$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD55B/8F4349C86D7711EE83554E74C4F9AE02/6C3D2A826D7911EEBA9F0F7AC4F9AE02.roa File: 6C3D2A826D7911EEBA9F0F7AC4F9AE02.roa (raw, json) Hash identifier: bDVD8hPvc8iZ5B+yKX28yhd7xbk9dGO0omZHroVfOq0= Subject key identifier: CF:A9:CA:18:3E:A3:75:60:E6:2B:F8:6F:56:30:4A:38:5F:2A:88:A9 Certificate issuer: /CN=A91DD55B/serialNumber=F544E6FEEA0FE6B9DF7B1DA3D9A592FCB8ACA629 Certificate serial: CB Authority key identifier: F5:44:E6:FE:EA:0F:E6:B9:DF:7B:1D:A3:D9:A5:92:FC:B8:AC:A6:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UTm_uoP5rnfex2j2aWS_Lispik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD55B/8F4349C86D7711EE83554E74C4F9AE02/6C3D2A826D7911EEBA9F0F7AC4F9AE02.roa Signing time: Thu 07 Nov 2024 03:57:15 +0000 ROA not before: Thu 07 Nov 2024 03:57:15 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 151965 IP address blocks: 103.67.50.0/24 maxlen: 24 103.67.51.0/24 maxlen: 24 2401:4760::/32 maxlen: 32 2401:4760::/36 maxlen: 36 2401:4760:1000::/36 maxlen: 36 2401:4760:2000::/36 maxlen: 36 2401:4760:3000::/36 maxlen: 36 2401:4760:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD55B/8F4349C86D7711EE83554E74C4F9AE02/9UTm_uoP5rnfex2j2aWS_Lispik.crl rsync://rpki.apnic.net/member_repository/A91DD55B/8F4349C86D7711EE83554E74C4F9AE02/9UTm_uoP5rnfex2j2aWS_Lispik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UTm_uoP5rnfex2j2aWS_Lispik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD55B/serialNumber=F544E6FEEA0FE6B9DF7B1DA3D9A592FCB8ACA629 Validity Not Before: Nov 7 03:57:15 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672c3a9b-546a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:9a:25:11:5d:fe:c5:3a:75:c0:e6:25:9c: 9d:a9:af:52:70:43:9b:e4:e9:22:f6:ac:b0:e1:4d: 27:2c:8d:09:05:9c:c2:6c:5a:90:8e:97:79:1c:7a: df:77:f7:86:70:a2:ea:e5:06:a6:f6:42:ac:ff:00: 6f:b9:81:bb:34:6e:9d:40:28:c1:ea:56:b3:e2:da: b6:db:ef:7c:91:53:23:77:05:bf:ed:00:33:79:58: ef:41:6c:a4:48:a5:f3:ed:ab:ff:d4:4a:e5:ab:48: b9:97:a0:2a:6f:9d:f4:94:1d:ba:18:58:07:f4:04: 3c:9d:8d:06:02:ca:fd:aa:1c:b2:e1:dd:e8:c1:7b: 34:9a:35:5c:e0:3a:48:09:a5:45:c2:ed:1b:dc:2b: b5:ee:85:a0:cc:10:89:97:34:a6:70:75:e6:d5:f5: 2e:43:34:b1:b1:9b:cb:3c:d2:c3:ac:0c:8d:44:22: fe:40:40:be:ea:ea:0c:a9:fd:90:2b:a6:ab:7a:0f: 62:77:e6:53:d9:19:6a:b9:09:21:c2:ca:5b:c6:c4: 68:46:1d:c7:c4:f4:51:c9:c7:b8:26:09:91:5f:f0: 6b:66:ac:b4:03:b7:b4:0b:d0:e7:30:fa:ca:6a:97: ee:77:12:3b:9f:c6:7e:40:75:43:b9:3d:63:2e:0a: 8d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:A9:CA:18:3E:A3:75:60:E6:2B:F8:6F:56:30:4A:38:5F:2A:88:A9 X509v3 Authority Key Identifier: keyid:F5:44:E6:FE:EA:0F:E6:B9:DF:7B:1D:A3:D9:A5:92:FC:B8:AC:A6:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD55B/8F4349C86D7711EE83554E74C4F9AE02/9UTm_uoP5rnfex2j2aWS_Lispik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UTm_uoP5rnfex2j2aWS_Lispik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD55B/8F4349C86D7711EE83554E74C4F9AE02/6C3D2A826D7911EEBA9F0F7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.50.0/23 IPv6: 2401:4760::/32 Signature Algorithm: sha256WithRSAEncryption 1d:17:4b:8e:ce:84:e9:3f:7e:8c:f1:f7:55:4f:6e:13:98:5c: ea:5b:99:37:6c:66:4c:91:87:b8:83:b2:23:de:18:92:40:18: 09:c8:03:a6:fe:5a:2d:7b:d8:52:3d:25:12:77:69:88:ac:d5: e9:05:eb:1e:31:99:c8:93:06:52:77:33:a1:62:8b:a4:17:3a: 5d:18:29:8c:36:52:d6:48:f2:f8:04:6b:33:bd:23:9e:28:35: 05:a4:a1:d9:60:d4:7d:e4:97:22:e0:ff:8c:d5:40:68:ed:3d: cc:b8:3c:4a:ff:84:8d:9c:b6:69:16:7b:fd:53:93:80:3c:d7: eb:4b:6a:fb:4d:2b:77:21:6c:fa:1e:38:da:a6:87:c3:3a:7a: 27:95:35:12:1e:3a:e7:a9:40:b5:76:83:91:86:58:6e:8d:60: 7a:74:22:3f:1e:e0:0b:e3:a0:43:a3:5e:d9:b0:08:0e:47:e5: bf:8d:97:67:30:19:5a:f6:d1:b9:74:f6:cc:d7:6c:1c:84:30: 33:4d:4f:04:b8:33:0c:91:f7:80:69:9e:6e:92:34:cb:e9:8a: 52:f3:9c:67:79:45:db:51:e6:30:f7:85:6e:08:3e:ac:31:5f: 66:68:e6:d3:fa:a6:1b:bb:be:93:ca:39:29:8a:f1:13:76:fd: 9b:a7:16:09 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1NUIxMTAvBgNVBAUTKEY1NDRFNkZFRUEwRkU2QjlERjdCMURBM0Q5QTU5MkZD QjhBQ0E2MjkwHhcNMjQxMTA3MDM1NzE1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjM2E5Yi01NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11WaJRFd/sU6dcDmJZydqa9ScEOb5Oki9qyw4U0nLI0JBZzCbFqQjpd5HHrf d/eGcKLq5Qam9kKs/wBvuYG7NG6dQCjB6laz4tq22+98kVMjdwW/7QAzeVjvQWyk SKXz7av/1Erlq0i5l6Aqb530lB26GFgH9AQ8nY0GAsr9qhyy4d3owXs0mjVc4DpI CaVFwu0b3Cu17oWgzBCJlzSmcHXm1fUuQzSxsZvLPNLDrAyNRCL+QEC+6uoMqf2Q K6areg9id+ZT2RlquQkhwspbxsRoRh3HxPRRyce4JgmRX/BrZqy0A7e0C9DnMPrK apfudxI7n8Z+QHVDuT1jLgqN4wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFM+pyhg+ o3Vg5iv4b1YwSjhfKoipMB8GA1UdIwQYMBaAFPVE5v7qD+a533sdo9mlkvy4rKYp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDU1Qi84RjQzNDlDODZE NzcxMUVFODM1NTRFNzRDNEY5QUUwMi85VVRtX3VvUDVybmZleDJqMmFXU19MaXNw aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVVG1fdW9QNXJuZmV4MmoyYVdTX0xpc3Bpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ1NUIvOEY0MzQ5Qzg2RDc3MTFFRTgzNTU0RTc0QzRGOUFFMDIvNkMzRDJBODI2 RDc5MTFFRUJBOUYwRjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnQzIwDQQCAAIwBwMFACQBR2AwDQYJKoZIhvcNAQELBQAD ggEBAB0XS47OhOk/fozx91VPbhOYXOpbmTdsZkyRh7iDsiPeGJJAGAnIA6b+Wi17 2FI9JRJ3aYis1ekF6x4xmciTBlJ3M6Fii6QXOl0YKYw2UtZI8vgEazO9I54oNQWk odlg1H3klyLg/4zVQGjtPcy4PEr/hI2ctmkWe/1Tk4A81+tLavtNK3chbPoeONqm h8M6eieVNRIeOuepQLV2g5GGWG6NYHp0Ij8e4AvjoEOjXtmwCA5H5b+Nl2cwGVr2 0bl09szXbByEMDNNTwS4MwyR94Bpnm6SNMvpilLznGd5RdtR5jD3hW4IPqwxX2Zo 5tP6phu7vpPKOSmK8RN2/ZunFgk= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org