$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa File: DB63CF9A011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: Yj/+HaStFW98TgfGWike2ABsxcjxoPWlWvANthH7quo= Subject key identifier: 60:8C:00:75:7A:47:B5:FB:8A:2C:77:84:A9:2C:2D:BE:F1:A7:A3:93 Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0BCB Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa Signing time: Sat 08 Jun 2024 19:33:59 +0000 ROA not before: Sat 08 Jun 2024 19:33:59 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 10143 IP address blocks: 43.239.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3019 (0xbcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 8 19:33:59 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6664b227-6d21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:10:d3:4c:36:8c:2c:c6:bf:20:7e:e5:90:da: 0f:2b:12:4d:42:cd:46:d5:8b:2b:4f:89:a4:ea:57: 5b:6a:90:29:78:c4:5a:7a:2a:11:55:17:24:d0:04: 0f:e9:74:94:8e:cb:5d:15:f6:23:b8:eb:7f:69:03: c0:36:42:cb:85:54:95:5f:7d:15:9f:c2:72:cb:8e: c1:71:04:8f:e3:2a:9f:4d:d2:8e:02:05:61:19:e6: 3f:c7:40:83:e6:9d:f1:a6:e4:21:6a:86:b8:43:67: e2:52:21:8a:24:25:b8:7e:ad:3b:57:2d:6b:4a:7d: 12:69:f7:66:c6:f6:95:22:8c:1d:a4:78:27:74:4a: 35:4f:c6:5b:cc:53:db:2b:ec:6d:8b:84:d2:33:b0: e1:45:16:90:db:31:ee:d9:4f:c4:35:ab:0a:e5:e6: 72:69:06:44:e2:d0:ae:62:36:9f:4b:6c:2a:cf:9d: 5b:62:a0:04:34:24:3a:91:9b:d9:5d:b3:9b:20:6f: 90:3d:1b:d9:00:ff:a2:77:7e:d9:3f:6e:d4:c0:f1: bb:27:c8:b1:dd:85:4a:c3:fb:52:10:e9:59:8a:95: 5f:c9:58:b2:fc:b2:4d:6d:4e:ad:ae:b7:bf:79:37: 16:d2:a7:57:9e:69:48:5e:0c:d6:1e:5b:28:f9:61: 95:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8C:00:75:7A:47:B5:FB:8A:2C:77:84:A9:2C:2D:BE:F1:A7:A3:93 X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.102.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:53:12:54:58:9b:bb:c7:76:f9:58:30:b3:d2:f4:9f:53:7a: f9:ca:05:f9:ed:e5:c6:9b:27:4b:02:13:24:8d:ec:15:5d:3f: d3:54:78:3b:af:bc:55:67:19:ac:96:2a:10:bf:44:af:1e:3c: b7:15:0e:4d:d0:01:08:cf:f8:ee:e7:f2:3a:af:cb:ac:8c:fc: 7c:22:f7:1c:68:35:6a:82:09:17:81:49:7c:e0:41:67:4c:31: d5:ac:d1:23:09:df:df:f9:b4:59:39:80:98:f6:d3:54:f8:2b: 94:b9:79:92:6e:f6:7a:90:99:fe:e4:22:2b:e5:19:b9:3a:cb: 2d:9e:eb:f0:3b:38:0e:98:f9:6c:58:5d:f5:11:c6:e8:8d:68: 6f:93:46:61:00:71:0f:1f:c1:ba:2e:97:39:97:70:9d:f2:37: 75:0a:7e:7d:9b:b7:e4:a6:9e:26:1e:43:00:ac:a0:f0:77:77: e6:05:3f:00:d9:ed:86:85:1a:90:85:a4:cd:79:e3:18:a0:43: 7f:69:c1:4b:6e:9e:0c:83:e8:9e:ca:d9:d5:87:65:8a:21:4e: e8:9c:35:37:3c:15:15:cd:13:34:a0:79:26:d4:a8:b3:95:60: 55:f2:be:75:bc:c4:e2:b6:c1:a4:27:6e:db:b9:65:43:fa:50: 46:df:7d:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjQwNjA4MTkzMzU5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY0YjIyNy02ZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhDTTDaMLMa/IH7lkNoPKxJNQs1G1YsrT4mk6ldbapApeMRaeioRVRck0AQP 6XSUjstdFfYjuOt/aQPANkLLhVSVX30Vn8Jyy47BcQSP4yqfTdKOAgVhGeY/x0CD 5p3xpuQhaoa4Q2fiUiGKJCW4fq07Vy1rSn0SafdmxvaVIowdpHgndEo1T8ZbzFPb K+xti4TSM7DhRRaQ2zHu2U/ENasK5eZyaQZE4tCuYjafS2wqz51bYqAENCQ6kZvZ XbObIG+QPRvZAP+id37ZP27UwPG7J8ix3YVKw/tSEOlZipVfyViy/LJNbU6trre/ eTcW0qdXnmlIXgzWHlso+WGVSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGCMAHV6 R7X7iix3hKksLb7xp6OTMB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvREI2M0NGOUEw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr72YwDQYJKoZIhvcNAQELBQADggEBAIpTElRYm7vHdvlY MLPS9J9TevnKBfnt5cabJ0sCEySN7BVdP9NUeDuvvFVnGayWKhC/RK8ePLcVDk3Q AQjP+O7n8jqvy6yM/Hwi9xxoNWqCCReBSXzgQWdMMdWs0SMJ39/5tFk5gJj201T4 K5S5eZJu9nqQmf7kIivlGbk6yy2e6/A7OA6Y+WxYXfURxuiNaG+TRmEAcQ8fwbou lzmXcJ3yN3UKfn2bt+SmniYeQwCsoPB3d+YFPwDZ7YaFGpCFpM154xigQ39pwUtu ngyD6J7K2dWHZYohTuicNTc8FRXNEzSgeSbUqLOVYFXyvnW8xOK2waQnbtu5ZUP6 UEbffeU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org