$ rpki-client -vvf rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/F71189FC0C3211EF98143258C4F9AE02.roa File: F71189FC0C3211EF98143258C4F9AE02.roa (raw, json) Hash identifier: S78XVMgt4JzmopjTDOBSEYPNBtrrlKztE7Y8WCRhCAo= Subject key identifier: D2:FC:6B:02:AA:DD:A4:2E:01:B1:E1:41:95:84:F8:E8:C2:9A:28:CE Certificate issuer: /CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Certificate serial: 53 Authority key identifier: 8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/F71189FC0C3211EF98143258C4F9AE02.roa Signing time: Thu 29 Aug 2024 08:21:43 +0000 ROA not before: Thu 29 Aug 2024 08:21:43 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 55649 IP address blocks: 103.215.40.0/22 maxlen: 24 144.48.216.0/22 maxlen: 24 223.255.240.0/22 maxlen: 24 2001:df0:a300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Validity Not Before: Aug 29 08:21:43 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=66d02f97-1e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:67:ce:ba:af:e9:5e:51:c2:70:70:29:55:67: 1a:9f:5f:1d:0f:ee:7d:9f:ef:1a:96:11:ac:0a:fd: 91:2f:43:b1:c0:68:18:05:af:be:fb:c6:79:5f:b9: 4c:d2:7c:2d:bb:c0:88:b2:d5:db:47:00:7f:5a:65: 5a:6c:2d:f6:c2:16:09:a2:50:06:b9:3c:47:6d:a1: a4:9d:c3:21:cc:a7:a8:f7:1f:53:c8:ef:90:80:37: fc:5c:7b:e0:70:f9:70:97:2d:18:4c:b7:65:bc:26: 7b:e2:f1:3f:fe:f4:84:88:1d:31:aa:d8:9e:c3:57: 41:8d:3a:d0:12:d0:43:59:bd:6c:c9:de:8c:10:23: cd:a1:0a:55:56:b9:4c:2f:c0:fa:6f:11:f6:4e:8b: 5e:c9:01:3a:12:bd:db:24:71:0a:7c:dc:0d:51:7b: 83:df:46:90:8e:c2:6b:2a:75:6c:d4:af:78:79:39: 0b:77:49:67:d1:57:07:fc:9a:20:69:32:05:0a:e2: 47:08:9c:6f:bd:02:d0:c8:2c:80:e7:62:a1:8d:1d: 81:7d:cf:6a:59:b4:17:69:b4:74:a3:9f:fc:9b:a3: 5b:d0:f4:1b:49:6f:f1:54:2f:ff:71:28:aa:9b:ec: 81:c6:d7:58:9a:b4:bb:95:da:ce:a2:10:8e:7a:83: a9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:FC:6B:02:AA:DD:A4:2E:01:B1:E1:41:95:84:F8:E8:C2:9A:28:CE X509v3 Authority Key Identifier: keyid:8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/F71189FC0C3211EF98143258C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.40.0/22 144.48.216.0/22 223.255.240.0/22 IPv6: 2001:df0:a300::/48 Signature Algorithm: sha256WithRSAEncryption 1c:b5:47:3a:86:3e:80:d0:1c:b9:34:2e:0e:6a:3e:55:b5:b0: 60:96:ac:15:b8:97:2c:d1:2d:2d:94:47:94:8a:13:dc:d5:26: a8:b8:d1:e2:a8:fe:33:45:58:b5:e7:e5:5f:f5:5e:a8:e8:f7: 