$ rpki-client -vvf rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/56FB3BA630DB11EBB36CAB54C4F9AE02.roa File: 56FB3BA630DB11EBB36CAB54C4F9AE02.roa (raw, json) Hash identifier: pVKgpE25u+sSRKE4cptGbAa1fOeGm3fPROv0vvQGx0o= Subject key identifier: 21:6F:0F:0F:39:FF:4D:4B:B0:20:E0:C4:DD:1F:6D:AA:A5:95:D6:9F Certificate issuer: /CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Certificate serial: 063B Authority key identifier: 68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/56FB3BA630DB11EBB36CAB54C4F9AE02.roa Signing time: Fri 26 Jan 2024 23:21:33 +0000 ROA not before: Fri 26 Jan 2024 23:21:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138333 IP address blocks: 103.159.26.0/23 maxlen: 23 103.159.26.0/24 maxlen: 24 103.159.27.0/24 maxlen: 24 2406:c8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Validity Not Before: Jan 26 23:21:33 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b43e7d-e8e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:ca:46:1e:7c:bd:b6:57:fe:ce:5b:e6:b8: 3a:45:60:33:f5:1a:fa:94:39:5b:b3:a5:4e:a1:a2: 23:9d:2c:63:1c:2a:87:a4:0e:ab:67:6d:b8:cd:ee: b6:91:39:86:99:4b:b7:f5:2a:5d:fa:5b:9a:02:ca: 4c:49:b1:96:f0:2f:c1:60:dd:20:eb:d5:8c:c7:76: 12:9a:c2:b5:e5:99:ae:13:8f:72:d7:05:3f:d4:90: 8c:97:b7:67:00:c3:96:72:cc:ed:4d:45:60:a2:f9: 1b:a4:0f:de:80:10:35:d8:52:b2:f9:a4:ac:2d:da: 61:81:e8:4e:38:eb:6a:52:a4:e5:89:1e:b1:24:d2: 78:e6:87:46:3b:f9:0f:66:dc:66:22:94:a3:41:30: 6e:63:bc:c8:db:8d:5c:15:c9:27:7f:58:cf:76:17: d1:c6:fe:9a:6f:a0:13:de:65:66:f5:16:57:2e:26: 53:e7:5d:2d:b6:36:de:0e:49:0a:77:7f:00:3e:7a: dc:61:74:83:7e:17:a9:41:40:79:24:05:f2:33:60: 29:55:97:c5:c3:43:eb:a9:4d:00:3f:42:86:2e:ef: c8:de:5d:42:eb:2b:4a:9c:4c:e2:18:20:71:bc:42: cc:34:e6:1b:ab:1e:0e:f6:7a:50:a6:a7:a0:f1:09: 60:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:6F:0F:0F:39:FF:4D:4B:B0:20:E0:C4:DD:1F:6D:AA:A5:95:D6:9F X509v3 Authority Key Identifier: keyid:68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/56FB3BA630DB11EBB36CAB54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.26.0/23 IPv6: 2406:c8c0::/32 Signature Algorithm: sha256WithRSAEncryption 06:ef:28:24:a3:a0:94:8e:9a:71:5e:ab:7a:ab:e9:d5:34:99: 1f:3f:20:0e:37:cf:fa:53:02:d7:45:6d:9e:56:98:51:00:be: 5c:27:5a:df:d8:11:79:93:da:c0:cf:16:de:db:58:5a:29:e2: 72:b4:32:3e:cd:ac:e7:81:cd:c3:48:65:64:30:08:c7:21:19: 02:36:97:df:7a:00:22:e9:15:8b:99:8a:2a:47:14:60:6c:10: 7b:70:3d:92:15:ca:7a:e3:54:ce:85:d9:eb:57:87:0d:4a:2a: 51:1e:ca:a1:7a:eb:07:f0:d7:15:75:99:48:66:d0:74:07:ac: ff:e5:c6:b6:26:2c:57:f1:14:3f:fe:4c:f9:fa:fc:33:21:84: 4d:5c:1e:c2:85:4f:32:dc:94:27:d0:0f:a0:ff:ce:3e:29:81: f0:8b:4e:f6:ec:2c:fc:39:1c:94:c7:10:1a:30:6f:b1:70:48: 60:c8:c8:1c:40:e1:63:fe:d3:f4:ff:ad:ea:f8:2b:3c:d4:11: b6:32:dc:04:d6:ea:04:76:35:2a:2c:dd:fd:51:b3:19:60:76: da:7b:a5:92:39:ff:fa:c9:f5:c8:d4:f8:d7:73:8c:b5:cc:2d: f6:ae:ac:9d:03:69:9c:25:14:bb:7d:bf:ee:0d:f1:58:6c:1d: c8:e2:9f:9a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4QzQxMTAvBgNVBAUTKDY4OUI0M0I0OEUxMTFFNjlGMURGNzlDQ0EyMTFDQ0I0 MjY1QTI2N0IwHhcNMjQwMTI2MjMyMTMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI0M2U3ZC1lOGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcHKRh58vbZX/s5b5rg6RWAz9Rr6lDlbs6VOoaIjnSxjHCqHpA6rZ224ze62 kTmGmUu39Spd+luaAspMSbGW8C/BYN0g69WMx3YSmsK15ZmuE49y1wU/1JCMl7dn AMOWcsztTUVgovkbpA/egBA12FKy+aSsLdphgehOOOtqUqTliR6xJNJ45odGO/kP ZtxmIpSjQTBuY7zI241cFcknf1jPdhfRxv6ab6AT3mVm9RZXLiZT510ttjbeDkkK d38APnrcYXSDfhepQUB5JAXyM2ApVZfFw0PrqU0AP0KGLu/I3l1C6ytKnEziGCBx vELMNOYbqx4O9npQpqeg8QlgxQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCFvDw85 /01LsCDgxN0fbaqlldafMB8GA1UdIwQYMBaAFGibQ7SOER5p8d95zKIRzLQmWiZ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhDNC9EODk0N0VCODMw RDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0UkhtbngzM25Nb2hITXRDWmFK bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FKdER0STRSSG1ueDMzbk1vaEhNdENaYUpucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg4QzQvRDg5NDdFQjgzMEQ5MTFFQjg3RTA5MzUzQzRGOUFFMDIvNTZGQjNCQTYz MERCMTFFQkIzNkNBQjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnnxowDQQCAAIwBwMFACQGyMAwDQYJKoZIhvcNAQELBQAD ggEBAAbvKCSjoJSOmnFeq3qr6dU0mR8/IA43z/pTAtdFbZ5WmFEAvlwnWt/YEXmT 2sDPFt7bWFop4nK0Mj7NrOeBzcNIZWQwCMchGQI2l996ACLpFYuZiipHFGBsEHtw PZIVynrjVM6F2etXhw1KKlEeyqF66wfw1xV1mUhm0HQHrP/lxrYmLFfxFD/+TPn6 /DMhhE1cHsKFTzLclCfQD6D/zj4pgfCLTvbsLPw5HJTHEBowb7FwSGDIyBxA4WP+ 0/T/rer4KzzUEbYy3ATW6gR2NSos3f1Rsxlgdtp7pZI5//rJ9cjU+NdzjLXMLfau rJ0DaZwlFLt9v+4N8VhsHcjin5o= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:09 2024 by rpki-client on console-fra.rpki-client.org