$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/FBBFC6D8A86B11E9A1385758C4F9AE02.roa File: FBBFC6D8A86B11E9A1385758C4F9AE02.roa (raw, json) Hash identifier: 3xSZw8Zvxp55d8XEuNe65AngqRjiPtOfsG/OL3mouOw= Subject key identifier: 09:B5:20:A9:AE:85:3C:BF:9B:52:F7:0A:11:40:A8:20:CC:B4:A7:C5 Certificate issuer: /CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Certificate serial: 0D86 Authority key identifier: D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/FBBFC6D8A86B11E9A1385758C4F9AE02.roa Signing time: Fri 26 Jul 2024 18:36:17 +0000 ROA not before: Fri 26 Jul 2024 18:36:17 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24082 IP address blocks: 103.67.26.0/24 maxlen: 24 103.141.98.0/24 maxlen: 24 2001:dde::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3462 (0xd86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Validity Not Before: Jul 26 18:36:17 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a3eca1-2643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c9:ed:12:73:c2:8f:80:fe:bc:48:e1:62:a5: 42:a3:18:68:c6:86:d1:50:49:29:53:90:8c:73:e9: ca:87:ce:d0:a7:1e:e3:cc:22:47:90:b2:a1:74:68: 7e:a1:1f:00:5b:6f:93:4d:ff:5f:81:f0:be:82:39: b5:f7:aa:76:f5:5f:b7:ab:30:28:1f:e9:ea:a9:b5: a0:a0:12:8e:fd:50:bd:c0:9a:69:b1:aa:54:2f:f9: 33:e9:80:29:65:58:5a:8f:5d:a4:64:c0:aa:7f:d6: 12:f9:00:88:63:0c:ae:16:d8:81:08:a7:8c:47:4b: 0e:0c:7a:a7:25:6e:4d:38:16:c6:98:33:78:cd:0f: 56:51:69:f6:95:b4:d2:1f:21:73:c7:dd:e6:09:68: 19:29:59:7b:66:37:f4:e2:be:3c:99:70:c6:05:3d: ae:bf:81:87:79:d7:43:c6:19:43:a9:4b:c5:73:cc: 62:71:ce:be:0d:b1:ed:06:af:b7:31:7e:3c:57:a6: fd:d5:e6:02:e0:c4:a3:bf:40:46:8f:50:ed:fc:52: a4:09:b1:48:c5:b0:c3:e9:ad:38:74:bb:91:18:cc: 36:24:89:3b:0f:a2:b1:57:d0:0d:5b:c1:de:41:4f: 23:1e:de:4a:08:ef:3f:db:78:df:87:87:6b:04:91: 7d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B5:20:A9:AE:85:3C:BF:9B:52:F7:0A:11:40:A8:20:CC:B4:A7:C5 X509v3 Authority Key Identifier: keyid:D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/FBBFC6D8A86B11E9A1385758C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.26.0/24 103.141.98.0/24 IPv6: 2001:dde::/48 Signature Algorithm: sha256WithRSAEncryption dd:e4:81:7c:95:23:55:8e:d8:24:50:fe:f3:77:b4:9e:b8:39: 32:a1:36:ae:49:eb:b2:58:97:0e:9b:b0:68:14:46:81:38:6f: 11:c1:df:0b:03:4b:45:9f:79:5e:e9:90:97:f9:f6:57:72:e9: fd:85:f1:2b:36:be:dd:48:68:7b:e7:2a:70:d4:02:ad:91:cd: d3:32:9c:3c:a4:29:64:c7:47:39:ae:d0:2a:cc:7d:eb:f5:69: ca:7f:31:94:e3:09:d7:71:95:cf:4f:f9:da:54:41:d7:7f:7a: 06:29:71:7f:d1:62:15:da:da:e8:76:31:18:d0:b9:c8:9c:a2: b2:5d:e7:46:c2:be:80:85:80:84:e2:06:cc:9f:07:25:4f:63: 07:8c:f1:7c:d2:44:1e:8c:58:da:4e:fb:20:b8:46:9d:77:9d: 4c:a9:96:2c:6e:55:98:8d:53:d3:20:56:ab:05:69:68:0a:c2: 1b:8c:73:a7:62:8e:30:29:48:a9:b4:59:58:29:45:1f:15:b9: 2b:bd:3d:37:08:3a:51:3d:31:be:5c:36:00:c9:96:24:4f:08: 09:85:dd:d4:8e:66:57:50:c6:18:69:6b:a4:96:a8:a0:5d:4b: 78:02:52:91:f5:af:50:5a:80:91:f0:b6:0a:25:d0:85:e4:7f: 14:66:ec:4d -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUxNDMxMTAvBgNVBAUTKEQ5MkRBRDRENzZFMUY1QTAyNkMyN0YyREI5MUM0NEZC QUQ4RTQ4N0MwHhcNMjQwNzI2MTgzNjE3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzZWNhMS0yNjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMntEnPCj4D+vEjhYqVCoxhoxobRUEkpU5CMc+nKh87Qpx7jzCJHkLKhdGh+ oR8AW2+TTf9fgfC+gjm196p29V+3qzAoH+nqqbWgoBKO/VC9wJppsapUL/kz6YAp ZVhaj12kZMCqf9YS+QCIYwyuFtiBCKeMR0sODHqnJW5NOBbGmDN4zQ9WUWn2lbTS HyFzx93mCWgZKVl7Zjf04r48mXDGBT2uv4GHeddDxhlDqUvFc8xicc6+DbHtBq+3 MX48V6b91eYC4MSjv0BGj1Dt/FKkCbFIxbDD6a04dLuRGMw2JIk7D6KxV9ANW8He QU8jHt5KCO8/23jfh4drBJF9oQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFAm1IKmu hTy/m1L3ChFAqCDMtKfFMB8GA1UdIwQYMBaAFNktrU124fWgJsJ/LbkcRPutjkh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTE0My8wREU5Rjc3NkE4 NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlhQW13bjh0dVJ4RS02Mk9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJTMnRUWGJoOWFBbXduOHR1UnhFLTYyT1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUxNDMvMERFOUY3NzZBODZCMTFFOUE3MDFDODU2QzRGOUFFMDIvRkJCRkM2RDhB ODZCMTFFOUExMzg1NzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnQxoDBABnjWIwDwQCAAIwCQMHACABDd4AADANBgkqhkiG 9w0BAQsFAAOCAQEA3eSBfJUjVY7YJFD+83e0nrg5MqE2rknrsliXDpuwaBRGgThv EcHfCwNLRZ95XumQl/n2V3Lp/YXxKza+3Uhoe+cqcNQCrZHN0zKcPKQpZMdHOa7Q Ksx96/Vpyn8xlOMJ13GVz0/52lRB1396Bilxf9FiFdra6HYxGNC5yJyisl3nRsK+ gIWAhOIGzJ8HJU9jB4zxfNJEHoxY2k77ILhGnXedTKmWLG5VmI1T0yBWqwVpaArC G4xzp2KOMClIqbRZWClFHxW5K709Nwg6UT0xvlw2AMmWJE8ICYXd1I5mV1DGGGlr pJaooF1LeAJSkfWvUFqAkfC2CiXQheR/FGbsTQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org