$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/591A8C06BE4D11EC8DADB22CC4F9AE02.roa File: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (raw, json) Hash identifier: Py8gHJNmqLpByr4I29rw6Mm8G9sMV9RnjA0oEGne9CY= Subject key identifier: 44:96:DB:01:BA:EE:A8:A9:41:57:D5:07:91:47:F4:41:0D:22:87:48 Certificate issuer: /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Certificate serial: 02CE Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/591A8C06BE4D11EC8DADB22CC4F9AE02.roa Signing time: Wed 09 Oct 2024 01:44:45 +0000 ROA not before: Wed 09 Oct 2024 01:44:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 8849 IP address blocks: 103.172.116.0/23 maxlen: 24 2407:d140::/32 maxlen: 32 2407:d140::/36 maxlen: 36 2407:d140:1000::/36 maxlen: 36 2407:d140:2000::/36 maxlen: 36 2407:d140:3000::/36 maxlen: 36 2407:d140:4000::/35 maxlen: 36 2407:d140:6000::/36 maxlen: 36 2407:d140:7000::/36 maxlen: 36 2407:d140:8000::/34 maxlen: 34 2407:d140:8000::/36 maxlen: 36 2407:d140:9000::/36 maxlen: 36 2407:d140:a000::/36 maxlen: 36 2407:d140:b000::/36 maxlen: 36 2407:d140:c000::/36 maxlen: 36 2407:d140:d000::/36 maxlen: 36 2407:d140:e000::/36 maxlen: 36 2407:d140:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Validity Not Before: Oct 9 01:44:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6705e00d-b8e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d8:4e:66:47:c8:a5:b7:3f:ea:24:c3:a7:17: 6b:9a:da:37:15:57:8d:e8:02:11:b5:8c:79:07:8e: 59:2b:da:0a:c5:84:64:f9:87:61:7f:de:e1:90:84: 7a:8c:84:8a:ac:db:6f:bd:e7:07:1e:de:df:1a:90: 99:8f:66:52:f8:23:9b:05:97:83:6f:1b:89:b3:2c: f3:a4:57:1d:9a:3f:f5:97:3b:15:29:8e:23:99:5f: fb:e9:be:75:93:51:65:a2:f1:d2:db:88:3b:7b:3a: 26:53:6f:a6:4f:90:89:55:ed:c3:d3:ea:13:bb:67: ba:30:ab:8a:91:47:c3:0a:1b:bd:7d:fc:bd:36:2f: 81:2c:d3:71:f3:7a:94:3f:aa:4e:79:4b:f8:de:9e: 60:ad:a8:70:2f:5e:7a:07:20:8b:08:02:0c:f0:35: af:93:ad:68:7c:24:e5:4c:59:0f:9d:ec:97:ae:29: 70:00:f9:bc:8b:79:f4:cd:6e:36:7f:21:bf:72:4e: 0e:0e:88:88:36:cb:f0:f5:22:42:37:d7:da:97:6a: cc:f1:9c:a8:2a:e9:90:36:34:99:f7:25:6c:04:49: 8d:33:da:71:ba:83:1c:a9:9e:1a:b8:d6:7d:85:6c: 52:28:d8:b0:d2:2c:41:06:a7:88:97:b6:2a:b1:c5: 5b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:96:DB:01:BA:EE:A8:A9:41:57:D5:07:91:47:F4:41:0D:22:87:48 X509v3 Authority Key Identifier: keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/591A8C06BE4D11EC8DADB22CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.116.0/23 IPv6: 2407:d140::/32 Signature Algorithm: sha256WithRSAEncryption bc:f4:bf:29:10:26:3c:78:e5:14:f5:f2:3a:32:1a:d3:45:1d: ff:cc:df:b3:4e:9c:96:62:cd:98:6a:12:1f:3f:2e:b0:e9:bb: ad:83:63:c4:64:c0:40:a7:7c:3b:b9:0f:67:f8:f0:14:c9:ca: da:53:aa:8d:02:7f:2f:c3:57:07:50:fe:9f:27:09:99:0d:bb: 77:4b:b7:76:ee:56:60:a8:38:9d:e1:76:74:18:8c:79:08:6e: b9:9d:27:5e:5e:ae:4d:ce:44:ab:70:70:aa:83:f0:3f:09:10: 7f:61:c2:cf:f4:56:69:70:1a:7c:a5:94:9e:9a:81:a2:6f:a2: 1b:20:46:8a:e4:93:6e:58:7b:3c:64:70:bd:a1:7b:f8:e7:c5: d9:b0:79:e4:b7:91:80:60:f7:89:ac:99:89:0d:96:dd:24:3e: a7:66:a7:8e:33:32:ac:c5:6e:b4:23:46:29:15:5e:84:6b:78: 6f:d7:cd:02:d1:42:32:76:17:bd:1d:87:98:e5:8e:58:6b:b2: 7f:44:dc:23:23:48:38:6b:b7:a9:a0:b9:a1:f5:d7:11:f3:35: 2b:30:a3:74:91:07:9e:d8:01:74:e8:76:be:69:c2:0c:29:99: 1a:da:56:e3:37:a6:c9:94:ff:1b:26:36:00:59:d3:55:c4:10: d8:b6:f2:07 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG OEJENjBDMTAwHhcNMjQxMDA5MDE0NDQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1ZTAwZC1iOGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdhOZkfIpbc/6iTDpxdrmto3FVeN6AIRtYx5B45ZK9oKxYRk+Ydhf97hkIR6 jISKrNtvvecHHt7fGpCZj2ZS+CObBZeDbxuJsyzzpFcdmj/1lzsVKY4jmV/76b51 k1FlovHS24g7ezomU2+mT5CJVe3D0+oTu2e6MKuKkUfDChu9ffy9Ni+BLNNx83qU P6pOeUv43p5grahwL156ByCLCAIM8DWvk61ofCTlTFkPneyXrilwAPm8i3n0zW42 fyG/ck4ODoiINsvw9SJCN9fal2rM8ZyoKumQNjSZ9yVsBEmNM9pxuoMcqZ4auNZ9 hWxSKNiw0ixBBqeIl7YqscVbcQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFESW2wG6 7qipQVfVB5FH9EENIodIMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY2RjgvQTQyNDM5NzBCRTRBMTFFQ0IyNzk1NTJBQzRGOUFFMDIvNTkxQThDMDZC RTREMTFFQzhEQURCMjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrHQwDQQCAAIwBwMFACQH0UAwDQYJKoZIhvcNAQELBQAD ggEBALz0vykQJjx45RT18joyGtNFHf/M37NOnJZizZhqEh8/LrDpu62DY8RkwECn fDu5D2f48BTJytpTqo0Cfy/DVwdQ/p8nCZkNu3dLt3buVmCoOJ3hdnQYjHkIbrmd J15erk3ORKtwcKqD8D8JEH9hws/0VmlwGnyllJ6agaJvohsgRorkk25YezxkcL2h e/jnxdmweeS3kYBg94msmYkNlt0kPqdmp44zMqzFbrQjRikVXoRreG/XzQLRQjJ2 F70dh5jljlhrsn9E3CMjSDhrt6mguaH11xHzNSswo3SRB57YAXTodr5pwgwpmRra VuM3psmU/xsmNgBZ01XEENi28gc= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:34 2024 by rpki-client on console-ams.rpki-client.org