$ rpki-client -vvf rpki.apnic.net/member_repository/A91C607C/D4DD3A88628811EE9644A90CC4F9AE02/6F94DE3C628911EEA2D58C10C4F9AE02.roa File: 6F94DE3C628911EEA2D58C10C4F9AE02.roa (raw, json) Hash identifier: V8Zp+nAsYIlE3XVLWHEpLyn3xdZCD/9TBOLVEQMgunU= Subject key identifier: FE:E1:7C:D5:14:25:65:66:02:78:96:FB:99:2A:DD:41:23:1A:79:92 Certificate issuer: /CN=A91C607C/serialNumber=31CBED1D4A02170831807D7744AC4AAFF26A06E6 Certificate serial: 59 Authority key identifier: 31:CB:ED:1D:4A:02:17:08:31:80:7D:77:44:AC:4A:AF:F2:6A:06:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McvtHUoCFwgxgH13RKxKr_JqBuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C607C/D4DD3A88628811EE9644A90CC4F9AE02/6F94DE3C628911EEA2D58C10C4F9AE02.roa Signing time: Mon 11 Mar 2024 06:58:53 +0000 ROA not before: Mon 11 Mar 2024 06:58:52 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 131310 IP address blocks: 103.6.236.0/22 maxlen: 22 103.6.236.0/24 maxlen: 24 103.6.237.0/24 maxlen: 24 103.6.238.0/24 maxlen: 24 103.6.239.0/24 maxlen: 24 150.129.68.0/22 maxlen: 22 150.129.68.0/24 maxlen: 24 150.129.69.0/24 maxlen: 24 150.129.70.0/24 maxlen: 24 150.129.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C607C/D4DD3A88628811EE9644A90CC4F9AE02/McvtHUoCFwgxgH13RKxKr_JqBuY.crl rsync://rpki.apnic.net/member_repository/A91C607C/D4DD3A88628811EE9644A90CC4F9AE02/McvtHUoCFwgxgH13RKxKr_JqBuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McvtHUoCFwgxgH13RKxKr_JqBuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C607C/serialNumber=31CBED1D4A02170831807D7744AC4AAFF26A06E6 Validity Not Before: Mar 11 06:58:52 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65eeabac-1d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a0:19:b3:e9:61:a8:2d:49:19:2f:e4:d1:18: 59:e6:f1:69:65:f8:b5:43:dd:0c:29:44:e6:3d:11: 11:d0:e7:4b:e4:9e:e6:23:8d:2e:95:0c:86:ed:79: b6:4b:70:c5:2d:b5:f7:9f:1a:db:9d:43:53:e8:a5: c2:d5:68:e3:ae:bb:e0:26:87:45:15:59:cf:c7:fb: fc:08:92:fc:d7:a3:95:89:55:89:d8:39:d9:9b:0f: ba:e7:da:36:fb:99:cb:c9:e3:8a:aa:22:de:0f:a7: 7f:93:e5:cd:61:8d:b6:08:8c:e1:ca:63:14:c7:76: 9c:cd:e4:a0:f7:28:7c:c9:93:15:52:12:bc:54:22: 8c:b8:94:9d:d3:07:02:5b:e4:19:63:2c:22:ab:0a: 11:81:ca:c0:27:7b:5c:65:ad:36:51:c2:c1:e3:91: c2:e0:1a:a7:a7:04:91:83:81:79:4e:d9:1c:3a:59: 38:dd:6c:d5:0f:5e:0a:48:86:22:a3:2d:c2:7b:0c: ad:3b:5b:08:8f:f1:49:c8:0e:d2:63:8a:e8:2e:df: 4e:54:e2:ea:a3:43:92:8e:be:c4:ee:66:96:7f:8c: f8:2d:a5:ed:2e:7c:d1:af:e6:2e:89:52:84:dd:6e: 58:7d:b6:88:0d:6f:fd:90:8a:09:88:47:8d:0a:e9: 56:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E1:7C:D5:14:25:65:66:02:78:96:FB:99:2A:DD:41:23:1A:79:92 X509v3 Authority Key Identifier: