$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0920F6E27D8D11EBB267662EC4F9AE02.roa File: 0920F6E27D8D11EBB267662EC4F9AE02.roa (raw, json) Hash identifier: BV3Bc4UiGcNBhdSykA9EWHiicpoPYkb9TEcywdhN5OI= Subject key identifier: B7:D2:48:00:06:6D:9E:B2:70:1B:92:37:AE:59:19:57:88:A4:4A:FD Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4598 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0920F6E27D8D11EBB267662EC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:16 +0000 ROA not before: Thu 05 Sep 2024 03:33:16 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140770 IP address blocks: 103.161.38.0/23 maxlen: 24 103.165.142.0/23 maxlen: 24 103.176.144.0/23 maxlen: 24 2400:32e0::/48 maxlen: 48 2407:4940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Dec 2024 04:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17816 (0x4598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:16 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9267b-a302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:95:ab:9b:8e:8f:61:c3:f9:6a:57:d6:3b:11: ed:b6:7f:cf:26:f4:bd:4e:50:2d:de:86:e5:8d:d1: 10:16:e7:9b:07:42:a6:a7:34:63:af:d7:0b:21:94: 5d:ac:60:27:2d:3b:03:33:29:79:a4:d6:23:ff:29: 9e:cf:f6:64:86:51:f6:b9:70:f8:81:d9:39:c6:bc: 24:b0:93:fc:69:b4:70:30:be:0c:b3:a2:40:14:bc: f1:54:bb:8d:a7:e5:74:16:55:ea:29:fa:f2:2c:b7: 53:f3:7e:a6:88:a4:e1:ac:1a:a5:b7:99:05:bc:23: aa:ce:b7:74:de:c7:61:f6:9c:f9:37:e2:6d:93:9a: cb:06:36:e2:45:0f:f6:04:8c:d5:c5:b8:f2:c2:f9: ac:23:f5:06:e8:ac:60:53:ae:79:f4:0a:ee:c0:83: e9:54:f1:54:f5:4d:40:c8:a9:56:dd:a4:de:ec:eb: 7f:6f:dc:cc:28:7b:92:f4:28:9b:46:a1:83:f5:66: 2e:e1:5a:10:21:73:00:19:be:04:bd:e2:21:df:9b: 54:90:d8:8d:4b:e1:46:36:4b:77:d5:80:bd:3d:21: 63:3c:56:f1:c2:8f:53:83:64:28:1d:44:66:c2:6f: f3:6a:c6:80:0f:8e:b0:63:04:eb:7b:2d:77:3a:83: fd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D2:48:00:06:6D:9E:B2:70:1B:92:37:AE:59:19:57:88:A4:4A:FD X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0920F6E27D8D11EBB267662EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.38.0/23 103.165.142.0/23 103.176.144.0/23 IPv6: 2400:32e0::/48 2407:4940::/48 Signature Algorithm: sha256WithRSAEncryption 53:83:0d:ca:8c:1a:4b:01:96:14:e6:fc:37:bb:39:71:27:86: da:d1:1f:c6:3f:fd:d1:ac:64:de:c8:5d:26:bb:08:7f:2d:4d: f5:63:53:cb:67:92:0d:aa:88:26:c4:c0:4e:ef:fb:db:7c:4b: fb:00:08:92:a6:89:02:ff:ab:a4:21:fd:6c:37:23:7a:61:0f: 20:fb:af:82:bb:9b:42:fa:0e:04:66:e3:51:92:bf:bc:06:4f: b5:3d:6f:21:a7:50:35:34:70:52:63:e4:2a:90:a6:70:a4:d5: 26:ec:84:1d:ef:f5:d4:38:a1:fb:b4:38:2c:9d:09:31:13:13: e4:37:64:7f:f4:70:0e:4a:f2:48:de:0b:a1:10:18:2e:9c:9d: af:97:e7:17:90:b7:34:be:3a:93:14:8a:87:74:f6:8a:0f:76: e5:3f:52:bf:c8:65:a2:cc:05:45:aa:6f:7f:d3:82:fc:67:2e: f9:64:c9:95:07:e1:bd:17:43:c2:07:43:0b:ca:cf:c5:1d:cb: 0d:cf:05:ea:34:d8:11:93:c2:60:54:11:07:82:0e:7e:3e:f7: 2b:9a:db:9b:7b:74:6b:47:15:ae:11:f9:a6:1d:ae:ee:56:36: 7f:2f:50:bb:b0:51:97:69:db:23:a8:97:93:cd:66:df:91:fa: f5:4a:a1:63 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICRZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzE2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY3Yi1hMzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5Wrm46PYcP5alfWOxHttn/PJvS9TlAt3obljdEQFuebB0KmpzRjr9cLIZRd rGAnLTsDMyl5pNYj/ymez/ZkhlH2uXD4gdk5xrwksJP8abRwML4Ms6JAFLzxVLuN p+V0FlXqKfryLLdT836miKThrBqlt5kFvCOqzrd03sdh9pz5N+Jtk5rLBjbiRQ/2 BIzVxbjywvmsI/UG6KxgU6559AruwIPpVPFU9U1AyKlW3aTe7Ot/b9zMKHuS9Cib RqGD9WYu4VoQIXMAGb4EveIh35tUkNiNS+FGNkt31YC9PSFjPFbxwo9Tg2QoHURm wm/zasaAD46wYwTrey13OoP9zwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFLfSSAAG bZ6ycBuSN65ZGVeIpEr9MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMDkyMEY2RTI3 RDhEMTFFQkIyNjc2NjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAFnoSYDBAFnpY4DBAFnsJAwGAQCAAIwEgMHACQAMuAAAAMH ACQHSUAAADANBgkqhkiG9w0BAQsFAAOCAQEAU4MNyowaSwGWFOb8N7s5cSeG2tEf xj/90axk3shdJrsIfy1N9WNTy2eSDaqIJsTATu/723xL+wAIkqaJAv+rpCH9bDcj emEPIPuvgrubQvoOBGbjUZK/vAZPtT1vIadQNTRwUmPkKpCmcKTVJuyEHe/11Dih +7Q4LJ0JMRMT5Ddkf/RwDkrySN4LoRAYLpydr5fnF5C3NL46kxSKh3T2ig925T9S v8hloswFRapvf9OC/Gcu+WTJlQfhvRdDwgdDC8rPxR3LDc8F6jTYEZPCYFQRB4IO fj73K5rbm3t0a0cVrhH5ph2u7lY2fy9Qu7BRl2nbI6iXk81m35H69UqhYw== -----END CERTIFICATE-----Generated at Fri Nov 29 05:58:39 2024 by rpki-client on console-fra.rpki-client.org