$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/6E45741220D311EEA8C2555FC4F9AE02.roa File: 6E45741220D311EEA8C2555FC4F9AE02.roa (raw, json) Hash identifier: WUoOVZoAcnOWYTNgYU4+0r1u/55gKUsv8XMFFmJFUBc= Subject key identifier: 4A:23:32:77:64:C8:3E:E6:7B:88:49:1E:25:5D:E6:DA:09:32:D8:E3 Certificate issuer: /CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Certificate serial: BB Authority key identifier: 83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/6E45741220D311EEA8C2555FC4F9AE02.roa Signing time: Sat 29 Jun 2024 06:08:22 +0000 ROA not before: Sat 29 Jun 2024 06:08:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142295 IP address blocks: 103.229.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Validity Not Before: Jun 29 06:08:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=667fa4d6-4dee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ba:20:27:0d:9a:65:03:e4:0f:20:69:6e:3f: 40:cf:fc:8c:6a:92:14:5a:a4:e1:35:98:2a:9a:6d: 3c:49:f3:79:24:18:87:07:60:c9:79:e0:2d:c9:43: e1:2e:c9:ab:66:ab:04:21:62:29:17:83:65:ee:8a: 03:da:6f:7d:44:40:1d:6c:dc:90:0e:ed:5e:75:10: 75:d8:ce:77:7a:cc:97:f4:84:37:8f:0a:b0:cf:7e: e5:03:b5:ff:b4:b5:2c:94:8f:ca:5f:c2:ca:79:ec: c2:b0:e9:b9:05:fd:6a:e7:6b:56:29:80:87:a1:c1: b4:1c:d7:57:cf:bb:d5:e6:19:47:64:df:a4:4c:f2: aa:fe:a1:d6:2e:e8:35:cb:10:17:d8:53:77:67:0d: f0:b2:b6:c1:f4:23:02:d0:09:ee:ee:24:f5:8a:81: f4:67:87:65:9e:30:a9:fa:e5:83:b4:8a:c3:72:ee: d9:4f:09:1e:62:ee:b1:a5:1a:55:62:b6:75:d8:74: a5:f5:c2:06:6f:db:dd:63:ea:99:04:1e:29:73:04: 18:af:4e:74:2c:33:f2:88:45:11:da:11:a5:b0:fc: d1:09:ea:3d:9c:74:f1:5f:a2:80:0a:fb:65:57:46: 89:6a:e9:42:bd:97:7a:8f:f7:91:55:51:fc:a4:cb: 38:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:23:32:77:64:C8:3E:E6:7B:88:49:1E:25:5D:E6:DA:09:32:D8:E3 X509v3 Authority Key Identifier: keyid:83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/6E45741220D311EEA8C2555FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.190.0/24 Signature Algorithm: sha256WithRSAEncryption 30:e5:0c:06:c2:0e:58:6d:06:e9:d4:73:95:d5:04:80:a6:0e: 6e:bb:d0:8f:6e:b4:e5:31:50:2e:5d:36:cb:e1:66:51:95:61: 8c:6e:82:47:57:0d:b4:0a:63:1a:71:bf:f8:f7:9b:f0:22:bb: 76:5c:49:4f:03:51:47:94:58:40:2c:b4:85:f5:27:1d:aa:df: 46:82:60:2d:7a:bd:f2:2e:07:51:ea:7b:d8:da:4b:fb:24:60: b7:93:10:83:4c:d1:9d:bb:c0:a8:cd:c0:02:a4:dc:9a:a8:3f: d0:3f:9b:cb:e2:0b:3a:3d:aa:cb:2d:7b:7a:ba:dc:bb:3a:89: fa:f3:5d:e1:86:6e:b5:57:fc:c1:7a:7a:b8:1a:81:24:6d:fc: ed:0a:91:10:ca:0f:06:b4:e6:e2:bf:83:36:1e:43:c2:c6:8f: 66:5e:ff:be:50:4d:7b:06:66:7d:a0:b5:e9:68:35:b3:79:c6: 0d:bb:73:9f:15:1f:69:86:c2:8f:68:3f:36:bc:61:0b:e8:a1: 93:55:43:dd:0c:11:c8:66:27:4a:27:f2:6f:15:46:24:d6:33: eb:93:ba:de:20:e2:bc:73:5b:a7:f7:2d:3d:3c:43:5e:5c:b2: db:77:bc:f0:27:2d:e9:b7:85:7d:58:7a:4c:e1:1a:1c:52:e5: d1:fa:3f:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDNDIxMTAvBgNVBAUTKDgzNzlENzQ3Rjc0QTU1RURDNzNBMEUwNDIxQzc5QjVF QzBFNERFNzYwHhcNMjQwNjI5MDYwODIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmYTRkNi00ZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7ogJw2aZQPkDyBpbj9Az/yMapIUWqThNZgqmm08SfN5JBiHB2DJeeAtyUPh LsmrZqsEIWIpF4Nl7ooD2m99REAdbNyQDu1edRB12M53esyX9IQ3jwqwz37lA7X/ tLUslI/KX8LKeezCsOm5Bf1q52tWKYCHocG0HNdXz7vV5hlHZN+kTPKq/qHWLug1 yxAX2FN3Zw3wsrbB9CMC0Anu7iT1ioH0Z4dlnjCp+uWDtIrDcu7ZTwkeYu6xpRpV YrZ12HSl9cIGb9vdY+qZBB4pcwQYr050LDPyiEUR2hGlsPzRCeo9nHTxX6KACvtl V0aJaulCvZd6j/eRVVH8pMs4OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEojMndk yD7me4hJHiVd5toJMtjjMB8GA1UdIwQYMBaAFIN510f3SlXtxzoOBCHHm17A5N52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM0Mi8yNEE2NUVCRTIw RDAxMUVFOTAwODRGNUNDNEY5QUUwMi9nM25YUl9kS1ZlM0hPZzRFSWNlYlhzRGsz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czblhSX2RLVmUzSE9nNEVJY2ViWHNEazNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlDNDIvMjRBNjVFQkUyMEQwMTFFRTkwMDg0RjVDQzRGOUFFMDIvNkU0NTc0MTIy MEQzMTFFRUE4QzI1NTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5b4wDQYJKoZIhvcNAQELBQADggEBADDlDAbCDlhtBunU c5XVBICmDm670I9utOUxUC5dNsvhZlGVYYxugkdXDbQKYxpxv/j3m/Aiu3ZcSU8D UUeUWEAstIX1Jx2q30aCYC16vfIuB1Hqe9jaS/skYLeTEINM0Z27wKjNwAKk3Jqo P9A/m8viCzo9qsste3q63Ls6ifrzXeGGbrVX/MF6ergagSRt/O0KkRDKDwa05uK/ gzYeQ8LGj2Ze/75QTXsGZn2gteloNbN5xg27c58VH2mGwo9oPza8YQvooZNVQ90M EchmJ0on8m8VRiTWM+uTut4g4rxzW6f3LT08Q15cstt3vPAnLem3hX1YekzhGhxS 5dH6P7Q= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:27 2024 by rpki-client on console-ams.rpki-client.org