$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/6A3FA88A693C11EF8B032237C4F9AE02.roa File: 6A3FA88A693C11EF8B032237C4F9AE02.roa (raw, json) Hash identifier: 2nR72gd8fEEO90sm8QM92ng7Ua1iEJ7Ic792MqQQzEM= Subject key identifier: 35:D7:A1:D2:B4:CF:B9:16:EF:6F:F4:FC:FB:12:07:85:1D:F0:47:49 Certificate issuer: /CN=A91F7D74/serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Certificate serial: 07 Authority key identifier: D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/6A3FA88A693C11EF8B032237C4F9AE02.roa Signing time: Mon 02 Sep 2024 15:04:20 +0000 ROA not before: Mon 02 Sep 2024 15:04:20 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135319 IP address blocks: 103.214.56.0/22 maxlen: 22 103.214.56.0/24 maxlen: 24 103.214.57.0/24 maxlen: 24 103.214.58.0/24 maxlen: 24 103.214.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7D74/serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Validity Not Before: Sep 2 15:04:20 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66d5d3f4-d845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:14:b6:93:7b:a9:9d:09:0e:dc:70:cd:1d:37: 41:54:43:68:f0:25:96:2d:16:bd:37:6f:95:2a:86: 77:3c:9a:7b:33:46:f7:68:92:03:7a:05:90:d0:6b: 9e:bf:be:ec:f9:59:f5:e9:2f:f1:04:e3:f9:27:ff: 1d:03:a2:f5:05:dd:64:b3:9c:97:8e:4d:d0:fb:c6: 64:d8:10:f8:bd:09:a8:64:ef:8b:48:39:71:d8:11: cf:e6:b7:50:35:95:c4:b1:6f:da:e2:25:ea:92:cd: 21:03:89:6b:d9:e3:bd:77:17:1c:df:5d:0c:7a:21: c8:5a:88:f0:a5:90:51:ec:99:32:41:5e:54:b5:69: 08:23:3c:90:e7:08:bc:c5:0a:a9:e7:ba:67:17:06: ca:53:5f:07:45:a4:4d:4f:8a:91:dd:ac:9d:6a:18: db:19:3b:c1:6d:f0:65:c6:b4:54:b6:d1:41:ec:c5: 0f:92:d8:c4:ed:19:07:53:e0:84:d4:8c:0d:b7:1f: 27:1e:79:2f:6f:2d:5b:a0:0c:ee:5e:aa:6e:73:14: 03:59:45:d6:37:2c:6a:86:3a:69:6a:2d:88:93:c7: 29:2c:2f:68:03:20:fd:e7:be:5a:09:54:f9:24:4f: 6b:c2:a4:46:9d:51:77:6d:be:37:e0:ef:7f:0b:e7: 52:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D7:A1:D2:B4:CF:B9:16:EF:6F:F4:FC:FB:12:07:85:1D:F0:47:49 X509v3 Authority Key Identifier: keyid:D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/6A3FA88A693C11EF8B032237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.56.0/22 Signature Algorithm: sha256WithRSAEncryption 67:cf:ce:be:66:06:96:d1:35:1d:e2:fb:ec:7c:12:eb:29:4a: 61:9e:5d:83:b4:51:4b:97:10:97:2f:dc:c3:64:3b:2b:96:c0: cb:b7:a0:f6:60:48:e8:c7:6c:10:3d:2a:5b:aa:51:67:ed:69: 2d:05:fe:c7:33:bc:b7:c1:fd:4a:a5:57:3b:05:0a:0a:0c:16: 5f:c1:e7:4d:be:63:a3:98:f9:6c:9c:ec:c2:43:67:97:a1:5b: 3e:2c:b7:f1:0c:b9:9f:7c:6a:56:0b:87:a9:b2:2b:96:3a:d1: f1:33:ff:59:00:61:38:12:76:5d:11:43:9a:a7:e2:af:ca:bc: 35:ca:a9:3f:c7:3d:33:68:f4:5d:d2:48:9f:ca:44:85:86:c9: 89:29:a2:f4:68:a1:de:3b:43:a8:72:ca:b2:88:62:62:24:0f: eb:c5:5d:35:5d:e1:1a:bf:b1:e7:21:60:ae:d8:fe:b3:7c:e9: 31:92:ab:9d:b7:6a:76:56:a6:f9:f6:f7:57:f6:35:a9:d3:94: 0a:9f:9a:bc:b2:2f:48:af:c3:97:29:a3:59:8d:15:1f:c2:43: 83:4e:58:22:db:fb:f8:dc:8d:d0:54:fe:df:42:d2:14:14:ae: 52:df:54:99:e9:e5:8c:63:d9:d6:9d:68:14:d3:2d:b1:cf:c9: 5b:c6:2c:6a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG N0Q3NDExMC8GA1UEBRMoRDNEQ0UxNzE0M0Y5Q0Y1REY4MDA0RjhDNjU5N0ZCMkM4 Q0NDNzA0NjAeFw0yNDA5MDIxNTA0MjBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDVkM2Y0LWQ4NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7FLaTe6mdCQ7ccM0dN0FUQ2jwJZYtFr03b5Uqhnc8mnszRvdokgN6BZDQa56/ vuz5WfXpL/EE4/kn/x0DovUF3WSznJeOTdD7xmTYEPi9Cahk74tIOXHYEc/mt1A1 lcSxb9riJeqSzSEDiWvZ4713FxzfXQx6IchaiPClkFHsmTJBXlS1aQgjPJDnCLzF CqnnumcXBspTXwdFpE1PipHdrJ1qGNsZO8Ft8GXGtFS20UHsxQ+S2MTtGQdT4ITU jA23HyceeS9vLVugDO5eqm5zFANZRdY3LGqGOmlqLYiTxyksL2gDIP3nvloJVPkk T2vCpEadUXdtvjfg738L51J1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNdeh0rTP uRbvb/T8+xIHhR3wR0kwHwYDVR0jBBgwFoAU09zhcUP5z134AE+MZZf7LIzMcEYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3RDc0LzM3OEQ5QTBBNjky ODExRUZBRjcxMTQ4N0M0RjlBRTAyLzA5emhjVVA1ejEzNEFFLU1aWmY3TEl6TWNF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDl6aGNVUDV6MTM0QUUtTVpaZjdMSXpNY0VZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0Q3NC8zNzhEOUEwQTY5MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi82QTNGQTg4QTY5 M0MxMUVGOEIwMzIyMzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmfWODANBgkqhkiG9w0BAQsFAAOCAQEAZ8/OvmYGltE1HeL7 7HwS6ylKYZ5dg7RRS5cQly/cw2Q7K5bAy7eg9mBI6MdsED0qW6pRZ+1pLQX+xzO8 t8H9SqVXOwUKCgwWX8HnTb5jo5j5bJzswkNnl6FbPiy38Qy5n3xqVguHqbIrljrR 8TP/WQBhOBJ2XRFDmqfir8q8NcqpP8c9M2j0XdJIn8pEhYbJiSmi9Gih3jtDqHLK sohiYiQP68VdNV3hGr+x5yFgrtj+s3zpMZKrnbdqdlam+fb3V/Y1qdOUCp+avLIv SK/DlymjWY0VH8JDg05YItv7+NyN0FT+30LSFBSuUt9UmenljGPZ1p1oFNMtsc/J W8Ysag== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:06 2024 by rpki-client on console-ams.rpki-client.org