$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa File: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (raw, json) Hash identifier: DLHOhN7MxK0HNTrL76H062J5sW6+LyM3CKGkbsKyA38= Subject key identifier: E3:F2:F1:59:98:BD:33:34:A5:22:24:02:5F:4C:C1:5E:3C:DB:AE:73 Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 0586 Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa Signing time: Sat 28 Sep 2024 23:13:15 +0000 ROA not before: Sat 28 Sep 2024 23:13:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 63473 IP address blocks: 103.73.64.0/23 maxlen: 23 103.73.66.0/24 maxlen: 24 103.73.67.0/24 maxlen: 24 216.250.96.0/24 maxlen: 24 216.250.97.0/24 maxlen: 24 2406:ef80:1::/48 maxlen: 48 2406:ef80:2::/48 maxlen: 48 2406:ef80:3::/48 maxlen: 48 2406:ef80:4::/48 maxlen: 48 2406:ef80:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1414 (0x586) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Sep 28 23:13:15 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f88d8a-e4e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4f:15:38:8c:00:5f:2a:0a:d1:1f:15:48:18: 68:92:ea:4b:f3:48:62:b0:a8:89:7d:3f:69:f2:02: 6a:6b:17:1e:1c:6f:ad:a8:6b:ad:d1:6d:6f:b6:6e: d3:1f:32:dc:b1:e8:aa:95:9f:2f:42:db:05:1a:16: 88:5a:ae:d2:93:52:83:23:f1:88:88:f7:7a:f3:35: 5f:9c:a3:cc:dc:1b:02:80:a9:d5:42:32:2d:05:78: 3c:0f:a9:80:a8:94:63:cd:1b:cb:20:97:be:11:46: 3d:71:5e:e1:eb:a9:9a:2f:0b:99:5a:7b:c0:00:0f: 97:6e:af:7d:29:f2:86:8b:33:36:60:9f:25:86:23: 01:cf:37:fc:ac:63:0d:98:02:14:48:22:99:2e:e7: dc:19:1f:ee:9b:1c:73:a8:88:0a:59:70:75:de:99: c4:8d:09:71:71:b3:17:0e:bf:f6:6f:fc:8c:d0:c5: 09:56:26:56:f7:85:12:14:10:3b:ae:f1:92:ab:86: 98:39:2b:5b:08:4c:c6:89:82:24:44:b1:d5:31:6f: fe:07:c8:dd:d2:fe:87:a5:cc:db:32:cc:b3:bf:32: 07:8b:81:6e:a9:f3:eb:fe:ad:96:6d:33:d2:70:2f: 3c:5d:df:c8:6e:8c:fa:8b:91:cb:05:5b:21:d5:ea: cb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F2:F1:59:98:BD:33:34:A5:22:24:02:5F:4C:C1:5E:3C:DB:AE:73 X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.64.0/22 216.250.96.0/23 IPv6: 2406:ef80:1::-2406:ef80:4:ffff:ffff:ffff:ffff:ffff 2406:ef80:100::/40 Signature Algorithm: sha256WithRSAEncryption 04:d2:1f:29:b1:d7:58:e0:63:45:b3:ff:00:20:ab:61:0b:ca: 7e:2a:e3:56:32:5c:6a:a4:31:3c:88:91:3b:01:cc:f4:89:81: 44:00:e8:91:35:b2:28:f2:e0:94:70:00:d8:bf:4c:a3:9b:0c: 37:6a:67:62:39:71:41:8e:f8:86:74:d9:46:71:81:72:d2:5b: b6:2a:83:90:c0:ef:9e:78:11:9b:90:f0:9f:e6:b8:3b:a2:77: ae:d9:e6:76:82:74:2a:e3:8a:ff:47:7a:a6:76:ed:3b:00:6a: 1a:98:82:cc:de:ec:31:84:6c:ed:94:6a:3b:4b:80:db:d6:f4: b5:3d:29:cc:cb:49:ef:49:8f:ea:da:16:4c:aa:b2:f6:28:d1: 11:96:b6:62:d5:ae:b9:42:83:33:ab:d5:f1:74:a4:19:7f:4a: 24:05:a0:ba:fd:0c:61:1c:b7:8d:42:e6:b8:81:ed:a4:f1:80: e8:c1:5b:46:78:69:b4:fd:da:c8:2b:44:29:44:30:23:cf:21: 97:3b:05:b6:40:a5:63:b8:e5:c9:28:e3:3e:0f:5a:86:62:c6: 6c:6e:27:0b:b2:9e:34:57:e5:e2:d0:3b:d8:b0:33:dc:94:22: 02:2a:55:db:b6:ec:ec:11:a1:c9:d8:45:82:a6:db:08:07:3a: 42:2d:29:53 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICBYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjQwOTI4MjMxMzE1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4OGQ4YS1lNGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsE8VOIwAXyoK0R8VSBhokupL80hisKiJfT9p8gJqaxceHG+tqGut0W1vtm7T HzLcseiqlZ8vQtsFGhaIWq7Sk1KDI/GIiPd68zVfnKPM3BsCgKnVQjItBXg8D6mA qJRjzRvLIJe+EUY9cV7h66maLwuZWnvAAA+Xbq99KfKGizM2YJ8lhiMBzzf8rGMN mAIUSCKZLufcGR/umxxzqIgKWXB13pnEjQlxcbMXDr/2b/yM0MUJViZW94USFBA7 rvGSq4aYOStbCEzGiYIkRLHVMW/+B8jd0v6HpczbMsyzvzIHi4FuqfPr/q2WbTPS cC88Xd/Iboz6i5HLBVsh1erLUwIDAQABo4ICvzCCArswHQYDVR0OBBYEFOPy8VmY vTM0pSIkAl9MwV48265zMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExNzYvQUREM0FFQ0VCMjhFMTFFQjk0RDIxODQ3QzRGOUFFMDIvNjU5NUNFOUNC MjkwMTFFQkJCRjRGNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MBIEAgABMAwDBAJnSUADBAHY+mAwIgQCAAIwHDASAwcAJAbvgAABAwcAJAbv gAAEAwYAJAbvgAEwDQYJKoZIhvcNAQELBQADggEBAATSHymx11jgY0Wz/wAgq2EL yn4q41YyXGqkMTyIkTsBzPSJgUQA6JE1sijy4JRwANi/TKObDDdqZ2I5cUGO+IZ0 2UZxgXLSW7Yqg5DA7554EZuQ8J/muDuid67Z5naCdCrjiv9HeqZ27TsAahqYgsze 7DGEbO2UajtLgNvW9LU9KczLSe9Jj+raFkyqsvYo0RGWtmLVrrlCgzOr1fF0pBl/ SiQFoLr9DGEct41C5riB7aTxgOjBW0Z4abT92sgrRClEMCPPIZc7BbZApWO45cko 4z4PWoZixmxuJwuynjRX5eLQO9iwM9yUIgIqVdu27OwRocnYRYKm2wgHOkItKVM= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:25 2024 by rpki-client on console-fra.rpki-client.org