$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0B7FD7B0740A11EFBDFF2C20C4F9AE02.roa File: 0B7FD7B0740A11EFBDFF2C20C4F9AE02.roa (raw, json) Hash identifier: RDAHiPqFlJf1dCU/LpWnDMQLYNP7Zoj2uri2Dm7Hhs4= Subject key identifier: EF:50:4A:CE:9F:A6:E3:2D:7D:E8:75:A2:02:FB:29:FA:C3:EC:92:4C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 46CF Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0B7FD7B0740A11EFBDFF2C20C4F9AE02.roa Signing time: Mon 16 Sep 2024 08:59:57 +0000 ROA not before: Mon 16 Sep 2024 08:59:57 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131411 IP address blocks: 103.232.60.0/22 maxlen: 22 2001:df4:d200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Dec 2024 04:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18127 (0x46cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 16 08:59:57 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e7f38c-67d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d5:09:35:e4:c1:77:a1:c4:e0:b2:3b:dd:56: ce:3d:a6:a1:77:ab:bd:be:a3:d0:b7:fd:6e:dc:ac: 0f:2e:c1:86:43:61:94:7b:ed:91:bc:b0:45:58:bc: 88:5e:14:79:46:e6:08:5f:eb:5d:e7:ca:ac:9f:b6: 66:f0:df:2c:a6:58:4b:de:e2:56:be:19:fb:dc:08: 66:2d:39:fc:79:8f:b3:52:bf:b3:26:8f:ae:91:62: fd:6a:5e:b3:b8:80:74:e9:a3:d3:62:c4:73:73:fb: 6b:dd:8d:70:37:ff:d5:63:da:82:89:0c:36:51:72: a8:21:3c:11:a9:58:b1:8d:cd:6e:8b:01:87:a9:5e: 6a:80:80:5e:96:c5:a7:d9:44:ef:ef:89:61:eb:6e: 50:0c:32:4d:59:50:78:9a:db:cc:d6:0c:ae:93:89: eb:da:79:cd:eb:04:b6:f2:a2:84:2e:60:0a:52:7c: 47:ae:f3:42:b6:f3:0c:15:ee:e9:71:2c:13:9a:b3: 11:e9:40:50:22:2a:f7:63:c9:d1:93:9c:80:df:e3: bc:1d:7c:2e:03:2a:c6:c5:b7:1a:32:0c:24:bb:64: 70:47:a2:7a:00:65:f3:98:af:e8:af:a7:fa:84:0d: 12:80:bf:66:7f:8a:9a:63:63:61:60:c4:7b:35:75: 8a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:50:4A:CE:9F:A6:E3:2D:7D:E8:75:A2:02:FB:29:FA:C3:EC:92:4C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0B7FD7B0740A11EFBDFF2C20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.60.0/22 IPv6: 2001:df4:d200::/48 Signature Algorithm: sha256WithRSAEncryption 16:07:94:12:ec:19:8c:65:28:39:1e:04:70:4d:10:8d:6f:dd: e9:a7:b5:84:6f:2c:b8:b9:99:ca:1a:aa:3e:49:73:e5:4c:32: 97:5a:0f:b2:cc:9a:3a:8c:3d:99:67:c6:ad:4b:4e:53:b4:f2: a0:85:f0:66:56:0d:ac:0f:b9:98:48:05:1c:b5:fd:db:84:6f: 61:55:38:dd:e9:f0:1f:93:45:f4:c8:3f:72:88:22:ce:08:64: 2d:01:81:5e:ca:92:83:d2:6f:74:8d:20:ae:81:6b:f2:0f:ae: 45:4f:92:20:72:46:3c:6b:e1:e7:b0:e8:f1:61:ba:72:81:e2: fc:2a:04:68:76:df:f5:96:80:6d:4d:74:6f:11:9f:47:a4:2a: 1d:da:7c:64:4f:81:90:79:91:46:ed:32:fd:3c:ab:91:71:7a: 1e:ca:85:1e:65:b3:f2:4b:4b:1a:dd:fb:64:8f:f4:07:6d:d8: ec:35:7f:bb:5a:87:0a:17:4e:b9:91:b9:26:3f:be:7f:a0:ad: 5f:9d:7e:92:9d:4e:a8:be:65:7c:22:00:b3:16:75:76:15:d8: a1:e2:2e:bc:0a:ba:0b:b0:19:b5:d1:31:26:2b:4f:d3:48:77: df:8f:71:fd:ae:64:77:bf:28:62:45:ea:86:03:a8:7a:0e:e2: 32:02:3b:7c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTE2MDg1OTU3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU3ZjM4Yy02N2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdUJNeTBd6HE4LI73VbOPaahd6u9vqPQt/1u3KwPLsGGQ2GUe+2RvLBFWLyI XhR5RuYIX+td58qsn7Zm8N8splhL3uJWvhn73AhmLTn8eY+zUr+zJo+ukWL9al6z uIB06aPTYsRzc/tr3Y1wN//VY9qCiQw2UXKoITwRqVixjc1uiwGHqV5qgIBelsWn 2UTv74lh625QDDJNWVB4mtvM1gyuk4nr2nnN6wS28qKELmAKUnxHrvNCtvMMFe7p cSwTmrMR6UBQIir3Y8nRk5yA3+O8HXwuAyrGxbcaMgwku2RwR6J6AGXzmK/or6f6 hA0SgL9mf4qaY2NhYMR7NXWKWwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO9QSs6f puMtfeh1ogL7KfrD7JJMMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMEI3RkQ3QjA3 NDBBMTFFRkJERkYyQzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJn6DwwDwQCAAIwCQMHACABDfTSADANBgkqhkiG9w0BAQsF AAOCAQEAFgeUEuwZjGUoOR4EcE0QjW/d6ae1hG8suLmZyhqqPklz5Uwyl1oPssya Oow9mWfGrUtOU7TyoIXwZlYNrA+5mEgFHLX924RvYVU43enwH5NF9Mg/cogizghk LQGBXsqSg9JvdI0groFr8g+uRU+SIHJGPGvh57Do8WG6coHi/CoEaHbf9ZaAbU10 bxGfR6QqHdp8ZE+BkHmRRu0y/TyrkXF6HsqFHmWz8ktLGt37ZI/0B23Y7DV/u1qH ChdOuZG5Jj++f6CtX51+kp1OqL5lfCIAsxZ1dhXYoeIuvAq6C7AZtdExJitP00h3 349x/a5kd78oYkXqhgOoeg7iMgI7fA== -----END CERTIFICATE-----Generated at Fri Nov 29 05:58:39 2024 by rpki-client on console-fra.rpki-client.org