$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/AF0AC0A63D0A11EB9F59D648C4F9AE02.roa File: AF0AC0A63D0A11EB9F59D648C4F9AE02.roa (raw, json) Hash identifier: +xXZdocc+DAKSGVr9i3J1ZCcXvPRm7qfVi4qSp6nPXU= Subject key identifier: 6B:52:99:EF:15:0E:0F:78:A8:69:92:AD:42:94:11:20:92:B2:7B:80 Certificate issuer: /CN=A91A9B22/serialNumber=461C728E2D563F0E092459BAA6BCE4B9D6C18BB8 Certificate serial: 075D Authority key identifier: 46:1C:72:8E:2D:56:3F:0E:09:24:59:BA:A6:BC:E4:B9:D6:C1:8B:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhxyji1WPw4JJFm6przkudbBi7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/AF0AC0A63D0A11EB9F59D648C4F9AE02.roa Signing time: Tue 12 Nov 2024 20:59:37 +0000 ROA not before: Tue 12 Nov 2024 20:59:37 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141202 IP address blocks: 103.156.106.0/23 maxlen: 27 2406:8540::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/Rhxyji1WPw4JJFm6przkudbBi7g.crl rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/Rhxyji1WPw4JJFm6przkudbBi7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhxyji1WPw4JJFm6przkudbBi7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1885 (0x75d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B22/serialNumber=461C728E2D563F0E092459BAA6BCE4B9D6C18BB8 Validity Not Before: Nov 12 20:59:37 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6733c1b9-0df1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:79:75:9c:da:96:b1:c4:fb:7e:6f:8d:47:0d: ad:30:49:81:2f:26:5a:38:37:d7:6a:63:dc:8b:38: 2d:26:d8:dd:97:63:46:87:0f:08:b0:f2:8a:1f:c8: 00:2d:c8:0f:d5:1f:f5:14:61:a7:e5:48:a4:12:88: 66:d1:db:7b:04:ee:d8:e7:80:d3:40:0f:77:90:bb: 17:7b:dd:3c:38:ee:a6:f9:ca:c2:ae:f3:ff:c1:af: 7c:d8:35:32:16:1e:3b:3d:c3:bc:43:de:ef:c3:ad: 85:be:18:15:d9:f2:2c:a7:a6:ed:46:e9:73:9a:59: 97:84:3b:31:f2:b6:50:d4:06:8f:b0:b8:8d:72:74: 5d:b6:2d:ca:56:46:c5:a2:22:e8:2b:70:3d:d7:39: 7c:c4:85:dd:26:ff:fb:fe:45:dc:49:97:7d:4f:89: d4:f4:0d:0d:c0:f8:91:db:f0:f9:ad:97:17:6a:4f: a2:be:78:c7:11:15:f1:32:3a:63:05:fc:49:a6:43: 1b:ec:75:4b:3a:e8:7a:83:d7:06:c6:e6:45:41:3f: 96:4f:d9:d5:a9:11:90:2c:6a:cc:14:16:14:ea:38: 46:37:9f:b7:52:a6:0a:1c:5e:5f:f4:a7:3d:35:78: 41:90:ca:d3:38:c6:47:5a:22:fb:4a:84:75:21:8d: 37:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:52:99:EF:15:0E:0F:78:A8:69:92:AD:42:94:11:20:92:B2:7B:80 X509v3 Authority Key Identifier: keyid:46:1C:72:8E:2D:56:3F:0E:09:24:59:BA:A6:BC:E4:B9:D6:C1:8B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/Rhxyji1WPw4JJFm6przkudbBi7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhxyji1WPw4JJFm6przkudbBi7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/AF0AC0A63D0A11EB9F59D648C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.106.0/23 