$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa File: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (raw, json) Hash identifier: UdehkLAzVXoFe5wUis48zru/UMqEMsZcDt54OS7NI9c= Subject key identifier: F0:D9:EC:0F:91:5C:66:FB:14:0F:21:D2:CD:2E:32:8E:E4:E3:E7:FC Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0D2A Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa Signing time: Wed 30 Oct 2024 18:16:27 +0000 ROA not before: Wed 30 Oct 2024 18:16:27 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139604 IP address blocks: 103.142.80.0/23 maxlen: 24 2001:df1:3680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:57:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3370 (0xd2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Oct 30 18:16:27 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=672277fb-918f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:26:68:ab:47:a1:15:97:ec:38:b7:b5:9a:ab: 61:6d:75:b7:ca:1c:54:cf:25:00:10:2c:5e:48:ac: df:89:43:d9:32:bb:94:de:38:a0:fd:9a:f3:90:0a: fc:99:d1:df:38:a9:36:c5:6b:94:ce:ec:f8:49:41: 30:cf:e1:f0:4d:62:bc:32:f8:79:25:db:71:63:1e: aa:19:fc:9a:c8:4a:4e:ed:26:b8:0f:eb:81:ba:ba: d6:3f:04:2e:af:4c:6d:c7:a6:99:85:42:9e:0c:b6: 49:41:28:0c:2b:fa:dc:ae:51:33:44:50:53:8e:2d: 30:58:1c:74:23:60:03:2d:f5:17:25:49:7b:da:fa: 64:b5:74:d6:f7:de:fa:20:e3:67:55:db:73:52:cd: 73:58:c4:ab:66:50:69:55:eb:17:ab:2f:18:f5:c6: fb:56:ec:3b:bd:61:48:65:69:2f:f8:fe:69:43:a9: 5f:1f:f5:b0:b9:0e:e2:ee:d6:59:93:cf:7d:06:e7: c8:05:ba:aa:84:3c:94:3f:43:0d:63:be:6d:94:49: e3:68:4d:b8:88:d6:ac:f6:dc:4f:ff:b8:f7:47:65: ff:54:52:21:68:b5:64:d6:90:79:c3:bc:6c:e9:82: 0d:1f:7b:14:24:bd:ea:c6:ae:35:29:9d:7b:99:06: 88:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:D9:EC:0F:91:5C:66:FB:14:0F:21:D2:CD:2E:32:8E:E4:E3:E7:FC X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.80.0/23 IPv6: 2001:df1:3680::/48 Signature Algorithm: sha256WithRSAEncryption a8:d6:4a:7e:4b:32:b2:34:10:5c:ee:96:56:43:a7:93:cf:51: 15:c8:9f:fc:04:4e:b1:c6:11:e5:bf:cd:3a:6a:8f:fe:cf:2a: 64:3b:c0:69:8e:5d:c0:ea:60:d2:e5:19:03:02:a3:43:82:79: ac:e2:f0:08:37:21:65:3f:60:8d:18:21:f3:7b:44:0e:64:70: 79:ae:bd:42:a6:96:e4:31:6d:8d:ee:bd:ee:1e:00:3c:49:20: c1:a4:0a:38:ad:e6:d4:93:ea:d9:06:1e:45:12:ca:ff:37:6a: a3:0e:89:bb:87:d1:17:44:95:0d:0a:28:75:63:cb:f4:44:76: 5d:48:7d:6f:19:8d:c8:b6:d2:b4:2f:5d:ed:56:74:45:81:61: e1:5b:64:82:35:09:67:c2:5f:67:36:63:5e:6c:a3:39:a1:76: cb:8d:0d:1a:e0:8c:85:19:e6:7d:e1:a6:22:85:3e:a7:f4:06: a7:ad:87:9e:6b:66:f0:3c:27:cf:fa:61:f9:2f:20:aa:7b:07: 01:4d:7b:36:b2:8c:b8:13:3e:5e:0c:1c:8f:d1:82:f1:cf:af: d1:fb:3f:44:be:56:71:bc:45:5b:67:0a:68:78:e2:d1:58:bb: 57:b0:6e:bb:1e:9a:e0:fc:ed:af:24:f5:6f:3c:86:8d:93:52: 17:5c:15:83 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjQxMDMwMTgxNjI3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIyNzdmYi05MThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCZoq0ehFZfsOLe1mqthbXW3yhxUzyUAECxeSKzfiUPZMruU3jig/ZrzkAr8 mdHfOKk2xWuUzuz4SUEwz+HwTWK8Mvh5JdtxYx6qGfyayEpO7Sa4D+uBurrWPwQu r0xtx6aZhUKeDLZJQSgMK/rcrlEzRFBTji0wWBx0I2ADLfUXJUl72vpktXTW9976 IONnVdtzUs1zWMSrZlBpVesXqy8Y9cb7Vuw7vWFIZWkv+P5pQ6lfH/WwuQ7i7tZZ k899BufIBbqqhDyUP0MNY75tlEnjaE24iNas9txP/7j3R2X/VFIhaLVk1pB5w7xs 6YINH3sUJL3qxq41KZ17mQaINQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPDZ7A+R XGb7FA8h0s0uMo7k4+f8MB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZCRUYvNEVBODY2QzRDNDQyMTFFOTk0NzdFMjFGQzRGOUFFMDIvRkVCRDZDNjJD NEI1MTFFOUI3RDUzQTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjlAwDwQCAAIwCQMHACABDfE2gDANBgkqhkiG9w0BAQsF AAOCAQEAqNZKfksysjQQXO6WVkOnk89RFcif/AROscYR5b/NOmqP/s8qZDvAaY5d wOpg0uUZAwKjQ4J5rOLwCDchZT9gjRgh83tEDmRwea69QqaW5DFtje697h4APEkg waQKOK3m1JPq2QYeRRLK/zdqow6Ju4fRF0SVDQoodWPL9ER2XUh9bxmNyLbStC9d 7VZ0RYFh4VtkgjUJZ8JfZzZjXmyjOaF2y40NGuCMhRnmfeGmIoU+p/QGp62Hnmtm 8Dwnz/ph+S8gqnsHAU17NrKMuBM+Xgwcj9GC8c+v0fs/RL5WcbxFW2cKaHji0Vi7 V7Buux6a4PztryT1bzyGjZNSF1wVgw== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:21 2024 by rpki-client on console-ams.rpki-client.org