$ rpki-client -vvf rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/6473BE24979811EB97001639C4F9AE02.roa File: 6473BE24979811EB97001639C4F9AE02.roa (raw, json) Hash identifier: tuPQApbHrE/GUVZVghqktL0O0OMOYVxWAqrRwmfFcZU= Subject key identifier: C0:39:52:D2:FB:8F:11:1E:1E:53:0D:5B:B9:C2:85:B6:C0:06:3E:06 Certificate issuer: /CN=A91F053E/serialNumber=38CE276C85B6D2D0EAFE9D3F8A5A508CDDBAB968 Certificate serial: 0626 Authority key identifier: 38:CE:27:6C:85:B6:D2:D0:EA:FE:9D:3F:8A:5A:50:8C:DD:BA:B9:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/6473BE24979811EB97001639C4F9AE02.roa Signing time: Fri 27 Sep 2024 00:54:32 +0000 ROA not before: Fri 27 Sep 2024 00:54:32 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 141735 IP address blocks: 103.162.170.0/24 maxlen: 24 103.162.171.0/24 maxlen: 24 2001:df4:2ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.crl rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F053E/serialNumber=38CE276C85B6D2D0EAFE9D3F8A5A508CDDBAB968 Validity Not Before: Sep 27 00:54:32 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66f60248-8822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0f:57:23:da:5d:58:b9:77:9f:1c:b9:7d:d3: 0c:46:26:9d:c5:ec:1f:d4:59:e7:ae:62:d4:18:94: 67:51:45:de:7c:94:6d:72:9f:94:f0:43:a9:f9:19: 36:82:14:e3:25:b9:17:7d:ce:d8:c5:48:32:85:53: 00:52:96:51:a7:20:3a:bf:ae:1e:65:4d:89:87:87: 2e:96:ae:eb:12:19:c9:fb:fd:1d:97:53:59:66:46: 70:4e:c6:3e:50:69:fc:0e:54:e7:88:99:8c:a8:af: 2b:97:66:48:1c:83:c5:8b:98:65:92:e1:e2:a9:2e: 44:f9:b4:29:e2:f6:b6:1c:83:ca:bf:7b:7a:7a:73: b7:a1:2c:bd:bc:bb:be:0c:ab:1e:ea:e7:d8:84:5e: 75:1e:82:90:45:76:b8:dd:63:1b:2c:54:1c:45:c6: 82:f1:49:41:a8:69:83:1e:fe:9c:49:10:3d:3d:a7: 74:8f:86:05:5d:95:3d:f4:e8:99:ba:e1:38:77:30: 71:9a:ab:07:88:c2:7f:6c:ec:6f:49:1f:e6:5a:3a: 07:20:02:79:10:b4:7b:43:97:f1:e0:0b:35:16:df: e7:c5:99:2f:b4:cf:bc:4d:27:08:de:72:89:af:49: 0f:bd:90:29:24:07:78:b6:a8:09:e9:d1:81:b5:d1: be:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:39:52:D2:FB:8F:11:1E:1E:53:0D:5B:B9:C2:85:B6:C0:06:3E:06 X509v3 Authority Key Identifier: keyid:38:CE:27:6C:85:B6:D2:D0:EA:FE:9D:3F:8A:5A:50:8C:DD:BA:B9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/6473BE24979811EB97001639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.170.0/23 IPv6: 2001:df4:2ac0::/48 Signature Algorithm: sha256WithRSAEncryption 25:7c:82:1e:11:07:de:b6:d9:96:dd:fd:42:ba:bc:4f:39:bb: