$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC42F/63E6E392313611EA8BE2612BC4F9AE02/A540A624378611EABE283384C4F9AE02.roa File: A540A624378611EABE283384C4F9AE02.roa (raw, json) Hash identifier: wqMWiXdgCu3cScL0mYpc0UCwGRMk2VdkUHOf3iWaHHU= Subject key identifier: E4:89:B5:BA:F4:13:BA:88:0E:AF:5B:44:18:6C:08:E3:12:0E:1A:42 Certificate issuer: /CN=A91FC42F/serialNumber=260C68A83476430C19AC86FC13613330DE10F9B9 Certificate serial: 0B0C Authority key identifier: 26:0C:68:A8:34:76:43:0C:19:AC:86:FC:13:61:33:30:DE:10:F9:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JgxoqDR2QwwZrIb8E2EzMN4Q-bk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC42F/63E6E392313611EA8BE2612BC4F9AE02/A540A624378611EABE283384C4F9AE02.roa Signing time: Fri 22 Nov 2024 19:08:29 +0000 ROA not before: Fri 22 Nov 2024 19:08:29 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139766 IP address blocks: 103.144.224.0/23 maxlen: 24 2406:1bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC42F/63E6E392313611EA8BE2612BC4F9AE02/JgxoqDR2QwwZrIb8E2EzMN4Q-bk.crl rsync://rpki.apnic.net/member_repository/A91FC42F/63E6E392313611EA8BE2612BC4F9AE02/JgxoqDR2QwwZrIb8E2EzMN4Q-bk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JgxoqDR2QwwZrIb8E2EzMN4Q-bk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2828 (0xb0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC42F/serialNumber=260C68A83476430C19AC86FC13613330DE10F9B9 Validity Not Before: Nov 22 19:08:29 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6740d6ad-07a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8c:c6:8c:17:5b:df:f9:56:ad:71:27:17:ca: 43:fd:6f:ed:e2:75:14:93:b0:63:59:d5:d1:b5:81: 59:1b:f5:09:0a:48:29:0c:ba:3a:23:bc:cd:69:d7: 83:00:fb:67:4b:b1:f4:19:27:f6:52:30:ec:14:cb: 5e:85:0c:eb:e3:cf:99:1a:c0:8a:af:92:9c:4b:cf: 4f:05:40:f8:c7:75:a9:1b:8f:1a:c4:2c:df:e9:67: 35:ef:c5:f8:d1:54:f9:95:63:a7:df:1f:42:e4:fe: 4f:e7:1b:19:32:2a:23:24:18:5b:42:a5:a8:30:e2: e7:21:eb:03:36:be:f4:79:29:45:69:06:c6:b4:e0: 50:8f:08:3b:bd:36:a7:81:cc:d9:5d:d1:eb:09:01: aa:eb:21:60:ba:ba:23:2e:35:ce:27:09:bd:b1:0f: eb:b8:4c:34:3d:a0:8d:ea:80:ac:57:d9:66:1b:c2: e2:4a:41:0b:36:2c:8f:1b:58:af:5d:a3:b8:34:9d: 3a:d4:95:c7:77:f5:18:cc:a1:86:2b:07:4e:99:c5: e7:52:11:12:71:86:8c:60:be:a6:8b:88:42:83:f8: 4d:e3:fd:0f:54:ab:c2:83:76:61:1a:12:f1:9f:2e: f5:43:d6:a4:fe:0b:c9:5f:22:f7:b3:45:0d:be:f6: 66:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:89:B5:BA:F4:13:BA:88:0E:AF:5B:44:18:6C:08:E3:12:0E:1A:42 X509v3 Authority Key Identifier: