$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/40E5348CE56411EBBDFCC829C4F9AE02.roa File: 40E5348CE56411EBBDFCC829C4F9AE02.roa (raw, json) Hash identifier: 8ytunI+W5eMQ34/C55Z2ut6f/bUYa6StCg5LKbijeTM= Subject key identifier: 6C:37:64:31:4B:4B:54:9A:34:89:0D:14:F1:2C:FC:3A:C2:C4:3F:EB Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45A2 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/40E5348CE56411EBBDFCC829C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:24 +0000 ROA not before: Thu 05 Sep 2024 03:33:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140807 IP address blocks: 103.21.96.0/23 maxlen: 23 103.21.100.0/23 maxlen: 23 103.139.42.0/23 maxlen: 23 103.148.254.0/23 maxlen: 23 103.162.94.0/23 maxlen: 23 103.171.94.0/23 maxlen: 23 2404:dac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17826 (0x45a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:24 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92683-9ecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:72:11:00:9a:0e:c0:8b:c5:c4:d7:0e:68:c7: 1b:f5:96:5a:ff:93:00:7f:da:66:98:c9:b3:5f:38: f1:ea:03:df:53:e1:74:4a:c8:70:25:fb:4e:26:b8: 0e:bb:a9:cd:5e:ff:03:ec:d5:63:42:03:50:18:64: 2b:ff:92:75:b6:61:5b:17:bf:f4:f4:4b:e6:50:d8: 75:e3:f0:c0:00:b8:a3:e0:d9:8b:29:9c:17:e6:9b: a2:15:13:18:f1:4f:43:44:9d:3e:7e:2f:28:25:03: af:a2:bc:11:9e:f8:f5:58:43:3a:09:89:77:e4:2a: c5:69:27:b3:cf:2b:11:e0:74:c9:36:50:ad:ab:0e: b0:28:5c:c8:63:da:6b:dd:03:fc:5c:57:96:e0:62: 5e:98:59:3f:f9:3b:b7:63:8d:d1:08:e5:96:9c:c9: f3:ec:4f:b8:cf:9d:18:48:ae:47:e0:29:43:65:6a: 68:05:b6:f8:27:75:97:6f:c6:71:1b:88:4e:77:d7: 40:4b:9f:aa:5c:2f:46:f0:02:7a:01:8e:13:4c:9f: f9:1d:e4:c7:e4:ef:c1:1f:95:30:56:22:3b:57:21: 94:e1:32:7e:1c:8c:48:8d:62:8e:c9:8f:3d:b2:a2: c3:e6:85:86:12:2c:29:8a:80:5e:5d:fb:9e:48:79: 16:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:37:64:31:4B:4B:54:9A:34:89:0D:14:F1:2C:FC:3A:C2:C4:3F:EB X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/40E5348CE56411EBBDFCC829C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.96.0/23 103.21.100.0/23 103.139.42.0/23 103.148.254.0/23 103.162.94.0/23 103.171.94.0/23 IPv6: 2404:dac0::/48 Signature Algorithm: sha256WithRSAEncryption 51:a2:54:84:9d:38:a8:29:20:e6:5c:86:51:28:4c:e9:bd:f0: ee:9f:51:86:8f:d2:a5:5f:18:2c:be:a6:8f:e7:ed:68:41:57: 75:62:a3:81:b0:31:c6:b8:97:9a:94:cd:d2:b3:cf:a9:d9:6a: b4:e2:b6:9c:38:c2:69:12:a0:04:c9:66:04:02:39:c5:b7:ef: 17:f9:ee:c6:71:0d:c9:15:e2:0d:a2:90:fa:37:96:47:c7:10: 45:6d:cf:cd:7b:7c:16:f8:0a:1a:e2:e5:22:d2:47:c8:32:d2: 70:fc:ed:44:fc:de:4f:29:36:0c:89:b1:a7:fe:a5:8e:ae:30: a4:02:3b:2b:66:40:96:53:73:f9:ed:94:1e:42:b8:8a:b5:47: dc:06:5c:70:70:f3:ed:00:a2:f4:b1:4f:cc:66:81:1a:df:c2: 10:b9:81:ad:a5:16:05:ad:11:84:87:d3:07:6d:f5:6e:60:93: ec:42:3c:0c:df:97:f3:19:4d:78:46:89:6b:38:b4:44:2c:b7: 22:e8:47:9d:43:bd:47:03:3a:57:46:ea:95:68:88:f1:c0:f4: b2:45:77:47:ec:c2:91:de:0d:7e:93:de:70:64:f9:d7:46:9e: cd:3d:66:c1:73:ab:7d:19:6c:6b:bf:ef:70:53:3d:03:78:30: 4a:b2:7f:e1 -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgICRaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzI0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY4My05ZWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3IRAJoOwIvFxNcOaMcb9ZZa/5MAf9pmmMmzXzjx6gPfU+F0SshwJftOJrgO u6nNXv8D7NVjQgNQGGQr/5J1tmFbF7/09EvmUNh14/DAALij4NmLKZwX5puiFRMY 8U9DRJ0+fi8oJQOvorwRnvj1WEM6CYl35CrFaSezzysR4HTJNlCtqw6wKFzIY9pr 3QP8XFeW4GJemFk/+Tu3Y43RCOWWnMnz7E+4z50YSK5H4ClDZWpoBbb4J3WXb8Zx G4hOd9dAS5+qXC9G8AJ6AY4TTJ/5HeTH5O/BH5UwViI7VyGU4TJ+HIxIjWKOyY89 sqLD5oWGEiwpioBeXfueSHkWTQIDAQABo4ICxDCCAsAwHQYDVR0OBBYEFGw3ZDFL S1SaNIkNFPEs/DrCxD/rMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDBFNTM0OENF NTY0MTFFQkJERkNDODI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTgYIKwYBBQUHAQcBAf8E PzA9MCoEAgABMCQDBAFnFWADBAFnFWQDBAFniyoDBAFnlP4DBAFnol4DBAFnq14w DwQCAAIwCQMHACQE2sAAADANBgkqhkiG9w0BAQsFAAOCAQEAUaJUhJ04qCkg5lyG UShM6b3w7p9Rho/SpV8YLL6mj+ftaEFXdWKjgbAxxriXmpTN0rPPqdlqtOK2nDjC aRKgBMlmBAI5xbfvF/nuxnENyRXiDaKQ+jeWR8cQRW3PzXt8FvgKGuLlItJHyDLS cPztRPzeTyk2DImxp/6ljq4wpAI7K2ZAllNz+e2UHkK4irVH3AZccHDz7QCi9LFP zGaBGt/CELmBraUWBa0RhIfTB231bmCT7EI8DN+X8xlNeEaJazi0RCy3IuhHnUO9 RwM6V0bqlWiI8cD0skV3R+zCkd4NfpPecGT510aezT1mwXOrfRlsa7/vcFM9A3gw SrJ/4Q== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org