9a:4f:05:57:4d:90:3a:57:51:86:9c:78:48:b9:89:fb:ea:c5: 01:28:53:62:c4:41:3b:a2:0b:5f:2d:4c:69:58:5f:c8:7f:9a: f1:d0:cb:6b:69:59:17:eb:55:2e:9b:ad:92:dc:be:81:f0:81: 2c:67:94:b8:b2:47:98:28:5e:64:92:3b:1f:5c:1f:3b:96:cd: 88:e2:f8:44:2b:16:94:8d:dd:a3:12:db:c5:4e:83:1e:2a:85: c9:9f:6e:21:2d:74:2a:b1:7b:ca:55:1e:6c:4a:97:c3:7f:18: c0:7f:de:6a:6b:65:e2:ca:f9:a4:11:ad:13:01:71:d4:ff:d2: f9:00:43:a5:aa:6e:db:aa:6a:07:8c:d9:0a:f0:d0:60:68:23: 5f:c6:91:16:1c:cf:cc:e2:41:05:3b:fa:2d:ea:88:22:dd:b6: b8:e4:84:23:2d:96:e9:23:1e:4f:2d:51:cd:4a:97:e1:e8:4e: 7e:63:90:f6:79:74:7c:f5:5e:a6:67:15:cd:ad:1c:34:2e:56: 48:23:12:ea -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDZGNjExMC8GA1UEBRMoOERFODJFRkY2MjM0RDc5QjdBNjVGQTYwQTA1MzAwN0RB ODI4MUZDQzAeFw0yNDA4MjkwODIxNDNaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDAyZjk3LTFlNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyZ866r+leUcJwcClVZxqfXx0P7n2f7xqWEawK/ZEvQ7HAaBgFr777xnlfuUzS fC27wIiy1dtHAH9aZVpsLfbCFgmiUAa5PEdtoaSdwyHMp6j3H1PI75CAN/xce+Bw +XCXLRhMt2W8Jnvi8T/+9ISIHTGq2J7DV0GNOtAS0ENZvWzJ3owQI82hClVWuUwv wPpvEfZOi17JAToSvdskcQp83A1Re4PfRpCOwmsqdWzUr3h5OQt3SWfRVwf8miBp MgUK4kcInG+9AtDILIDnYqGNHYF9z2pZtBdptHSjn/ybo1vQ9BtJb/FUL/9xKKqb 7IHG11iatLuV2s6iEI56g6lBAgMBAAGjggKyMIICrjAdBgNVHQ4EFgQU0vxrAqrd pC4BseFBlYT46MKaKM4wHwYDVR0jBBgwFoAUjegu/2I015t6ZfpgoFMAfagoH8ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0NkY2L0Y0QTFCMkQ4MEMx ODExRUY5RkY3MDE0MUM0RjlBRTAyL2plZ3VfMkkwMTV0NlpmcGdvRk1BZmFnb0g4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamVndV8ySTAxNXQ2WmZwZ29GTUFmYWdvSDh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDZGNi9GNEExQjJEODBDMTgxMUVGOUZGNzAxNDFDNEY5QUUwMi9GNzExODlGQzBD MzIxMUVGOTgxNDMyNThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA8BggrBgEFBQcBBwEB/wQt MCswGAQCAAEwEgMEAmfXKAMEApAw2AMEAt//8DAPBAIAAjAJAwcAIAEN8KMAMA0G CSqGSIb3DQEBCwUAA4IBAQActUc6hj6A0By5NC4Oaj5VtbBglqwVuJcs0S0tlEeU ihPc1SaouNHiqP4zRVi15+Vf9V6o6PeaTwVXTZA6V1GGnHhIuYn76sUBKFNixEE7 ogtfLUxpWF/If5rx0MtraVkX61Uum62S3L6B8IEsZ5S4skeYKF5kkjsfXB87ls2I 4vhEKxaUjd2jEtvFToMeKoXJn24hLXQqsXvKVR5sSpfDfxjAf95qa2XiyvmkEa0T AXHU/9L5AEOlqm7bqmoHjNkK8NBgaCNfxpEWHM/M4kEFO/ot6ogi3ba45IQjLZbp Ix5PLVHNSpfh6E5+Y5D2eXR89V6mZxXNrRw0LlZIIxLq -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:14 2024 by rpki-client on console-ams.rpki-client.org