$ rpki-client -vvf rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/005C6D6EC17A11EEB919C476C4F9AE02.roa File: 005C6D6EC17A11EEB919C476C4F9AE02.roa (raw, json) Hash identifier: t9AWerdFoSlx8BlZhPHhMpsds8XRNwYqNkMr3i+O4XA= Subject key identifier: 8A:2F:5A:0A:51:5B:E2:FE:45:CA:35:6E:5F:74:40:2C:4C:4D:F8:4E Certificate issuer: /CN=A91A64F6/serialNumber=8CC3043D4B46C48F126C06E82970EBB48B6463C8 Certificate serial: 2F Authority key identifier: 8C:C3:04:3D:4B:46:C4:8F:12:6C:06:E8:29:70:EB:B4:8B:64:63:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMMEPUtGxI8SbAboKXDrtItkY8g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/005C6D6EC17A11EEB919C476C4F9AE02.roa Signing time: Fri 02 Feb 2024 03:20:23 +0000 ROA not before: Fri 02 Feb 2024 03:20:23 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133217 IP address blocks: 103.127.120.0/22 maxlen: 22 103.127.123.0/24 maxlen: 24 2404:1fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/jMMEPUtGxI8SbAboKXDrtItkY8g.crl rsync://rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/jMMEPUtGxI8SbAboKXDrtItkY8g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMMEPUtGxI8SbAboKXDrtItkY8g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A64F6/serialNumber=8CC3043D4B46C48F126C06E82970EBB48B6463C8 Validity Not Before: Feb 2 03:20:23 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bc5f77-3d01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:55:5f:96:81:98:30:c5:bb:f3:9e:47:6b:98: 94:49:d2:e5:1f:77:32:2e:28:24:d1:cd:c1:e7:0d: 44:28:3e:38:e1:f6:23:b2:30:99:03:1b:35:1d:5c: 32:26:58:d2:ca:57:ad:a2:9d:f6:53:20:b5:76:f6: 1f:d7:eb:5b:1b:82:66:13:66:4d:54:a1:54:4a:ed: 27:8c:ad:78:26:81:f2:81:4e:f5:83:91:5d:6c:9e: be:e8:e8:93:58:c8:43:a1:95:06:86:a9:93:0a:97: 7f:63:75:bb:2d:13:b3:cd:ba:24:2b:8b:ea:9f:e3: 17:0b:e6:bc:63:5e:87:91:d0:dc:f4:7d:38:23:cd: 11:78:bf:c9:9a:50:c7:c4:73:35:81:1a:e4:6a:9e: fc:f9:3c:24:53:15:81:dc:68:9c:60:86:4c:5f:6c: 91:7d:46:5e:fe:66:2f:8f:92:60:5f:3f:87:e8:6d: da:17:ae:d6:13:9c:09:58:71:b9:37:40:d8:bf:b0: 3f:a7:f0:9e:2e:29:9f:86:54:12:85:b7:de:55:63: 4f:1c:47:5d:54:44:94:11:12:5d:1b:cc:57:82:2d: ce:64:39:b1:3a:17:70:eb:3a:c4:25:49:f0:99:d0: 46:42:3e:55:40:6f:56:93:b8:80:0f:40:1a:a0:9c: 15:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:2F:5A:0A:51:5B:E2:FE:45:CA:35:6E:5F:74:40:2C:4C:4D:F8:4E X509v3 Authority Key Identifier: keyid:8C:C3:04:3D:4B:46:C4:8F:12:6C:06:E8:29:70:EB:B4:8B:64:63:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/jMMEPUtGxI8SbAboKXDrtItkY8g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMMEPUtGxI8SbAboKXDrtItkY8g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A64F6/E1CF3C5690DB11EEB9CD2A76C4F9AE02/005C6D6EC17A11EEB919C476C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.120.0/22 