keyid:31:CB:ED:1D:4A:02:17:08:31:80:7D:77:44:AC:4A:AF:F2:6A:06:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C607C/D4DD3A88628811EE9644A90CC4F9AE02/McvtHUoCFwgxgH13RKxKr_JqBuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McvtHUoCFwgxgH13RKxKr_JqBuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C607C/D4DD3A88628811EE9644A90CC4F9AE02/6F94DE3C628911EEA2D58C10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.236.0/22 150.129.68.0/22 Signature Algorithm: sha256WithRSAEncryption ee:73:5f:66:83:8e:98:bf:e6:54:07:f4:fc:14:ea:d9:ba:b4: 24:8a:f7:17:71:c9:db:f7:84:1f:7a:7f:e7:59:c1:ef:8a:f2: 33:26:52:51:19:d1:f1:33:ea:cc:a3:eb:0f:de:62:ff:7e:50: 9d:62:87:2f:ab:6d:8d:13:ab:66:d2:d3:9c:3e:14:d4:5d:8b: cc:14:94:8e:08:f4:a7:5b:4b:c0:1c:c1:44:ef:24:bd:c9:a3: 5b:ef:be:a4:21:ae:b5:c2:ba:7b:72:1f:b3:59:37:76:57:a2: 1b:c2:d0:e1:8f:33:05:95:ef:fa:46:7c:d7:74:2b:5f:76:47: 02:e7:20:1b:bc:6d:1b:64:53:3b:72:58:20:2a:03:96:0e:5f: 78:8e:ed:f5:8a:74:4e:ef:42:66:51:ab:19:16:e7:2a:4f:1e: f7:1a:f2:a7:9f:10:1f:c7:78:ce:f7:c4:f7:09:09:9e:8f:df: e6:cc:04:bd:04:e4:15:c3:d5:5f:70:09:d8:73:51:02:7b:73: 27:b9:2c:b5:58:48:f2:db:ef:e2:b8:8f:f3:96:96:94:f0:ca: 09:ce:1d:46:5a:c4:4d:87:c7:ae:65:49:4f:d7:e8:53:6b:1f: 81:08:dd:31:4a:a4:21:28:db:e1:ca:70:1d:b3:97:9a:01:45: 5d:41:bc:3f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjA3QzExMC8GA1UEBRMoMzFDQkVEMUQ0QTAyMTcwODMxODA3RDc3NDRBQzRBQUZG MjZBMDZFNjAeFw0yNDAzMTEwNjU4NTJaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZWVhYmFjLTFkODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5oBmz6WGoLUkZL+TRGFnm8Wll+LVD3QwpROY9ERHQ50vknuYjjS6VDIbtebZL cMUttfefGtudQ1PopcLVaOOuu+Amh0UVWc/H+/wIkvzXo5WJVYnYOdmbD7rn2jb7 mcvJ44qqIt4Pp3+T5c1hjbYIjOHKYxTHdpzN5KD3KHzJkxVSErxUIoy4lJ3TBwJb 5BljLCKrChGBysAne1xlrTZRwsHjkcLgGqenBJGDgXlO2Rw6WTjdbNUPXgpIhiKj LcJ7DK07WwiP8UnIDtJjiugu305U4uqjQ5KOvsTuZpZ/jPgtpe0ufNGv5i6JUoTd blh9togNb/2QigmIR40K6Va1AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU/uF81RQl ZWYCeJb7mSrdQSMaeZIwHwYDVR0jBBgwFoAUMcvtHUoCFwgxgH13RKxKr/JqBuYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2MDdDL0Q0REQzQTg4NjI4 ODExRUU5NjQ0QTkwQ0M0RjlBRTAyL01jdnRIVW9DRndneGdIMTNSS3hLcl9KcUJ1 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWN2dEhVb0NGd2d4Z0gxM1JLeEtyX0pxQnVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjA3Qy9ENEREM0E4ODYyODgxMUVFOTY0NEE5MENDNEY5QUUwMi82Rjk0REUzQzYy ODkxMUVFQTJENThDMTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmcG7AMEApaBRDANBgkqhkiG9w0BAQsFAAOCAQEA7nNfZoOO mL/mVAf0/BTq2bq0JIr3F3HJ2/eEH3p/51nB74ryMyZSURnR8TPqzKPrD95i/35Q nWKHL6ttjROrZtLTnD4U1F2LzBSUjgj0p1tLwBzBRO8kvcmjW+++pCGutcK6e3If s1k3dleiG8LQ4Y8zBZXv+kZ813QrX3ZHAucgG7xtG2RTO3JYICoDlg5feI7t9Yp0 Tu9CZlGrGRbnKk8e9xryp58QH8d4zvfE9wkJno/f5swEvQTkFcPVX3AJ2HNRAntz J7kstVhI8tvv4riP85aWlPDKCc4dRlrETYfHrmVJT9foU2sfgQjdMUqkISjb4cpw HbOXmgFFXUG8Pw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:04 2024 by rpki-client on console-fra.rpki-client.org