$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/0FBB769A5DDB11EEAEEA437DC4F9AE02.roa File: 0FBB769A5DDB11EEAEEA437DC4F9AE02.roa (raw, json) Hash identifier: 22JLLHDDivPS+exWd4wVWjMfX8Vk/x1LDA48sqpY1E8= Subject key identifier: F1:52:4A:A3:AC:D3:C5:84:3A:C3:5D:E2:56:A8:06:ED:23:1D:57:1D Certificate issuer: /CN=A91A0848/serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Certificate serial: F6 Authority key identifier: 02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/0FBB769A5DDB11EEAEEA437DC4F9AE02.roa Signing time: Mon 05 Feb 2024 05:06:38 +0000 ROA not before: Mon 05 Feb 2024 05:06:38 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 38264 IP address blocks: 103.52.34.0/24 maxlen: 24 103.52.35.0/24 maxlen: 24 2001:df1:ac40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0848/serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Validity Not Before: Feb 5 05:06:38 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c06cde-aaa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:27:c0:e1:75:ad:d4:4f:b8:0c:ba:90:ed:cc: 50:f0:be:7f:ac:12:78:25:a2:b7:c5:80:4a:83:d5: 34:ba:65:13:a2:18:e7:fe:d2:04:a0:71:0c:14:ad: 3c:56:a4:ba:a9:d1:ea:7a:5a:3c:b7:84:94:72:63: 21:2b:78:b3:a4:ad:4f:eb:fe:9b:18:6a:bb:c6:50: c1:6a:8f:00:93:82:89:87:ed:75:cb:f8:bf:38:6b: 4c:0c:ff:2b:f8:ec:31:1b:7e:8d:d6:aa:90:a3:f4: 02:a2:be:42:3b:bb:ab:fe:19:5a:01:2e:38:18:9a: 32:55:11:23:7c:67:e6:80:c3:99:ed:a7:65:5a:9f: ab:72:4d:f4:2f:ba:b9:23:df:b6:f1:ff:d4:bc:7d: 8e:98:8a:48:c1:0a:aa:9d:5b:cf:80:55:3d:21:1e: 6c:54:b1:7f:f1:85:f7:79:a7:8c:9a:ca:5e:83:ab: 69:ab:44:67:c6:36:f1:0a:7a:af:ef:2b:dc:93:de: 1f:ee:fe:23:b6:6b:03:82:a6:c3:69:81:de:12:96: 64:e4:44:4a:3a:18:ca:8b:50:7f:cf:1a:4d:f9:fa: 6d:1f:a3:17:4b:52:3b:70:19:80:37:56:83:d4:b4: 67:d2:9c:7f:17:29:a9:74:2b:44:ef:d8:6e:43:34: 9f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:52:4A:A3:AC:D3:C5:84:3A:C3:5D:E2:56:A8:06:ED:23:1D:57:1D X509v3 Authority Key Identifier: keyid:02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/0FBB769A5DDB11EEAEEA437DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.34.0/23 IPv6: 2001:df1:ac40::/48 Signature Algorithm: sha256WithRSAEncryption ad:ba:17:2c:c3:12:16:a2:7d:0a:c7:f8:47:cb:e2:5d:e3:97: 24:20:1f:da:df:d6:ee:72:c9:d4:a4:b2:36:f3:02:dc:2b:d0: 69:a2:d1:4b:25:a6:c6:24:78:b3:02:2a:2b:37:b7:61:5f:89: d6:aa:f6:b9:7e:4a:f4:76:cf:83:d9:00:0e:dc:20:37:ed:b4: 08:81:6d:00:af:5c:f0:9b:64:38:fb:2c:f9:f6:fd:21:c4:92: d6:4c:a8:72:2f:2c:ed:11:64:58:a5:37:c5:91:c7:aa:73:82: 88:d7:98:02:22:6b:43:d4:3c:eb:0e:83:e9:52:88:e0:ae:38: a0:af:39:12:8c:67:e2:41:12:4f:04:e9:2f:7a:1f:32:06:d7: 5a:7c:15:ac:15:30:71:43:ff:cf:23:66:4d:4e:59:b4:06:af: 7a:7a:af:2b:e4:c9:81:81:5e:60:d2:7d:de:b9:5b:02:8a:be: 45:96:0a:eb:98:ff:74:58:ac:67:f4:0b:5c:cf:96:f0:73:55: 2d:62:3d:8c:ea:de:77:d1:3a:b6:b5:8d:5e:ba:00:f3:e4:78: 59:30:7b:cd:36:aa:18:48:c8:f4:e9:f4:5b:c4:45:67:04:12: 01:03:22:7e:d4:b3:48:7d:93:20:87:6f:eb:3e:13:18:92:0b: db:fb:ea:cc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4NDgxMTAvBgNVBAUTKDAyNDIyOUM4MUFDMzUzNUEyMUQ2MEUyREMzMkE5Qjg4 QkQ2QUQ4MUYwHhcNMjQwMjA1MDUwNjM4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMwNmNkZS1hYWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCfA4XWt1E+4DLqQ7cxQ8L5/rBJ4JaK3xYBKg9U0umUTohjn/tIEoHEMFK08 VqS6qdHqelo8t4SUcmMhK3izpK1P6/6bGGq7xlDBao8Ak4KJh+11y/i/OGtMDP8r +OwxG36N1qqQo/QCor5CO7ur/hlaAS44GJoyVREjfGfmgMOZ7adlWp+rck30L7q5 I9+28f/UvH2OmIpIwQqqnVvPgFU9IR5sVLF/8YX3eaeMmspeg6tpq0RnxjbxCnqv 7yvck94f7v4jtmsDgqbDaYHeEpZk5ERKOhjKi1B/zxpN+fptH6MXS1I7cBmAN1aD 1LRn0px/FympdCtE79huQzSfgwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPFSSqOs 08WEOsNd4laoBu0jHVcdMB8GA1UdIwQYMBaAFAJCKcgaw1NaIdYOLcMqm4i9atgf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDg0OC82NEQ4QjFERTc3 RTQxMUVEOTdGNTkzNERDNEY5QUUwMi9Ba0lweUJyRFUxb2gxZzR0d3lxYmlMMXEy QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FrSXB5QnJEVTFvaDFnNHR3eXFiaUwxcTJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4NDgvNjREOEIxREU3N0U0MTFFRDk3RjU5MzREQzRGOUFFMDIvMEZCQjc2OUE1 RERCMTFFRUFFRUE0MzdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnNCIwDwQCAAIwCQMHACABDfGsQDANBgkqhkiG9w0BAQsF AAOCAQEArboXLMMSFqJ9Csf4R8viXeOXJCAf2t/W7nLJ1KSyNvMC3CvQaaLRSyWm xiR4swIqKze3YV+J1qr2uX5K9HbPg9kADtwgN+20CIFtAK9c8JtkOPss+fb9IcSS 1kyoci8s7RFkWKU3xZHHqnOCiNeYAiJrQ9Q86w6D6VKI4K44oK85Eoxn4kESTwTp L3ofMgbXWnwVrBUwcUP/zyNmTU5ZtAavenqvK+TJgYFeYNJ93rlbAoq+RZYK65j/ dFisZ/QLXM+W8HNVLWI9jOred9E6trWNXroA8+R4WTB7zTaqGEjI9On0W8RFZwQS AQMiftSzSH2TIIdv6z4TGJIL2/vqzA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org