$ rpki-client -vvf rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/6F882FB01D5211EE94C36C2FC4F9AE02.roa File: 6F882FB01D5211EE94C36C2FC4F9AE02.roa (raw, json) Hash identifier: rH0gRhN/HJ8HJHVTL+JV1bpQN/J5hF8E0YYPa3z7lJ0= Subject key identifier: 82:87:13:E5:F1:05:D4:DC:C3:F4:97:3C:86:9F:62:27:63:8E:34:9E Certificate issuer: /CN=A91F716F/serialNumber=DF0F1CE8F68C071143670E251EBB763BDB49BFD6 Certificate serial: D2 Authority key identifier: DF:0F:1C:E8:F6:8C:07:11:43:67:0E:25:1E:BB:76:3B:DB:49:BF:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/6F882FB01D5211EE94C36C2FC4F9AE02.roa Signing time: Sat 03 Aug 2024 05:55:59 +0000 ROA not before: Sat 03 Aug 2024 05:55:59 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151474 IP address blocks: 103.229.254.0/23 maxlen: 23 103.229.254.0/24 maxlen: 24 103.229.255.0/24 maxlen: 24 2001:df2:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.crl rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F716F/serialNumber=DF0F1CE8F68C071143670E251EBB763BDB49BFD6 Validity Not Before: Aug 3 05:55:59 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66adc66e-7795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:32:9a:de:93:ae:5c:69:98:ec:3e:e0:cf:24: ca:76:c7:cb:52:47:44:5f:da:a1:53:53:d4:d1:e6: ed:13:aa:1e:80:7a:7f:03:35:48:9e:7e:58:98:84: 38:91:17:e0:d2:3f:bb:8c:dd:e5:5e:bd:ed:8b:e9: 29:99:73:ee:c3:09:44:1b:b2:73:27:a0:97:5b:42: 5e:08:62:5f:2c:6a:2e:71:9a:a5:e5:44:14:59:44: b9:98:00:23:fb:de:54:43:a1:e1:d3:93:0b:dc:ac: 65:4d:c4:c9:21:15:9c:2f:5e:d1:67:6a:71:c3:b5: 55:82:5a:81:a3:46:f9:08:bf:aa:4b:b3:5b:4b:59: 21:a6:8f:ee:ad:7b:f3:5c:07:47:7d:49:a4:f1:72: dc:48:63:15:c4:a6:b5:8d:c7:ab:27:fd:6c:77:ea: 4b:b2:87:14:88:e9:4d:99:c9:c1:7c:e9:d6:b8:a5: c8:5c:a9:2c:ce:28:f0:90:9d:ac:37:61:07:b3:b6: b1:cb:2a:09:5c:ae:62:8c:93:82:38:c6:e7:90:0d: f4:a3:dc:bb:b6:24:d4:f4:5d:0b:c2:81:3f:a1:28: 4b:59:03:f8:79:af:5b:48:bf:1d:ca:fd:5f:0a:78: c1:55:49:8b:07:79:f7:b0:aa:2d:ed:3d:b2:18:29: 39:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:87:13:E5:F1:05:D4:DC:C3:F4:97:3C:86:9F:62:27:63:8E:34:9E X509v3 Authority Key Identifier: keyid:DF:0F:1C:E8:F6:8C:07:11:43:67:0E:25:1E:BB:76:3B:DB:49:BF:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/6F882FB01D5211EE94C36C2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.254.0/23 IPv6: 2001:df2:a040::/48 Signature Algorithm: sha256WithRSAEncryption 