keyid:26:0C:68:A8:34:76:43:0C:19:AC:86:FC:13:61:33:30:DE:10:F9:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC42F/63E6E392313611EA8BE2612BC4F9AE02/JgxoqDR2QwwZrIb8E2EzMN4Q-bk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JgxoqDR2QwwZrIb8E2EzMN4Q-bk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC42F/63E6E392313611EA8BE2612BC4F9AE02/A540A624378611EABE283384C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.224.0/23 IPv6: 2406:1bc0::/32 Signature Algorithm: sha256WithRSAEncryption 17:0f:f5:1d:f8:47:7d:1a:d1:4f:ab:01:30:76:74:a1:01:5b: 34:ce:8e:67:c7:01:8f:b5:e6:e0:3b:8b:63:b7:1e:cc:51:7e: 8a:85:4e:28:f8:72:8e:cf:f1:e0:6b:cb:e7:28:65:96:55:8c: 08:ca:30:55:8d:df:6e:9b:36:90:8a:5a:ba:11:11:a0:c7:04: 03:96:07:48:87:0f:5b:da:a4:a9:d6:54:9b:c0:5b:8b:27:3b: b4:0d:88:31:ad:ae:a7:ac:2e:fa:9e:98:d6:6d:d3:36:01:a7: 23:0f:f0:e8:e5:a1:e5:01:9b:2c:23:c1:4c:ad:b0:30:27:82: 7e:3c:81:64:14:e1:26:94:75:9d:54:84:ad:05:f3:98:be:d6: ea:73:13:16:39:94:76:34:91:5a:e6:a8:46:de:8b:d0:bf:9a: 2d:45:11:ff:4c:b2:05:23:6d:38:78:b1:e8:0c:40:4f:2f:31: 9e:fd:00:05:0a:e7:75:9a:77:9f:07:a5:74:f8:a3:47:60:58: 49:71:f7:89:71:95:2b:30:38:aa:2a:32:b4:17:85:a5:fb:3e: 1a:8d:d0:69:85:38:41:41:95:65:e4:13:c4:d9:00:f7:84:80: 20:51:d7:dc:d7:a1:4c:41:cf:da:ee:4e:21:78:d9:ff:05:43: 2e:40:ed:4e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0MkYxMTAvBgNVBAUTKDI2MEM2OEE4MzQ3NjQzMEMxOUFDODZGQzEzNjEzMzMw REUxMEY5QjkwHhcNMjQxMTIyMTkwODI5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQwZDZhZC0wN2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYzGjBdb3/lWrXEnF8pD/W/t4nUUk7BjWdXRtYFZG/UJCkgpDLo6I7zNadeD APtnS7H0GSf2UjDsFMtehQzr48+ZGsCKr5KcS89PBUD4x3WpG48axCzf6Wc178X4 0VT5lWOn3x9C5P5P5xsZMiojJBhbQqWoMOLnIesDNr70eSlFaQbGtOBQjwg7vTan gczZXdHrCQGq6yFgurojLjXOJwm9sQ/ruEw0PaCN6oCsV9lmG8LiSkELNiyPG1iv XaO4NJ061JXHd/UYzKGGKwdOmcXnUhEScYaMYL6mi4hCg/hN4/0PVKvCg3ZhGhLx ny71Q9ak/gvJXyL3s0UNvvZmxQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOSJtbr0 E7qIDq9bRBhsCOMSDhpCMB8GA1UdIwQYMBaAFCYMaKg0dkMMGayG/BNhMzDeEPm5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQyRi82M0U2RTM5MjMx MzYxMUVBOEJFMjYxMkJDNEY5QUUwMi9KZ3hvcURSMlF3d1pySWI4RTJFek1ONFEt YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pneG9xRFIyUXd3WnJJYjhFMkV6TU40US1iay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkM0MkYvNjNFNkUzOTIzMTM2MTFFQThCRTI2MTJCQzRGOUFFMDIvQTU0MEE2MjQz Nzg2MTFFQUJFMjgzMzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnkOAwDQQCAAIwBwMFACQGG8AwDQYJKoZIhvcNAQELBQAD ggEBABcP9R34R30a0U+rATB2dKEBWzTOjmfHAY+15uA7i2O3HsxRfoqFTij4co7P 8eBry+coZZZVjAjKMFWN326bNpCKWroREaDHBAOWB0iHD1vapKnWVJvAW4snO7QN iDGtrqesLvqemNZt0zYBpyMP8OjloeUBmywjwUytsDAngn48gWQU4SaUdZ1UhK0F 85i+1upzExY5lHY0kVrmqEbei9C/mi1FEf9MsgUjbTh4segMQE8vMZ79AAUK53Wa d58HpXT4o0dgWElx94lxlSswOKoqMrQXhaX7PhqN0GmFOEFBlWXkE8TZAPeEgCBR 19zXoUxBz9ruTiF42f8FQy5A7U4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org