$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0CF9929A779411ECA4A8DC5BC4F9AE02.roa File: 0CF9929A779411ECA4A8DC5BC4F9AE02.roa (raw, json) Hash identifier: 6eyXKFCxNqi+LCbBtmeQCLA0NV2B8ePAfiIjfOXAYUg= Subject key identifier: 64:C1:64:17:CD:64:45:55:CB:AD:21:78:BC:38:A2:1B:1A:16:CE:EA Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4663 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0CF9929A779411ECA4A8DC5BC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:13 +0000 ROA not before: Thu 05 Sep 2024 03:36:13 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55305 IP address blocks: 103.133.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18019 (0x4663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:13 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9272c-9610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e1:55:47:a1:ba:5e:08:9b:e6:99:36:de:1e: c5:4b:9a:7f:36:5f:f2:71:39:78:b3:33:04:d1:9e: 28:c1:4c:22:a2:50:c8:8b:3a:d8:70:cc:cb:45:f9: a2:17:8a:70:bc:35:ff:77:bf:1d:36:c8:4a:5b:5d: be:95:ae:a0:7c:54:6b:64:f9:5f:39:af:71:a7:81: 11:2d:4a:16:f1:af:98:1d:4d:90:c5:aa:69:77:e0: f6:4b:5b:6a:af:d9:ce:01:46:26:ea:03:39:e7:58: 17:14:81:d8:0c:6d:a6:f5:85:db:b3:25:f6:9d:c3: a5:57:ae:33:24:73:3e:aa:9f:4e:80:2c:f6:41:47: 35:91:c4:86:18:51:35:0c:12:2a:a7:4f:b2:30:07: 2b:88:2f:ee:ce:12:e4:17:62:30:55:19:06:a9:6e: 76:fe:75:04:64:37:f3:65:95:bd:07:ea:1c:8d:f1: 05:6e:d8:ec:3b:73:cb:1c:ef:a0:1c:23:a0:65:cd: 85:91:cd:cd:9a:31:e7:13:75:d6:3c:9d:8e:05:0d: b4:6e:26:5e:ac:81:7c:d0:8e:b4:d5:43:a6:3b:70: e5:48:53:b3:23:a9:c6:72:44:eb:ca:f8:48:8a:d0: 79:6a:7e:5b:40:e2:1b:49:01:08:2e:64:ff:53:49: a3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C1:64:17:CD:64:45:55:CB:AD:21:78:BC:38:A2:1B:1A:16:CE:EA X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0CF9929A779411ECA4A8DC5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.100.0/22 Signature Algorithm: sha256WithRSAEncryption 54:0f:83:5a:f1:e3:89:4d:6c:b5:5f:b7:29:35:75:eb:9e:54: e9:98:67:cc:a4:7d:91:d9:9d:a1:73:d5:cb:c2:26:ff:cb:09: a6:42:ba:15:5f:e7:6f:44:77:40:72:1f:6b:a3:dc:c1:2f:1e: 62:73:23:89:74:b5:c5:f4:07:b7:9e:58:8b:de:70:14:98:d0: 79:40:ee:58:6a:f9:c8:5a:88:81:28:96:6a:e9:6b:a6:09:df: 82:da:ee:56:2b:c7:45:8c:bf:e7:20:5d:7c:42:9e:dc:3c:2a: 56:6c:82:f5:6c:2a:8e:fd:0f:67:d4:a3:ba:39:2e:a8:4e:b8: 08:93:8b:8c:fb:d2:ee:ad:f7:a4:36:e4:9c:87:d1:d5:68:60: cf:61:dd:60:12:2e:61:ea:55:ae:77:b1:30:a0:73:14:b6:f3: 35:4c:23:13:64:98:dc:27:03:eb:14:87:41:a3:b4:eb:3e:a3: 8f:dc:d3:bc:48:14:c8:01:26:21:5c:db:b0:6b:6b:27:de:a1: 7e:c3:7b:0a:59:33:a1:b3:01:45:0f:2f:88:d5:2a:e6:72:61: 0a:7e:a9:56:26:91:34:8e:f5:07:40:80:e1:2d:61:a4:c5:7e: d8:70:07:d6:9b:ff:32:b9:3b:db:a6:db:65:f2:db:ee:a3:36: 31:0f:ba:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjEzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcyYy05NjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uFVR6G6Xgib5pk23h7FS5p/Nl/ycTl4szME0Z4owUwiolDIizrYcMzLRfmi F4pwvDX/d78dNshKW12+la6gfFRrZPlfOa9xp4ERLUoW8a+YHU2Qxappd+D2S1tq r9nOAUYm6gM551gXFIHYDG2m9YXbsyX2ncOlV64zJHM+qp9OgCz2QUc1kcSGGFE1 DBIqp0+yMAcriC/uzhLkF2IwVRkGqW52/nUEZDfzZZW9B+ocjfEFbtjsO3PLHO+g HCOgZc2Fkc3NmjHnE3XWPJ2OBQ20biZerIF80I601UOmO3DlSFOzI6nGckTryvhI itB5an5bQOIbSQEILmT/U0mj2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGTBZBfN ZEVVy60heLw4ohsaFs7qMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMENGOTkyOUE3 Nzk0MTFFQ0E0QThEQzVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhWQwDQYJKoZIhvcNAQELBQADggEBAFQPg1rx44lNbLVf tyk1deueVOmYZ8ykfZHZnaFz1cvCJv/LCaZCuhVf529Ed0ByH2uj3MEvHmJzI4l0 tcX0B7eeWIvecBSY0HlA7lhq+chaiIEolmrpa6YJ34La7lYrx0WMv+cgXXxCntw8 KlZsgvVsKo79D2fUo7o5LqhOuAiTi4z70u6t96Q25JyH0dVoYM9h3WASLmHqVa53 sTCgcxS28zVMIxNkmNwnA+sUh0GjtOs+o4/c07xIFMgBJiFc27BrayfeoX7DewpZ M6GzAUUPL4jVKuZyYQp+qVYmkTSO9QdAgOEtYaTFfthwB9ab/zK5O9um22Xy2+6j NjEPuvQ= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:31 2024 by rpki-client on console-ams.rpki-client.org