$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1BDDB7E86B0211ED849E0957C4F9AE02.roa File: 1BDDB7E86B0211ED849E0957C4F9AE02.roa (raw, json) Hash identifier: NMbLgLzKiSgnq2c6nEXuZn8AVpz1c3rJDG+7Xr/LMsQ= Subject key identifier: 13:23:42:50:4F:44:5E:4B:6F:5B:EE:4A:2F:A5:0E:41:A2:FF:67:40 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45DE Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1BDDB7E86B0211ED849E0957C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:34:17 +0000 ROA not before: Thu 05 Sep 2024 03:34:17 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149151 IP address blocks: 103.38.246.0/23 maxlen: 24 2400:c1a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Dec 2024 04:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17886 (0x45de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:34:17 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926b9-4d42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:82:5e:5e:b6:ae:61:52:d2:9d:68:9e:a5:f9: 86:d9:71:08:f9:ec:d5:9d:95:89:41:a7:b3:d6:fc: af:98:4f:ce:3b:d5:c6:41:19:5c:ba:69:39:9f:90: c0:e4:4a:ec:3b:63:ee:10:cb:da:e5:15:07:5b:a2: 62:a0:96:94:9c:c2:92:93:29:90:e2:a3:d0:28:66: 49:ad:69:4b:7c:b3:ed:98:ec:f4:00:9f:09:bf:ba: 45:38:57:78:69:ee:73:78:e2:cf:ca:f6:a2:3f:ef: 43:89:48:57:0c:32:8c:36:d5:ab:29:0f:3c:62:5e: 67:06:fc:cd:df:33:89:4d:12:b4:67:83:b3:e2:02: 42:3a:2c:79:c3:bb:14:63:bc:be:98:89:2e:e5:54: 2f:82:73:79:23:d0:84:c7:5a:9e:8f:fa:a0:da:bb: a9:65:39:f7:ca:67:e9:f0:3d:18:d9:49:91:d4:7f: 6a:b5:c1:57:e2:1c:18:27:47:e0:89:48:2b:dc:54: c0:42:cd:2a:43:98:0a:e0:98:42:da:d8:4f:31:cd: 15:30:98:0f:28:c6:13:da:a5:41:8b:b2:f1:e8:bc: be:29:25:e7:ec:77:d6:b1:55:1a:a5:cd:1f:10:13: 3f:88:70:8f:4e:9a:a3:4c:08:44:28:4c:69:03:f9: d3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:23:42:50:4F:44:5E:4B:6F:5B:EE:4A:2F:A5:0E:41:A2:FF:67:40 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1BDDB7E86B0211ED849E0957C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.246.0/23 IPv6: 2400:c1a0::/48 Signature Algorithm: sha256WithRSAEncryption 2c:d1:a1:be:5d:0f:0e:c8:ee:c5:26:9c:5b:46:39:aa:e8:71: 13:1b:6b:32:5a:45:4c:72:7d:a7:31:9a:b1:0c:75:a5:43:a8: ed:1f:89:5c:b3:21:04:3a:8b:be:7e:17:c5:6d:f1:78:55:ee: 67:db:99:b6:77:c9:b5:d8:ed:89:0d:41:b1:b6:3b:fb:06:e2: 4e:11:e7:91:e3:a3:1b:db:01:d3:a9:4f:6f:00:fe:33:e3:df: 07:de:5b:2c:b9:ea:05:74:c1:19:28:9c:32:fc:38:4a:96:07: 94:f3:08:b0:c1:36:86:ee:1d:e9:67:97:d1:c6:d4:f5:73:b3: 4c:05:9d:2c:3e:08:e0:2d:34:c7:dc:0b:13:5c:cc:66:1c:19: 8b:46:ba:f5:95:02:84:b0:3d:11:db:29:27:2f:5f:62:d2:85: d9:37:36:40:4d:63:5c:e9:a0:df:95:2a:90:4e:17:40:0d:ee: 27:f9:56:79:a4:52:59:c5:69:3b:b9:d9:d4:08:1f:51:8a:d9: 12:2a:a2:3e:6b:f8:bc:62:18:22:e8:c9:49:0f:d6:de:e0:7f: ac:74:9a:60:89:53:b8:f5:a4:3e:55:5c:09:8e:1b:05:48:c4: 4d:1b:14:9a:dc:75:d5:57:bd:4e:4f:76:29:6d:15:ae:9a:3b: 81:33:83:eb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNDE3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZiOS00ZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYJeXrauYVLSnWiepfmG2XEI+ezVnZWJQaez1vyvmE/OO9XGQRlcumk5n5DA 5ErsO2PuEMva5RUHW6JioJaUnMKSkymQ4qPQKGZJrWlLfLPtmOz0AJ8Jv7pFOFd4 ae5zeOLPyvaiP+9DiUhXDDKMNtWrKQ88Yl5nBvzN3zOJTRK0Z4Oz4gJCOix5w7sU Y7y+mIku5VQvgnN5I9CEx1qej/qg2rupZTn3ymfp8D0Y2UmR1H9qtcFX4hwYJ0fg iUgr3FTAQs0qQ5gK4JhC2thPMc0VMJgPKMYT2qVBi7Lx6Ly+KSXn7HfWsVUapc0f EBM/iHCPTpqjTAhEKExpA/nT7wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBMjQlBP RF5Lb1vuSi+lDkGi/2dAMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMUJEREI3RTg2 QjAyMTFFRDg0OUUwOTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnJvYwDwQCAAIwCQMHACQAwaAAADANBgkqhkiG9w0BAQsF AAOCAQEALNGhvl0PDsjuxSacW0Y5quhxExtrMlpFTHJ9pzGasQx1pUOo7R+JXLMh BDqLvn4XxW3xeFXuZ9uZtnfJtdjtiQ1BsbY7+wbiThHnkeOjG9sB06lPbwD+M+Pf B95bLLnqBXTBGSicMvw4SpYHlPMIsME2hu4d6WeX0cbU9XOzTAWdLD4I4C00x9wL E1zMZhwZi0a69ZUChLA9EdspJy9fYtKF2Tc2QE1jXOmg35UqkE4XQA3uJ/lWeaRS WcVpO7nZ1AgfUYrZEiqiPmv4vGIYIujJSQ/W3uB/rHSaYIlTuPWkPlVcCY4bBUjE TRsUmtx11Ve9Tk92KW0Vrpo7gTOD6w== -----END CERTIFICATE-----Generated at Fri Nov 29 05:58:39 2024 by rpki-client on console-fra.rpki-client.org