$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEC2F/721B31D4963811ECB83C1682C4F9AE02/B843A2DE29B011ED8AB64660C4F9AE02.roa File: B843A2DE29B011ED8AB64660C4F9AE02.roa (raw, json) Hash identifier: FxAP/J/FPDNaLo9BONled54l0bbXYkJ639e/aSCdwDU= Subject key identifier: 6E:4A:17:F6:1A:A6:85:06:BE:0B:85:4B:3E:99:CC:17:76:87:81:EC Certificate issuer: /CN=A91BEC2F/serialNumber=F7A07F7A991C21A25CD39AB20ADE4FA3B5E05D15 Certificate serial: 030D Authority key identifier: F7:A0:7F:7A:99:1C:21:A2:5C:D3:9A:B2:0A:DE:4F:A3:B5:E0:5D:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/96B_epkcIaJc05qyCt5Po7XgXRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEC2F/721B31D4963811ECB83C1682C4F9AE02/B843A2DE29B011ED8AB64660C4F9AE02.roa Signing time: Sun 19 May 2024 03:37:35 +0000 ROA not before: Sun 19 May 2024 03:37:35 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 140321 IP address blocks: 103.149.168.0/23 maxlen: 24 2400:c720::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEC2F/721B31D4963811ECB83C1682C4F9AE02/96B_epkcIaJc05qyCt5Po7XgXRU.crl rsync://rpki.apnic.net/member_repository/A91BEC2F/721B31D4963811ECB83C1682C4F9AE02/96B_epkcIaJc05qyCt5Po7XgXRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/96B_epkcIaJc05qyCt5Po7XgXRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 781 (0x30d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEC2F/serialNumber=F7A07F7A991C21A25CD39AB20ADE4FA3B5E05D15 Validity Not Before: May 19 03:37:35 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664973ff-bb76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:91:d4:fa:da:c5:b4:81:ef:05:35:46:07:4b: 9f:86:c7:98:cd:fa:39:a9:07:1c:fc:b5:e3:0e:18: ca:80:10:e5:57:e9:8e:5d:59:06:2f:2a:2d:b7:91: 11:15:9f:be:54:d7:ce:9b:66:df:f9:be:22:06:62: a7:a4:85:84:c0:44:58:f9:b1:0b:df:ec:fb:12:fd: 4f:28:65:8b:b6:91:9a:58:60:62:61:2f:e8:4f:ef: 52:17:36:3a:7c:75:d3:9d:ec:51:35:1d:db:04:c1: b9:0d:19:af:3b:8a:f1:69:fc:c5:e9:67:7e:ce:b7: 8d:5b:30:3d:4a:1a:fb:af:b0:65:ea:99:b6:8c:79: 97:1a:7c:e2:a1:b4:1f:b0:da:0b:af:cd:47:09:48: 62:37:d8:f2:5a:04:56:44:43:cb:5c:cb:56:29:c7: 91:e6:30:50:8c:2e:3c:2c:0c:b6:45:3b:ef:75:cd: 74:1c:d5:87:25:88:d2:40:25:87:10:54:20:d4:f1: 15:2a:53:b0:f8:fa:68:23:25:7b:e9:fa:05:75:cc: 31:e6:b7:07:d7:7b:03:e0:43:b1:ba:82:64:38:c8: eb:40:c0:bf:67:43:d7:9e:d7:1b:0a:93:be:41:82: 40:ad:d0:a3:d8:0b:e4:a6:33:07:38:1c:e1:5b:e7: bd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4A:17:F6:1A:A6:85:06:BE:0B:85:4B:3E:99:CC:17:76:87:81:EC X509v3 Authority Key Identifier: