$ rpki-client -vvf rpki.apnic.net/member_repository/A91670F6/185DAFD61CEF11EC9EDD8011C4F9AE02/29935FC21CF311ECA077821AC4F9AE02.roa File: 29935FC21CF311ECA077821AC4F9AE02.roa (raw, json) Hash identifier: Gw9UrgyhZyQgdaUx+vCyY31CJTl4dtl3RMTe5VBeLyw= Subject key identifier: 6E:43:31:44:7B:37:82:22:C1:E8:91:EF:4D:61:FC:A7:71:62:D7:2A Certificate issuer: /CN=A91670F6/serialNumber=132CCAEAC104E2A3445B633761054DC8D7107A13 Certificate serial: 046A Authority key identifier: 13:2C:CA:EA:C1:04:E2:A3:44:5B:63:37:61:05:4D:C8:D7:10:7A:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyzK6sEE4qNEW2M3YQVNyNcQehM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91670F6/185DAFD61CEF11EC9EDD8011C4F9AE02/29935FC21CF311ECA077821AC4F9AE02.roa Signing time: Thu 17 Oct 2024 00:03:29 +0000 ROA not before: Thu 17 Oct 2024 00:03:29 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147053 IP address blocks: 103.173.172.0/23 maxlen: 24 2001:df7:a180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91670F6/185DAFD61CEF11EC9EDD8011C4F9AE02/EyzK6sEE4qNEW2M3YQVNyNcQehM.crl rsync://rpki.apnic.net/member_repository/A91670F6/185DAFD61CEF11EC9EDD8011C4F9AE02/EyzK6sEE4qNEW2M3YQVNyNcQehM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyzK6sEE4qNEW2M3YQVNyNcQehM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1130 (0x46a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91670F6/serialNumber=132CCAEAC104E2A3445B633761054DC8D7107A13 Validity Not Before: Oct 17 00:03:29 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67105451-1687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e7:4c:e0:34:6c:8f:a9:c9:37:3c:e3:89:12: dd:92:9f:44:79:2f:8e:6e:db:bd:03:ce:cb:94:3b: fa:e7:f1:21:a8:0b:49:49:49:3b:c3:18:41:e1:5c: 0a:c4:e9:90:88:33:59:d3:c6:62:6a:ee:ec:da:2f: 39:90:31:ee:85:6d:e7:e5:00:b8:da:68:53:28:88: 5b:ac:31:02:9a:90:2a:f9:92:43:5b:f4:95:98:4f: 40:34:21:c6:cc:bd:7a:48:b7:d3:61:69:b2:d6:91: 85:50:b1:62:4c:9e:94:c8:e4:ef:28:b2:0d:ea:fb: 03:f3:cd:8b:54:c6:07:95:b8:7c:e0:da:18:62:b2: 43:50:84:b8:67:bc:c7:d0:0b:c1:cf:c4:6f:08:cc: 75:4d:5c:f1:a2:02:9f:9a:0d:c9:5e:13:2e:72:cb: d8:d1:ae:bc:c2:93:87:53:b4:6c:24:50:da:5e:4a: c1:73:23:b6:ab:64:d3:f4:40:a2:17:90:60:4b:1e: 59:7b:96:4e:01:b9:ce:6b:29:f3:bc:28:c8:4b:a0: bf:f1:73:55:bb:2d:0e:65:95:b1:36:0e:aa:13:03: 13:33:98:26:3f:fe:da:f9:31:17:81:91:1e:a3:a3: 0e:00:9f:38:c1:17:c6:65:a7:6f:ed:2f:7b:27:c3: c0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:43:31:44:7B:37:82:22:C1:E8:91:EF:4D:61:FC:A7:71:62:D7:2A X509v3 Authority Key Identifier: