$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/243E2854305711ED9363AB84C4F9AE02.roa File: 243E2854305711ED9363AB84C4F9AE02.roa (raw, json) Hash identifier: 4pothCRAoJRMQxVErwMWvuSVdebc7KpHNtl50l1hjDI= Subject key identifier: B9:64:81:8E:11:18:3A:CE:A5:3A:31:06:D7:35:37:4F:A7:B3:5F:E0 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4564 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/243E2854305711ED9363AB84C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:32:29 +0000 ROA not before: Thu 05 Sep 2024 03:32:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135912 IP address blocks: 103.90.223.0/24 maxlen: 24 103.183.109.0/24 maxlen: 24 2405:f540:9::/48 maxlen: 48 2405:f540:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17764 (0x4564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:32:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9264d-20ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:47:c5:20:13:a0:29:15:b0:ce:a7:47:11:18: 36:74:86:1b:e2:79:cd:d8:60:cc:ce:45:34:9a:bd: 53:bd:eb:15:ec:a7:d5:0f:59:74:44:43:b3:31:fb: ad:91:bc:f6:9c:66:f2:ee:15:de:30:2f:09:28:43: 2a:f2:2a:ea:de:7f:ca:18:43:1e:51:1c:ad:63:9f: 69:46:f3:e4:08:fc:4a:ca:5d:39:09:d5:f5:a4:55: e1:53:ac:f0:17:e5:e6:b5:c0:15:b3:e3:ee:22:00: e5:70:8e:07:ab:0e:ac:fd:12:ca:2a:62:c1:dc:ca: 53:74:79:56:79:86:d4:ce:a1:85:d5:32:6b:fc:a8: 0d:05:37:46:d8:eb:a5:c3:37:f5:2f:b0:ab:2c:a6: f8:bc:f4:d0:37:03:97:da:f5:ff:62:76:d2:59:04: 37:2f:fc:62:75:aa:47:d8:93:f5:f8:62:7f:ce:c8: 7a:36:a4:2f:46:dd:95:27:a7:a3:ac:c6:98:4e:ea: c8:5e:90:3f:c0:d0:b4:17:72:83:67:a9:f4:dd:21: ba:20:f0:08:74:74:20:b7:fd:5e:43:ad:3e:c5:16: 93:e8:a1:d9:43:c4:18:cf:cc:20:60:9b:b6:8b:02: 8b:63:83:c1:c7:8f:05:08:7b:5f:a9:90:7f:c7:ea: 72:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:64:81:8E:11:18:3A:CE:A5:3A:31:06:D7:35:37:4F:A7:B3:5F:E0 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/243E2854305711ED9363AB84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.223.0/24 103.183.109.0/24 IPv6: 2405:f540:9::-2405:f540:a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 05:02:e3:1f:06:11:54:88:49:b1:d8:17:76:a9:4a:0b:f7:44: e2:38:41:88:47:8f:19:60:40:27:6d:84:8f:99:45:d4:50:1d: 22:31:2b:33:3a:67:24:45:ec:f8:38:e1:b4:74:43:d4:b0:61: d8:bb:76:18:c9:db:13:94:1e:2f:5e:6b:36:8f:83:c8:6c:1c: f9:95:c2:0e:00:dc:2b:ed:0f:3c:5a:a7:d2:13:72:d8:1e:45: c6:bd:92:60:46:56:57:19:46:e4:23:77:2f:db:71:cf:4e:d5: 5e:a5:af:20:d4:04:e5:97:14:4a:25:5d:40:be:7f:02:08:3c: cf:86:0e:42:4d:ee:be:76:f5:d2:d4:4a:d5:b0:9b:8d:c5:b6: 9c:12:88:dc:60:dd:d7:f9:bb:ab:a6:8b:9d:e4:70:ac:ce:c8: 06:53:1a:15:0b:f9:f5:94:aa:d4:55:17:84:93:a3:e6:2f:fa: f1:a7:aa:a8:4f:c6:f3:1f:be:d9:b4:95:4d:75:4c:f0:80:d3: 2f:4f:76:56:9f:6a:42:58:88:31:20:dc:bb:3e:96:09:42:3e: d8:ad:c2:44:fb:35:4f:96:01:bb:75:08:01:2c:26:d0:65:bd: a0:61:04:f0:02:39:5f:a1:b8:a7:53:36:72:55:6c:31:cf:cc: 74:78:c0:ce -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICRWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMjI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY0ZC0yMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0fFIBOgKRWwzqdHERg2dIYb4nnN2GDMzkU0mr1TvesV7KfVD1l0REOzMfut kbz2nGby7hXeMC8JKEMq8irq3n/KGEMeURytY59pRvPkCPxKyl05CdX1pFXhU6zw F+XmtcAVs+PuIgDlcI4Hqw6s/RLKKmLB3MpTdHlWeYbUzqGF1TJr/KgNBTdG2Oul wzf1L7CrLKb4vPTQNwOX2vX/YnbSWQQ3L/xidapH2JP1+GJ/zsh6NqQvRt2VJ6ej rMaYTurIXpA/wNC0F3KDZ6n03SG6IPAIdHQgt/1eQ60+xRaT6KHZQ8QYz8wgYJu2 iwKLY4PBx48FCHtfqZB/x+pyBwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFLlkgY4R GDrOpToxBtc1N0+ns1/gMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjQzRTI4NTQz MDU3MTFFRDkzNjNBQjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBABnWt8DBABnt20wGgQCAAIwFDASAwcAJAX1QAAJAwcAJAX1 QAAKMA0GCSqGSIb3DQEBCwUAA4IBAQAFAuMfBhFUiEmx2Bd2qUoL90TiOEGIR48Z YEAnbYSPmUXUUB0iMSszOmckRez4OOG0dEPUsGHYu3YYydsTlB4vXms2j4PIbBz5 lcIOANwr7Q88WqfSE3LYHkXGvZJgRlZXGUbkI3cv23HPTtVepa8g1ATllxRKJV1A vn8CCDzPhg5CTe6+dvXS1ErVsJuNxbacEojcYN3X+burpoud5HCszsgGUxoVC/n1 lKrUVReEk6PmL/rxp6qoT8bzH77ZtJVNdUzwgNMvT3ZWn2pCWIgxINy7PpYJQj7Y rcJE+zVPlgG7dQgBLCbQZb2gYQTwAjlfobinUzZyVWwxz8x0eMDO -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:40 2024 by rpki-client on console-fra.rpki-client.org