$ rpki-client -vvf rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FC90C520213411EA8D675645C4F9AE02.roa File: FC90C520213411EA8D675645C4F9AE02.roa (raw, json) Hash identifier: TuZIRI45kuPYCZuG09vTJgvLxAPNkl0UDbeQsSKLIcs= Subject key identifier: 28:46:AF:05:D5:59:6F:55:B8:81:B8:4B:A6:05:CB:9A:9B:C6:9A:4F Certificate issuer: /CN=A91503BB/serialNumber=15F07FEFCA05E846D45385125E8BB427758300F9 Certificate serial: 0B4F Authority key identifier: 15:F0:7F:EF:CA:05:E8:46:D4:53:85:12:5E:8B:B4:27:75:83:00:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfB_78oF6EbUU4USXou0J3WDAPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FC90C520213411EA8D675645C4F9AE02.roa Signing time: Tue 12 Nov 2024 18:57:17 +0000 ROA not before: Tue 12 Nov 2024 18:57:17 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 58910 IP address blocks: 43.241.96.0/22 maxlen: 24 103.18.88.0/22 maxlen: 24 2400:5380::/33 maxlen: 33 2400:5380:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.crl rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfB_78oF6EbUU4USXou0J3WDAPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 18:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91503BB/serialNumber=15F07FEFCA05E846D45385125E8BB427758300F9 Validity Not Before: Nov 12 18:57:17 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6733a50d-18b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5e:53:eb:e0:89:fb:35:cd:4a:eb:1d:d7:12: 3a:1c:5f:fe:21:1c:2f:0a:41:ae:e2:50:5b:c3:a7: e6:ff:2b:6e:08:9e:ae:c1:21:39:3a:f1:89:0c:ab: 05:f7:5d:bb:8f:b3:8c:6f:cf:9e:83:7c:d1:1f:b6: d9:6e:0a:35:08:da:c4:1d:f4:fe:44:eb:a6:84:ed: be:40:f9:7e:f1:ec:b4:4b:d0:dc:66:90:b0:e3:11: 4e:a7:6e:f9:41:b8:f2:51:e4:c7:61:1d:e4:a6:88: 7f:6c:c8:38:0d:f6:4c:66:c3:43:a0:0c:1f:de:ca: c9:99:dc:c5:b9:ca:e1:46:51:d7:1b:de:da:30:de: 59:d0:47:6d:98:bb:f8:e8:f2:46:fe:67:1f:a4:9f: e0:1a:01:eb:4b:f5:b2:56:a4:bb:88:d7:eb:04:04: 47:72:ec:0c:2c:21:14:f7:1a:bb:98:85:f6:93:13: 76:3f:48:50:9a:36:1f:76:22:64:ec:83:59:2d:e8: da:4d:76:27:7f:e6:b3:b4:1b:8b:b3:96:d1:84:45: 1c:73:39:e6:05:63:b8:2a:98:ec:95:f1:8b:43:af: cc:63:76:3e:0a:31:01:21:34:52:48:14:81:3c:3d: 2d:84:e9:ef:f9:fe:24:37:ac:76:97:3b:74:f3:33: fc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:46:AF:05:D5:59:6F:55:B8:81:B8:4B:A6:05:CB:9A:9B:C6:9A:4F X509v3 Authority Key Identifier: keyid:15:F0:7F:EF:CA:05:E8:46:D4:53:85:12:5E:8B:B4:27:75:83:00:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfB_78oF6EbUU4USXou0J3WDAPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FC90C520213411EA8D675645C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.96.0/22 