IPv6: 2406:8540::/40 Signature Algorithm: sha256WithRSAEncryption 59:33:86:89:f7:9b:a0:4c:63:44:47:4c:0b:43:38:4c:15:ce: 29:8a:bc:fa:f0:6f:a0:6c:46:63:19:c5:7c:65:df:5f:44:29: 9e:df:36:27:97:80:1a:d8:a0:13:94:69:16:78:1d:b7:c3:e6: b6:e5:01:2c:55:ca:34:0f:28:92:ea:f6:c0:ba:08:18:d1:5b: a0:9b:a9:8a:5b:69:98:9f:5c:96:7e:aa:31:1c:8a:97:0e:88: e5:db:37:0e:df:f4:e5:b7:36:5c:75:07:3f:73:3c:d1:fe:62: 6a:e5:e0:9e:e8:d3:c1:b3:2d:4b:ac:36:69:5d:10:38:17:32: c5:61:c2:da:72:c1:2a:60:ff:b9:01:a1:d9:c1:68:47:25:1b: dd:ee:16:56:20:54:e6:0c:b9:af:14:fa:da:01:13:18:5d:4c: 4d:49:b3:3c:cd:cf:58:7b:78:8b:0a:1e:fa:85:6c:64:7d:82: f9:a1:75:ec:ee:cf:9c:c6:d0:29:af:00:ad:dc:50:7d:40:86: db:27:f8:ae:4f:ab:33:14:a8:46:b0:f7:a5:f7:0a:b8:16:d3: a0:f7:b7:b7:a2:c7:a4:32:e6:1b:b8:ab:f9:64:4e:7e:b9:20: 8b:a1:87:11:a3:b5:a4:53:62:1d:88:5c:f5:73:bc:a9:ca:6a: d5:76:cb:8f -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICB10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMjIxMTAvBgNVBAUTKDQ2MUM3MjhFMkQ1NjNGMEUwOTI0NTlCQUE2QkNFNEI5 RDZDMThCQjgwHhcNMjQxMTEyMjA1OTM3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzYzFiOS0wZGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXl1nNqWscT7fm+NRw2tMEmBLyZaODfXamPcizgtJtjdl2NGhw8IsPKKH8gA LcgP1R/1FGGn5UikEohm0dt7BO7Y54DTQA93kLsXe908OO6m+crCrvP/wa982DUy Fh47PcO8Q97vw62FvhgV2fIsp6btRulzmlmXhDsx8rZQ1AaPsLiNcnRdti3KVkbF oiLoK3A91zl8xIXdJv/7/kXcSZd9T4nU9A0NwPiR2/D5rZcXak+ivnjHERXxMjpj BfxJpkMb7HVLOuh6g9cGxuZFQT+WT9nVqRGQLGrMFBYU6jhGN5+3UqYKHF5f9Kc9 NXhBkMrTOMZHWiL7SoR1IY03cQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGtSme8V Dg94qGmSrUKUESCSsnuAMB8GA1UdIwQYMBaAFEYcco4tVj8OCSRZuqa85LnWwYu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIyMi9ENzVGOTg1Q0ZD ODYxMUVBQkU4RjYyMkRDNEY5QUUwMi9SaHh5amkxV1B3NEpKRm02cHJ6a3VkYkJp N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JoeHlqaTFXUHc0SkpGbTZwcnprdWRiQmk3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCMjIvRDc1Rjk4NUNGQzg2MTFFQUJFOEY2MjJEQzRGOUFFMDIvQUYwQUMwQTYz RDBBMTFFQjlGNTlENjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnnGowDgQCAAIwCAMGACQGhUAAMA0GCSqGSIb3DQEBCwUA A4IBAQBZM4aJ95ugTGNER0wLQzhMFc4pirz68G+gbEZjGcV8Zd9fRCme3zYnl4Aa 2KATlGkWeB23w+a25QEsVco0DyiS6vbAuggY0Vugm6mKW2mYn1yWfqoxHIqXDojl 2zcO3/TltzZcdQc/czzR/mJq5eCe6NPBsy1LrDZpXRA4FzLFYcLacsEqYP+5AaHZ wWhHJRvd7hZWIFTmDLmvFPraARMYXUxNSbM8zc9Ye3iLCh76hWxkfYL5oXXs7s+c xtAprwCt3FB9QIbbJ/iuT6szFKhGsPel9wq4FtOg97e3osekMuYbuKv5ZE5+uSCL oYcRo7WkU2IdiFz1c7ypymrVdsuP -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org