$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/6EBBA0F4A1AD11EF8A984349C4F9AE02.roa File: 6EBBA0F4A1AD11EF8A984349C4F9AE02.roa (raw, json) Hash identifier: 4TxOvtXO/ZobHaFuZq+jlbsn4MEouHzffnZwxkoUjpM= Subject key identifier: 90:46:1E:91:04:9E:62:5B:58:C6:E2:F0:C7:3F:E4:94:7B:DC:5F:27 Certificate issuer: /CN=A91D6F21/serialNumber=9CDDFAEABC64BCCD78882962910EC192A2D22838 Certificate serial: 02 Authority key identifier: 9C:DD:FA:EA:BC:64:BC:CD:78:88:29:62:91:0E:C1:92:A2:D2:28:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN366rxkvM14iClikQ7BkqLSKDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/6EBBA0F4A1AD11EF8A984349C4F9AE02.roa Signing time: Wed 13 Nov 2024 10:52:53 +0000 ROA not before: Wed 13 Nov 2024 10:52:53 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55410 IP address blocks: 103.129.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/nN366rxkvM14iClikQ7BkqLSKDg.crl rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/nN366rxkvM14iClikQ7BkqLSKDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN366rxkvM14iClikQ7BkqLSKDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6F21/serialNumber=9CDDFAEABC64BCCD78882962910EC192A2D22838 Validity Not Before: Nov 13 10:52:53 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67348505-e49e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:16:93:3b:45:89:55:a3:67:41:e2:28:a8:5f: cf:c5:87:95:bf:96:97:a2:53:d3:ba:72:7f:2f:ea: b6:c0:ab:00:ef:9b:31:3e:41:60:c8:05:52:43:fc: 0a:a9:e3:fe:fb:0f:e3:82:01:a9:11:93:03:4b:c9: 73:20:72:4f:cd:1a:28:64:fc:5f:1d:41:04:88:31: 70:c8:f5:fe:9a:84:e8:cf:e3:7f:7e:06:4e:19:71: c6:b9:24:cb:e8:54:28:83:3b:8c:e3:cf:a7:5c:26: 08:b6:7c:c4:c3:88:3b:18:5a:b5:f8:26:64:e3:4c: 3e:37:b5:fe:33:62:59:26:11:42:5b:1e:9e:44:33: 16:7f:fa:95:e5:a6:12:b0:c2:10:d1:31:c1:19:3c: 3a:c2:69:a0:64:f0:6d:1a:37:9f:6c:8b:a6:69:00: 9b:3a:e6:bd:31:67:3b:ec:d4:2d:fb:5d:2a:f3:80: 1b:77:66:d1:5a:13:21:24:ab:87:ea:da:2e:fc:57: 2c:f1:4c:c9:2b:c8:c1:bf:cc:5a:86:41:1f:8d:5a: 22:73:24:8d:9d:57:81:2d:9a:d9:bc:79:24:84:f8: 56:00:b9:6b:33:78:85:19:f8:e6:56:3e:6f:00:16: a1:b5:b1:6b:02:ea:b5:fd:52:ab:0b:2c:e8:bd:ff: f0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:46:1E:91:04:9E:62:5B:58:C6:E2:F0:C7:3F:E4:94:7B:DC:5F:27 X509v3 Authority Key Identifier: keyid:9C:DD:FA:EA:BC:64:BC:CD:78:88:29:62:91:0E:C1:92:A2:D2:28:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/nN366rxkvM14iClikQ7BkqLSKDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN366rxkvM14iClikQ7BkqLSKDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/6EBBA0F4A1AD11EF8A984349C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.116.