgvtGjVqKFrWbgd1CdIk xqx212eSEuhlJPxNPbv2mmBrIQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG1I1Wat KWylXfP/G7qqAAqG8+PGMB8GA1UdIwQYMBaAFDKk9nDaD1KFjt3vBpDI5VDf2zQR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNGNC85QUM0ODUxQTg1 N0YxMUVCOUIyODU3NzVDNEY5QUUwMi9NcVQyY05vUFVvV08zZThHa01qbFVOX2JO QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01xVDJjTm9QVW9XTzNlOEdrTWpsVU5fYk5CRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFDRjQvOUFDNDg1MUE4NTdGMTFFQjlCMjg1Nzc1QzRGOUFFMDIvODEzQ0Y2N0E4 NTgxMTFFQjkxNEE1Mzc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFno/YwDwQCAAIwCQMHACABDfYxgDANBgkqhkiG9w0BAQsF AAOCAQEAnbjhZZuNUmid+C1RI5SlruhvFNPGxEQfO5sLSeZddgWZMDRPFmayRUQT NPRJsxSE4JD8zEeJ3q6Foeh+JvFAhbRhnKKgMXi59dd7oNl/lpR2VgT6lfHMMTcG nKzE77oxboeNuZFQKm6kRPnrRvnjcJq8QLg0tSd7XkXNczu2Rj044mKpBL4v0SI8 tpfN4Owj2TFIQnqDKOG9eBNOzBLQAhd1FVMPIHwr6n3Kkpk5Ldk1PnQUyD1Vk8k7 cvuahqMRnS3bH/mINMWbQRAgMiHzQ45rOjqYIIfWHS4p1GiYkAcE7Pl2+YEWuhmg nIHp4Oj3tjvOOeHoTCYIavqukd5ihA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:46 2024 by rpki-client on console-ams.rpki-client.org