$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/AFED106A9E1511ECA4B98E73C4F9AE02.roa File: AFED106A9E1511ECA4B98E73C4F9AE02.roa (raw, json) Hash identifier: vpqcQmNYsSU8xv6Tdls1gDEsQZEBAwcUcBCWCw5IZLs= Subject key identifier: D9:E2:FD:A1:84:4C:43:4A:A0:6C:99:8C:E4:2A:71:9E:F3:4A:4B:50 Certificate issuer: /CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Certificate serial: 029A Authority key identifier: 70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/AFED106A9E1511ECA4B98E73C4F9AE02.roa Signing time: Sun 21 Jan 2024 02:54:47 +0000 ROA not before: Sun 21 Jan 2024 02:54:47 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 149494 IP address blocks: 103.181.50.0/24 maxlen: 24 2001:df0:6840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Validity Not Before: Jan 21 02:54:47 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65ac8777-138c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ca:aa:cc:a5:e8:2e:0f:15:a1:a6:e5:a3:33: 49:ba:db:f7:72:c3:25:bb:3b:9b:49:44:ea:a8:de: ea:d8:a0:02:27:a6:58:ff:d4:28:7f:2d:13:2f:58: 19:99:ca:f6:df:92:81:a1:1f:38:2b:3e:ba:20:f5: d7:4f:15:f7:8e:b3:1f:4e:27:d8:05:d1:ab:b0:1c: 46:26:3b:3d:5f:58:e5:d4:e4:68:f0:70:ce:6b:bc: d1:1b:02:47:92:6f:5c:9e:cb:d6:b2:4a:ad:c5:d2: 9f:eb:dc:6a:0a:88:34:6e:41:0d:8d:9c:e9:4a:f9: fb:4d:60:64:e9:14:ab:f8:e7:87:63:2b:ae:53:fb: 5d:81:df:2f:cc:4a:54:4e:5e:21:f9:62:d9:55:2f: 47:76:82:f8:01:17:26:ee:e2:c5:1b:f3:aa:ab:09: fb:a2:74:af:78:2b:15:36:5b:c5:b3:43:ba:b1:53: 39:77:60:6d:fb:c6:9c:ff:1e:74:16:03:a9:99:ee: f9:51:94:d2:92:a0:44:10:24:10:3c:9d:64:50:4e: 88:ca:40:57:2b:4b:99:34:1d:df:b6:c3:99:13:e8: ea:2a:e3:3e:fe:59:82:33:c2:ee:22:61:cc:a1:af: eb:39:b8:3a:ae:65:8a:16:a6:a6:99:f2:b0:fb:54: e4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E2:FD:A1:84:4C:43:4A:A0:6C:99:8C:E4:2A:71:9E:F3:4A:4B:50 X509v3 Authority Key Identifier: keyid:70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/AFED106A9E1511ECA4B98E73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.50.0/24 IPv6: 2001:df0:6840::/48 Signature Algorithm: sha256WithRSAEncryption 39:96:04:d6:9d:24:1f:53:4f:fd:72:fe:bc:35:de:25:54:d3: 60:10:21:5c:43:22:c9:4a:47:e9:0a:eb:eb:b0:c0:27:9e:0b: 78:1e:e7:45:8a:ec:2f:4a:ad:ba:1a:eb:59:75:2d:cb:23:a8: 5c:45:67:5d:0e:84:d6:41:e4:0a:e7:e7:b4:e7:2d:cb:8f:b9: e8:dc:3d:1b:95:dd:f1:8d:be:6a:0b:45:f9:4d:80:ee:a1:4c: 3c:e6:5f:9a:bf:e2:c8:5a:c8:42:d9:82:07:96:24:df:9d:09: c9:32:a4:3e:f7:0a:8b:f6:12:66:f1:d8:dd:3d:02:d8:27:11: ec:98:83:e0:4b:2d:d0:cd:4d:a6:57:d6:f9:e4:f2:45:88:8f: f1:37:39:71:7c:0d:83:3d:d3:05:b8:99:fd:23:95:51:0b:44: 20:a6:79:01:03:47:70:6f:3f:0a:bf:94:9d:82:6a:3a:79:a8: 42:8c:7b:d5:a0:2e:7f:07:10:5d:c5:b1:58:39:6d:5a:04:b9: 45:44:ea:bf:2f:16:b7:74:81:01:00:d0:ef:71:8e:5a:0a:92: 12:fa:5b:8a:b6:20:0e:10:cc:93:e2:29:a2:7c:9c:ce:e3:85: 8f:69:64:cc:42:e5:1c:3c:1a:b6:14:8c:ce:37:34:58:a9:e1: 6a:22:e7:6e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThGOEExMTAvBgNVBAUTKDcwOTZFRjlGOEU3ODMwMzQzOUU5QTFFNEIwMzgxODgx QTQzMkY0REIwHhcNMjQwMTIxMDI1NDQ3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFjODc3Ny0xMzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6sqqzKXoLg8VoablozNJutv3csMluzubSUTqqN7q2KACJ6ZY/9Qofy0TL1gZ mcr235KBoR84Kz66IPXXTxX3jrMfTifYBdGrsBxGJjs9X1jl1ORo8HDOa7zRGwJH km9cnsvWskqtxdKf69xqCog0bkENjZzpSvn7TWBk6RSr+OeHYyuuU/tdgd8vzEpU Tl4h+WLZVS9HdoL4ARcm7uLFG/Oqqwn7onSveCsVNlvFs0O6sVM5d2Bt+8ac/x50 FgOpme75UZTSkqBEECQQPJ1kUE6IykBXK0uZNB3ftsOZE+jqKuM+/lmCM8LuImHM oa/rObg6rmWKFqammfKw+1TkXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNni/aGE TENKoGyZjOQqcZ7zSktQMB8GA1UdIwQYMBaAFHCW75+OeDA0Oemh5LA4GIGkMvTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEY4QS83MjE5NUFENDlF MTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1EUTU2YUhrc0RnWWdhUXk5 TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKYnZuNDU0TURRNTZhSGtzRGdZZ2FReTlOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThGOEEvNzIxOTVBRDQ5RTEzMTFFQ0IwOTFDRTcyQzRGOUFFMDIvQUZFRDEwNkE5 RTE1MTFFQ0E0Qjk4RTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABntTIwDwQCAAIwCQMHACABDfBoQDANBgkqhkiG9w0BAQsF AAOCAQEAOZYE1p0kH1NP/XL+vDXeJVTTYBAhXEMiyUpH6Qrr67DAJ54LeB7nRYrs L0qtuhrrWXUtyyOoXEVnXQ6E1kHkCufntOcty4+56Nw9G5Xd8Y2+agtF+U2A7qFM POZfmr/iyFrIQtmCB5Yk350JyTKkPvcKi/YSZvHY3T0C2CcR7JiD4Est0M1NplfW +eTyRYiP8Tc5cXwNgz3TBbiZ/SOVUQtEIKZ5AQNHcG8/Cr+UnYJqOnmoQox71aAu fwcQXcWxWDltWgS5RUTqvy8Wt3SBAQDQ73GOWgqSEvpbirYgDhDMk+IponyczuOF j2lkzELlHDwathSMzjc0WKnhaiLnbg== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:43 2024 by rpki-client on console-fra.rpki-client.org