$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/32E97B06EABB11ECA6E9D068C4F9AE02.roa File: 32E97B06EABB11ECA6E9D068C4F9AE02.roa (raw, json) Hash identifier: iF6n/I3xuhaIEc36/n/0QtWL15ZL5sypZqlOrw68XTk= Subject key identifier: 11:56:33:22:F9:4B:C1:2C:A1:82:25:E9:FE:3B:61:7A:B4:E3:59:65 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 452A Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/32E97B06EABB11ECA6E9D068C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:38 +0000 ROA not before: Thu 05 Sep 2024 03:31:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131347 IP address blocks: 103.5.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17706 (0x452a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:38 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9261a-71ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9e:71:e0:25:12:15:98:0e:b8:1b:cc:fa:1a: f6:c1:aa:10:ca:5f:c9:32:bb:c7:b5:c1:f0:45:38: 96:0c:da:8e:7e:c0:a7:3f:46:33:9f:81:31:9d:5f: e7:6d:5a:3a:52:6d:fc:02:5d:90:76:1e:4b:6d:5f: 33:a6:3a:49:db:41:4a:09:b7:ab:b8:6d:ba:ab:4d: 87:cf:a7:f5:c6:f8:4f:8e:a4:ef:c8:dc:68:52:4f: dc:f6:fe:a4:70:06:08:f6:3c:4a:7f:60:95:f7:63: 55:c3:b9:37:f2:4b:a5:2a:c4:1c:fd:83:84:c3:91: 55:5e:4b:fd:0e:bc:6f:04:14:ae:11:9c:04:6b:73: aa:a0:85:3d:d7:6c:fe:84:53:a5:71:1d:15:5b:99: 3d:cb:85:45:5c:8e:80:0a:b6:18:75:f5:25:d4:b9: bd:a3:2c:24:b6:0f:41:85:64:a8:51:58:dc:23:48: bc:c2:5a:f0:62:a5:d1:c1:19:db:91:85:7f:0f:19: f7:81:89:5e:4c:ed:24:5c:4a:27:61:f4:13:f5:b8: 00:b7:b6:f8:61:95:dd:5f:49:1e:ea:95:50:4b:e8: 91:e6:3b:09:95:7e:a9:81:04:b3:f7:3f:65:ef:17: 01:f6:c8:43:d6:83:ef:a8:b3:be:fc:68:46:10:78: 59:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:56:33:22:F9:4B:C1:2C:A1:82:25:E9:FE:3B:61:7A:B4:E3:59:65 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/32E97B06EABB11ECA6E9D068C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.204.0/23 Signature Algorithm: sha256WithRSAEncryption 65:1d:3d:c8:11:1d:81:12:18:b2:32:dc:e2:53:c9:19:c7:aa: 1f:53:65:cc:61:a1:14:75:11:85:a8:7c:b0:a4:ac:8e:df:40: 70:e1:c8:b9:89:26:33:ce:b1:74:37:5a:36:ce:f1:b1:63:71: fe:85:4d:5e:ce:18:33:58:59:ac:f1:d0:07:29:9f:d6:a0:a5: e1:45:90:db:74:4a:11:ca:38:96:23:b8:e8:1f:46:3f:a6:59: f6:72:ae:cf:26:8e:83:3f:1e:dc:c2:41:91:bc:e1:c9:ac:5d: c0:be:cf:1f:10:fe:48:b0:68:56:f1:5a:4f:4c:a5:2a:bf:3c: 68:ad:ca:c3:d7:8c:22:25:00:e7:c0:94:0a:31:19:66:53:cf: b9:ac:dc:80:d4:58:35:09:1a:33:46:85:f8:bb:fc:97:ef:e3: 8c:3f:41:85:0c:74:e8:12:3e:03:ee:e0:97:d9:42:a0:d5:f5: 99:04:94:ab:5f:90:6c:90:cb:df:d2:83:b0:1d:14:73:84:01: c2:a3:96:8d:f9:45:e4:0f:18:dc:e4:77:32:c9:ee:5c:c3:a1: 44:fc:d8:83:2c:3e:7f:2a:f7:af:89:43:26:44:d1:cb:a9:db: 3b:a1:e0:fb:f7:bd:a2:51:c5:eb:c7:a8:8d:95:a4:d4:c8:49: 0d:41:30:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYxYS03MWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJ5x4CUSFZgOuBvM+hr2waoQyl/JMrvHtcHwRTiWDNqOfsCnP0Yzn4ExnV/n bVo6Um38Al2Qdh5LbV8zpjpJ20FKCberuG26q02Hz6f1xvhPjqTvyNxoUk/c9v6k cAYI9jxKf2CV92NVw7k38kulKsQc/YOEw5FVXkv9DrxvBBSuEZwEa3OqoIU912z+ hFOlcR0VW5k9y4VFXI6ACrYYdfUl1Lm9oywktg9BhWSoUVjcI0i8wlrwYqXRwRnb kYV/Dxn3gYleTO0kXEonYfQT9bgAt7b4YZXdX0ke6pVQS+iR5jsJlX6pgQSz9z9l 7xcB9shD1oPvqLO+/GhGEHhZNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBFWMyL5 S8EsoYIl6f47YXq041llMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzJFOTdCMDZF QUJCMTFFQ0E2RTlEMDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnBcwwDQYJKoZIhvcNAQELBQADggEBAGUdPcgRHYESGLIy 3OJTyRnHqh9TZcxhoRR1EYWofLCkrI7fQHDhyLmJJjPOsXQ3WjbO8bFjcf6FTV7O GDNYWazx0Acpn9agpeFFkNt0ShHKOJYjuOgfRj+mWfZyrs8mjoM/HtzCQZG84cms XcC+zx8Q/kiwaFbxWk9MpSq/PGitysPXjCIlAOfAlAoxGWZTz7ms3IDUWDUJGjNG hfi7/Jfv44w/QYUMdOgSPgPu4JfZQqDV9ZkElKtfkGyQy9/Sg7AdFHOEAcKjlo35 ReQPGNzkdzLJ7lzDoUT82IMsPn8q96+JQyZE0cup2zuh4Pv3vaJRxevHqI2VpNTI SQ1BMNY= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org