IPv6: 2404:1fc0::/32 Signature Algorithm: sha256WithRSAEncryption 12:ab:7f:b8:16:9e:e2:d2:d2:4d:ee:ad:66:73:7d:9e:6e:5b: f6:b2:23:5a:0d:19:b2:81:90:02:79:41:5d:d2:e9:0d:a8:13: 40:9b:2a:1b:bb:ca:40:97:68:36:51:4e:45:d8:f1:ea:ba:1e: 7b:e7:48:ac:ef:39:07:bb:91:32:7e:fe:49:d9:c7:5b:28:d6: 5f:84:e1:3e:71:c8:5e:d5:f7:1f:e9:ad:4a:e1:c2:91:c1:3e: 62:26:93:d0:ee:13:58:a9:ff:9a:4e:f3:0e:2a:0d:12:28:3d: b2:44:91:8f:84:2e:7a:f2:0e:72:92:64:01:66:18:36:76:9e: c1:c0:49:03:3d:f8:0d:8a:96:dd:0b:78:3a:4a:7b:c3:68:41: d1:2c:27:d5:c5:4f:46:bb:73:d8:f0:16:6b:b5:40:c7:1f:f4: 09:67:b3:05:2f:3e:73:7d:d3:56:9d:bf:9d:15:82:d7:9f:6d: 58:76:94:42:9b:1e:cb:1a:83:c6:2f:d8:f0:48:51:a3:2f:23: ac:36:34:ee:ee:5f:d2:3e:42:5c:b1:0d:cd:9b:76:4d:b3:5e: 43:96:83:bf:66:63:c8:52:05:c8:16:73:59:2a:29:3e:15:53: df:0a:4d:eb:9b:2a:50:87:e5:84:cb:9a:85:09:40:95:79:c4: ab:51:8a:fa -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NjRGNjExMC8GA1UEBRMoOENDMzA0M0Q0QjQ2QzQ4RjEyNkMwNkU4Mjk3MEVCQjQ4 QjY0NjNDODAeFw0yNDAyMDIwMzIwMjNaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YmM1Zjc3LTNkMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHVV+WgZgwxbvznkdrmJRJ0uUfdzIuKCTRzcHnDUQoPjjh9iOyMJkDGzUdXDIm WNLKV62infZTILV29h/X61sbgmYTZk1UoVRK7SeMrXgmgfKBTvWDkV1snr7o6JNY yEOhlQaGqZMKl39jdbstE7PNuiQri+qf4xcL5rxjXoeR0Nz0fTgjzRF4v8maUMfE czWBGuRqnvz5PCRTFYHcaJxghkxfbJF9Rl7+Zi+PkmBfP4fobdoXrtYTnAlYcbk3 QNi/sD+n8J4uKZ+GVBKFt95VY08cR11URJQREl0bzFeCLc5kObE6F3DrOsQlSfCZ 0EZCPlVAb1aTuIAPQBqgnBWpAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUii9aClFb 4v5FyjVuX3RALExN+E4wHwYDVR0jBBgwFoAUjMMEPUtGxI8SbAboKXDrtItkY8gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2NEY2L0UxQ0YzQzU2OTBE QjExRUVCOUNEMkE3NkM0RjlBRTAyL2pNTUVQVXRHeEk4U2JBYm9LWERydEl0a1k4 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvak1NRVBVdEd4SThTYkFib0tYRHJ0SXRrWThnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjRGNi9FMUNGM0M1NjkwREIxMUVFQjlDRDJBNzZDNEY5QUUwMi8wMDVDNkQ2RUMx N0ExMUVFQjkxOUM0NzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAmd/eDANBAIAAjAHAwUAJAQfwDANBgkqhkiG9w0BAQsFAAOC AQEAEqt/uBae4tLSTe6tZnN9nm5b9rIjWg0ZsoGQAnlBXdLpDagTQJsqG7vKQJdo NlFORdjx6roee+dIrO85B7uRMn7+SdnHWyjWX4ThPnHIXtX3H+mtSuHCkcE+YiaT 0O4TWKn/mk7zDioNEig9skSRj4QuevIOcpJkAWYYNnaewcBJAz34DYqW3Qt4Okp7 w2hB0Swn1cVPRrtz2PAWa7VAxx/0CWezBS8+c33TVp2/nRWC159tWHaUQpseyxqD xi/Y8EhRoy8jrDY07u5f0j5CXLENzZt2TbNeQ5aDv2ZjyFIFyBZzWSopPhVT3wpN 65sqUIflhMuahQlAlXnEq1GK+g== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:19 2024 by rpki-client on console-ams.rpki-client.org