$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/340899165F9D11ED8521047DC4F9AE02.roa File: 340899165F9D11ED8521047DC4F9AE02.roa (raw, json) Hash identifier: aaMxat++WIKUEHUXbynJe9bmmE/rBljus9n1Xlnz9W8= Subject key identifier: ED:4B:8B:6E:CD:CB:AC:34:E0:4A:8B:68:13:BE:97:58:BF:B2:3E:4E Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45D6 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/340899165F9D11ED8521047DC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:34:10 +0000 ROA not before: Thu 05 Sep 2024 03:34:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149139 IP address blocks: 103.102.128.0/24 maxlen: 24 103.102.129.0/24 maxlen: 24 103.102.130.0/24 maxlen: 24 103.102.131.0/24 maxlen: 24 2001:df2:d900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17878 (0x45d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:34:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926b2-e69e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:58:d6:4d:e1:b6:3b:eb:42:e4:3b:06:16:a3: 1e:21:1d:75:37:69:87:f8:63:ed:0c:be:3a:71:18: 34:1e:72:14:2d:1a:6f:96:b9:d9:c1:3d:86:a6:a9: b1:e6:b7:7f:80:af:98:3b:56:72:b8:4d:c5:21:f8: 7a:6c:9c:62:70:51:ea:25:15:3f:42:38:46:82:e1: 15:e9:65:e1:0c:c0:02:52:84:d7:0e:50:d1:c3:52: 6a:c3:7a:e2:dc:11:4e:f5:5b:e2:00:72:c8:f4:7e: 33:93:6e:c8:5d:b2:e7:42:81:e5:17:40:23:6b:11: b1:68:01:db:f3:40:ba:40:cc:49:f3:39:1e:1b:e0: 21:bb:c3:1a:8f:4c:25:a6:a6:76:dc:cc:7d:25:63: 17:af:d5:ea:ea:bc:16:c5:14:dd:4e:0a:8a:9d:ed: 5e:11:f1:a5:f2:71:35:74:a8:2f:bc:57:e2:15:f4: 85:9a:d7:ef:44:57:3c:c3:09:26:23:ce:46:14:d4: 2e:5f:f9:a5:3d:d7:a7:99:53:4e:a6:0f:b7:e6:1a: 57:29:ed:a4:df:12:10:84:69:44:9b:9f:4f:b5:15: 74:32:41:3e:4d:d3:b7:5a:16:14:a8:f0:99:79:3b: 0c:11:18:2e:fd:55:50:40:a1:e0:a9:b0:f2:ba:f0: 4e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:4B:8B:6E:CD:CB:AC:34:E0:4A:8B:68:13:BE:97:58:BF:B2:3E:4E X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/340899165F9D11ED8521047DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.128.0/22 IPv6: 2001:df2:d900::/48 Signature Algorithm: sha256WithRSAEncryption 4c:8f:9e:a8:0d:2d:79:6c:69:e3:da:f5:9a:40:37:0b:b6:5f: c8:64:80:de:d8:36:58:03:38:76:9b:89:38:e2:dc:c6:e4:79: c1:8c:b4:bc:32:61:f1:65:ff:1e:7a:20:e3:0c:83:0f:df:6c: 7e:f2:2d:8b:0d:b9:6a:dc:0f:60:e3:ac:a1:90:41:4c:53:aa: a7:e2:1e:cd:fd:71:4b:23:35:ac:7f:b1:57:b9:27:d8:41:13: 96:f0:ae:29:11:7b:b4:93:f0:77:8b:83:41:58:52:e8:70:5e: b5:f1:b0:b3:37:15:47:25:5f:6b:ed:08:b9:50:ae:aa:24:3e: b9:fc:a3:d1:04:f6:97:1d:4c:fe:53:a3:f0:a2:54:bb:56:90: c8:5a:68:a3:5d:54:8c:ba:46:1f:91:d3:30:b6:84:7f:aa:f4: 48:0c:e1:63:ad:bb:85:68:0c:b5:00:b9:8c:40:f7:c2:9c:ee: 5a:68:8b:3f:c6:a8:ee:bb:43:e9:28:b5:ab:73:55:c5:81:1c: 58:22:f6:8d:cf:22:5c:8c:75:f8:0d:22:e7:43:49:29:70:83: 6b:f9:e7:0c:08:15:24:a2:a8:4b:94:e8:ee:96:b6:7e:21:54: bd:20:ca:69:69:d7:d6:bc:29:88:a0:67:52:dd:cf:82:f1:f0: 43:71:83:47 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNDEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZiMi1lNjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1jWTeG2O+tC5DsGFqMeIR11N2mH+GPtDL46cRg0HnIULRpvlrnZwT2Gpqmx 5rd/gK+YO1ZyuE3FIfh6bJxicFHqJRU/QjhGguEV6WXhDMACUoTXDlDRw1Jqw3ri 3BFO9VviAHLI9H4zk27IXbLnQoHlF0AjaxGxaAHb80C6QMxJ8zkeG+Ahu8Maj0wl pqZ23Mx9JWMXr9Xq6rwWxRTdTgqKne1eEfGl8nE1dKgvvFfiFfSFmtfvRFc8wwkm I85GFNQuX/mlPdenmVNOpg+35hpXKe2k3xIQhGlEm59PtRV0MkE+TdO3WhYUqPCZ eTsMERgu/VVQQKHgqbDyuvBOFQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO1Li27N y6w04EqLaBO+l1i/sj5OMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzQwODk5MTY1 RjlEMTFFRDg1MjEwNDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnZoAwDwQCAAIwCQMHACABDfLZADANBgkqhkiG9w0BAQsF AAOCAQEATI+eqA0teWxp49r1mkA3C7ZfyGSA3tg2WAM4dpuJOOLcxuR5wYy0vDJh 8WX/Hnog4wyDD99sfvItiw25atwPYOOsoZBBTFOqp+Iezf1xSyM1rH+xV7kn2EET lvCuKRF7tJPwd4uDQVhS6HBetfGwszcVRyVfa+0IuVCuqiQ+ufyj0QT2lx1M/lOj 8KJUu1aQyFpoo11UjLpGH5HTMLaEf6r0SAzhY627hWgMtQC5jED3wpzuWmiLP8ao 7rtD6Si1q3NVxYEcWCL2jc8iXIx1+A0i50NJKXCDa/nnDAgVJKKoS5To7pa2fiFU vSDKaWnX1rwpiKBnUt3PgvHwQ3GDRw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org