$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa File: FCC3542E445E11EBB692887EC4F9AE02.roa (raw, json) Hash identifier: nPTnILQ/bgyzA6oyqhNMAYL/1YXBk3jme7zHlP/uFSw= Subject key identifier: 21:F6:AF:F9:E8:6E:A6:89:8D:09:2B:B6:9E:CB:99:10:F0:70:8D:BA Certificate issuer: /CN=A91E0435/serialNumber=42911B109D46E88661FA85616C812803C5AB3C64 Certificate serial: 05F1 Authority key identifier: 42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa Signing time: Wed 06 Dec 2023 23:31:16 +0000 ROA not before: Wed 06 Dec 2023 23:31:16 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141456 IP address blocks: 103.160.8.0/24 maxlen: 24 103.160.20.0/24 maxlen: 24 2001:df1:3a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.crl rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1521 (0x5f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0435/serialNumber=42911B109D46E88661FA85616C812803C5AB3C64 Validity Not Before: Dec 6 23:31:16 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65710443-08b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:46:80:bf:4b:f7:e9:ec:70:ca:f6:15:fa:49: 60:c3:cb:fe:34:a5:0b:b0:64:a1:50:59:bb:1e:36: 5f:98:cb:10:3a:a7:ed:72:25:28:33:1d:ea:1f:1e: 0a:b8:3c:af:af:c7:66:c1:17:31:82:29:87:52:fa: e5:60:e7:20:b0:ce:fd:04:a7:c4:3f:76:e6:5e:91: c7:ff:da:2c:a2:18:dd:eb:96:74:bf:64:ac:97:2e: 38:65:e5:fe:86:05:29:65:3a:6b:5f:a2:70:1f:6b: 9a:3b:1a:fa:53:63:7a:19:55:db:2b:6d:41:80:8e: fa:4e:5d:a8:aa:80:eb:f1:39:68:39:7d:8e:87:c7: 2a:2f:f5:ff:6c:20:86:52:fd:9a:5c:9f:a3:72:76: f5:97:1c:5f:41:01:3a:d5:f9:0d:46:f9:08:61:b1: d9:55:46:5b:9f:28:b2:e7:7a:7f:f4:16:c6:99:e4: 18:67:d5:08:dd:1d:44:96:c8:e9:65:4c:53:af:c1: 80:ba:8c:ed:4d:24:36:ab:95:70:2b:f8:1c:fa:c3: 80:d3:14:0f:66:d0:a4:97:58:d8:61:ab:aa:a1:d4: ab:13:d1:d9:c5:37:e8:bd:60:7b:27:ae:e5:42:33: 74:c0:23:fc:5b:e1:37:67:b9:f4:0b:2f:30:dd:24: 5d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F6:AF:F9:E8:6E:A6:89:8D:09:2B:B6:9E:CB:99:10:F0:70:8D:BA X509v3 Authority Key Identifier: keyid:42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.8.0/24 103.160.20.0/24 IPv6: 2001:df1:3a40::/48 Signature Algorithm: sha256WithRSAEncryption 10:55:9f:e6:f1:20:c9:6f:6b:ae:bb:b6:5b:db:d5:db:f3:74: 1f:a5:13:b5:4b:3f:c4:0a:51:18:f8:f5:9b:e0:ad:d4:ce:51: e6:61:0f:10:f9:40:45:f7:1c:28:89:89:66:9e:c5:0c:9b:d9: ac:51:7b:52:55:8a:d4:db:58:08:15:89:f4:13:17:e5:e6:e4: 90:64:8c:64:28:5e:9d:0f:37:64:c8:6f:72:f4:13:7e:0f:bc: 3c:94:2c:a2:99:85:9d:d1:16:d7:32:df:8e:37:14:7e:5b:32: d4:eb:4d:c0:0c:7c:34:34:65:72:c3:dd:fa:97:ad:9a:1f:ba: 25:67:59:ba:75:36:6d:f2:44:88:f4:89:b4:e5:d7:d7:ea:eb: 69:63:f9:af:7c:9e:18:51:41:4d:f5:ea:23:5f:fc:c1:c7:1f: c3:fc:e0:b5:c0:15:d0:b3:bc:94:93:41:0f:e8:9a:5a:bd:1a: b4:fc:dd:25:f6:4b:d6:6e:3f:db:a7:7f:80:2a:dc:16:90:55: c7:7a:6b:fe:08:c2:aa:a9:45:ba:93:aa:c0:ff:3b:e6:7a:6a: 8b:0b:7f:7c:e3:e9:4f:1a:bf:72:65:1c:10:53:76:bc:68:7a: 8d:a7:5c:d0:db:04:7a:87:fa:b9:b9:c6:9c:7a:8f:81:62:62: 48:90:ff:0f -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0MzUxMTAvBgNVBAUTKDQyOTExQjEwOUQ0NkU4ODY2MUZBODU2MTZDODEyODAz QzVBQjNDNjQwHhcNMjMxMjA2MjMzMTE2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcxMDQ0My0wOGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUaAv0v36exwyvYV+klgw8v+NKULsGShUFm7HjZfmMsQOqftciUoMx3qHx4K uDyvr8dmwRcxgimHUvrlYOcgsM79BKfEP3bmXpHH/9osohjd65Z0v2Ssly44ZeX+ hgUpZTprX6JwH2uaOxr6U2N6GVXbK21BgI76Tl2oqoDr8TloOX2Oh8cqL/X/bCCG Uv2aXJ+jcnb1lxxfQQE61fkNRvkIYbHZVUZbnyiy53p/9BbGmeQYZ9UI3R1Elsjp ZUxTr8GAuoztTSQ2q5VwK/gc+sOA0xQPZtCkl1jYYauqodSrE9HZxTfovWB7J67l QjN0wCP8W+E3Z7n0Cy8w3SRdwwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFCH2r/no bqaJjQkrtp7LmRDwcI26MB8GA1UdIwQYMBaAFEKRGxCdRuiGYfqFYWyBKAPFqzxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDQzNS9EMjg4NUJDNDQ0 NUQxMUVCQTUxNzQ1N0VDNEY5QUUwMi9RcEViRUoxRzZJWmgtb1ZoYklFb0E4V3JQ R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwRWJFSjFHNklaaC1vVmhiSUVvQThXclBHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA0MzUvRDI4ODVCQzQ0NDVEMTFFQkE1MTc0NTdFQzRGOUFFMDIvRkNDMzU0MkU0 NDVFMTFFQkI2OTI4ODdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnoAgDBABnoBQwDwQCAAIwCQMHACABDfE6QDANBgkqhkiG 9w0BAQsFAAOCAQEAEFWf5vEgyW9rrru2W9vV2/N0H6UTtUs/xApRGPj1m+Ct1M5R 5mEPEPlARfccKImJZp7FDJvZrFF7UlWK1NtYCBWJ9BMX5ebkkGSMZChenQ83ZMhv cvQTfg+8PJQsopmFndEW1zLfjjcUflsy1OtNwAx8NDRlcsPd+petmh+6JWdZunU2 bfJEiPSJtOXX1+rraWP5r3yeGFFBTfXqI1/8wccfw/zgtcAV0LO8lJNBD+iaWr0a tPzdJfZL1m4/26d/gCrcFpBVx3pr/gjCqqlFupOqwP875npqiwt/fOPpTxq/cmUc EFN2vGh6jadc0NsEeof6ubnGnHqPgWJiSJD/Dw== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:35 2024 by rpki-client on console-fra.rpki-client.org