$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/C8FB0DB8616D11EB928F0250C4F9AE02.roa File: C8FB0DB8616D11EB928F0250C4F9AE02.roa (raw, json) Hash identifier: wvBpCoANMp6HM7/0VPGZvZaF4FC0qm23TRsKibzPLZk= Subject key identifier: 4D:68:35:C2:F4:0C:00:1F:30:CB:50:2C:14:21:D7:E2:7D:47:63:2F Certificate issuer: /CN=A91B3062/serialNumber=E44659EA6FDCD343C6C1E7FFD014A5B07818968B Certificate serial: 064E Authority key identifier: E4:46:59:EA:6F:DC:D3:43:C6:C1:E7:FF:D0:14:A5:B0:78:18:96:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/C8FB0DB8616D11EB928F0250C4F9AE02.roa Signing time: Sat 02 Nov 2024 22:00:58 +0000 ROA not before: Sat 02 Nov 2024 22:00:58 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141231 IP address blocks: 103.156.222.0/23 maxlen: 23 103.156.222.0/24 maxlen: 24 103.156.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.crl rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1614 (0x64e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3062/serialNumber=E44659EA6FDCD343C6C1E7FFD014A5B07818968B Validity Not Before: Nov 2 22:00:58 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726a11a-6f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:12:9b:78:5c:b8:99:33:a1:f0:ed:1f:49:5a: 43:c8:b1:4a:84:20:2f:40:f6:29:92:0a:5c:92:6b: e2:63:64:7c:72:42:5c:37:b5:82:bc:9f:8d:b7:75: 76:26:0a:19:6f:74:41:ce:e8:5d:07:ad:f3:ac:0f: a1:02:3f:32:22:21:00:b0:9b:6b:15:8a:97:28:af: fe:40:21:94:69:e6:be:f9:d7:c1:16:78:17:cf:f5: 08:c7:b7:4b:02:1f:7c:55:eb:b9:5f:7d:40:67:14: a3:3a:06:6d:c6:49:e5:59:33:3f:22:24:0b:7c:fa: 71:9b:05:fa:46:af:f4:1e:20:22:6d:41:a5:89:b4: f5:5e:39:d0:20:86:ab:b9:03:e8:f7:53:3a:69:70: be:7a:fd:dd:cc:bc:71:33:c2:a5:36:61:b5:63:cb: dc:2d:f8:7a:26:2e:88:cc:de:59:ad:29:88:f6:52: c8:9c:d1:c1:0c:79:e9:a7:b0:1d:19:41:5e:9e:b2: 83:24:61:97:3f:1e:6a:50:6f:5a:64:93:15:13:0f: 96:54:ae:a8:e2:a1:2d:52:1e:e0:ea:7d:aa:58:c0: e8:8e:80:98:9a:d3:22:92:45:4d:7f:e7:cc:8b:ee: dd:78:f2:3e:94:68:9c:ab:86:a2:29:54:bb:ae:94: f7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:68:35:C2:F4:0C:00:1F:30:CB:50:2C:14:21:D7:E2:7D:47:63:2F X509v3 Authority Key Identifier: keyid:E4:46:59:EA:6F:DC:D3:43:C6:C1:E7:FF:D0:14:A5:B0:78:18:96:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/C8FB0DB8616D11EB928F0250C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.222.0/23 Signature Algorithm: sha256WithRSAEncryption 