$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/6C83604E1E2711EDAA33DF76C4F9AE02.roa File: 6C83604E1E2711EDAA33DF76C4F9AE02.roa (raw, json) Hash identifier: yeoU/7S6ECE1FsIs/tuQEH5KU0kq0eT4uZ5SzeSmkvQ= Subject key identifier: D2:70:C9:61:06:66:18:26:8E:C2:4A:CA:27:90:42:BA:7C:71:83:D4 Certificate issuer: /CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Certificate serial: 017F Authority key identifier: 2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/6C83604E1E2711EDAA33DF76C4F9AE02.roa Signing time: Sat 23 Mar 2024 08:25:52 +0000 ROA not before: Sat 23 Mar 2024 08:25:52 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139642 IP address blocks: 103.141.200.0/23 maxlen: 23 103.141.200.0/24 maxlen: 24 103.141.201.0/24 maxlen: 24 2001:df1:23c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Validity Not Before: Mar 23 08:25:52 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65fe9210-60a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6c:cf:e5:5e:80:da:cc:a6:29:3d:21:b6:f7: dc:e3:e0:6a:ce:5b:0a:ec:bb:f1:b3:d0:dd:13:ab: 55:fe:1d:d5:1e:1d:bc:81:44:4d:1d:30:0e:ba:18: 1f:23:f2:e3:a8:7d:11:77:c7:22:1b:3e:5f:07:fa: 09:b4:d5:f1:89:59:f3:8a:bc:bd:5d:1f:f3:40:63: 0c:2a:eb:fa:7d:e8:3f:89:b5:cb:e6:e2:86:aa:2d: 88:ea:5b:8e:3b:e3:9c:1b:1d:13:35:d2:13:23:eb: 4d:b9:a7:78:18:75:94:b4:7d:51:67:2b:b4:b3:8c: 9c:20:e9:01:3d:d4:9f:27:4b:bc:71:31:f4:85:4a: 2b:ab:1a:eb:30:6a:e4:b8:5a:5e:ab:45:46:b5:9f: 19:4e:8f:e0:fa:4e:87:c4:52:c1:c4:ce:cf:c1:17: b8:32:3c:95:b7:9e:22:f7:a0:aa:32:0a:e1:66:fc: 7b:79:bd:08:d1:c1:16:97:52:f0:9c:14:7d:fb:12: 59:67:c6:05:0f:73:a8:52:52:78:f4:a4:a8:05:4f: 1b:63:3f:01:05:6a:02:56:24:4f:40:4d:21:57:6d: 32:53:7e:46:21:a1:db:f3:e6:ee:2d:2d:69:8f:47: 3d:aa:28:a7:b0:3c:e3:28:bd:8f:2b:fd:b6:34:57: bc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:70:C9:61:06:66:18:26:8E:C2:4A:CA:27:90:42:BA:7C:71:83:D4 X509v3 Authority Key Identifier: keyid:2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/6C83604E1E2711EDAA33DF76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.200.0/23 IPv6: 2001:df1:23c0::/48 Signature Algorithm: sha256WithRSAEncryption 43:d2:fd:03:db:79:d7:28:96:aa:f7:5e:d1:d3:8d:5f:3b:0c: 85:9f:f2:1a:3a:d6:4e:80:53:54:71:91:24:cd:03:76:ed:5f: 7f:12:80:11:20:05:6c:f2:fe:1f:56:16:2e:aa:40:34:80:b0: da:da:c0:1a:52:8f:f5:f6:68:31:77:f0:f5:7c:e6:2e:e3:71: 5d:83:f3:95:5c:21:f5:84:7c:b0:64:01:c8:8e:9d:0f:27:df: 85:c9:a7:66:ae:23:c9:95:a7:dc:3b:1e:b0:0a:6c:37:59:24: f4:ad:ab:56:e4:24:20:b5:5b:d0:6a:a0:65:80:64:8c:c4:e5: 9d:90:0a:4d:10:4a:46:8d:b1:be:0a:d3:82:be:01:14:67:e6: cb:3c:14:b6:fd:de:6b:3a:da:95:3f:22:17:ff:13:66:b3:b8: 37:45:72:5f:38:6e:26:c5:24:91:84:c2:8b:f7:1f:d8:b9:5e: 3c:97:27:8d:d6:5f:5b:78:dc:d7:c2:97:9f:26:02:e5:d9:c8: 03:8e:85:f1:28:a6:74:2e:18:9c:73:9f:c8:85:4d:41:c6:cd: ec:7c:06:de:9e:ad:32:3e:c2:af:34:34:1b:c9:a3:27:eb:f5: 9f:5a:37:d8:d1:63:86:5b:9d:3a:47:29:d1:fa:ed:2d:42:dd: e9:a6:98:6e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc4OTcxMTAvBgNVBAUTKDJBQTI3ODk0NEI0MTBGQTJDODNCN0MyQUYzMkM2NkFG QTIwQzEyN0IwHhcNMjQwMzIzMDgyNTUyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZlOTIxMC02MGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWzP5V6A2symKT0htvfc4+BqzlsK7Lvxs9DdE6tV/h3VHh28gURNHTAOuhgf I/LjqH0Rd8ciGz5fB/oJtNXxiVnziry9XR/zQGMMKuv6feg/ibXL5uKGqi2I6luO O+OcGx0TNdITI+tNuad4GHWUtH1RZyu0s4ycIOkBPdSfJ0u8cTH0hUorqxrrMGrk uFpeq0VGtZ8ZTo/g+k6HxFLBxM7PwRe4MjyVt54i96CqMgrhZvx7eb0I0cEWl1Lw nBR9+xJZZ8YFD3OoUlJ49KSoBU8bYz8BBWoCViRPQE0hV20yU35GIaHb8+buLS1p j0c9qiinsDzjKL2PK/22NFe8EwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNJwyWEG ZhgmjsJKyieQQrp8cYPUMB8GA1UdIwQYMBaAFCqieJRLQQ+iyDt8KvMsZq+iDBJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzg5Ny9CNkM1OTQxQzFE MzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2TElPM3dxOHl4bXI2SU1F bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0txSjRsRXRCRDZMSU8zd3E4eXhtcjZJTUVucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjc4OTcvQjZDNTk0MUMxRDM1MTFFREE1RTYzMDdEQzRGOUFFMDIvNkM4MzYwNEUx RTI3MTFFREFBMzNERjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjcgwDwQCAAIwCQMHACABDfEjwDANBgkqhkiG9w0BAQsF AAOCAQEAQ9L9A9t51yiWqvde0dONXzsMhZ/yGjrWToBTVHGRJM0Ddu1ffxKAESAF bPL+H1YWLqpANICw2trAGlKP9fZoMXfw9XzmLuNxXYPzlVwh9YR8sGQByI6dDyff hcmnZq4jyZWn3DsesApsN1kk9K2rVuQkILVb0GqgZYBkjMTlnZAKTRBKRo2xvgrT gr4BFGfmyzwUtv3eazralT8iF/8TZrO4N0VyXzhuJsUkkYTCi/cf2LlePJcnjdZf W3jc18KXnyYC5dnIA46F8SimdC4YnHOfyIVNQcbN7HwG3p6tMj7CrzQ0G8mjJ+v1 n1o32NFjhludOkcp0frtLULd6aaYbg== -----END CERTIFICATE-----Generated at Sat May 25 06:05:14 2024 by rpki-client on console-ams.rpki-client.org