103.18.88.0/22 IPv6: 2400:5380::/32 Signature Algorithm: sha256WithRSAEncryption 09:49:81:37:e3:99:ee:64:09:db:79:2f:09:09:8a:68:32:a1: 6c:ab:00:fa:9e:ad:83:60:c9:04:bc:c2:61:df:51:5c:d9:cf: 52:d5:35:60:a3:3f:9e:c8:78:9f:14:82:c4:a6:09:29:e4:82: 0f:09:ec:87:d8:72:37:68:24:73:eb:e2:db:48:aa:fa:0e:18: 30:30:21:01:7d:18:c8:f6:0f:67:08:b0:bc:00:8e:80:8b:cd: 53:a0:d5:35:ff:b9:c9:9a:86:dd:e5:05:19:78:87:e2:5a:d2: 66:c8:67:bc:3b:b5:82:fe:25:bf:8d:54:dc:4b:97:87:80:c0: 4a:a1:cf:b1:59:99:b7:93:46:0d:9d:94:2d:26:7e:38:44:37: 0a:a8:38:63:c9:2d:88:b7:93:20:f4:64:88:a7:2b:8c:04:4f: 05:0d:ae:73:42:f8:d1:e1:a7:d3:37:5a:16:5a:ec:b8:03:9e: bb:d5:a6:7f:54:84:a9:87:9c:43:d7:94:73:a1:b9:22:df:95: c1:64:84:9a:bf:a6:d2:ca:15:74:d2:ac:02:62:1d:32:fb:58: 49:d3:51:c9:ed:c5:ff:a5:11:4a:c3:90:f2:42:5e:52:a5:af: 6e:14:6c:18:b0:fb:43:76:4f:f1:d7:e9:e2:ff:ba:d9:c5:da: 7c:0b:8c:d1 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzQkIxMTAvBgNVBAUTKDE1RjA3RkVGQ0EwNUU4NDZENDUzODUxMjVFOEJCNDI3 NzU4MzAwRjkwHhcNMjQxMTEyMTg1NzE3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzYTUwZC0xOGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1l5T6+CJ+zXNSusd1xI6HF/+IRwvCkGu4lBbw6fm/ytuCJ6uwSE5OvGJDKsF 9127j7OMb8+eg3zRH7bZbgo1CNrEHfT+ROumhO2+QPl+8ey0S9DcZpCw4xFOp275 QbjyUeTHYR3kpoh/bMg4DfZMZsNDoAwf3srJmdzFucrhRlHXG97aMN5Z0EdtmLv4 6PJG/mcfpJ/gGgHrS/WyVqS7iNfrBARHcuwMLCEU9xq7mIX2kxN2P0hQmjYfdiJk 7INZLejaTXYnf+aztBuLs5bRhEUccznmBWO4KpjslfGLQ6/MY3Y+CjEBITRSSBSB PD0thOnv+f4kN6x2lzt08zP8mwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFChGrwXV WW9VuIG4S6YFy5qbxppPMB8GA1UdIwQYMBaAFBXwf+/KBehG1FOFEl6LtCd1gwD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDNCQi80NzI1RkM3ODIx MkYxMUVBODMwRTBBMzVDNEY5QUUwMi9GZkJfNzhvRjZFYlVVNFVTWG91MEozV0RB UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZmQl83OG9GNkViVVU0VVNYb3UwSjNXREFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTAzQkIvNDcyNUZDNzgyMTJGMTFFQTgzMEUwQTM1QzRGOUFFMDIvRkM5MEM1MjAy MTM0MTFFQThENjc1NjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr8WADBAJnElgwDQQCAAIwBwMFACQAU4AwDQYJKoZIhvcN AQELBQADggEBAAlJgTfjme5kCdt5LwkJimgyoWyrAPqerYNgyQS8wmHfUVzZz1LV NWCjP57IeJ8UgsSmCSnkgg8J7IfYcjdoJHPr4ttIqvoOGDAwIQF9GMj2D2cIsLwA joCLzVOg1TX/ucmaht3lBRl4h+Ja0mbIZ7w7tYL+Jb+NVNxLl4eAwEqhz7FZmbeT Rg2dlC0mfjhENwqoOGPJLYi3kyD0ZIinK4wETwUNrnNC+NHhp9M3WhZa7LgDnrvV pn9UhKmHnEPXlHOhuSLflcFkhJq/ptLKFXTSrAJiHTL7WEnTUcntxf+lEUrDkPJC XlKlr24UbBiw+0N2T/HX6eL/utnF2nwLjNE= -----END CERTIFICATE-----Generated at Tue Nov 26 20:53:08 2024 by rpki-client on console-fra.rpki-client.org