keyid:13:2C:CA:EA:C1:04:E2:A3:44:5B:63:37:61:05:4D:C8:D7:10:7A:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91670F6/185DAFD61CEF11EC9EDD8011C4F9AE02/EyzK6sEE4qNEW2M3YQVNyNcQehM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyzK6sEE4qNEW2M3YQVNyNcQehM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91670F6/185DAFD61CEF11EC9EDD8011C4F9AE02/29935FC21CF311ECA077821AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.172.0/23 IPv6: 2001:df7:a180::/48 Signature Algorithm: sha256WithRSAEncryption 55:9b:fb:0c:9f:ba:ba:62:27:c0:f8:ad:b6:64:e3:1a:b2:3a: 68:28:a2:d8:b3:6d:66:9e:70:7a:5f:3a:03:db:82:47:0d:71: 3c:28:cd:fb:7f:4b:46:55:62:dc:88:de:cb:88:22:58:6e:d5: 37:7e:ef:8a:b4:99:ac:b2:e9:f6:a9:6d:3c:4f:5d:ba:6d:83: ec:4c:c0:91:15:9d:30:f0:d5:f5:19:d5:3c:6a:14:f0:07:ed: 18:a6:b0:e6:2f:d7:44:90:a4:bb:f8:f2:b6:3e:40:f7:87:cc: f3:58:01:83:d4:bb:7d:75:62:28:17:b3:28:e1:75:65:46:81: c1:4a:b1:ed:92:b1:43:19:c1:6c:59:b8:63:3c:64:03:84:f6: 67:fc:d8:cc:35:f9:98:87:01:24:4f:70:46:2c:49:f7:a2:ff: a5:b6:e6:48:42:76:09:eb:1a:a7:e0:30:79:ff:73:c8:ce:12: 0e:e8:ef:de:2d:3b:a1:76:9f:aa:03:98:c2:32:d2:8a:74:c3: fc:12:fc:91:bc:10:1b:22:03:1a:70:5d:73:6d:b1:5f:79:c4: ab:cd:cd:31:73:41:cc:4e:64:4d:30:4d:31:ba:bb:7d:15:9d: 6c:d0:1c:4a:83:b1:71:ec:9a:fd:54:c7:65:b6:24:70:dd:01: a2:ba:a5:14 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwRjYxMTAvBgNVBAUTKDEzMkNDQUVBQzEwNEUyQTM0NDVCNjMzNzYxMDU0REM4 RDcxMDdBMTMwHhcNMjQxMDE3MDAwMzI5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwNTQ1MS0xNjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqudM4DRsj6nJNzzjiRLdkp9EeS+Obtu9A87LlDv65/EhqAtJSUk7wxhB4VwK xOmQiDNZ08Ziau7s2i85kDHuhW3n5QC42mhTKIhbrDECmpAq+ZJDW/SVmE9ANCHG zL16SLfTYWmy1pGFULFiTJ6UyOTvKLIN6vsD882LVMYHlbh84NoYYrJDUIS4Z7zH 0AvBz8RvCMx1TVzxogKfmg3JXhMucsvY0a68wpOHU7RsJFDaXkrBcyO2q2TT9ECi F5BgSx5Ze5ZOAbnOaynzvCjIS6C/8XNVuy0OZZWxNg6qEwMTM5gmP/7a+TEXgZEe o6MOAJ84wRfGZadv7S97J8PAewIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG5DMUR7 N4IiweiR701h/KdxYtcqMB8GA1UdIwQYMBaAFBMsyurBBOKjRFtjN2EFTcjXEHoT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzBGNi8xODVEQUZENjFD RUYxMUVDOUVERDgwMTFDNEY5QUUwMi9FeXpLNnNFRTRxTkVXMk0zWVFWTnlOY1Fl aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V5eks2c0VFNHFORVcyTTNZUVZOeU5jUWVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwRjYvMTg1REFGRDYxQ0VGMTFFQzlFREQ4MDExQzRGOUFFMDIvMjk5MzVGQzIx Q0YzMTFFQ0EwNzc4MjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrawwDwQCAAIwCQMHACABDfehgDANBgkqhkiG9w0BAQsF AAOCAQEAVZv7DJ+6umInwPittmTjGrI6aCii2LNtZp5wel86A9uCRw1xPCjN+39L RlVi3Ijey4giWG7VN37virSZrLLp9qltPE9dum2D7EzAkRWdMPDV9RnVPGoU8Aft GKaw5i/XRJCku/jytj5A94fM81gBg9S7fXViKBezKOF1ZUaBwUqx7ZKxQxnBbFm4 YzxkA4T2Z/zYzDX5mIcBJE9wRixJ96L/pbbmSEJ2Cesap+Awef9zyM4SDujv3i07 oXafqgOYwjLSinTD/BL8kbwQGyIDGnBdc22xX3nEq83NMXNBzE5kTTBNMbq7fRWd bNAcSoOxceya/VTHZbYkcN0BorqlFA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:34 2024 by rpki-client on console-fra.rpki-client.org