$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/7D6F53547F0411EBB8CAEE2BC4F9AE02.roa File: 7D6F53547F0411EBB8CAEE2BC4F9AE02.roa (raw, json) Hash identifier: MuS1D/2+8EGkgIkIccTnkaRbLVS0UhbQOaZ6Z/zRhQ0= Subject key identifier: D3:DC:23:77:D6:98:DE:21:1F:E7:50:66:67:0F:CD:CD:27:1D:C1:E2 Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 05BF Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/7D6F53547F0411EBB8CAEE2BC4F9AE02.roa Signing time: Fri 31 May 2024 00:54:31 +0000 ROA not before: Fri 31 May 2024 00:54:31 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137222 IP address blocks: 103.215.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1471 (0x5bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: May 31 00:54:31 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66591fc7-6bba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d9:ea:ca:f1:9c:1a:ba:9b:d9:20:42:87:36: b0:92:dd:cf:19:5b:7e:61:f6:99:ad:1b:df:89:5b: aa:19:11:58:b1:0b:b7:d0:7f:d5:f3:60:dd:31:6e: 73:ad:51:d6:10:7f:c2:dd:01:ef:1a:fa:9f:ba:ae: ec:20:f3:c0:82:f9:c6:3a:1f:7f:dc:d3:66:ad:4e: bd:94:a5:0d:24:2f:77:89:f5:54:d7:b8:d0:e9:f8: e7:14:ed:9b:32:34:68:e6:e4:5e:b9:e2:b1:45:a2: 8b:4d:d5:33:b4:a2:2e:63:43:d5:5e:14:4c:43:6d: 97:b4:d4:da:e6:bc:cd:0f:62:8f:14:fc:a1:b7:f4: 37:73:08:24:c5:24:21:48:e9:6e:4d:f8:87:3d:45: cc:28:be:f9:61:cf:cf:0b:ac:21:9f:8b:1a:18:07: c8:9d:c7:2a:d3:fb:65:de:34:c9:9b:76:c0:bf:6e: d5:58:07:68:d7:be:7b:19:d9:ad:7a:e1:e2:c7:25: 17:4f:9f:74:15:65:8b:1b:a7:fc:8b:5b:6f:19:4c: 7a:fe:77:b1:8b:dd:09:c9:60:9a:5d:61:6c:9c:98: 7a:f7:d6:d3:03:6b:fb:24:e8:f8:7c:4f:12:8e:96: fa:66:52:a6:6a:06:91:fe:51:1b:b6:3c:eb:d0:08: 30:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:DC:23:77:D6:98:DE:21:1F:E7:50:66:67:0F:CD:CD:27:1D:C1:E2 X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/7D6F53547F0411EBB8CAEE2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.64.0/22 Signature Algorithm: sha256WithRSAEncryption 83:f9:6d:03:00:ba:66:e2:c3:6f:ac:58:06:b9:53:05:e7:8c: 57:1f:c0:f9:c7:c5:c7:c4:ac:8f:a4:12:83:4a:32:86:25:1c: 09:55:95:34:83:d5:98:b0:c7:44:e8:ca:15:e5:13:c6:6d:5c: 8b:46:f9:fa:07:30:07:db:3e:49:55:68:17:a2:06:8c:ba:1a: fa:90:e0:20:07:fe:fa:2c:d1:45:80:c1:81:29:8c:7c:8d:0a: e8:f8:b5:41:8a:26:83:04:52:5a:3c:68:43:70:13:a2:db:e9: 63:b3:b8:2b:bb:6b:30:79:2d:97:4a:8b:34:13:60:ad:d5:61: dd:48:22:42:83:d0:07:f8:78:c9:42:46:34:06:19:e0:fc:0a: 99:7e:58:0a:bd:f5:f9:60:35:23:96:8c:45:ac:a4:11:93:ae: 0e:94:f6:cd:1a:95:8b:3a:0d:9a:e7:81:88:29:dd:c0:11:eb: 10:61:9b:47:fd:c9:50:cc:5e:f8:ee:ff:5b:92:90:e1:c7:5a: d0:45:6e:1f:f9:36:2f:54:ad:23:b4:9b:14:5f:1a:ab:17:ab: a4:4b:ac:d5:59:27:84:65:d8:41:be:c0:3c:d1:27:9c:97:42: da:6d:7a:57:cd:1b:00:20:02:7d:45:ab:1a:f0:05:17:70:75: 24:5d:92:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjQwNTMxMDA1NDMxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5MWZjNy02YmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9nqyvGcGrqb2SBChzawkt3PGVt+YfaZrRvfiVuqGRFYsQu30H/V82DdMW5z rVHWEH/C3QHvGvqfuq7sIPPAgvnGOh9/3NNmrU69lKUNJC93ifVU17jQ6fjnFO2b MjRo5uReueKxRaKLTdUztKIuY0PVXhRMQ22XtNTa5rzND2KPFPyht/Q3cwgkxSQh SOluTfiHPUXMKL75Yc/PC6whn4saGAfInccq0/tl3jTJm3bAv27VWAdo1757Gdmt euHixyUXT590FWWLG6f8i1tvGUx6/nexi90JyWCaXWFsnJh699bTA2v7JOj4fE8S jpb6ZlKmagaR/lEbtjzr0AgwWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNPcI3fW mN4hH+dQZmcPzc0nHcHiMB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYyRTEvM0Y2OUNDNjY3RjAzMTFFQkEwODFBMDJCQzRGOUFFMDIvN0Q2RjUzNTQ3 RjA0MTFFQkI4Q0FFRTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn10AwDQYJKoZIhvcNAQELBQADggEBAIP5bQMAumbiw2+s WAa5UwXnjFcfwPnHxcfErI+kEoNKMoYlHAlVlTSD1Ziwx0ToyhXlE8ZtXItG+foH MAfbPklVaBeiBoy6GvqQ4CAH/vos0UWAwYEpjHyNCuj4tUGKJoMEUlo8aENwE6Lb 6WOzuCu7azB5LZdKizQTYK3VYd1IIkKD0Af4eMlCRjQGGeD8Cpl+WAq99flgNSOW jEWspBGTrg6U9s0alYs6DZrngYgp3cAR6xBhm0f9yVDMXvju/1uSkOHHWtBFbh/5 Ni9UrSO0mxRfGqsXq6RLrNVZJ4Rl2EG+wDzRJ5yXQtptelfNGwAgAn1FqxrwBRdw dSRdkhk= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:53 2024 by rpki-client on console-ams.rpki-client.org