$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADF12/CFA5259A28C011EAAAE24E48C4F9AE02/84B6E12A312911EEBE440C7FC4F9AE02.roa File: 84B6E12A312911EEBE440C7FC4F9AE02.roa (raw, json) Hash identifier: i5Nf027GIvkDTNfygplCNBH1Tfi56MOYYL7UyT8iFDw= Subject key identifier: 0F:6A:02:B8:3D:96:F7:B5:0D:32:B0:52:B9:9B:CB:A9:51:16:4E:90 Certificate issuer: /CN=A91ADF12/serialNumber=6BCD6ED09A416E5FE4EE5ADEF7B150F2CCABE93A Certificate serial: 0B25 Authority key identifier: 6B:CD:6E:D0:9A:41:6E:5F:E4:EE:5A:DE:F7:B1:50:F2:CC:AB:E9:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a81u0JpBbl_k7lre97FQ8syr6To.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADF12/CFA5259A28C011EAAAE24E48C4F9AE02/84B6E12A312911EEBE440C7FC4F9AE02.roa Signing time: Fri 04 Oct 2024 19:28:00 +0000 ROA not before: Fri 04 Oct 2024 19:28:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 149994 IP address blocks: 103.142.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADF12/CFA5259A28C011EAAAE24E48C4F9AE02/a81u0JpBbl_k7lre97FQ8syr6To.crl rsync://rpki.apnic.net/member_repository/A91ADF12/CFA5259A28C011EAAAE24E48C4F9AE02/a81u0JpBbl_k7lre97FQ8syr6To.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a81u0JpBbl_k7lre97FQ8syr6To.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2853 (0xb25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADF12/serialNumber=6BCD6ED09A416E5FE4EE5ADEF7B150F2CCABE93A Validity Not Before: Oct 4 19:28:00 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670041bf-bcdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:32:ce:cb:8c:f2:b0:02:28:37:80:e9:ef:84: 7c:57:76:19:6f:a4:b1:51:05:e8:f8:69:f7:fa:19: 1f:81:8b:a4:e0:a6:5d:bf:b1:f9:f0:1b:83:bb:47: fa:60:24:ac:1c:70:0c:1f:8d:e8:8f:92:3a:0c:2c: 71:a4:11:bb:a2:c8:d6:6a:5f:d4:60:2a:cf:f2:ff: ce:88:33:25:8a:5f:5b:c9:3b:7d:ec:9b:c4:e1:26: e1:09:f4:bd:d1:77:9d:d7:89:66:14:13:19:4f:4e: ea:a9:96:36:a8:7a:69:ef:70:8b:b3:33:90:73:23: 8d:a5:fb:74:d9:b3:ab:26:19:b1:af:10:55:0a:0f: a9:00:fb:2d:90:3c:74:1a:e9:8d:ab:0e:f7:7e:ad: 0b:8e:b7:76:24:54:e2:a1:31:7a:03:6e:8c:01:78: e1:f0:f0:64:b7:97:26:d7:30:fc:f4:01:32:f9:2f: b8:00:43:16:2c:dd:20:cf:4c:d0:56:39:bc:0c:20: 56:1f:6a:f7:d4:fb:45:16:19:51:fd:0d:78:1f:07: a2:7f:c2:3b:ff:28:1a:d3:21:4d:0c:f0:c5:a2:97: f7:e0:33:aa:1d:e6:51:16:e6:96:18:c6:c3:1f:1a: 99:d6:65:6d:91:c6:bb:1d:89:e1:32:23:33:4a:56: 9e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6A:02:B8:3D:96:F7:B5:0D:32:B0:52:B9:9B:CB:A9:51:16:4E:90 X509v3 Authority Key Identifier: keyid:6B:CD:6E:D0:9A:41:6E:5F:E4:EE:5A:DE:F7:B1:50:F2:CC:AB:E9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADF12/CFA5259A28C011EAAAE24E48C4F9AE02/a81u0JpBbl_k7lre97FQ8syr6To.