$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/660823EABF3C11EAAF328582C4F9AE02.roa File: 660823EABF3C11EAAF328582C4F9AE02.roa (raw, json) Hash identifier: s8Xhw4PyQYgO1skf0coySFdXobAmqcRIwbRYll8glnA= Subject key identifier: 40:05:B5:1A:5A:38:4E:6F:50:45:AF:C9:CB:2B:92:54:78:F5:02:0B Certificate issuer: /CN=A91DEA56/serialNumber=BBE49FCB41F5026A35BF6C93B91FDFF3C88C736E Certificate serial: 0791 Authority key identifier: BB:E4:9F:CB:41:F5:02:6A:35:BF:6C:93:B9:1F:DF:F3:C8:8C:73:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-Sfy0H1Amo1v2yTuR_f88iMc24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/660823EABF3C11EAAF328582C4F9AE02.roa Signing time: Tue 02 Jan 2024 21:59:43 +0000 ROA not before: Tue 02 Jan 2024 21:59:43 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 17819 IP address blocks: 103.23.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/u-Sfy0H1Amo1v2yTuR_f88iMc24.crl rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/u-Sfy0H1Amo1v2yTuR_f88iMc24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-Sfy0H1Amo1v2yTuR_f88iMc24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1937 (0x791) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEA56/serialNumber=BBE49FCB41F5026A35BF6C93B91FDFF3C88C736E Validity Not Before: Jan 2 21:59:43 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6594874f-5921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ca:72:40:12:5e:99:cf:00:5a:32:6e:40:78: b0:5e:3b:ba:de:0d:fe:71:e9:9f:04:63:f7:52:ea: f0:47:f4:20:c2:fb:fc:85:7b:c1:af:11:f2:9c:a7: 43:58:42:60:e9:ac:b4:c3:8f:f1:51:a1:30:b4:9a: 4c:e6:e9:6a:86:4f:41:84:cc:c2:55:f6:e3:e6:3f: 66:98:5e:68:05:41:45:a8:b6:ee:98:24:72:fc:00: f3:ff:a5:94:5d:6f:1e:6b:e2:61:01:20:a3:9a:44: a9:79:16:4a:46:bd:26:a4:f3:34:58:a8:d4:06:93: e0:71:ae:35:c3:76:b7:92:a6:00:3b:76:7c:8d:42: 6a:15:cc:71:b5:21:b5:9e:e7:64:8b:89:2a:65:54: d2:c7:a5:47:f5:7b:40:89:d6:0c:d8:5c:48:77:05: 67:e2:bf:c6:64:f3:b8:1f:e8:87:90:42:52:70:e6: d3:1f:26:c1:29:69:d7:31:e6:c2:72:77:71:8a:94: 88:2b:04:6b:83:cf:89:a3:bd:5f:aa:e8:44:a5:6a: ae:10:92:10:35:3b:f0:c3:0e:63:07:84:ad:3d:56: 2d:7e:42:08:06:0e:c0:de:2e:f3:5a:48:eb:9e:ee: a5:ad:4a:46:6e:1f:8a:26:16:08:1f:a8:6c:7b:69: ad:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:05:B5:1A:5A:38:4E:6F:50:45:AF:C9:CB:2B:92:54:78:F5:02:0B X509v3 Authority Key Identifier: keyid:BB:E4:9F:CB:41:F5:02:6A:35:BF:6C:93:B9:1F:DF:F3:C8:8C:73:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/u-Sfy0H1Amo1v2yTuR_f88iMc24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-Sfy0H1Amo1v2yTuR_f88iMc24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/660823EABF3C11EAAF328582C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.221.0/24 