$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7BD/D3026034A3F511EB92F9C561C4F9AE02/6AE1616AA3F711EBBA757063C4F9AE02.roa File: 6AE1616AA3F711EBBA757063C4F9AE02.roa (raw, json) Hash identifier: mBt8RtcAAJ1E0qkhS2O17Qle9xp96BCyxe5ScaBrVUw= Subject key identifier: 8D:A7:5B:74:16:98:1D:FC:D8:18:9E:70:B0:25:0C:5A:CE:0A:4F:5A Certificate issuer: /CN=A91CE7BD/serialNumber=E15D130B0BB2980E1BF11C01BCCB753B49684A80 Certificate serial: 0557 Authority key identifier: E1:5D:13:0B:0B:B2:98:0E:1B:F1:1C:01:BC:CB:75:3B:49:68:4A:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4V0TCwuymA4b8RwBvMt1O0loSoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7BD/D3026034A3F511EB92F9C561C4F9AE02/6AE1616AA3F711EBBA757063C4F9AE02.roa Signing time: Fri 07 Jun 2024 01:36:39 +0000 ROA not before: Fri 07 Jun 2024 01:36:39 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137213 IP address blocks: 103.166.58.0/23 maxlen: 23 103.166.58.0/24 maxlen: 24 103.166.59.0/24 maxlen: 24 2001:df6:7e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7BD/D3026034A3F511EB92F9C561C4F9AE02/4V0TCwuymA4b8RwBvMt1O0loSoA.crl rsync://rpki.apnic.net/member_repository/A91CE7BD/D3026034A3F511EB92F9C561C4F9AE02/4V0TCwuymA4b8RwBvMt1O0loSoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4V0TCwuymA4b8RwBvMt1O0loSoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1367 (0x557) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7BD/serialNumber=E15D130B0BB2980E1BF11C01BCCB753B49684A80 Validity Not Before: Jun 7 01:36:39 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66626427-fa00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f2:19:c2:d8:0d:b0:b7:2b:75:c3:94:3a:29: db:a5:17:46:5f:54:60:77:e2:0d:72:94:80:40:d5: 4d:9e:d6:8a:ab:d8:6c:10:93:f0:bc:42:5e:08:ec: 0d:eb:55:fd:66:9a:54:49:e9:b8:3c:94:f4:75:9d: 44:51:67:38:91:4a:15:a5:9a:d5:88:a2:4d:6d:0d: 07:3f:67:24:84:51:90:39:43:30:ad:a8:cf:5e:91: 12:ef:53:68:0f:7b:f8:ff:e0:38:e6:a9:c8:9d:d6: f2:7a:08:48:15:99:24:b2:0a:ec:87:a3:95:bf:7a: 72:35:ff:f3:cf:bd:4b:d6:9c:39:37:87:d9:46:1c: 4f:e2:90:6d:2c:46:e7:43:fe:e3:05:72:f3:87:c8: 96:9f:12:7b:c3:8f:cf:2d:49:83:4e:49:67:2a:3f: e9:5e:f3:f5:e6:8b:e3:ec:16:6b:00:45:95:e5:fd: 41:95:2e:8f:c4:5d:52:c3:10:56:1f:f1:14:c9:12: 32:d9:6c:56:e1:8a:68:e0:6d:c1:82:50:f8:55:60: fe:bc:5d:76:71:6d:57:21:88:d5:91:10:fd:19:34: 43:46:14:a2:43:2d:01:b4:fd:ac:40:c1:37:fe:14: 13:36:10:c3:d7:00:65:56:63:df:7f:b2:2e:34:f3: 78:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A7:5B:74:16:98:1D:FC:D8:18:9E:70:B0:25:0C:5A:CE:0A:4F:5A X509v3 Authority Key Identifier: