$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/F06FFC3408CC11EDA7130E70C4F9AE02.roa File: F06FFC3408CC11EDA7130E70C4F9AE02.roa (raw, json) Hash identifier: 8KH1hqzkLXkXy97Wm81W0rBnCYlFZJ27utgN9vEX9+A= Subject key identifier: E3:28:91:86:BE:3E:4F:10:61:6E:14:E8:D3:EF:B0:6B:85:E7:0D:AB Certificate issuer: /CN=A91C6BB2/serialNumber=03BC749AC1682C4B46DA259AB7EB662AA225B0EE Certificate serial: 0127 Authority key identifier: 03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/F06FFC3408CC11EDA7130E70C4F9AE02.roa Signing time: Wed 19 Jul 2023 03:22:55 +0000 ROA not before: Wed 19 Jul 2023 03:22:55 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 134186 IP address blocks: 45.117.60.0/22 maxlen: 22 45.117.60.0/24 maxlen: 24 45.117.61.0/24 maxlen: 24 45.117.62.0/24 maxlen: 24 45.117.63.0/24 maxlen: 24 103.57.120.0/22 maxlen: 22 103.57.120.0/24 maxlen: 24 103.57.121.0/24 maxlen: 24 103.57.122.0/24 maxlen: 24 103.57.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BB2/serialNumber=03BC749AC1682C4B46DA259AB7EB662AA225B0EE Validity Not Before: Jul 19 03:22:55 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b7570f-cadd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:65:7b:4b:ee:65:f6:13:4c:3a:1b:20:8e:66: 4c:91:80:7d:c3:a3:e7:d0:63:9b:02:2e:fa:41:84: 52:ad:3e:1e:77:3a:6c:2c:66:2c:c9:b7:5f:08:6f: aa:70:ab:18:f7:00:b9:c2:7d:8c:7c:94:73:41:98: 04:42:42:cc:83:bc:0e:77:b8:57:40:97:5b:69:6c: 5b:ca:55:d2:ff:6f:c8:d7:22:dd:71:e9:4b:d2:e4: 6a:52:91:83:47:be:1d:3f:46:89:36:37:a2:51:40: 0c:7a:03:8b:e1:e1:1b:5d:de:7c:5e:c6:0f:30:cd: d4:07:ad:f0:e0:f5:99:65:25:39:a7:d3:ed:4c:a7: ca:8b:d0:27:3c:5f:f7:7a:fd:06:6f:04:44:99:cc: 0d:37:e3:38:cc:07:5e:2e:eb:a3:df:d0:95:f4:ef: b8:5c:b2:52:07:d7:30:fa:47:c8:05:61:f2:73:56: fd:00:0c:d9:79:fa:09:43:a5:73:bb:48:78:1b:82: b1:08:ca:42:2e:ac:1b:e2:dd:19:2e:6f:14:ca:4e: 9d:63:e7:f0:5a:89:21:f2:2e:65:90:63:c6:da:fc: 7f:7b:df:f0:d3:04:03:43:12:12:96:c5:e6:11:3b: 0c:cb:14:3a:6f:05:af:6e:91:b7:75:c2:48:74:58: da:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:28:91:86:BE:3E:4F:10:61:6E:14:E8:D3:EF:B0:6B:85:E7:0D:AB X509v3 Authority Key Identifier: keyid:03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/F06FFC3408CC11EDA7130E70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.60.0/22 103.57.120.