$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/EEA8968C461A11ED898DD14FC4F9AE02.roa File: EEA8968C461A11ED898DD14FC4F9AE02.roa (raw, json) Hash identifier: xvgbQt4eEZhtv3D2xw3qg4iJxZwYxghUdqa6K5JPB6M= Subject key identifier: BC:11:5B:28:0F:CB:01:B0:45:10:F1:33:DC:74:18:87:87:05:28:83 Certificate issuer: /CN=A91AE3F2/serialNumber=FFE1B7A8729A0ECBBEC8B2FD9A97B74826CCDBC5 Certificate serial: 018F Authority key identifier: FF:E1:B7:A8:72:9A:0E:CB:BE:C8:B2:FD:9A:97:B7:48:26:CC:DB:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-G3qHKaDsu-yLL9mpe3SCbM28U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/EEA8968C461A11ED898DD14FC4F9AE02.roa Signing time: Mon 11 Nov 2024 01:55:07 +0000 ROA not before: Mon 11 Nov 2024 01:55:07 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150345 IP address blocks: 103.17.6.0/24 maxlen: 24 103.17.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/_-G3qHKaDsu-yLL9mpe3SCbM28U.crl rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/_-G3qHKaDsu-yLL9mpe3SCbM28U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-G3qHKaDsu-yLL9mpe3SCbM28U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE3F2/serialNumber=FFE1B7A8729A0ECBBEC8B2FD9A97B74826CCDBC5 Validity Not Before: Nov 11 01:55:07 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673163fb-69f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5d:44:93:a7:73:65:b0:fc:1d:a0:67:78:00: 36:74:1b:eb:4e:58:57:89:32:99:a7:39:7c:90:46: a9:64:b4:f0:40:c6:35:a8:2e:0a:e0:12:85:e2:3d: e3:9d:4c:c1:79:e7:b5:21:80:cb:33:5a:51:31:8b: 9e:42:f1:b3:96:e6:55:a7:e7:b3:ee:2c:ca:3d:d2: 2c:2c:a8:75:97:18:04:7c:9b:4b:06:5d:98:13:16: 91:c0:9c:de:11:90:b6:8e:b7:ad:9a:11:dc:12:04: cc:69:67:f8:eb:fc:61:22:a4:f0:ab:90:78:80:73: ea:9f:ef:98:81:0a:de:67:cf:0b:fc:8b:40:c5:2a: 46:da:91:72:da:76:a4:5f:c4:c1:6b:3c:ac:4f:4d: 03:68:c4:47:ee:86:d5:14:c3:b1:4f:6d:c1:be:64: 27:e6:a8:f1:57:96:be:51:ae:26:13:1e:77:f8:b8: 39:fe:a7:a3:ed:1a:b5:bb:b2:0e:05:91:b6:5b:e8: f0:82:79:f9:46:1f:fa:bc:fe:7d:9c:13:28:ee:7d: 9c:0a:db:3a:24:3f:b6:9a:de:58:54:92:74:91:12: 5f:03:22:00:65:b6:a1:7c:42:05:39:aa:96:5c:9d: cc:12:c5:19:dc:d9:de:ae:17:12:df:ec:aa:70:30: b4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:11:5B:28:0F:CB:01:B0:45:10:F1:33:DC:74:18:87:87:05:28:83 X509v3 Authority Key Identifier: keyid:FF:E1:B7:A8:72:9A:0E:CB:BE:C8:B2:FD:9A:97:B7:48:26:CC:DB:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/_-G3qHKaDsu-yLL9mpe3SCbM28U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-G3qHKaDsu-yLL9mpe3SCbM28U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/EEA8968C461A11ED898DD14FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.6.