78:f4:8b:86:a4:ee:4b:81:60:c3:c0:df:5b:a7:3e:2a:55:fd: 64:b1:87:83:0e:f4:14:4d:91:cf:7c:1d:6c:01:3e:c6:2d:da: ad:ab:6c:b8:c3:c1:28:7b:4b:ff:04:f6:b3:24:d2:cc:1e:69: a4:7f:66:f6:b9:22:c3:d9:dc:4b:d4:50:5d:b3:2a:d6:ee:5a: c2:6f:15:4d:40:1f:d5:30:22:57:e3:d9:f7:69:93:5f:7e:8e: 22:26:df:9e:91:6e:42:d8:5a:9e:8d:ef:7b:0e:85:fd:62:5c: e5:93:7b:5a:dd:8c:41:f6:08:6a:a9:7c:51:6f:14:cb:92:31: d4:5c:86:c0:13:73:e2:b6:41:16:b0:ae:65:8d:34:5c:a1:47: ff:63:6c:73:29:9c:07:98:4e:80:64:d7:da:6e:57:71:12:d5: fa:a2:9e:19:06:ce:03:6f:f9:e5:5d:8e:cd:8e:de:5b:16:1e: 3d:f6:b4:8f:25:88:8e:75:10:e0:d9:4a:d7:ae:31:8b:4a:a9: 08:96:4b:f7:6c:ef:15:a3:24:2f:e0:3b:b8:6c:ce:80:d4:2e: 50:2c:13:a0:4c:7b:e1:74:2e:84:98:32:d0:9d:6d:b2:5e:23: 5c:bb:2d:49:cb:f4:03:68:11:bb:76:eb:db:f4:60:a0:bd:7d: 3a:a2:6d:e0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxNkYxMTAvBgNVBAUTKERGMEYxQ0U4RjY4QzA3MTE0MzY3MEUyNTFFQkI3NjNC REI0OUJGRDYwHhcNMjQwODAzMDU1NTU5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkYzY2ZS03Nzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzKa3pOuXGmY7D7gzyTKdsfLUkdEX9qhU1PU0ebtE6oegHp/AzVInn5YmIQ4 kRfg0j+7jN3lXr3ti+kpmXPuwwlEG7JzJ6CXW0JeCGJfLGoucZql5UQUWUS5mAAj +95UQ6Hh05ML3KxlTcTJIRWcL17RZ2pxw7VVglqBo0b5CL+qS7NbS1khpo/urXvz XAdHfUmk8XLcSGMVxKa1jcerJ/1sd+pLsocUiOlNmcnBfOnWuKXIXKkszijwkJ2s N2EHs7axyyoJXK5ijJOCOMbnkA30o9y7tiTU9F0LwoE/oShLWQP4ea9bSL8dyv1f CnjBVUmLB3n3sKot7T2yGCk5oQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIKHE+Xx BdTcw/SXPIafYidjjjSeMB8GA1UdIwQYMBaAFN8PHOj2jAcRQ2cOJR67djvbSb/W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzE2Ri8xNUU0RERDMDFE NTAxMUVFOTE3RDlDMkVDNEY5QUUwMi8zdzhjNlBhTUJ4RkRadzRsSHJ0Mk85dEp2 OVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN3OGM2UGFNQnhGRFp3NGxIcnQyTzl0SnY5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjcxNkYvMTVFNEREQzAxRDUwMTFFRTkxN0Q5QzJFQzRGOUFFMDIvNkY4ODJGQjAx RDUyMTFFRTk0QzM2QzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn5f4wDwQCAAIwCQMHACABDfKgQDANBgkqhkiG9w0BAQsF AAOCAQEAePSLhqTuS4Fgw8DfW6c+KlX9ZLGHgw70FE2Rz3wdbAE+xi3aratsuMPB KHtL/wT2syTSzB5ppH9m9rkiw9ncS9RQXbMq1u5awm8VTUAf1TAiV+PZ92mTX36O IibfnpFuQthano3vew6F/WJc5ZN7Wt2MQfYIaql8UW8Uy5Ix1FyGwBNz4rZBFrCu ZY00XKFH/2NscymcB5hOgGTX2m5XcRLV+qKeGQbOA2/55V2OzY7eWxYePfa0jyWI jnUQ4NlK164xi0qpCJZL92zvFaMkL+A7uGzOgNQuUCwToEx74XQuhJgy0J1tsl4j XLstScv0A2gRu3br2/RgoL19OqJt4A== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org