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:fb:93:c0:1b:25:d2:31:a5:d0:09:ad:37:28:1a:47:22:75: 39:9e:6d:17:6d:ac:9c:2a:66:3c:98:a1:d9:50:2f:00:72:67: ac:7b:96:14:2d:c0:bf:dd:29:a9:5a:09:6d:6f:d9:70:56:57: 67:0a:d5:f6:86:39:c6:92:9b:7d:bf:03:83:a6:55:b2:53:9b: 70:48:66:04:25:99:59:12:40:7b:17:a4:09:a0:a3:27:02:7b: cc:26:fa:7e:d4:69:00:65:e9:9d:49:69:f6:8a:70:e3:88:69: 2a:4d:d1:7e:0e:8d:3e:37:bb:34:04:dc:d2:45:72:9a:f8:15: c3:0a:72:3d:88:22:9f:a0:e0:43:2a:51:d5:73:b9:b5:45:55: a0:79:e5:b4:bb:0c:9c:28:a3:c9:37:7e:92:5a:e8:43:5e:c6: 06:21:ea:3a:68:0c:a8:c1:68:44:ff:b6:3e:5c:e8:26:8d:bc: bf:10:47:f6:3d:7f:1d:fd:68:0c:0d:b1:31:cd:cb:09:8c:08: bd:d0:77:ee:8d:dd:fb:22:51:ae:2f:dd:6d:08:a6:cb:d1:a1: c0:5e:cf:e4:cc:ba:84:06:b8:ca:27:43:9f:92:53:da:0b:98: 16:01:ab:1b:22:c1:8f:90:7b:44:42:ec:50:95:23:84:bc:34: 55:9e:2d:82 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCQjIxMTAvBgNVBAUTKDAzQkM3NDlBQzE2ODJDNEI0NkRBMjU5QUI3RUI2NjJB QTIyNUIwRUUwHhcNMjMwNzE5MDMyMjU1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI3NTcwZi1jYWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GV7S+5l9hNMOhsgjmZMkYB9w6Pn0GObAi76QYRSrT4edzpsLGYsybdfCG+q cKsY9wC5wn2MfJRzQZgEQkLMg7wOd7hXQJdbaWxbylXS/2/I1yLdcelL0uRqUpGD R74dP0aJNjeiUUAMegOL4eEbXd58XsYPMM3UB63w4PWZZSU5p9PtTKfKi9AnPF/3 ev0GbwREmcwNN+M4zAdeLuuj39CV9O+4XLJSB9cw+kfIBWHyc1b9AAzZefoJQ6Vz u0h4G4KxCMpCLqwb4t0ZLm8Uyk6dY+fwWokh8i5lkGPG2vx/e9/w0wQDQxISlsXm ETsMyxQ6bwWvbpG3dcJIdFjakQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOMokYa+ Pk8QYW4U6NPvsGuF5w2rMB8GA1UdIwQYMBaAFAO8dJrBaCxLRtolmrfrZiqiJbDu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJCMi81RDRDQzJGNjA4 QzgxMUVEOTQ0RjI1NjZDNEY5QUUwMi9BN3gwbXNGb0xFdEcyaVdhdC10bUtxSWxz TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3eDBtc0ZvTEV0RzJpV2F0LXRtS3FJbHNPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZCQjIvNUQ0Q0MyRjYwOEM4MTFFRDk0NEYyNTY2QzRGOUFFMDIvRjA2RkZDMzQw OENDMTFFREE3MTMwRTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItdTwDBAJnOXgwDQYJKoZIhvcNAQELBQADggEBAGr7k8Ab JdIxpdAJrTcoGkcidTmebRdtrJwqZjyYodlQLwByZ6x7lhQtwL/dKalaCW1v2XBW V2cK1faGOcaSm32/A4OmVbJTm3BIZgQlmVkSQHsXpAmgoycCe8wm+n7UaQBl6Z1J afaKcOOIaSpN0X4OjT43uzQE3NJFcpr4FcMKcj2IIp+g4EMqUdVzubVFVaB55bS7 DJwoo8k3fpJa6ENexgYh6jpoDKjBaET/tj5c6CaNvL8QR/Y9fx39aAwNsTHNywmM CL3Qd+6N3fsiUa4v3W0IpsvRocBez+TMuoQGuMonQ5+SU9oLmBYBqxsiwY+Qe0RC 7FCVI4S8NFWeLYI= -----END CERTIFICATE-----Generated at Wed May 15 05:22:37 2024 by rpki-client on console-fra.rpki-client.org