$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/2B6E7D32FC5311ECBCE27247C4F9AE02.roa File: 2B6E7D32FC5311ECBCE27247C4F9AE02.roa (raw, json) Hash identifier: Pea43XyYLdD57bd2jMcFm5++NRhrK6aAEARYz2ZZaTI= Subject key identifier: A5:6C:B0:43:EF:B1:D5:0C:F3:6A:91:EE:5C:FF:D6:AB:1E:76:93:34 Certificate issuer: /CN=A91E1C16/serialNumber=70294605B017CB796CAD8842F5EFBA3F448707F5 Certificate serial: 0546 Authority key identifier: 70:29:46:05:B0:17:CB:79:6C:AD:88:42:F5:EF:BA:3F:44:87:07:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/2B6E7D32FC5311ECBCE27247C4F9AE02.roa Signing time: Thu 27 Jun 2024 00:59:42 +0000 ROA not before: Thu 27 Jun 2024 00:59:42 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38136 IP address blocks: 103.167.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.crl rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1350 (0x546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1C16/serialNumber=70294605B017CB796CAD8842F5EFBA3F448707F5 Validity Not Before: Jun 27 00:59:42 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667cb97e-9330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:66:58:f1:67:0e:73:4c:50:5b:43:27:55:d2: a4:10:23:9e:ad:23:68:eb:52:a0:1c:38:bf:f2:78: f1:65:ce:32:eb:a7:bc:84:c1:54:9d:c8:52:d2:1e: 12:83:b0:ad:83:5e:56:7d:21:02:11:67:2a:9d:98: dc:4e:d3:d8:d6:e0:53:58:9c:59:61:f0:33:0b:27: 22:fb:67:92:9e:79:e0:c0:84:3e:21:4f:23:67:76: 95:76:7f:03:40:1d:70:6d:99:0b:21:b7:18:1f:41: 96:ca:7d:0c:44:72:05:d3:93:95:bf:ec:68:cc:1b: 7a:4d:0c:80:e2:20:a3:03:ba:8e:fe:ef:0e:31:5b: a6:97:ec:a4:e7:71:e3:3e:90:91:21:01:d7:d9:e4: f9:45:e0:42:d0:39:5b:54:6b:27:44:52:24:6f:d9: cc:5a:2b:7a:f4:30:19:8d:b2:e1:da:22:10:88:02: d5:e3:79:7f:38:00:94:09:4e:76:46:ab:fe:35:06: be:e9:7a:ae:7c:de:d5:a7:9b:ba:e4:45:67:f6:51: 18:57:2f:a6:0e:e8:97:93:f5:75:e0:86:71:fc:20: 78:38:27:42:02:87:2f:c1:b3:21:ac:53:0f:13:70: 06:97:04:26:b1:a3:c0:c7:8b:52:68:43:bd:eb:f2: 8c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:6C:B0:43:EF:B1:D5:0C:F3:6A:91:EE:5C:FF:D6:AB:1E:76:93:34 X509v3 Authority Key Identifier: keyid:70:29:46:05:B0:17:CB:79:6C:AD:88:42:F5:EF:BA:3F:44:87:07:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/2B6E7D32FC5311ECBCE27247C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.134.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:d4:c5:f8:b6:d4:9f:ed:0d:21:73:14:63:c0:dc:a2:5a:23: 09:d2:39:27:3f:be:48:69:5a:d7:a3:38:16:26:df:a2:cf:d4: 28:13:6f:e2:ef:1f:3e:e8:00:72:43:fc:55:aa:29:76:28:a6: ed:14:e0:7f:d2:a5:a8:55:19:71:40:e5:77:c8:c2:99:a7:77: 5f:29:54:1e:99:11:bc:cb:5d:ef:71:90:27:fa:61:aa:13:92: f2:60:4b:6b:52:aa:37:83:1f:93:fe:b0:49:0d:a9:4b:1a:ef: 11:73:70:4b:7f:0b:22:06:a1:aa:f4:93:17:d0:7e:ec:0a:d9: 4a:1a:7b:14:4d:98:9a:f5:1e:ca:c8:c3:66:95:7b:4b:00:7d: 90:d7:6c:d1:19:48:9a:f5:1b:f2:d2:5b:d8:7c:75:d0:ed:b2: 70:6a:c6:ca:51:35:3d:ac:1c:62:5e:90:35:76:ee:ae:81:27: 0e:50:ba:e6:c1:12:f8:af:17:05:69:e1:b9:c0:58:b0:d3:f3: 0a:a8:76:ab:8b:be:53:82:fa:eb:25:82:0b:2d:4d:ab:e5:15: 75:21:e9:af:db:38:e9:51:7f:2b:7f:5d:05:bb:c5:0c:fa:5e: dc:96:89:da:50:b9:3c:d1:f1:a0:19:d1:92:3d:e0:90:81:a7: 10:f4:53:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFDMTYxMTAvBgNVBAUTKDcwMjk0NjA1QjAxN0NCNzk2Q0FEODg0MkY1RUZCQTNG NDQ4NzA3RjUwHhcNMjQwNjI3MDA1OTQyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjYjk3ZS05MzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymZY8WcOc0xQW0MnVdKkECOerSNo61KgHDi/8njxZc4y66e8hMFUnchS0h4S g7Ctg15WfSECEWcqnZjcTtPY1uBTWJxZYfAzCyci+2eSnnngwIQ+IU8jZ3aVdn8D QB1wbZkLIbcYH0GWyn0MRHIF05OVv+xozBt6TQyA4iCjA7qO/u8OMVuml+yk53Hj PpCRIQHX2eT5ReBC0DlbVGsnRFIkb9nMWit69DAZjbLh2iIQiALV43l/OACUCU52 Rqv+NQa+6XqufN7Vp5u65EVn9lEYVy+mDuiXk/V14IZx/CB4OCdCAocvwbMhrFMP E3AGlwQmsaPAx4tSaEO96/KMjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKVssEPv sdUM82qR7lz/1qsedpM0MB8GA1UdIwQYMBaAFHApRgWwF8t5bK2IQvXvuj9Ehwf1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUMxNi84RjBDNkIwMEJF NjExMUVCQUVGMzVBNjFDNEY5QUUwMi9jQ2xHQmJBWHkzbHNyWWhDOWUtNlAwU0hC X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDbEdCYkFYeTNsc3JZaEM5ZS02UDBTSEJfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFDMTYvOEYwQzZCMDBCRTYxMTFFQkFFRjM1QTYxQzRGOUFFMDIvMkI2RTdEMzJG QzUzMTFFQ0JDRTI3MjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnp4YwDQYJKoZIhvcNAQELBQADggEBAAvUxfi21J/tDSFz FGPA3KJaIwnSOSc/vkhpWtejOBYm36LP1CgTb+LvHz7oAHJD/FWqKXYopu0U4H/S pahVGXFA5XfIwpmnd18pVB6ZEbzLXe9xkCf6YaoTkvJgS2tSqjeDH5P+sEkNqUsa 7xFzcEt/CyIGoar0kxfQfuwK2UoaexRNmJr1HsrIw2aVe0sAfZDXbNEZSJr1G/LS W9h8ddDtsnBqxspRNT2sHGJekDV27q6BJw5QuubBEvivFwVp4bnAWLDT8wqodquL vlOC+uslggstTavlFXUh6a/bOOlRfyt/XQW7xQz6XtyWidpQuTzR8aAZ0ZI94JCB pxD0Uxs= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:01 2024 by rpki-client on console-ams.rpki-client.org