Signature Algorithm: sha256WithRSAEncryption 03:54:70:a0:1b:fd:5a:e8:ac:22:5d:ed:f1:bf:09:6f:a1:bd: dd:87:55:8c:00:05:22:05:97:c9:6f:6d:63:09:3d:5b:69:ad: a4:e6:57:31:2f:45:dc:75:bf:e8:80:ab:03:3e:ce:8d:06:ac: 2a:f1:4e:23:fe:5e:39:bb:53:41:f8:c7:3f:4e:ee:50:af:bc: 3e:99:f2:10:8e:95:4c:b3:c2:d6:35:1b:1d:32:c0:1a:89:c9: 8e:fc:9d:48:c5:7b:a1:12:d6:d3:93:e6:7d:70:f6:e3:a6:eb: 5d:a1:fc:d1:c7:b9:6b:0b:21:43:ae:3c:e4:d0:30:5b:53:8b: 70:d0:9a:92:29:10:d0:20:6b:e2:45:d3:58:6b:34:e1:42:ad: d6:04:11:23:04:34:7f:54:58:99:dd:38:53:d6:eb:87:c9:41: e6:d2:93:0a:a5:5d:19:18:bb:a9:c4:78:b6:bf:19:c2:f2:b8: 29:b9:bc:22:33:7f:bc:ef:f5:ea:4a:42:27:f4:38:82:6b:f8: 68:e7:1b:13:b8:4f:74:bc:b5:95:10:c1:06:c2:64:03:ec:9a: ba:b4:be:8e:c9:17:aa:6f:ad:42:5e:78:52:09:f0:84:8e:d2: ec:08:b5:b1:d3:0f:14:6a:57:5c:15:b5:a4:ad:80:0e:29:f0: 14:36:6c:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVBNTYxMTAvBgNVBAUTKEJCRTQ5RkNCNDFGNTAyNkEzNUJGNkM5M0I5MUZERkYz Qzg4QzczNkUwHhcNMjQwMTAyMjE1OTQzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0ODc0Zi01OTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMpyQBJemc8AWjJuQHiwXju63g3+cemfBGP3UurwR/Qgwvv8hXvBrxHynKdD WEJg6ay0w4/xUaEwtJpM5ulqhk9BhMzCVfbj5j9mmF5oBUFFqLbumCRy/ADz/6WU XW8ea+JhASCjmkSpeRZKRr0mpPM0WKjUBpPgca41w3a3kqYAO3Z8jUJqFcxxtSG1 nudki4kqZVTSx6VH9XtAidYM2FxIdwVn4r/GZPO4H+iHkEJScObTHybBKWnXMebC cndxipSIKwRrg8+Jo71fquhEpWquEJIQNTvwww5jB4StPVYtfkIIBg7A3i7zWkjr nu6lrUpGbh+KJhYIH6hse2mt7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEAFtRpa OE5vUEWvycsrklR49QILMB8GA1UdIwQYMBaAFLvkn8tB9QJqNb9sk7kf3/PIjHNu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUE1Ni82ODQ2NjdGNEJG M0ExMUVBOTRBRTRFN0NDNEY5QUUwMi91LVNmeTBIMUFtbzF2MnlUdVJfZjg4aU1j MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtU2Z5MEgxQW1vMXYyeVR1Ul9mODhpTWMyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVBNTYvNjg0NjY3RjRCRjNBMTFFQTk0QUU0RTdDQzRGOUFFMDIvNjYwODIzRUFC RjNDMTFFQUFGMzI4NTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnF90wDQYJKoZIhvcNAQELBQADggEBAANUcKAb/VrorCJd 7fG/CW+hvd2HVYwABSIFl8lvbWMJPVtpraTmVzEvRdx1v+iAqwM+zo0GrCrxTiP+ Xjm7U0H4xz9O7lCvvD6Z8hCOlUyzwtY1Gx0ywBqJyY78nUjFe6ES1tOT5n1w9uOm 612h/NHHuWsLIUOuPOTQMFtTi3DQmpIpENAga+JF01hrNOFCrdYEESMENH9UWJnd OFPW64fJQebSkwqlXRkYu6nEeLa/GcLyuCm5vCIzf7zv9epKQif0OIJr+GjnGxO4 T3S8tZUQwQbCZAPsmrq0vo7JF6pvrUJeeFIJ8ISO0uwItbHTDxRqV1wVtaStgA4p 8BQ2bMA= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:13 2024 by rpki-client on console-fra.rpki-client.org