$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa File: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (raw, json) Hash identifier: TQKu3Nc5/FjRxOW6/aUczeg6MDtWMA4/C2ZjdqW/R80= Subject key identifier: 9F:01:92:1A:6B:A8:12:F3:26:BE:D2:DE:C0:8D:0A:6A:00:56:C9:24 Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 04CA Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa Signing time: Tue 03 Oct 2023 08:50:53 +0000 ROA not before: Tue 03 Oct 2023 08:50:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 63473 IP address blocks: 103.73.64.0/23 maxlen: 23 103.73.66.0/24 maxlen: 24 103.73.67.0/24 maxlen: 24 216.250.96.0/24 maxlen: 24 216.250.97.0/24 maxlen: 24 2406:ef80:1::/48 maxlen: 48 2406:ef80:2::/48 maxlen: 48 2406:ef80:3::/48 maxlen: 48 2406:ef80:4::/48 maxlen: 48 2406:ef80:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1226 (0x4ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Oct 3 08:50:53 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651bd5ed-1104 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0a:25:83:39:a2:1a:4d:1a:f0:a3:dd:f8:cb: 3c:a0:7e:24:63:d8:c0:5d:f2:b2:6c:b9:48:ce:33: a8:4b:86:0c:79:11:16:13:3c:31:74:89:4a:30:74: 38:72:02:9e:29:6b:85:59:ad:3e:2c:33:fe:2a:2b: 95:a7:10:36:18:59:47:81:f5:36:f3:64:05:56:6e: 7c:30:95:a3:2f:ff:f7:a2:e1:bb:aa:56:48:27:96: 48:2d:90:11:17:28:d5:8d:8d:b9:34:b1:c4:c2:7d: da:d5:5e:cf:16:7d:35:4e:99:07:67:98:15:ee:a3: bf:69:35:85:01:87:c9:7b:83:75:5b:71:de:61:92: d3:27:16:52:50:7c:93:3b:5b:bb:7a:29:ea:49:19: 7b:68:12:54:f3:3e:7b:f8:41:4a:5f:97:34:c5:47: 77:ab:bc:af:62:e2:d6:6d:b4:b6:7f:10:fd:ea:e0: 57:7b:06:8b:00:f5:f4:00:9e:58:7e:f2:db:c5:b9: 5b:8c:88:8e:ac:6c:f3:97:bf:58:d1:b3:62:6c:ef: cd:5b:7f:b2:94:39:b0:ea:78:59:9a:45:f0:73:0d: c2:5e:67:d8:74:56:fa:b9:93:98:46:40:a6:94:79: 64:7c:de:51:26:6f:4b:09:87:2e:9d:ec:fe:35:9b: 8d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:01:92:1A:6B:A8:12:F3:26:BE:D2:DE:C0:8D:0A:6A:00:56:C9:24 X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.64.0/22 216.250.96.0/23 IPv6: 2406:ef80:1::-2406:ef80:4:ffff:ffff:ffff:ffff:ffff 2406:ef80:100::/40 Signature Algorithm: sha256WithRSAEncryption 95:63:df:ef:4c:0a:ad:8b:a3:f9:5d:7f:69:a7:33:47:5c:be: 3c:c9:f7:67:e2:ee:33:1f:69:9c:65:56:34:aa:3a:e9:21:50: 6d:1d:61:d9:83:95:0d:5a:10:d4:bd:c9:c4:43:fd:28:53:14: 9b:1a:01:0c:bb:30:a7:24:71:17:12:c5:21:01:1d:9f:5f:92: fc:4d:e6:f1:bb:a0:7d:4f:e3:9b:ba:ae:64:a2:ae:c4:e2:13: e5:bd:59:b7:17:73:f2:6f:9b:ac:d8:a9:ed:d5:a9:19:0d:9c: b6:d2:54:7b:69:b4:16:9a:19:09:11:ef:58:e7:c2:c6:1d:48: e3:01:67:75:e5:79:3a:6c:2e:9a:85:ff:0a:e4:42:80:6b:0b: 8c:16:01:40:f9:d6:c1:25:88:bb:b7:8a:cc:d5:4c:59:58:0e: 8a:f0:ef:32:29:00:21:3d:b9:bf:8b:2d:4f:1e:c3:1d:da:90: 56:3c:07:89:92:e2:1c:93:05:1b:ab:dd:0a:91:46:fa:93:47: cd:67:65:8f:98:c4:1b:6f:2f:7d:74:fe:f0:2d:1d:6e:ff:11: 7a:de:ec:2d:2b:a3:13:02:0d:3e:05:fb:69:08:80:b4:3e:10: da:37:cf:70:30:f9:b7:64:99:16:bc:12:09:b4:a1:07:a9:d8: 96:99:1c:6c -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICBMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjMxMDAzMDg1MDUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiZDVlZC0xMTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQolgzmiGk0a8KPd+Ms8oH4kY9jAXfKybLlIzjOoS4YMeREWEzwxdIlKMHQ4 cgKeKWuFWa0+LDP+KiuVpxA2GFlHgfU282QFVm58MJWjL//3ouG7qlZIJ5ZILZAR FyjVjY25NLHEwn3a1V7PFn01TpkHZ5gV7qO/aTWFAYfJe4N1W3HeYZLTJxZSUHyT O1u7einqSRl7aBJU8z57+EFKX5c0xUd3q7yvYuLWbbS2fxD96uBXewaLAPX0AJ5Y fvLbxblbjIiOrGzzl79Y0bNibO/NW3+ylDmw6nhZmkXwcw3CXmfYdFb6uZOYRkCm lHlkfN5RJm9LCYcunez+NZuN9wIDAQABo4ICvzCCArswHQYDVR0OBBYEFJ8Bkhpr qBLzJr7S3sCNCmoAVskkMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExNzYvQUREM0FFQ0VCMjhFMTFFQjk0RDIxODQ3QzRGOUFFMDIvNjU5NUNFOUNC MjkwMTFFQkJCRjRGNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MBIEAgABMAwDBAJnSUADBAHY+mAwIgQCAAIwHDASAwcAJAbvgAABAwcAJAbv gAAEAwYAJAbvgAEwDQYJKoZIhvcNAQELBQADggEBAJVj3+9MCq2Lo/ldf2mnM0dc vjzJ92fi7jMfaZxlVjSqOukhUG0dYdmDlQ1aENS9ycRD/ShTFJsaAQy7MKckcRcS xSEBHZ9fkvxN5vG7oH1P45u6rmSirsTiE+W9WbcXc/Jvm6zYqe3VqRkNnLbSVHtp tBaaGQkR71jnwsYdSOMBZ3XleTpsLpqF/wrkQoBrC4wWAUD51sEliLu3iszVTFlY Dorw7zIpACE9ub+LLU8ewx3akFY8B4mS4hyTBRur3QqRRvqTR81nZY+YxBtvL310 /vAtHW7/EXre7C0roxMCDT4F+2kIgLQ+ENo3z3Aw+bdkmRa8Egm0oQep2JaZHGw= -----END CERTIFICATE-----Generated at Tue May 21 01:50:55 2024 by rpki-client on console-ams.rpki-client.org