c9:a2:00:a9:ee:ca:24:a1:96:7f:e1:e4:b7:85:0b:5f:c0:72: 00:f5:62:8a:57:9c:90:b4:d5:c6:4c:cd:f8:61:eb:38:a9:e3: 17:4f:b4:63:2e:60:a6:78:71:37:7c:bd:f0:17:28:57:df:d2: 2f:5c:ec:3b:8f:89:13:f4:2f:4b:9f:41:67:b8:4c:f0:19:4b: 93:f6:02:56:c5:34:94:e7:88:db:70:e2:e2:a6:8d:a0:c3:23: 02:25:21:5c:56:fd:d7:38:04:0f:94:58:63:22:d8:92:c3:0c: 9a:59:ac:b2:b7:cf:34:5a:be:23:86:3b:88:be:4e:ab:1a:0e: 67:28:91:cd:cf:41:e8:87:f2:f0:d9:4c:4c:ed:5c:3e:c4:ea: f7:c7:4a:bc:18:78:0e:68:3d:a8:79:43:05:95:fd:e7:c1:e7: 28:ae:df:c3:c1:81:95:d4:3a:d3:3b:fb:bd:c0:0d:0f:8d:06: cd:53:b6:0b:73:a1:ed:ba:15:27:ca:98:bf:95:97:87:98:2e: 96:39:53:90:69:2e:9c:9a:7c:20:c5:b3:d8:ec:e8:a9:a0:eb: 85:ef:3e:d3:d6:07:a4:f1:f5:8e:fc:16:08:3e:44:3c:b8:e4: 3c:ea:15:97 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA1M0UxMTAvBgNVBAUTKDM4Q0UyNzZDODVCNkQyRDBFQUZFOUQzRjhBNUE1MDhD RERCQUI5NjgwHhcNMjQwOTI3MDA1NDMyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MDI0OC04ODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzA9XI9pdWLl3nxy5fdMMRiadxewf1FnnrmLUGJRnUUXefJRtcp+U8EOp+Rk2 ghTjJbkXfc7YxUgyhVMAUpZRpyA6v64eZU2Jh4culq7rEhnJ+/0dl1NZZkZwTsY+ UGn8DlTniJmMqK8rl2ZIHIPFi5hlkuHiqS5E+bQp4va2HIPKv3t6enO3oSy9vLu+ DKse6ufYhF51HoKQRXa43WMbLFQcRcaC8UlBqGmDHv6cSRA9Pad0j4YFXZU99OiZ uuE4dzBxmqsHiMJ/bOxvSR/mWjoHIAJ5ELR7Q5fx4As1Ft/nxZkvtM+8TScI3nKJ r0kPvZApJAd4tqgJ6dGBtdG+mwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMA5UtL7 jxEeHlMNW7nChbbABj4GMB8GA1UdIwQYMBaAFDjOJ2yFttLQ6v6dP4paUIzdurlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDUzRS80RUVCQzIwODZC NkIxMUVCODUxMjRCMkFDNEY5QUUwMi9PTTRuYklXMjB0RHFfcDBfaWxwUWpOMjZ1 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09NNG5iSVcyMHREcV9wMF9pbHBRak4yNnVXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjA1M0UvNEVFQkMyMDg2QjZCMTFFQjg1MTI0QjJBQzRGOUFFMDIvNjQ3M0JFMjQ5 Nzk4MTFFQjk3MDAxNjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnoqowDwQCAAIwCQMHACABDfQqwDANBgkqhkiG9w0BAQsF AAOCAQEAJXyCHhEH3rbZlt39Qrq8Tzm7yaIAqe7KJKGWf+Hkt4ULX8ByAPViilec kLTVxkzN+GHrOKnjF0+0Yy5gpnhxN3y98BcoV9/SL1zsO4+JE/QvS59BZ7hM8BlL k/YCVsU0lOeI23Di4qaNoMMjAiUhXFb91zgED5RYYyLYksMMmlmssrfPNFq+I4Y7 iL5OqxoOZyiRzc9B6Ify8NlMTO1cPsTq98dKvBh4Dmg9qHlDBZX958HnKK7fw8GB ldQ60zv7vcAND40GzVO2C3Oh7boVJ8qYv5WXh5guljlTkGkunJp8IMWz2OzoqaDr he8+09YHpPH1jvwWCD5EPLjkPOoVlw== -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:02 2024 by rpki-client on console-ams.rpki-client.org