$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa File: 0ED0913840C211EEB6B1731BC4F9AE02.roa (raw, json) Hash identifier: WgtrQwfZ/XgnXHHY8+w47YiIJI5jIHqr+Y0Vs0uTkvo= Subject key identifier: FC:D2:8F:28:B9:00:93:E6:EC:56:14:70:64:32:46:6D:EE:44:8E:A7 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 456E Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:32:38 +0000 ROA not before: Thu 05 Sep 2024 03:32:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135932 IP address blocks: 103.70.12.0/23 maxlen: 23 103.140.249.0/24 maxlen: 24 103.147.122.0/24 maxlen: 24 103.155.160.0/24 maxlen: 24 103.155.161.0/24 maxlen: 24 2001:df4:4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17774 (0x456e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:32:38 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92655-7b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f5:7c:6d:4f:60:78:1e:54:e9:36:73:f7:a7: c6:a9:32:59:b2:80:82:25:05:74:f8:f2:c9:f0:a5: 3a:5c:57:e5:b6:f4:21:7d:1c:fb:8f:28:45:40:9c: dc:21:6e:5e:bd:d1:e9:ae:ad:31:90:05:52:0c:ba: 4c:58:7e:77:8e:7f:ff:1e:4f:dd:44:73:7f:80:e0: 3f:9e:d0:78:c4:10:29:09:71:d4:ad:b7:ff:bd:79: 7d:54:f5:c4:67:95:18:f7:b0:fc:be:58:cb:c6:5e: ce:ce:97:6c:c9:eb:5f:bf:0f:37:55:7a:37:f6:4c: e1:19:0b:be:b1:90:88:99:12:e2:d0:0d:51:85:2d: 19:8c:6a:76:9e:d3:8d:4b:bb:ef:dd:2c:1f:5d:90: 40:4b:7d:92:8c:07:c6:f7:6a:bd:d9:75:65:5c:7b: 40:4c:66:7f:75:ab:67:14:4a:33:f7:b2:1e:db:ee: ed:05:7f:d9:df:84:6c:78:7c:c8:e8:cf:d5:88:6b: 03:f6:08:f5:5e:38:ef:0c:11:00:da:21:40:8a:23: f7:f7:d0:57:de:44:76:92:39:ec:24:41:97:d1:5c: 84:69:c4:30:2e:d1:50:b4:71:e5:e3:c3:47:dc:f9: 8f:f2:c2:93:d6:59:e0:8f:fd:fb:98:b6:20:b9:98: d7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D2:8F:28:B9:00:93:E6:EC:56:14:70:64:32:46:6D:EE:44:8E:A7 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.12.0/23 103.140.249.0/24 103.147.122.0/24 103.155.160.0/23 IPv6: 2001:df4:4c0::/48 Signature Algorithm: sha256WithRSAEncryption 6c:9d:cd:ad:6a:81:a3:87:49:b9:05:1b:42:13:62:32:47:0b: bb:a7:60:4e:99:9f:92:c6:81:13:54:61:7c:46:86:83:96:9e: 3d:28:21:45:06:ef:91:c2:e6:30:2e:9a:37:b6:4a:b2:c9:98: ab:97:4a:a5:82:d7:c2:06:19:6e:d7:58:9d:7b:35:e3:b3:57: 94:e4:08:ab:9c:b4:44:e9:61:03:81:0c:e0:7f:c4:4b:95:2c: 14:0f:8c:69:c3:de:2c:05:ea:22:93:c2:4a:b3:27:97:9b:ff: aa:4b:f1:e4:4f:c1:fb:9a:ef:bb:ca:7b:08:04:aa:4a:89:4a: 08:6d:14:e4:ec:70:27:db:43:a6:78:12:f6:17:63:33:94:ea: e6:47:0e:0b:02:37:86:45:08:19:63:d3:3a:c0:a6:e8:20:54: 5e:de:b7:55:23:f4:af:20:f2:6a:83:54:09:48:dc:bc:52:21: 2d:ae:27:33:03:bd:8f:e9:c4:ee:d9:48:29:a3:d3:88:e1:f0: c3:d1:c7:45:3f:ae:e9:92:c9:d7:b8:3c:9e:0f:cd:eb:1f:16: cd:2a:ba:e8:5c:06:a2:69:04:39:0f:34:c9:ae:f0:4e:8e:75: 5f:fb:b2:52:4e:9c:c6:85:fb:ee:98:74:ca:51:6f:e6:6d:1e: 1d:ef:18:a2 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICRW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMjM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY1NS03YjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vV8bU9geB5U6TZz96fGqTJZsoCCJQV0+PLJ8KU6XFfltvQhfRz7jyhFQJzc IW5evdHprq0xkAVSDLpMWH53jn//Hk/dRHN/gOA/ntB4xBApCXHUrbf/vXl9VPXE Z5UY97D8vljLxl7Ozpdsyetfvw83VXo39kzhGQu+sZCImRLi0A1RhS0ZjGp2ntON S7vv3SwfXZBAS32SjAfG92q92XVlXHtATGZ/datnFEoz97Ie2+7tBX/Z34RseHzI 6M/ViGsD9gj1XjjvDBEA2iFAiiP399BX3kR2kjnsJEGX0VyEacQwLtFQtHHl48NH 3PmP8sKT1lngj/37mLYguZjXxwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFPzSjyi5 AJPm7FYUcGQyRm3uRI6nMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMEVEMDkxMzg0 MEMyMTFFRUI2QjE3MzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAFnRgwDBABnjPkDBABnk3oDBAFnm6AwDwQCAAIwCQMHACAB DfQEwDANBgkqhkiG9w0BAQsFAAOCAQEAbJ3NrWqBo4dJuQUbQhNiMkcLu6dgTpmf ksaBE1RhfEaGg5aePSghRQbvkcLmMC6aN7ZKssmYq5dKpYLXwgYZbtdYnXs147NX lOQIq5y0ROlhA4EM4H/ES5UsFA+MacPeLAXqIpPCSrMnl5v/qkvx5E/B+5rvu8p7 CASqSolKCG0U5OxwJ9tDpngS9hdjM5Tq5kcOCwI3hkUIGWPTOsCm6CBUXt63VSP0 ryDyaoNUCUjcvFIhLa4nMwO9j+nE7tlIKaPTiOHww9HHRT+u6ZLJ17g8ng/N6x8W zSq66FwGomkEOQ80ya7wTo51X/uyUk6cxoX77ph0ylFv5m0eHe8Yog== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:31 2024 by rpki-client on console-ams.rpki-client.org