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a81u0JpBbl_k7lre97FQ8syr6To.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADF12/CFA5259A28C011EAAAE24E48C4F9AE02/84B6E12A312911EEBE440C7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.68.0/24 Signature Algorithm: sha256WithRSAEncryption d1:18:19:06:63:2d:df:be:bc:c2:11:50:f7:39:68:ad:18:80: fb:f2:4e:c3:0d:64:11:98:d7:b0:f4:11:38:17:cc:43:dc:a3: ca:da:1e:92:7c:d7:f9:2b:22:f1:94:00:64:4f:9b:77:7e:44: 0f:3e:28:c7:f9:5f:c2:7b:72:56:3f:de:85:34:b0:72:57:4c: 1b:ac:8a:10:68:58:6d:ff:6f:ce:0d:d4:73:54:e9:e8:46:d1: 30:80:70:c6:c2:57:43:08:0a:ae:86:39:e9:8c:53:1c:e6:a4: 1f:cf:1e:4c:12:00:7b:63:bc:2e:25:53:c1:d4:e3:ed:36:ad: 81:b3:77:1c:0c:59:88:02:3d:b1:dd:45:84:0e:bd:19:50:0c: a8:91:71:b7:a5:67:34:ba:41:8e:c8:e9:da:d8:5a:ad:8d:e4: 5b:58:cb:bb:ef:55:c0:d7:79:d1:23:13:4b:ac:d2:9b:0b:ad: 21:b8:31:22:98:be:92:84:d7:a5:22:88:c1:6b:3f:dd:88:d9: dd:fb:99:59:92:37:f9:9c:2d:9e:47:85:65:af:aa:08:66:13: 84:29:89:e2:02:14:7d:8b:2a:bf:36:ef:69:16:f8:17:2c:59: be:b9:4b:d1:93:e6:c2:ed:ce:c6:ca:bf:9b:f6:60:14:90:74: d9:bf:fc:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURGMTIxMTAvBgNVBAUTKDZCQ0Q2RUQwOUE0MTZFNUZFNEVFNUFERUY3QjE1MEYy Q0NBQkU5M0EwHhcNMjQxMDA0MTkyODAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwNDFiZi1iY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDLOy4zysAIoN4Dp74R8V3YZb6SxUQXo+Gn3+hkfgYuk4KZdv7H58BuDu0f6 YCSsHHAMH43oj5I6DCxxpBG7osjWal/UYCrP8v/OiDMlil9byTt97JvE4SbhCfS9 0Xed14lmFBMZT07qqZY2qHpp73CLszOQcyONpft02bOrJhmxrxBVCg+pAPstkDx0 GumNqw73fq0Ljrd2JFTioTF6A26MAXjh8PBkt5cm1zD89AEy+S+4AEMWLN0gz0zQ Vjm8DCBWH2r31PtFFhlR/Q14Hweif8I7/yga0yFNDPDFopf34DOqHeZRFuaWGMbD HxqZ1mVtkca7HYnhMiMzSlaeAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA9qArg9 lve1DTKwUrmby6lRFk6QMB8GA1UdIwQYMBaAFGvNbtCaQW5f5O5a3vexUPLMq+k6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREYxMi9DRkE1MjU5QTI4 QzAxMUVBQUFFMjRFNDhDNEY5QUUwMi9hODF1MEpwQmJsX2s3bHJlOTdGUThzeXI2 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E4MXUwSnBCYmxfazdscmU5N0ZROHN5cjZUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURGMTIvQ0ZBNTI1OUEyOEMwMTFFQUFBRTI0RTQ4QzRGOUFFMDIvODRCNkUxMkEz MTI5MTFFRUJFNDQwQzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjkQwDQYJKoZIhvcNAQELBQADggEBANEYGQZjLd++vMIR UPc5aK0YgPvyTsMNZBGY17D0ETgXzEPco8raHpJ81/krIvGUAGRPm3d+RA8+KMf5 X8J7clY/3oU0sHJXTBusihBoWG3/b84N1HNU6ehG0TCAcMbCV0MICq6GOemMUxzm pB/PHkwSAHtjvC4lU8HU4+02rYGzdxwMWYgCPbHdRYQOvRlQDKiRcbelZzS6QY7I 6drYWq2N5FtYy7vvVcDXedEjE0us0psLrSG4MSKYvpKE16UiiMFrP92I2d37mVmS N/mcLZ5HhWWvqghmE4QpieICFH2LKr8272kW+BcsWb65S9GT5sLtzsbKv5v2YBSQ dNm//DU= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:57 2024 by rpki-client on console-ams.rpki-client.org