$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/6C83604E1E2711EDAA33DF76C4F9AE02.roa File: 6C83604E1E2711EDAA33DF76C4F9AE02.roa (raw, json) Hash identifier: bzrwDCcFjUbW1ddYfzBH2lmiEyj4Sa0r3rrfjXsh0+Q= Subject key identifier: D9:74:26:83:33:39:ED:DB:68:C7:DF:50:0C:20:6C:F4:E4:21:AA:0A Certificate issuer: /CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Certificate serial: 0201 Authority key identifier: 2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/6C83604E1E2711EDAA33DF76C4F9AE02.roa Signing time: Sun 17 Nov 2024 01:54:40 +0000 ROA not before: Sun 17 Nov 2024 01:54:40 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139642 IP address blocks: 103.141.200.0/23 maxlen: 23 103.141.200.0/24 maxlen: 24 103.141.201.0/24 maxlen: 24 2001:df1:23c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Validity Not Before: Nov 17 01:54:40 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67394ce0-bc6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:17:4a:68:ae:14:dc:c7:99:11:df:f9:a2:3c: ba:cc:7a:3a:3c:98:84:15:86:fb:78:5e:89:b4:f4: b2:38:03:34:87:78:1b:cd:4a:59:69:d0:c0:e0:1a: 43:c0:b9:85:f7:ab:3f:2a:68:58:0a:c3:dc:a5:2e: 1e:47:35:29:c3:87:b5:e0:85:9d:78:63:9d:b7:9b: 2b:c3:df:6e:0f:3c:76:35:6d:69:c3:b6:7a:1e:f2: 91:ff:f8:c5:1b:c0:51:4c:c5:93:7c:3b:ff:66:48: 22:e0:11:9f:2a:24:79:60:c7:9f:80:2f:f0:3a:9a: 00:19:a7:a9:8f:99:03:0c:93:15:8e:01:56:c3:f3: 41:07:35:16:9c:4e:a4:dc:78:55:cd:82:f5:d2:15: 2f:7b:a4:c2:c5:49:0d:18:6a:7b:ad:bd:c0:08:8c: d6:15:5e:0c:a5:f9:5f:d3:a9:44:60:b9:75:4e:8a: e0:a3:fc:5d:6f:77:07:6e:bc:4e:6d:14:4b:e6:96: 48:16:b8:f8:fe:2d:03:38:7b:94:1e:7d:7d:d8:c3: ee:72:fc:3f:59:01:8d:11:7e:88:8a:19:12:19:03: c7:ee:e3:3f:cf:47:b7:b9:92:3a:36:83:45:da:7c: 1c:d6:08:6e:dc:16:a0:e8:16:6c:91:ee:dd:72:48: e0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:74:26:83:33:39:ED:DB:68:C7:DF:50:0C:20:6C:F4:E4:21:AA:0A X509v3 Authority Key Identifier: keyid:2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/6C83604E1E2711EDAA33DF76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.200.0/23 IPv6: 2001:df1:23c0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:07:e3:4e:76:b9:9c:1b:fa:da:25:4d:48:f5:db:4b:07:4c: 58:b4:66:bc:56:c7:0c:9a:8f:4e:28:92:8d:6a:97:5e:96:01: 31:93:48:e1:2c:67:5a:67:cd:c2:e3:99:f5:d2:4f:fc:e7:59: e4:a5:bf:a6:14:1e:b0:08:2a:a7:04:29:1b:2c:e5:c9:a7:1d: 43:13:48:0c:18:dc:87:8d:5f:63:72:e8:ff:66:8c:fa:8b:cd: a4:30:81:c5:65:83:49:ed:6f:9f:b9:6d:93:af:a2:51:6b:e4: 76:64:74:a4:1a:0e:51:5d:27:80:00:29:d3:72:d8:f9:76:e4: 19:78:b6:3a:bd:f5:f6:2a:c0:8a:e8:bf:7e:3e:d1:16:93:e4: eb:16:b9:f3:e7:11:33:7b:cb:13:b8:40:ec:0c:55:e5:e7:5f: 86:e2:60:59:c7:61:90:62:68:cc:de:de:b2:be:01:6f:58:dd: 43:d4:3b:3e:83:09:90:2b:93:b8:84:5b:74:77:10:40:cd:d3: bf:76:0e:e2:cb:a0:92:4e:67:c4:55:17:4d:35:df:8d:1a:99: 05:0e:17:0f:cb:fa:63:a0:ca:ea:e0:f2:37:83:3f:1d:db:a5: 00:cd:15:b6:ec:b9:d6:9b:c1:54:ea:65:21:b9:ef:84:64:f8: 43:55:42:b7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc4OTcxMTAvBgNVBAUTKDJBQTI3ODk0NEI0MTBGQTJDODNCN0MyQUYzMkM2NkFG QTIwQzEyN0IwHhcNMjQxMTE3MDE1NDQwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM5NGNlMC1iYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhdKaK4U3MeZEd/5ojy6zHo6PJiEFYb7eF6JtPSyOAM0h3gbzUpZadDA4BpD wLmF96s/KmhYCsPcpS4eRzUpw4e14IWdeGOdt5srw99uDzx2NW1pw7Z6HvKR//jF G8BRTMWTfDv/Zkgi4BGfKiR5YMefgC/wOpoAGaepj5kDDJMVjgFWw/NBBzUWnE6k 3HhVzYL10hUve6TCxUkNGGp7rb3ACIzWFV4Mpflf06lEYLl1Torgo/xdb3cHbrxO bRRL5pZIFrj4/i0DOHuUHn192MPucvw/WQGNEX6IihkSGQPH7uM/z0e3uZI6NoNF 2nwc1ghu3Bag6BZske7dckjgfQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNl0JoMz Oe3baMffUAwgbPTkIaoKMB8GA1UdIwQYMBaAFCqieJRLQQ+iyDt8KvMsZq+iDBJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzg5Ny9CNkM1OTQxQzFE MzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2TElPM3dxOHl4bXI2SU1F bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0txSjRsRXRCRDZMSU8zd3E4eXhtcjZJTUVucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjc4OTcvQjZDNTk0MUMxRDM1MTFFREE1RTYzMDdEQzRGOUFFMDIvNkM4MzYwNEUx RTI3MTFFREFBMzNERjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjcgwDwQCAAIwCQMHACABDfEjwDANBgkqhkiG9w0BAQsF AAOCAQEAPwfjTna5nBv62iVNSPXbSwdMWLRmvFbHDJqPTiiSjWqXXpYBMZNI4Sxn WmfNwuOZ9dJP/OdZ5KW/phQesAgqpwQpGyzlyacdQxNIDBjch41fY3Lo/2aM+ovN pDCBxWWDSe1vn7ltk6+iUWvkdmR0pBoOUV0ngAAp03LY+XbkGXi2Or319irAiui/ fj7RFpPk6xa58+cRM3vLE7hA7AxV5edfhuJgWcdhkGJozN7esr4Bb1jdQ9Q7PoMJ kCuTuIRbdHcQQM3Tv3YO4sugkk5nxFUXTTXfjRqZBQ4XD8v6Y6DK6uDyN4M/Hdul AM0Vtuy51pvBVOplIbnvhGT4Q1VCtw== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:44 2024 by rpki-client on console-fra.rpki-client.org