$ rpki-client -vvf rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa File: 6243075E653411EB98060C17C4F9AE02.roa (raw, json) Hash identifier: NM1X988Sf6Y4ByWki+fiiLDu8TbBsX43Xwq0VBDoGuo= Subject key identifier: D4:DD:B2:5E:F6:F0:BD:6C:B9:6B:32:8E:8F:30:5D:FA:69:F7:ED:0E Certificate issuer: /CN=A91B927E/serialNumber=2AC0AB4B5F3BB5B0EF79BD21A649CAFFE7F9C20A Certificate serial: 068D Authority key identifier: 2A:C0:AB:4B:5F:3B:B5:B0:EF:79:BD:21:A6:49:CA:FF:E7:F9:C2:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa Signing time: Thu 31 Oct 2024 20:09:25 +0000 ROA not before: Thu 31 Oct 2024 20:09:25 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135130 IP address blocks: 103.122.250.0/23 maxlen: 23 103.122.250.0/24 maxlen: 24 103.122.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.crl rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1677 (0x68d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B927E/serialNumber=2AC0AB4B5F3BB5B0EF79BD21A649CAFFE7F9C20A Validity Not Before: Oct 31 20:09:25 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6723e3f5-266c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7f:7e:a3:56:3c:50:f9:e0:b7:b0:bc:f8:06: 61:97:00:b0:ce:60:b7:0b:84:8c:13:19:12:15:57: 1f:f5:a9:d1:33:c0:51:c0:d3:49:d1:89:a8:89:6a: 4a:7c:50:bd:76:ee:3c:58:ca:57:9d:58:d5:56:8d: be:b7:03:44:46:d7:3b:84:16:52:4b:5f:55:32:44: ac:cc:4c:fe:00:b5:b9:6d:59:95:3c:35:77:94:4b: 98:95:5e:a4:30:01:6e:20:d0:a5:fc:09:a6:9a:73: 7d:cd:92:36:d3:b5:79:97:5a:f8:7d:4e:fb:f8:58: e4:85:95:fd:bd:bb:c7:ab:61:5f:38:49:29:4a:7c: 4d:ad:c5:cb:fe:71:93:ab:36:06:b4:24:ee:70:6f: 6b:31:01:c1:97:b1:52:3d:4c:8b:6f:92:03:e3:d8: 27:f6:25:ff:24:1b:82:99:03:51:aa:42:08:0a:f4: eb:b7:df:54:11:e0:bc:43:99:6e:8d:8f:38:8a:53: bc:72:b0:3b:46:e0:0b:c9:f3:b9:9f:76:3b:5b:41: c0:d4:5a:f7:c6:4c:54:23:f4:6f:08:74:02:83:ed: 8e:ed:ee:db:71:08:fb:66:7c:5e:7a:4a:ef:4f:c4: b5:bb:41:01:e9:44:0d:27:a1:df:2e:bd:28:c4:4c: 9a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DD:B2:5E:F6:F0:BD:6C:B9:6B:32:8E:8F:30:5D:FA:69:F7:ED:0E X509v3 Authority Key Identifier: keyid:2A:C0:AB:4B:5F:3B:B5:B0:EF:79:BD:21:A6:49:CA:FF:E7:F9:C2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.250.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:06:25:3f:e8:4e:41:a5:b1:41:ee:f8:a5:ab:0e:c4:6f:95: d8:04:0c:e5:9d:a3:2b:96:3b:a0:50:19:68:cc:e4:40:5e:95: 1c:e7:21:51:15:4a:b4:42:b0:75:7b:61:84:5a:eb:4e:7c:9f: 44:ed:41:69:9a:b4:2c:bd:c1:c3:37:87:c4:a7:42:9a:a6:c2: 66:6e:ac:c4:c3:c4:ea:cd:79:26:ef:77:e2:8c:e8:5d:bf:c8: cd:eb:11:19:16:14:02:05:e0:5e:70:c8:98:45:23:bc:ba:17: 4a:b5:c8:f0:5d:f9:5b:70:b4:f8:ed:4d:88:fc:e2:10:96:60: 1a:90:e6:49:b0:1c:49:de:ea:1a:8c:8f:36:b0:67:f2:f9:d8: 38:6f:45:5d:d3:bd:10:5e:12:74:58:39:2b:ed:95:87:8c:97: d6:7f:7f:b0:5d:7d:e0:02:67:fe:da:10:0b:f0:26:07:ee:63: 10:bc:4e:88:b4:c0:61:0d:22:c9:b5:55:7a:a2:66:26:89:b8: 75:87:96:bc:64:0e:7e:78:ba:93:ea:d3:f3:ba:3f:b5:73:a9: d1:73:01:eb:aa:e0:3e:5f:da:82:a6:44:d2:78:78:88:dc:88: 24:58:d8:a3:f4:85:5a:e5:b4:e1:8b:6f:b8:9c:d8:cf:7b:bf: 9c:fa:60:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyN0UxMTAvBgNVBAUTKDJBQzBBQjRCNUYzQkI1QjBFRjc5QkQyMUE2NDlDQUZG RTdGOUMyMEEwHhcNMjQxMDMxMjAwOTI1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIzZTNmNS0yNjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxH9+o1Y8UPngt7C8+AZhlwCwzmC3C4SMExkSFVcf9anRM8BRwNNJ0YmoiWpK fFC9du48WMpXnVjVVo2+twNERtc7hBZSS19VMkSszEz+ALW5bVmVPDV3lEuYlV6k MAFuINCl/AmmmnN9zZI207V5l1r4fU77+FjkhZX9vbvHq2FfOEkpSnxNrcXL/nGT qzYGtCTucG9rMQHBl7FSPUyLb5ID49gn9iX/JBuCmQNRqkIICvTrt99UEeC8Q5lu jY84ilO8crA7RuALyfO5n3Y7W0HA1Fr3xkxUI/RvCHQCg+2O7e7bcQj7Znxeekrv T8S1u0EB6UQNJ6HfLr0oxEyalQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNTdsl72 8L1suWsyjo8wXfpp9+0OMB8GA1UdIwQYMBaAFCrAq0tfO7Ww73m9IaZJyv/n+cIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI3RS9DQ0Q2RUQxQzY4 REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9Lc0NyUzE4N3RiRHZlYjBocGtuS18tZjV3 Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tzQ3JTMTg3dGJEdmViMGhwa25LXy1mNXdnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyN0UvQ0NENkVEMUM2OERGMTFFQTk3QjE1NTI0QzRGOUFFMDIvNjI0MzA3NUU2 NTM0MTFFQjk4MDYwQzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnevowDQYJKoZIhvcNAQELBQADggEBAAsGJT/oTkGlsUHu +KWrDsRvldgEDOWdoyuWO6BQGWjM5EBelRznIVEVSrRCsHV7YYRa6058n0TtQWma tCy9wcM3h8SnQpqmwmZurMTDxOrNeSbvd+KM6F2/yM3rERkWFAIF4F5wyJhFI7y6 F0q1yPBd+VtwtPjtTYj84hCWYBqQ5kmwHEne6hqMjzawZ/L52DhvRV3TvRBeEnRY OSvtlYeMl9Z/f7BdfeACZ/7aEAvwJgfuYxC8Toi0wGENIsm1VXqiZiaJuHWHlrxk Dn54upPq0/O6P7VzqdFzAeuq4D5f2oKmRNJ4eIjciCRY2KP0hVrltOGLb7ic2M97 v5z6YLg= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org