$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/FE79EA9A543C11ED972CDD2FC4F9AE02.roa File: FE79EA9A543C11ED972CDD2FC4F9AE02.roa (raw, json) Hash identifier: L6lJLX0FjwInwpLbI5Yc8Hu+Qbrh2Ou9yZKgLUdQEws= Subject key identifier: 2B:4F:94:A9:3A:CD:43:30:86:28:7C:B2:71:75:C4:41:40:EF:AD:51 Certificate issuer: /CN=A91E7FB1/serialNumber=E8CCDCBFBD28D71190E8937F3DAA5958FD481541 Certificate serial: C0 Authority key identifier: E8:CC:DC:BF:BD:28:D7:11:90:E8:93:7F:3D:AA:59:58:FD:48:15:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Mzcv70o1xGQ6JN_PapZWP1IFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/FE79EA9A543C11ED972CDD2FC4F9AE02.roa Signing time: Sun 29 Oct 2023 04:15:50 +0000 ROA not before: Sun 29 Oct 2023 04:15:50 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150384 IP address blocks: 103.24.68.0/23 maxlen: 23 103.24.68.0/24 maxlen: 24 103.24.69.0/24 maxlen: 24 2001:df1:6f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/6Mzcv70o1xGQ6JN_PapZWP1IFUE.crl rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/6Mzcv70o1xGQ6JN_PapZWP1IFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Mzcv70o1xGQ6JN_PapZWP1IFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7FB1/serialNumber=E8CCDCBFBD28D71190E8937F3DAA5958FD481541 Validity Not Before: Oct 29 04:15:50 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653ddc76-a867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:88:1f:ee:6e:1c:64:c3:2f:f5:72:52:b2:77: 6a:b8:09:7a:b3:ef:55:90:a9:23:a2:6c:ed:aa:48: e0:c3:65:f3:05:8d:a2:11:bc:fe:ec:bd:e1:28:a9: 9f:74:36:4c:18:f4:d9:e4:99:a8:ba:cb:af:95:da: 60:0d:41:5d:8e:16:9e:92:5d:32:a1:88:6f:81:1b: fb:a2:24:86:86:b2:6e:df:96:67:1e:85:9d:8d:52: 6d:ea:56:6a:a9:a2:fb:44:06:b8:71:28:91:95:be: 21:5b:4d:e9:a0:92:56:05:7c:79:69:5c:35:08:9d: bc:a0:b2:72:da:a5:ba:62:89:e2:ba:ac:2f:11:c1: d1:d3:91:74:56:5f:27:97:6f:3a:98:4c:82:9e:88: 41:81:ac:98:bd:74:ef:89:f3:ff:bf:3e:50:40:6b: 66:7d:e3:9e:8c:2c:3c:ad:14:61:67:43:4a:f2:60: 75:a2:af:49:82:a4:c9:ca:50:74:05:54:02:1e:08: d7:9f:57:5b:c5:1d:d7:8f:7f:93:fd:1d:93:ec:47: 03:a2:3d:e5:68:8d:10:ac:8a:88:8d:04:1f:0b:50: a7:ca:aa:07:c9:df:aa:61:a2:93:17:45:f8:21:63: 3f:c0:70:39:d4:4b:ea:1d:4e:b7:23:c7:b0:e5:5a: 8a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4F:94:A9:3A:CD:43:30:86:28:7C:B2:71:75:C4:41:40:EF:AD:51 X509v3 Authority Key Identifier: keyid:E8:CC:DC:BF:BD:28:D7:11:90:E8:93:7F:3D:AA:59:58:FD:48:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/6Mzcv70o1xGQ6JN_PapZWP1IFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Mzcv70o1xGQ6JN_PapZWP1IFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/FE79EA9A543C11ED972CDD2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.68.0/23 