$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/F57B503EB05F11EEB6F38532C4F9AE02.roa File: F57B503EB05F11EEB6F38532C4F9AE02.roa (raw, json) Hash identifier: Oms7A+5CbFEtaIgmT8kB8Ycz88DQ95dp9Wjdw3xeV+w= Subject key identifier: 73:E9:C6:50:13:C7:5C:5A:E9:90:F8:BE:93:C0:27:8B:A8:28:C1:0D Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 75 Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/F57B503EB05F11EEB6F38532C4F9AE02.roa Signing time: Thu 01 Aug 2024 07:08:40 +0000 ROA not before: Thu 01 Aug 2024 07:08:40 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151630 IP address blocks: 103.141.220.0/23 maxlen: 23 103.141.220.0/24 maxlen: 24 103.141.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: Aug 1 07:08:40 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ab3478-07e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:73:4c:61:61:12:96:74:d2:45:da:d7:a4:43: 1b:4b:66:da:a0:8f:ec:f7:68:79:67:6b:fa:73:7e: dd:d6:b4:95:6d:ea:ec:6e:4e:65:f9:a4:53:aa:73: 83:92:78:53:8d:a5:b7:ff:66:2e:e3:29:41:d1:5e: e7:db:a1:27:fd:6d:9a:d0:e6:a2:ff:ff:80:b0:15: fc:2e:f3:24:48:4a:53:7b:22:c0:a7:bd:d5:f6:48: 55:3f:94:72:3e:fa:a0:dd:cc:eb:1a:8d:bc:38:ad: f3:17:05:48:18:93:2b:b2:38:51:45:45:10:db:c6: 00:e6:dd:46:58:a7:54:5e:dd:2e:87:97:4d:e2:7e: 76:15:fa:d8:e9:6f:2c:b2:fe:4c:10:08:9b:86:33: b9:e5:16:07:3b:04:95:7c:8a:b8:40:21:03:8b:33: 84:fc:ae:c0:5c:37:c9:43:f9:c0:36:68:9d:bd:5f: 60:ff:8b:4e:7b:57:0d:89:99:4e:5a:ba:48:43:d7: 6f:98:c7:f3:ec:90:7d:83:5a:ab:ae:2a:fb:4f:78: 76:fb:a0:e4:97:f3:79:7b:fd:8d:06:56:6e:bd:65: 2a:4b:80:79:3c:54:c1:6d:ee:37:9d:fa:4e:3a:18: 2b:27:01:ad:94:04:00:53:45:d0:60:71:e5:e4:26: 6a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E9:C6:50:13:C7:5C:5A:E9:90:F8:BE:93:C0:27:8B:A8:28:C1:0D X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/F57B503EB05F11EEB6F38532C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.220.0/23 Signature Algorithm: sha256WithRSAEncryption ad:9d:11:ce:f9:b0:46:42:d4:38:ff:b3:54:e5:f1:d4:b4:a0: ce:21:c5:ff:6c:cd:36:01:10:99:c5:5a:b4:c6:16:d3:ef:ba: fe:4c:53:7c:a8:13:2c:ea:7f:ca:19:5b:5f:b1:81:2d:47:af: 44:57:59:95:19:1a:6d:b9:12:08:36:bf:c9:33:5b:46:ad:77: ce:6f:0d:02:9f:e3:15:65:a0:b4:3b:25:03:e9:e3:19:c1:04: c7:d7:15:94:40:2b:1d:3d:22:e5:fd:d8:b1:c0:f3:20:8b:48: 46:5a:dc:14:59:20:59:56:77:d0:b7:e7:39:4e:b8:24:42:bb: 27:97:98:12:6b:38:cc:bc:c2:b5:c9:9b:17:03:b7:92:e6:f6: 30:7e:0a:30:0c:c8:cb:aa:19:5e:3b:d0:81:d5:0e:60:e3:eb: 1f:26:e9:a0:22:ca:88:a8:2e:a6:1f:98:71:b6:31:e5:4b:8c: 2d:f3:38:b7:ec:83:2d:47:31:06:ee:d1:2e:7a:59:72:35:c4: 9c:c4:07:01:ea:f6:71:e7:2e:70:63:d1:a2:9e:8d:c4:eb:a6: 02:84:49:34:03:d4:09:f7:b8:38:da:18:6a:be:ba:1e:18:b1: f6:a2:5f:2e:23:3f:77:87:63:28:68:06:ee:d4:2d:36:8c:d3: 2e:ec:98:0c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTFBMTExMC8GA1UEBRMoN0U3MUQ5RDE0NjEyMTdCMEY4MkMwN0IxNUM0RjAyOUYy NjcyNDk4QTAeFw0yNDA4MDEwNzA4NDBaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YWIzNDc4LTA3ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/c0xhYRKWdNJF2tekQxtLZtqgj+z3aHlna/pzft3WtJVt6uxuTmX5pFOqc4OS eFONpbf/Zi7jKUHRXufboSf9bZrQ5qL//4CwFfwu8yRISlN7IsCnvdX2SFU/lHI+ +qDdzOsajbw4rfMXBUgYkyuyOFFFRRDbxgDm3UZYp1Re3S6Hl03ifnYV+tjpbyyy /kwQCJuGM7nlFgc7BJV8irhAIQOLM4T8rsBcN8lD+cA2aJ29X2D/i057Vw2JmU5a ukhD12+Yx/PskH2DWquuKvtPeHb7oOSX83l7/Y0GVm69ZSpLgHk8VMFt7jed+k46 GCsnAa2UBABTRdBgceXkJmofAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUc+nGUBPH XFrpkPi+k8Ani6gowQ0wHwYDVR0jBBgwFoAUfnHZ0UYSF7D4LAexXE8CnyZySYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMUExL0E5QjczQ0E4QjA1 RjExRUU5OUM2NTQ3N0M0RjlBRTAyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZm5IWjBVWVNGN0Q0TEFleFhFOENueVp5U1lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9GNTdCNTAzRUIw NUYxMUVFQjZGMzg1MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeN3DANBgkqhkiG9w0BAQsFAAOCAQEArZ0RzvmwRkLUOP+z VOXx1LSgziHF/2zNNgEQmcVatMYW0++6/kxTfKgTLOp/yhlbX7GBLUevRFdZlRka bbkSCDa/yTNbRq13zm8NAp/jFWWgtDslA+njGcEEx9cVlEArHT0i5f3YscDzIItI RlrcFFkgWVZ30LfnOU64JEK7J5eYEms4zLzCtcmbFwO3kub2MH4KMAzIy6oZXjvQ gdUOYOPrHybpoCLKiKguph+YcbYx5UuMLfM4t+yDLUcxBu7RLnpZcjXEnMQHAer2 cecucGPRop6NxOumAoRJNAPUCfe4ONoYar66Hhix9qJfLiM/d4djKGgG7tQtNozT LuyYDA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:02 2024 by rpki-client on console-fra.rpki-client.org