keyid:F7:A0:7F:7A:99:1C:21:A2:5C:D3:9A:B2:0A:DE:4F:A3:B5:E0:5D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEC2F/721B31D4963811ECB83C1682C4F9AE02/96B_epkcIaJc05qyCt5Po7XgXRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/96B_epkcIaJc05qyCt5Po7XgXRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEC2F/721B31D4963811ECB83C1682C4F9AE02/B843A2DE29B011ED8AB64660C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.168.0/23 IPv6: 2400:c720::/32 Signature Algorithm: sha256WithRSAEncryption 63:2d:68:8e:d9:22:f4:83:a4:ba:0d:a9:fd:39:1d:e1:78:40: 29:0a:6f:a0:e3:ba:59:cb:92:8a:1c:be:64:ec:2a:57:04:bc: bb:5e:05:a1:c5:f9:2a:7b:13:59:9c:b6:53:a7:70:e6:a9:30: 11:4e:0d:08:45:a7:6d:0a:62:b8:c3:a1:16:50:f8:85:64:b7: b4:e9:24:12:96:1c:1d:4f:3a:e3:20:3b:c4:15:74:53:04:48: 5b:5b:91:5a:24:ed:38:00:27:65:17:bd:08:f2:cf:f5:a7:43: 14:42:ad:e9:4b:c5:b3:83:66:f9:f5:1a:0e:1b:fd:fc:53:fc: c7:df:0a:7c:69:fe:53:a9:be:78:5f:31:e3:55:42:ff:0c:f4: 1c:7c:2f:0e:60:b6:c9:1a:98:70:ae:9a:52:d1:08:c1:0c:3f: 5c:db:60:56:7d:1f:0d:4e:11:b4:2e:df:e7:bd:bd:3f:14:62: 27:ed:bd:94:e9:08:a2:ec:e5:a3:e6:4b:4b:3c:e1:e3:7e:58: 0d:27:d2:be:7c:33:1f:48:db:ff:76:7b:c4:c3:cf:cb:6c:20: 7a:51:0f:7e:21:25:2e:14:87:5b:39:06:6d:22:1b:7f:c9:a8: 59:18:15:ed:2e:84:1a:2d:42:06:33:4b:ec:2a:5a:6e:aa:19: 0a:49:35:b9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVDMkYxMTAvBgNVBAUTKEY3QTA3RjdBOTkxQzIxQTI1Q0QzOUFCMjBBREU0RkEz QjVFMDVEMTUwHhcNMjQwNTE5MDMzNzM1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ5NzNmZi1iYjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25HU+trFtIHvBTVGB0ufhseYzfo5qQcc/LXjDhjKgBDlV+mOXVkGLyott5ER FZ++VNfOm2bf+b4iBmKnpIWEwERY+bEL3+z7Ev1PKGWLtpGaWGBiYS/oT+9SFzY6 fHXTnexRNR3bBMG5DRmvO4rxafzF6Wd+zreNWzA9Shr7r7Bl6pm2jHmXGnziobQf sNoLr81HCUhiN9jyWgRWREPLXMtWKceR5jBQjC48LAy2RTvvdc10HNWHJYjSQCWH EFQg1PEVKlOw+PpoIyV76foFdcwx5rcH13sD4EOxuoJkOMjrQMC/Z0PXntcbCpO+ QYJArdCj2AvkpjMHOBzhW+e92QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG5KF/Ya poUGvguFSz6ZzBd2h4HsMB8GA1UdIwQYMBaAFPegf3qZHCGiXNOasgreT6O14F0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUMyRi83MjFCMzFENDk2 MzgxMUVDQjgzQzE2ODJDNEY5QUUwMi85NkJfZXBrY0lhSmMwNXF5Q3Q1UG83WGdY UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk2Ql9lcGtjSWFKYzA1cXlDdDVQbzdYZ1hSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVDMkYvNzIxQjMxRDQ5NjM4MTFFQ0I4M0MxNjgyQzRGOUFFMDIvQjg0M0EyREUy OUIwMTFFRDhBQjY0NjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnlagwDQQCAAIwBwMFACQAxyAwDQYJKoZIhvcNAQELBQAD ggEBAGMtaI7ZIvSDpLoNqf05HeF4QCkKb6DjulnLkoocvmTsKlcEvLteBaHF+Sp7 E1mctlOncOapMBFODQhFp20KYrjDoRZQ+IVkt7TpJBKWHB1POuMgO8QVdFMESFtb kVok7TgAJ2UXvQjyz/WnQxRCrelLxbODZvn1Gg4b/fxT/MffCnxp/lOpvnhfMeNV Qv8M9Bx8Lw5gtskamHCumlLRCMEMP1zbYFZ9Hw1OEbQu3+e9vT8UYiftvZTpCKLs 5aPmS0s84eN+WA0n0r58Mx9I2/92e8TDz8tsIHpRD34hJS4Uh1s5Bm0iG3/JqFkY Fe0uhBotQgYzS+wqWm6qGQpJNbk= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org