IPv6: 2001:df1:6f40::/48 Signature Algorithm: sha256WithRSAEncryption 1d:3e:70:eb:55:a7:d6:c5:94:09:ff:6e:1c:65:86:83:34:b9: a6:70:8b:4e:8a:30:b8:d7:cd:10:3e:6c:d1:93:82:ef:ff:40: dd:00:76:08:1f:85:56:42:ac:02:ad:a6:da:9b:e0:64:05:fd: 02:72:7f:a4:07:38:2a:78:c0:aa:40:a0:85:53:90:e4:71:99: 2a:57:6f:8b:8f:9e:05:b9:56:93:d8:b1:06:cd:51:03:94:d7: 93:c0:28:24:f8:18:9c:9c:29:72:d6:74:44:90:47:00:2a:72: d3:6d:9a:7c:cd:06:6a:5e:56:f6:dd:0d:64:79:49:05:7d:08: 50:eb:88:72:83:00:b9:3f:ca:d9:73:54:c6:26:d8:3b:1f:d2: 6d:e7:54:22:30:91:b1:a5:5c:7c:76:7a:d9:5c:90:8a:3a:8a: 74:02:4a:b7:34:3c:85:f8:8d:c4:b6:75:bc:3b:d9:5a:db:03: 41:35:87:0f:b8:ac:8a:61:46:21:fd:0d:23:06:90:93:a6:81: a1:74:d2:dd:3e:a7:bb:60:14:ff:e2:68:d8:d5:83:73:c8:cb: 32:16:d7:e0:90:e8:68:85:ea:d1:55:fa:7e:33:31:4b:6d:f3: 63:e7:e5:dc:17:af:c2:ff:27:32:02:75:38:9e:e7:51:c6:7c: 34:dd:b7:61 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdGQjExMTAvBgNVBAUTKEU4Q0NEQ0JGQkQyOEQ3MTE5MEU4OTM3RjNEQUE1OTU4 RkQ0ODE1NDEwHhcNMjMxMDI5MDQxNTUwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkZGM3Ni1hODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIgf7m4cZMMv9XJSsndquAl6s+9VkKkjomztqkjgw2XzBY2iEbz+7L3hKKmf dDZMGPTZ5JmousuvldpgDUFdjhaekl0yoYhvgRv7oiSGhrJu35ZnHoWdjVJt6lZq qaL7RAa4cSiRlb4hW03poJJWBXx5aVw1CJ28oLJy2qW6YoniuqwvEcHR05F0Vl8n l286mEyCnohBgayYvXTvifP/vz5QQGtmfeOejCw8rRRhZ0NK8mB1oq9JgqTJylB0 BVQCHgjXn1dbxR3Xj3+T/R2T7EcDoj3laI0QrIqIjQQfC1CnyqoHyd+qYaKTF0X4 IWM/wHA51EvqHU63I8ew5VqKKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCtPlKk6 zUMwhih8snF1xEFA761RMB8GA1UdIwQYMBaAFOjM3L+9KNcRkOiTfz2qWVj9SBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0ZCMS9BQUQ2OTA0MDU0 MzgxMUVEOTM4QzY2MjhDNEY5QUUwMi82TXpjdjcwbzF4R1E2Sk5fUGFwWldQMUlG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZNemN2NzBvMXhHUTZKTl9QYXBaV1AxSUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdGQjEvQUFENjkwNDA1NDM4MTFFRDkzOEM2NjI4QzRGOUFFMDIvRkU3OUVBOUE1 NDNDMTFFRDk3MkNERDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnGEQwDwQCAAIwCQMHACABDfFvQDANBgkqhkiG9w0BAQsF AAOCAQEAHT5w61Wn1sWUCf9uHGWGgzS5pnCLToowuNfNED5s0ZOC7/9A3QB2CB+F VkKsAq2m2pvgZAX9AnJ/pAc4KnjAqkCghVOQ5HGZKldvi4+eBblWk9ixBs1RA5TX k8AoJPgYnJwpctZ0RJBHACpy022afM0Gal5W9t0NZHlJBX0IUOuIcoMAuT/K2XNU xibYOx/SbedUIjCRsaVcfHZ62VyQijqKdAJKtzQ8hfiNxLZ1vDvZWtsDQTWHD7is imFGIf0NIwaQk6aBoXTS3T6nu2AU/+Jo2NWDc8jLMhbX4JDoaIXq0VX6fjMxS23z Y+fl3Bevwv8nMgJ1OJ7nUcZ8NN23YQ== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:57 2024 by rpki-client on console-ams.rpki-client.org