$ rpki-client -vvf rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/FE32E0965F8E11EA935F3E69C4F9AE02.roa File: FE32E0965F8E11EA935F3E69C4F9AE02.roa (raw, json) Hash identifier: U0A5yh5nwOlME8D4OdBtuWBfWXJcBZCG31TD2q/Y4RY= Subject key identifier: 71:EE:E5:06:85:07:12:6D:BC:30:A0:09:29:67:74:F5:2A:39:3D:D3 Certificate issuer: /CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Certificate serial: 0975 Authority key identifier: 0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/FE32E0965F8E11EA935F3E69C4F9AE02.roa Signing time: Wed 20 Dec 2023 20:48:21 +0000 ROA not before: Wed 20 Dec 2023 20:48:21 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139755 IP address blocks: 103.144.160.0/24 maxlen: 24 103.144.161.0/24 maxlen: 24 2001:df1:cb80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:35:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2421 (0x975) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Validity Not Before: Dec 20 20:48:21 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65835315-a2b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c9:c9:bf:84:fc:e8:a3:65:a8:a5:ea:08:6a: b3:49:46:47:c6:4b:9e:88:27:59:f6:52:77:75:50: 43:71:40:f7:99:33:b7:33:be:21:b1:af:a6:41:1a: da:82:1a:48:d9:f3:e9:96:a6:0c:58:d8:9d:10:75: 2e:09:f7:3d:0a:f2:87:46:88:df:9d:2c:0b:f2:8f: 2f:6f:6e:e3:1e:f9:97:50:68:9e:36:7a:9e:57:30: 27:b3:be:f9:c4:d6:4b:a5:9b:cc:43:a5:eb:eb:c3: e8:82:81:8a:9e:65:6f:4e:e9:2c:b9:13:52:d0:81: 86:9b:1e:46:cd:cb:63:27:48:51:e0:2b:98:f7:b2: 07:40:70:09:3a:e8:b8:dd:be:39:9e:3b:91:e5:a6: 8a:d3:2b:f0:f1:19:2a:72:e7:c4:d6:7d:d0:91:5d: d6:31:4a:55:72:5d:b7:cb:e3:79:92:fb:20:f6:5b: b2:89:7f:e4:df:6e:37:43:a4:8b:19:29:b1:0c:89: 1d:d1:3e:86:32:c2:32:e6:89:7b:59:5f:7d:db:71: c7:a0:2e:ff:69:0e:6f:85:ab:5b:57:04:4e:e9:0a: 7a:0a:c1:ba:01:02:fa:13:4d:a5:2b:f1:7e:fc:b1: de:eb:81:63:ca:ac:df:cf:06:58:c0:94:8c:3f:68: bd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:EE:E5:06:85:07:12:6D:BC:30:A0:09:29:67:74:F5:2A:39:3D:D3 X509v3 Authority Key Identifier: keyid:0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/FE32E0965F8E11EA935F3E69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.160.0/23 IPv6: 2001:df1:cb80::/48 Signature Algorithm: sha256WithRSAEncryption b9:c6:ba:11:1c:71:f4:e6:82:32:f9:b1:db:ad:b0:53:3a:d2: 1f:14:c2:44:45:44:67:1c:cc:d3:f0:fd:0e:43:c6:b4:c9:15: a8:54:a2:e9:ac:ee:13:8c:8b:f0:95:bd:c5:10:14:b6:0e:48: e2:52:8d:44:f0:d3:16:78:a7:b7:23:00:d8:63:70:b1:12:19: e4:69:5f:d3:9c:75:2d:61:b7:d8:02:9d:ee:e4:3b:4d:95:2d: 35:64:a3:b9:0b:3c:88:e9:a3:02:bc:67:e2:41:f3:ce:7f:bb: 1e:cf:d0:a9:02:41:57:03:00:8c:26:3c:37:44:2f:42:00:8f: 9d:d5:5c:b5:69:ed:6d:c5:8b:62:ec:0c:75:cd:23:1f:8a:c8: bd:26:30:d0:e1:2a:0b:39:19:dc:ea:4f:c4:8d:e8:0a:70:7e: 38:e0:ec:73:48:26:65:b2:bb:7c:0f:cd:ea:ed:21:c0:f5:1d: 60:c9:4a:97:4d:e6:68:98:ab:42:a6:9a:89:9a:59:0c:f1:82: 4b:08:e9:c2:19:bd:20:9a:6a:82:ec:db:8d:65:21:f7:69:e0: 36:95:f8:4a:03:72:2b:a6:94:7c:b2:95:9e:11:a7:19:c0:e7: 55:8a:27:a1:4a:e8:78:0b:2f:d8:b6:34:a4:a6:d3:d5:77:71: 70:63:c4:22 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU5QUMxMTAvBgNVBAUTKDBBNjFGNUFGMjEwOUE2ODM2MTFGQkEyMDZGMjA4Q0VG RTM0ODk4MjEwHhcNMjMxMjIwMjA0ODIxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzNTMxNS1hMmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8nJv4T86KNlqKXqCGqzSUZHxkueiCdZ9lJ3dVBDcUD3mTO3M74hsa+mQRra ghpI2fPplqYMWNidEHUuCfc9CvKHRojfnSwL8o8vb27jHvmXUGieNnqeVzAns775 xNZLpZvMQ6Xr68PogoGKnmVvTuksuRNS0IGGmx5GzctjJ0hR4CuY97IHQHAJOui4 3b45njuR5aaK0yvw8RkqcufE1n3QkV3WMUpVcl23y+N5kvsg9luyiX/k3243Q6SL GSmxDIkd0T6GMsIy5ol7WV9923HHoC7/aQ5vhatbVwRO6Qp6CsG6AQL6E02lK/F+ /LHe64FjyqzfzwZYwJSMP2i9nQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHHu5QaF BxJtvDCgCSlndPUqOT3TMB8GA1UdIwQYMBaAFAph9a8hCaaDYR+6IG8gjO/jSJgh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTlBQy9DMDYxMzUxNjVG OEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBvTmhIN29nYnlDTTctTklt Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtSDFyeUVKcG9OaEg3b2dieUNNNy1OSW1DRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU5QUMvQzA2MTM1MTY1RjhEMTFFQUI1MDBCRDY0QzRGOUFFMDIvRkUzMkUwOTY1 RjhFMTFFQTkzNUYzRTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkKAwDwQCAAIwCQMHACABDfHLgDANBgkqhkiG9w0BAQsF AAOCAQEAuca6ERxx9OaCMvmx262wUzrSHxTCREVEZxzM0/D9DkPGtMkVqFSi6azu E4yL8JW9xRAUtg5I4lKNRPDTFnintyMA2GNwsRIZ5Glf05x1LWG32AKd7uQ7TZUt NWSjuQs8iOmjArxn4kHzzn+7Hs/QqQJBVwMAjCY8N0QvQgCPndVctWntbcWLYuwM dc0jH4rIvSYw0OEqCzkZ3OpPxI3oCnB+OODsc0gmZbK7fA/N6u0hwPUdYMlKl03m aJirQqaaiZpZDPGCSwjpwhm9IJpqguzbjWUh92ngNpX4SgNyK6aUfLKVnhGnGcDn VYonoUroeAsv2LY0pKbT1XdxcGPEIg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:27 2024 by rpki-client on console-ams.rpki-client.org