$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/360B9954512711ED89B40324C4F9AE02.roa File: 360B9954512711ED89B40324C4F9AE02.roa (raw, json) Hash identifier: 23DKlwKcd+hlgLGf4VkeJXWcwQGdjMm84UtOvsjvicg= Subject key identifier: A9:A6:06:26:44:75:5E:5C:8F:E3:B4:5A:41:81:39:C0:84:46:15:FA Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4862 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/360B9954512711ED89B40324C4F9AE02.roa Signing time: Mon 25 Nov 2024 08:47:54 +0000 ROA not before: Mon 25 Nov 2024 08:47:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38253 IP address blocks: 103.5.208.0/22 maxlen: 24 103.9.208.0/22 maxlen: 24 103.17.140.0/23 maxlen: 24 103.172.236.0/23 maxlen: 24 2400:b520::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18530 (0x4862) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Nov 25 08:47:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=674439ba-5218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d5:02:ac:92:bf:35:0a:a8:00:85:4c:b0:09: b4:5f:42:af:c6:1c:43:c1:b2:1d:81:88:51:ab:35: e8:e5:b3:41:9e:19:92:e1:d3:62:c0:1f:1f:54:0c: 7a:d0:17:56:8b:49:5d:93:de:24:02:f1:e4:8a:0c: 6d:75:dc:64:46:29:c3:11:10:a4:e5:a5:83:38:a0: ee:a9:93:27:06:05:52:22:a3:52:4d:27:fc:2d:cd: 03:4b:72:03:b3:d9:58:b3:88:3f:33:3c:01:aa:94: 91:a3:31:44:24:58:c2:b3:78:e3:46:98:d7:9d:06: 3f:0c:bd:6d:34:d4:07:6a:29:9c:64:de:f8:f6:08: b1:12:c9:73:17:35:0d:92:44:52:df:8c:50:b2:0a: 06:92:aa:c8:07:27:7f:ca:56:4c:c7:f0:38:15:64: 1d:5a:2a:ee:7c:55:c0:a9:62:ce:73:e5:58:99:db: 5c:c4:6a:74:8f:6e:a8:b6:d2:3f:d0:74:5e:81:dd: a7:dd:17:95:b8:eb:22:80:69:59:b0:6e:0b:20:88: f3:92:47:17:a5:88:3b:15:4d:a7:51:e0:31:0f:bd: e2:52:7f:b7:ad:54:58:36:c0:ab:58:66:c5:9c:a0: a2:53:b3:74:39:7c:8f:8a:78:9d:19:ae:1a:42:cb: 68:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A6:06:26:44:75:5E:5C:8F:E3:B4:5A:41:81:39:C0:84:46:15:FA X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/360B9954512711ED89B40324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.208.0/22 103.9.208.0/22 103.17.140.0/23 103.172.236.0/23 IPv6: 2400:b520::/48 Signature Algorithm: sha256WithRSAEncryption 99:41:ea:52:a9:d1:2b:8a:16:4a:d6:e1:19:82:92:39:aa:cd: 2f:28:b7:b2:2a:d6:df:7d:08:e2:56:5d:c0:9b:c9:47:3a:f2: 74:ec:cb:28:09:80:ba:60:83:c8:95:e7:e3:f1:ae:21:b2:b9: 9e:c9:c6:53:f4:80:b4:5a:38:98:5f:65:54:3d:c4:ce:a6:4f: f9:fa:54:09:a3:17:5b:0a:f4:07:9d:0e:d4:ae:51:dd:5b:16: 01:84:b3:2e:19:fe:8d:98:53:34:31:bd:33:22:67:4b:9b:e9: ca:1d:2b:cd:fa:5a:bd:fb:39:ae:2a:31:22:e1:8e:75:ea:af: 56:a8:93:40:e4:c5:f2:c8:9d:7b:fb:cc:7c:c5:9d:a5:2d:01: 2b:e3:b3:06:6e:b3:30:43:56:85:67:5c:04:81:1e:4a:a4:f7: 6f:07:c3:7c:6b:d5:f9:97:59:e5:43:d0:67:95:3a:25:3a:4e: ee:f4:d9:20:b5:00:48:92:e1:37:8d:2c:19:ad:ea:b1:2e:f7: a8:1a:31:c3:af:38:27:cd:86:1f:06:9b:6e:44:3d:6d:26:b3: cf:45:9c:eb:74:88:cf:1f:25:2f:fc:bf:ab:70:ef:86:18:6b: e7:29:93:18:1a:04:22:20:27:04:06:c1:5e:f1:72:1c:7a:8c: 51:39:1d:e1 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICSGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQxMTI1MDg0NzU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ0MzliYS01MjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotUCrJK/NQqoAIVMsAm0X0KvxhxDwbIdgYhRqzXo5bNBnhmS4dNiwB8fVAx6 0BdWi0ldk94kAvHkigxtddxkRinDERCk5aWDOKDuqZMnBgVSIqNSTSf8Lc0DS3ID s9lYs4g/MzwBqpSRozFEJFjCs3jjRpjXnQY/DL1tNNQHaimcZN749gixEslzFzUN kkRS34xQsgoGkqrIByd/ylZMx/A4FWQdWirufFXAqWLOc+VYmdtcxGp0j26ottI/ 0HRegd2n3ReVuOsigGlZsG4LIIjzkkcXpYg7FU2nUeAxD73iUn+3rVRYNsCrWGbF nKCiU7N0OXyPinidGa4aQstogQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFKmmBiZE dV5cj+O0WkGBOcCERhX6MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzYwQjk5NTQ1 MTI3MTFFRDg5QjQwMzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAJnBdADBAJnCdADBAFnEYwDBAFnrOwwDwQCAAIwCQMHACQA tSAAADANBgkqhkiG9w0BAQsFAAOCAQEAmUHqUqnRK4oWStbhGYKSOarNLyi3sirW 330I4lZdwJvJRzrydOzLKAmAumCDyJXn4/GuIbK5nsnGU/SAtFo4mF9lVD3EzqZP +fpUCaMXWwr0B50O1K5R3VsWAYSzLhn+jZhTNDG9MyJnS5vpyh0rzfpavfs5riox IuGOdeqvVqiTQOTF8side/vMfMWdpS0BK+OzBm6zMENWhWdcBIEeSqT3bwfDfGvV +ZdZ5UPQZ5U6JTpO7vTZILUASJLhN40sGa3qsS73qBoxw684J82GHwabbkQ9bSaz z0Wc63SIzx8lL/y/q3Dvhhhr5ymTGBoEIiAnBAbBXvFyHHqMUTkd4Q== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org