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:0b:e2:9a:c7:9d:a4:44:a8:77:77:79:4a:95:5a:a9:14:57: 2e:ab:74:9e:d5:5d:f8:67:4c:14:fb:bb:07:79:ad:3a:80:06: 54:8a:41:a9:b2:89:64:df:fc:08:07:d8:1f:50:89:69:df:3b: 4e:69:c6:76:c5:1a:cb:c1:a7:3f:16:23:a1:2f:90:c7:fa:32: eb:f3:03:5a:34:38:44:35:d8:46:83:8e:36:f0:5a:32:b2:1a: 75:27:68:19:f0:e3:65:78:00:88:f0:30:c4:a5:a1:92:fb:19: 28:73:d7:87:4b:c6:4b:be:0d:26:8c:4d:81:32:ac:10:ea:ee: b0:9e:be:f1:12:fe:b0:aa:84:49:c3:5a:3a:74:b8:17:9e:5d: 35:a8:65:2b:1a:11:29:7b:99:7a:e1:e4:82:63:f8:85:c2:9b: a7:42:63:4b:31:09:33:6c:42:4c:f0:c1:13:e0:76:10:03:02: 64:af:a7:b6:cd:c4:c2:2e:b1:45:e8:4c:cb:82:9c:f8:26:1f: c5:69:e5:0d:bd:47:45:fb:76:52:97:96:e0:b8:e2:08:c9:a0: c6:f2:7e:35:30:c2:6a:0c:71:1e:c4:6a:97:49:86:2d:b9:74: 29:fd:17:b0:bb:78:94:d0:74:87:3d:26:63:66:50:cf:e5:2a: 0d:70:d7:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUzRjIxMTAvBgNVBAUTKEZGRTFCN0E4NzI5QTBFQ0JCRUM4QjJGRDlBOTdCNzQ4 MjZDQ0RCQzUwHhcNMjQxMTExMDE1NTA3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMxNjNmYi02OWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA111Ek6dzZbD8HaBneAA2dBvrTlhXiTKZpzl8kEapZLTwQMY1qC4K4BKF4j3j nUzBeee1IYDLM1pRMYueQvGzluZVp+ez7izKPdIsLKh1lxgEfJtLBl2YExaRwJze EZC2jretmhHcEgTMaWf46/xhIqTwq5B4gHPqn++YgQreZ88L/ItAxSpG2pFy2nak X8TBazysT00DaMRH7obVFMOxT23BvmQn5qjxV5a+Ua4mEx53+Lg5/qej7Rq1u7IO BZG2W+jwgnn5Rh/6vP59nBMo7n2cCts6JD+2mt5YVJJ0kRJfAyIAZbahfEIFOaqW XJ3MEsUZ3NnerhcS3+yqcDC0TwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLwRWygP ywGwRRDxM9x0GIeHBSiDMB8GA1UdIwQYMBaAFP/ht6hymg7Lvsiy/ZqXt0gmzNvF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTNGMi84NkEwRkIyODQ2 MTYxMUVEOTJFQUFEMjBDNEY5QUUwMi9fLUczcUhLYURzdS15TEw5bXBlM1NDYk0y OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tRzNxSEthRHN1LXlMTDltcGUzU0NiTTI4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUUzRjIvODZBMEZCMjg0NjE2MTFFRDkyRUFBRDIwQzRGOUFFMDIvRUVBODk2OEM0 NjFBMTFFRDg5OEREMTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnEQYwDQYJKoZIhvcNAQELBQADggEBAGoL4prHnaREqHd3 eUqVWqkUVy6rdJ7VXfhnTBT7uwd5rTqABlSKQamyiWTf/AgH2B9QiWnfO05pxnbF GsvBpz8WI6EvkMf6MuvzA1o0OEQ12EaDjjbwWjKyGnUnaBnw42V4AIjwMMSloZL7 GShz14dLxku+DSaMTYEyrBDq7rCevvES/rCqhEnDWjp0uBeeXTWoZSsaESl7mXrh 5IJj+IXCm6dCY0sxCTNsQkzwwRPgdhADAmSvp7bNxMIusUXoTMuCnPgmH8Vp5Q29 R0X7dlKXluC44gjJoMbyfjUwwmoMcR7EapdJhi25dCn9F7C7eJTQdIc9JmNmUM/l Kg1w140= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org