79:48:52:53:58:f5:89:a9:52:56:53:7e:40:47:b3:9e:a3:0e: 75:2e:ef:a2:f5:ab:4a:23:91:38:47:1f:1b:f9:0b:19:22:11: 06:1a:ed:73:ea:22:7c:59:23:5e:7b:ee:11:41:50:26:04:83: f2:38:4d:58:8c:6d:1b:3d:3e:df:be:7e:5b:fc:5a:20:98:f2: 02:a7:4f:9b:83:f3:c8:b9:d6:b6:96:34:ec:2b:99:11:47:15: 1e:a2:44:fd:1b:00:32:97:65:12:36:13:ab:76:64:eb:ec:26: b8:8c:01:8d:e0:fb:57:eb:53:77:91:8e:8a:95:a3:67:9a:e3: 9e:ff:ce:ea:0b:56:ef:3e:6b:63:ad:99:40:45:9a:ed:2d:26: 90:90:b8:e3:41:22:76:d1:a9:40:65:f1:a8:ad:8b:82:79:46: 94:36:31:c2:39:1f:e2:f7:a7:33:bb:29:aa:40:c4:04:66:30: 7f:4f:b0:49:43:18:29:3f:f5:b6:49:bc:c0:57:25:d8:05:32: 91:0a:61:59:69:45:b9:3d:73:67:fa:01:09:f7:a5:26:12:dd: ee:cd:bb:b9:e4:e5:62:63:86:53:84:50:24:c9:c7:d7:50:a9: b2:26:73:a5:e1:c7:df:8b:c4:db:72:cd:11:6f:48:ad:7b:d8: 54:25:13:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMwNjIxMTAvBgNVBAUTKEU0NDY1OUVBNkZEQ0QzNDNDNkMxRTdGRkQwMTRBNUIw NzgxODk2OEIwHhcNMjQxMTAyMjIwMDU4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YTExYS02Zjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RKbeFy4mTOh8O0fSVpDyLFKhCAvQPYpkgpckmviY2R8ckJcN7WCvJ+Nt3V2 JgoZb3RBzuhdB63zrA+hAj8yIiEAsJtrFYqXKK/+QCGUaea++dfBFngXz/UIx7dL Ah98Veu5X31AZxSjOgZtxknlWTM/IiQLfPpxmwX6Rq/0HiAibUGlibT1XjnQIIar uQPo91M6aXC+ev3dzLxxM8KlNmG1Y8vcLfh6Ji6IzN5ZrSmI9lLInNHBDHnpp7Ad GUFenrKDJGGXPx5qUG9aZJMVEw+WVK6o4qEtUh7g6n2qWMDojoCYmtMikkVNf+fM i+7dePI+lGicq4aiKVS7rpT3+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFE1oNcL0 DAAfMMtQLBQh1+J9R2MvMB8GA1UdIwQYMBaAFORGWepv3NNDxsHn/9AUpbB4GJaL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzA2Mi85ODgwODlFNDYx NkIxMUVCQTY0Nzg3NEFDNEY5QUUwMi81RVpaNm1fYzAwUEd3ZWZfMEJTbHNIZ1ls b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVFWlo2bV9jMDBQR3dlZl8wQlNsc0hnWWxvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjMwNjIvOTg4MDg5RTQ2MTZCMTFFQkE2NDc4NzRBQzRGOUFFMDIvQzhGQjBEQjg2 MTZEMTFFQjkyOEYwMjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnN4wDQYJKoZIhvcNAQELBQADggEBAHlIUlNY9YmpUlZT fkBHs56jDnUu76L1q0ojkThHHxv5CxkiEQYa7XPqInxZI1577hFBUCYEg/I4TViM bRs9Pt++flv8WiCY8gKnT5uD88i51raWNOwrmRFHFR6iRP0bADKXZRI2E6t2ZOvs JriMAY3g+1frU3eRjoqVo2ea457/zuoLVu8+a2OtmUBFmu0tJpCQuONBInbRqUBl 8aiti4J5RpQ2McI5H+L3pzO7KapAxARmMH9PsElDGCk/9bZJvMBXJdgFMpEKYVlp Rbk9c2f6AQn3pSYS3e7Nu7nk5WJjhlOEUCTJx9dQqbImc6Xhx9+LxNtyzRFvSK17 2FQlE/g= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:33 2024 by rpki-client on console-fra.rpki-client.org