$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/AA97516E24CA11EFB59A9379C4F9AE02.roa File: AA97516E24CA11EFB59A9379C4F9AE02.roa (raw, json) Hash identifier: 4pyuOexl0DTby5r2TtQcTtZa/GRLdsKvSRJMrccFZWc= Subject key identifier: 7F:08:95:8A:45:9D:1B:0A:E6:40:81:8A:AB:21:3F:CA:D8:51:9F:20 Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: 06 Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/AA97516E24CA11EFB59A9379C4F9AE02.roa Signing time: Fri 07 Jun 2024 12:37:14 +0000 ROA not before: Fri 07 Jun 2024 12:37:14 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134167 IP address blocks: 103.37.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Validity Not Before: Jun 7 12:37:14 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6662fef9-b8c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c1:62:3e:d9:0c:f1:89:bf:53:eb:a9:87:28: b5:ea:91:66:3d:de:cd:21:e8:cb:38:6b:ab:5b:57: 02:4e:01:eb:b9:06:dc:38:64:9e:ea:ee:54:f3:10: ad:df:d2:4f:e4:62:61:58:e0:7f:99:a2:82:04:c7: 27:78:2a:78:5e:4e:0f:60:93:b1:79:e4:a9:bf:e7: 04:dc:5a:d9:af:ee:ec:0b:6b:e7:d4:cf:63:22:ff: 1b:44:b2:d8:31:a8:82:71:41:98:52:cc:98:8c:47: 8a:e5:58:14:24:05:9b:37:04:6c:40:18:50:65:05: c7:41:9c:74:c8:46:da:3b:de:2c:30:25:11:0c:74: f3:06:9d:db:7c:b0:6e:16:8d:f5:db:d3:2e:dc:40: d0:1a:5e:2e:65:67:c5:8d:a8:57:16:22:77:ae:18: 3b:0b:9c:80:88:20:7a:03:c7:be:ce:c5:5e:50:69: 90:23:74:b8:c9:ee:8e:08:8f:7a:33:7e:d2:98:c2: 16:9d:ce:a6:64:6a:83:c0:70:c4:2b:f3:0e:79:64: 9d:98:16:f5:5e:b3:9b:4b:b7:7c:8c:70:68:60:80: 7a:50:ca:43:ed:95:60:b4:3a:02:5d:b7:1e:12:c5: 1a:b2:fe:da:53:cb:32:eb:ba:59:e3:d3:52:80:d4: e5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:08:95:8A:45:9D:1B:0A:E6:40:81:8A:AB:21:3F:CA:D8:51:9F:20 X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/AA97516E24CA11EFB59A9379C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.228.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:3f:6f:0e:da:42:29:df:0c:32:5a:13:a9:19:06:ab:59:96: 92:b3:1f:58:be:e9:4a:a2:5a:e2:f2:1d:11:2a:3f:2a:57:e3: 39:80:a2:f1:8a:25:d0:a4:9b:26:af:95:e3:b2:ef:f0:e6:80: 5b:ca:aa:3f:9e:d4:93:a4:60:ad:3d:b7:e4:08:53:66:6b:90: e4:04:8b:be:11:a4:aa:8c:29:5a:7f:27:42:9d:c6:f2:93:ea: c8:08:a4:c6:c9:0f:42:57:ae:3d:1d:f9:90:3a:59:58:b3:ec: 3d:5e:ac:19:1b:ed:de:4b:a6:f2:d5:de:19:a8:61:d1:38:5c: cd:80:ac:7a:9d:58:6c:72:5e:76:f4:43:86:98:69:7b:47:6f: e1:6e:ba:ed:b4:53:0d:a8:c6:16:1f:93:62:78:fb:d3:34:9f: 8d:24:17:07:b0:b4:f6:1b:46:86:74:9c:ea:de:b4:c6:fd:c9: 84:82:3f:7c:b7:b5:6d:8c:25:25:9e:bd:2e:24:e8:a6:8a:89: ba:56:81:d1:6e:37:3f:03:48:68:b1:b5:6c:c9:c0:16:4a:42: c5:54:fe:65:cf:e7:2c:fc:27:f0:7c:d4:72:b2:cc:8d:37:b4: b3:d1:d9:5b:19:73:b0:41:71:c0:e9:83:df:ed:73:ec:e2:66: bc:09:55:9f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkM4QTExMC8GA1UEBRMoNkNFN0I1NzUwRTZFMTdEM0QzOUVCNUIwODdGRDNGQUQ1 OTU5RjMyNTAeFw0yNDA2MDcxMjM3MTRaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjJmZWY5LWI4YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEwWI+2Qzxib9T66mHKLXqkWY93s0h6Ms4a6tbVwJOAeu5Btw4ZJ7q7lTzEK3f 0k/kYmFY4H+ZooIExyd4KnheTg9gk7F55Km/5wTcWtmv7uwLa+fUz2Mi/xtEstgx qIJxQZhSzJiMR4rlWBQkBZs3BGxAGFBlBcdBnHTIRto73iwwJREMdPMGndt8sG4W jfXb0y7cQNAaXi5lZ8WNqFcWIneuGDsLnICIIHoDx77OxV5QaZAjdLjJ7o4Ij3oz ftKYwhadzqZkaoPAcMQr8w55ZJ2YFvVes5tLt3yMcGhggHpQykPtlWC0OgJdtx4S xRqy/tpTyzLrulnj01KA1OVzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUfwiVikWd GwrmQIGKqyE/ythRnyAwHwYDVR0jBBgwFoAUbOe1dQ5uF9PTnrWwh/0/rVlZ8yUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQzhBLzYxRUM0OTE2MjRD OTExRUY5QzhDNjI1OUM0RjlBRTAyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9lMWRRNXVGOVBUbnJXd2hfMF9yVmxaOHlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkM4QS82MUVDNDkxNjI0QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi9BQTk3NTE2RTI0 Q0ExMUVGQjU5QTkzNzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcl5DANBgkqhkiG9w0BAQsFAAOCAQEATT9vDtpCKd8MMloT qRkGq1mWkrMfWL7pSqJa4vIdESo/KlfjOYCi8Yol0KSbJq+V47Lv8OaAW8qqP57U k6RgrT235AhTZmuQ5ASLvhGkqowpWn8nQp3G8pPqyAikxskPQleuPR35kDpZWLPs PV6sGRvt3kum8tXeGahh0ThczYCsep1YbHJedvRDhphpe0dv4W667bRTDajGFh+T Ynj70zSfjSQXB7C09htGhnSc6t60xv3JhII/fLe1bYwlJZ69LiTopoqJulaB0W43 PwNIaLG1bMnAFkpCxVT+Zc/nLPwn8HzUcrLMjTe0s9HZWxlzsEFxwOmD3+1z7OJm vAlVnw== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:32 2024 by rpki-client on console-fra.rpki-client.org