keyid:E1:5D:13:0B:0B:B2:98:0E:1B:F1:1C:01:BC:CB:75:3B:49:68:4A:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7BD/D3026034A3F511EB92F9C561C4F9AE02/4V0TCwuymA4b8RwBvMt1O0loSoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4V0TCwuymA4b8RwBvMt1O0loSoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7BD/D3026034A3F511EB92F9C561C4F9AE02/6AE1616AA3F711EBBA757063C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.58.0/23 IPv6: 2001:df6:7e80::/48 Signature Algorithm: sha256WithRSAEncryption 0e:a6:7b:d0:22:f6:9e:97:42:75:87:79:8e:f3:97:61:91:72: 2f:87:ec:3f:c5:33:d3:6e:7b:27:df:82:05:9a:30:0d:5d:e2: 90:94:60:5c:91:2b:77:22:f6:3f:ac:d7:3e:a8:75:9c:be:80: d3:f5:42:1d:6d:66:10:34:3d:47:cd:de:64:20:e4:a6:cc:6d: e3:51:84:c2:b4:24:1b:32:fb:d7:d3:91:6d:a2:ff:30:12:bf: d0:16:97:c4:64:ac:e8:2e:62:9e:6f:d7:e1:be:73:9a:68:7b: 2d:d7:cd:e9:08:7f:1f:19:a7:a0:cb:9b:e7:34:c3:39:a2:10: dd:48:9e:b5:b2:f5:1b:b0:26:fe:3b:dd:03:dd:a8:64:c6:0a: 18:c2:45:98:c2:52:43:4f:7a:bb:85:2c:ed:c3:6b:8c:bf:c5: e6:32:33:a2:49:51:20:36:45:92:a4:9f:57:73:88:26:c0:70: fc:68:c4:da:b4:d8:49:b4:71:7a:ba:e8:c7:ec:82:d0:9a:f0: 8e:7f:c0:e3:6c:df:98:30:9f:51:13:be:2e:e0:b8:ca:b3:c8: 0d:fd:af:21:73:0d:e8:ee:d5:32:13:e2:ff:77:0c:4c:2b:13: 75:54:79:c8:ba:af:5a:44:e3:2c:49:9b:95:23:ff:30:c1:7b: fe:7f:c3:f1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U3QkQxMTAvBgNVBAUTKEUxNUQxMzBCMEJCMjk4MEUxQkYxMUMwMUJDQ0I3NTNC NDk2ODRBODAwHhcNMjQwNjA3MDEzNjM5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyNjQyNy1mYTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/IZwtgNsLcrdcOUOinbpRdGX1Rgd+INcpSAQNVNntaKq9hsEJPwvEJeCOwN 61X9ZppUSem4PJT0dZ1EUWc4kUoVpZrViKJNbQ0HP2ckhFGQOUMwrajPXpES71No D3v4/+A45qnIndbyeghIFZkksgrsh6OVv3pyNf/zz71L1pw5N4fZRhxP4pBtLEbn Q/7jBXLzh8iWnxJ7w4/PLUmDTklnKj/pXvP15ovj7BZrAEWV5f1BlS6PxF1SwxBW H/EUyRIy2WxW4Ypo4G3BglD4VWD+vF12cW1XIYjVkRD9GTRDRhSiQy0BtP2sQME3 /hQTNhDD1wBlVmPff7IuNPN40wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFI2nW3QW mB382BiecLAlDFrOCk9aMB8GA1UdIwQYMBaAFOFdEwsLspgOG/EcAbzLdTtJaEqA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTdCRC9EMzAyNjAzNEEz RjUxMUVCOTJGOUM1NjFDNEY5QUUwMi80VjBUQ3d1eW1BNGI4UndCdk10MU8wbG9T b0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWMFRDd3V5bUE0YjhSd0J2TXQxTzBsb1NvQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U3QkQvRDMwMjYwMzRBM0Y1MTFFQjkyRjlDNTYxQzRGOUFFMDIvNkFFMTYxNkFB M0Y3MTFFQkJBNzU3MDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpjowDwQCAAIwCQMHACABDfZ+gDANBgkqhkiG9w0BAQsF AAOCAQEADqZ70CL2npdCdYd5jvOXYZFyL4fsP8Uz0257J9+CBZowDV3ikJRgXJEr dyL2P6zXPqh1nL6A0/VCHW1mEDQ9R83eZCDkpsxt41GEwrQkGzL719ORbaL/MBK/ 0BaXxGSs6C5inm/X4b5zmmh7LdfN6Qh/HxmnoMub5zTDOaIQ3UietbL1G7Am/jvd A92oZMYKGMJFmMJSQ096u4Us7cNrjL/F5jIzoklRIDZFkqSfV3OIJsBw/GjE2rTY SbRxerrox+yC0Jrwjn/A42zfmDCfURO+LuC4yrPIDf2vIXMN6O7VMhPi/3cMTCsT dVR5yLqvWkTjLEmblSP/MMF7/n/D8Q== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:34 2024 by rpki-client on console-fra.rpki-client.org