$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/6D7FBCBE129111ED81E82D3DC4F9AE02.roa File: 6D7FBCBE129111ED81E82D3DC4F9AE02.roa (raw, json) Hash identifier: 2l677f+d/YzXVVX65H+j5sg+XIvrLixK0KJny+YSobI= Subject key identifier: DA:85:4F:AD:4B:D6:9C:9D:84:11:AA:9C:15:D8:61:06:ED:DE:18:55 Certificate issuer: /CN=A91AEB80/serialNumber=6F23F27F090BEF4531802072E1DACF210D9D423C Certificate serial: 0304 Authority key identifier: 6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/6D7FBCBE129111ED81E82D3DC4F9AE02.roa Signing time: Wed 27 Dec 2023 02:34:19 +0000 ROA not before: Wed 27 Dec 2023 02:34:19 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 8075 IP address blocks: 103.180.108.0/24 maxlen: 24 103.180.109.0/24 maxlen: 24 2001:df0:59c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.crl rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 772 (0x304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEB80/serialNumber=6F23F27F090BEF4531802072E1DACF210D9D423C Validity Not Before: Dec 27 02:34:19 2023 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=658b8d2b-3998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f3:20:43:2f:fc:e0:66:0d:92:85:4f:ae:34: 91:3d:e8:f7:c2:c0:26:80:d5:31:a0:35:5f:d1:15: 2b:81:83:f0:fb:ee:d7:a3:83:d2:25:b3:89:37:5c: cd:86:b2:d3:44:be:19:6f:84:5c:9b:1e:71:53:2f: b7:c8:00:19:6e:df:96:20:8a:e8:9a:65:6f:e0:06: 1e:52:d7:ed:70:46:68:7b:17:2e:c3:9d:1e:c7:3d: e7:b9:8b:9e:64:c7:7f:ac:0c:4c:cd:58:67:39:3d: a3:c7:24:f9:28:5a:88:ba:75:fe:34:1f:b5:77:36: 85:de:8c:f5:30:2a:d0:09:28:b7:5a:de:e9:54:7a: c1:63:a5:01:35:b9:0e:aa:aa:a6:55:f2:41:92:ac: 9c:93:33:56:ca:53:51:ea:87:3a:14:84:c3:bc:12: d6:ba:c0:49:9d:08:ef:1b:24:3a:93:2a:2e:ba:c5: bc:6a:bc:9c:27:7c:d4:7a:10:13:4d:99:07:0e:11: 24:7a:81:dd:33:ef:05:a8:c6:85:76:a0:3d:59:65: 30:a6:99:80:04:9e:93:46:b7:cc:cc:bf:2a:a4:1c: 34:4c:c3:50:3d:e8:64:43:b7:28:d6:1f:b3:c7:9e: 27:dd:73:26:17:c2:34:8e:e9:be:57:2f:67:d8:48: b4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:85:4F:AD:4B:D6:9C:9D:84:11:AA:9C:15:D8:61:06:ED:DE:18:55 X509v3 Authority Key Identifier: keyid:6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/6D7FBCBE129111ED81E82D3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.108.0/23 IPv6: 2001:df0:59c0::/48 Signature Algorithm: sha256WithRSAEncryption 60:33:50:f2:12:90:92:96:74:75:4e:a4:fb:1f:39:cc:20:a8: 21:a2:6a:f1:c6:a6:0e:ff:2b:0c:0d:6f:43:4c:81:b0:87:b8: c5:88:4f:88:88:a4:e1:34:0d:42:88:9f:3d:3a:06:a8:06:b2: 41:83:6d:7b:95:85:6e:97:80:68:d0:12:58:85:e3:0f:7a:e4: 46:95:22:f7:25:1f:20:b1:c3:47:7e:ae:49:12:2b:5e:a5:17: a7:6b:68:12:eb:3b:e7:d7:b5:4b:a1:57:4d:30:a9:15:a7:c7: 2d:21:9e:03:1a:e3:b3:c2:fb:90:32:3d:bb:dc:75:be:12:13: f7:3f:98:af:91:63:67:9c:b3:90:fe:c1:a8:39:5b:1a:cf:50: 87:bd:34:8b:02:72:e5:d0:a9:31:bb:ee:fe:c8:71:ef:aa:63: 5d:71:71:3f:9e:c8:61:71:05:3b:15:af:a7:eb:5d:3d:af:0e: 41:ef:ec:b3:57:2f:0c:92:b2:7a:22:68:d2:48:2d:cf:b8:57: 9e:e5:6d:8e:b9:13:39:10:ae:03:f1:17:c4:4a:b8:a3:16:a3: e6:5d:36:e8:ba:87:e0:21:7a:88:09:66:82:dd:1c:60:0d:f4: 64:5d:50:06:cf:f5:df:61:e0:a3:eb:8f:a4:10:40:1f:15:24: 4d:81:03:41 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVCODAxMTAvBgNVBAUTKDZGMjNGMjdGMDkwQkVGNDUzMTgwMjA3MkUxREFDRjIx MEQ5RDQyM0MwHhcNMjMxMjI3MDIzNDE5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThiOGQyYi0zOTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvMgQy/84GYNkoVPrjSRPej3wsAmgNUxoDVf0RUrgYPw++7Xo4PSJbOJN1zN hrLTRL4Zb4Rcmx5xUy+3yAAZbt+WIIrommVv4AYeUtftcEZoexcuw50exz3nuYue ZMd/rAxMzVhnOT2jxyT5KFqIunX+NB+1dzaF3oz1MCrQCSi3Wt7pVHrBY6UBNbkO qqqmVfJBkqyckzNWylNR6oc6FITDvBLWusBJnQjvGyQ6kyouusW8arycJ3zUehAT TZkHDhEkeoHdM+8FqMaFdqA9WWUwppmABJ6TRrfMzL8qpBw0TMNQPehkQ7co1h+z x54n3XMmF8I0jum+Vy9n2Ei0tQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNqFT61L 1pydhBGqnBXYYQbt3hhVMB8GA1UdIwQYMBaAFG8j8n8JC+9FMYAgcuHazyENnUI8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUI4MC83NzYyRkM1QTdF NkMxMUVDODczRDY3ODNDNEY5QUUwMi9ieVB5ZndrTDcwVXhnQ0J5NGRyUElRMmRR ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5UHlmd2tMNzBVeGdDQnk0ZHJQSVEyZFFqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVCODAvNzc2MkZDNUE3RTZDMTFFQzg3M0Q2NzgzQzRGOUFFMDIvNkQ3RkJDQkUx MjkxMTFFRDgxRTgyRDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntGwwDwQCAAIwCQMHACABDfBZwDANBgkqhkiG9w0BAQsF AAOCAQEAYDNQ8hKQkpZ0dU6k+x85zCCoIaJq8camDv8rDA1vQ0yBsIe4xYhPiIik 4TQNQoifPToGqAayQYNte5WFbpeAaNASWIXjD3rkRpUi9yUfILHDR36uSRIrXqUX p2toEus759e1S6FXTTCpFafHLSGeAxrjs8L7kDI9u9x1vhIT9z+Yr5FjZ5yzkP7B qDlbGs9Qh700iwJy5dCpMbvu/shx76pjXXFxP57IYXEFOxWvp+tdPa8OQe/ss1cv DJKyeiJo0kgtz7hXnuVtjrkTORCuA/EXxEq4oxaj5l026LqH4CF6iAlmgt0cYA30 ZF1QBs/132Hgo+uPpBBAHxUkTYEDQQ== -----END CERTIFICATE-----Generated at Fri May 17 03:52:22 2024 by rpki-client on console-ams.rpki-client.org