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:7b:1b:6a:90:99:d8:6b:d1:33:83:95:74:f1:0d:42:82:17: 77:8c:13:63:8e:b0:f7:ae:69:33:fe:c2:55:ba:72:8c:0b:92: 96:9b:54:40:67:fc:e7:a0:1f:ec:da:c7:37:f4:dd:b4:29:ef: 08:fb:12:14:95:68:93:f8:66:f2:6d:4b:2a:cb:c5:78:74:91: b0:b0:02:3c:3d:84:27:5f:a4:8a:83:f2:f8:80:a5:e9:21:9d: 00:eb:ab:40:c7:7a:f6:0d:b9:44:2d:0a:a5:93:a6:a5:bc:7f: 26:91:df:23:0e:82:54:2f:db:a0:74:58:82:6c:a5:f0:89:d4: 37:a1:62:eb:2c:d9:32:83:ca:08:c7:75:65:d5:19:db:da:50: ce:8c:96:67:ab:73:77:51:77:ce:8c:e1:93:18:07:2c:57:d7: 98:f4:b7:c8:0b:2c:30:7f:e2:c8:85:41:42:1f:9f:80:0d:ee: 83:e7:a4:1f:e4:d1:b6:cf:06:09:f9:3a:74:15:a2:00:ea:55: ca:8b:d2:ce:16:af:c7:5d:7b:5a:f8:ec:d3:3c:f2:00:00:dd: 3d:11:9b:83:f1:0c:1f:1a:14:e1:7a:ed:e3:53:5e:6d:40:5b: 45:e2:ff:e7:db:b8:2a:e9:4e:76:86:38:85:45:ae:55:8c:d2: 8c:8f:e3:db -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NkYyMTExMC8GA1UEBRMoOUNEREZBRUFCQzY0QkNDRDc4ODgyOTYyOTEwRUMxOTJB MkQyMjgzODAeFw0yNDExMTMxMDUyNTNaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzQ4NTA1LWU0OWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvFpM7RYlVo2dB4iioX8/Fh5W/lpeiU9O6cn8v6rbAqwDvmzE+QWDIBVJD/Aqp 4/77D+OCAakRkwNLyXMgck/NGihk/F8dQQSIMXDI9f6ahOjP439+Bk4Zcca5JMvo VCiDO4zjz6dcJgi2fMTDiDsYWrX4JmTjTD43tf4zYlkmEUJbHp5EMxZ/+pXlphKw whDRMcEZPDrCaaBk8G0aN59si6ZpAJs65r0xZzvs1C37XSrzgBt3ZtFaEyEkq4fq 2i78VyzxTMkryMG/zFqGQR+NWiJzJI2dV4Etmtm8eSSE+FYAuWszeIUZ+OZWPm8A FqG1sWsC6rX9UqsLLOi9//B3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUkEYekQSe YltYxuLwxz/klHvcXycwHwYDVR0jBBgwFoAUnN366rxkvM14iClikQ7BkqLSKDgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2RjIxL0ZFMzdFM0VDQTFB QzExRUZCNjc1ODU0OEM0RjlBRTAyL25OMzY2cnhrdk0xNGlDbGlrUTdCa3FMU0tE Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbk4zNjZyeGt2TTE0aUNsaWtRN0JrcUxTS0RnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkYyMS9GRTM3RTNFQ0ExQUMxMUVGQjY3NTg1NDhDNEY5QUUwMi82RUJCQTBGNEEx QUQxMUVGOEE5ODQzNDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeBdDANBgkqhkiG9w0BAQsFAAOCAQEAW3sbapCZ2GvRM4OV dPENQoIXd4wTY46w965pM/7CVbpyjAuSlptUQGf856Af7NrHN/TdtCnvCPsSFJVo k/hm8m1LKsvFeHSRsLACPD2EJ1+kioPy+ICl6SGdAOurQMd69g25RC0KpZOmpbx/ JpHfIw6CVC/boHRYgmyl8InUN6Fi6yzZMoPKCMd1ZdUZ29pQzoyWZ6tzd1F3zozh kxgHLFfXmPS3yAssMH/iyIVBQh+fgA3ug+ekH+TRts8GCfk6dBWiAOpVyovSzhav x117Wvjs0zzyAADdPRGbg/EMHxoU4Xrt41NebUBbReL/59u4KulOdoY4hUWuVYzS jI/j2w== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:54 2024 by rpki-client on console-fra.rpki-client.org