$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A51E38149A11EDB9CF2F70C4F9AE02.roa File: 43A51E38149A11EDB9CF2F70C4F9AE02.roa (raw, json) Hash identifier: LjWChPh7If7ZzmPZovnSG96kbvXyrnX7iHSZnH2uQ+g= Subject key identifier: D1:06:FF:4D:DA:A4:4B:4E:E2:74:57:D8:8A:13:87:88:7C:96:F1:23 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4528 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A51E38149A11EDB9CF2F70C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:37 +0000 ROA not before: Thu 05 Sep 2024 03:31:37 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131342 IP address blocks: 103.4.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17704 (0x4528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:37 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92618-5e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c6:e5:ff:8d:08:49:c6:dc:ee:32:27:5f:ec: 60:e9:6a:9c:60:20:08:8a:9b:86:c1:da:ca:a5:54: 91:36:10:17:14:4e:8b:50:c6:48:3d:57:49:d3:78: f7:30:0c:0b:82:d1:48:ff:30:ab:05:01:b6:53:c9: 64:1c:7c:4b:89:f5:25:ac:b6:b5:aa:b6:ec:d9:cd: c6:72:f2:04:04:9f:f0:5b:59:9d:22:94:64:ca:49: 1b:b7:46:c0:e0:d6:2f:ed:ab:f7:f9:b9:75:1a:2f: d0:d7:c2:f5:58:15:70:8e:3f:7a:79:5d:51:2f:00: 1e:a5:d1:ef:f8:49:81:c7:d1:6f:a0:ef:3b:05:4a: 45:ea:26:5d:f8:28:4e:06:25:51:f2:f3:4c:c8:f0: 63:3c:c6:a5:a6:d3:2e:de:08:cb:12:bb:8c:f9:d8: d1:f7:b2:72:82:89:0f:71:21:aa:c0:6f:8c:57:db: 2f:c3:88:f1:2d:b4:55:68:91:29:2f:10:35:6a:b8: 55:33:e6:99:b2:37:1e:7b:18:1a:35:f0:d4:63:b4: 7e:82:ec:24:3f:1c:10:75:f1:c8:90:bd:04:20:48: 86:8b:f1:f5:13:c2:43:ad:50:78:40:30:20:71:be: 76:6a:0d:fc:05:59:0d:66:e6:f6:3a:d4:29:49:02: 22:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:06:FF:4D:DA:A4:4B:4E:E2:74:57:D8:8A:13:87:88:7C:96:F1:23 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A51E38149A11EDB9CF2F70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.4.128.0/22 Signature Algorithm: sha256WithRSAEncryption b8:6e:61:21:6d:40:a1:56:34:a5:ce:0a:b5:fe:f8:b5:6f:60: ce:e3:48:b4:a4:5b:38:8f:d1:45:df:45:8c:76:8c:0f:78:6d: 8d:27:6b:ba:1a:52:27:20:0e:0c:41:ca:e1:ed:b4:0e:85:35: 86:ec:37:31:06:8e:48:b1:a7:94:12:24:3d:80:26:4a:72:87: 57:d8:ec:e3:30:4a:ee:c0:96:13:68:2d:f6:b2:24:82:f1:fa: 4f:e3:a1:a6:28:6d:dc:f2:85:bc:22:5a:0d:47:6f:f3:d0:1c: 23:fa:a1:2e:01:9e:a3:19:e4:fc:74:c0:d9:c2:f3:c2:f5:24: 53:4c:7e:5f:8c:aa:b3:a5:e4:79:05:86:b0:78:72:b0:ab:a8: 37:2c:bd:0b:1e:b7:07:d3:85:2d:02:01:d0:2a:0b:dd:01:7e: 16:e2:45:1c:6b:70:b8:3a:fa:30:ce:9f:7e:92:95:9c:e2:97: 3d:53:d8:42:3d:21:06:b2:2b:4f:e6:b7:78:01:0b:1d:02:87: 5c:f5:30:fd:71:05:95:82:3f:0a:33:b2:cf:f8:15:96:a3:fc: 57:7e:10:6c:54:ac:ca:ca:e9:7c:32:1d:fd:48:9a:51:b6:cf: bb:64:94:66:99:3e:a9:0d:b8:77:3c:03:b6:3f:13:ed:65:af: 87:81:08:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTM3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYxOC01ZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscbl/40IScbc7jInX+xg6WqcYCAIipuGwdrKpVSRNhAXFE6LUMZIPVdJ03j3 MAwLgtFI/zCrBQG2U8lkHHxLifUlrLa1qrbs2c3GcvIEBJ/wW1mdIpRkykkbt0bA 4NYv7av3+bl1Gi/Q18L1WBVwjj96eV1RLwAepdHv+EmBx9FvoO87BUpF6iZd+ChO BiVR8vNMyPBjPMalptMu3gjLEruM+djR97JygokPcSGqwG+MV9svw4jxLbRVaJEp LxA1arhVM+aZsjceexgaNfDUY7R+guwkPxwQdfHIkL0EIEiGi/H1E8JDrVB4QDAg cb52ag38BVkNZub2OtQpSQIidQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNEG/03a pEtO4nRX2IoTh4h8lvEjMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDNBNTFFMzgx NDlBMTFFREI5Q0YyRjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBIAwDQYJKoZIhvcNAQELBQADggEBALhuYSFtQKFWNKXO CrX++LVvYM7jSLSkWziP0UXfRYx2jA94bY0na7oaUicgDgxByuHttA6FNYbsNzEG jkixp5QSJD2AJkpyh1fY7OMwSu7AlhNoLfayJILx+k/joaYobdzyhbwiWg1Hb/PQ HCP6oS4BnqMZ5Px0wNnC88L1JFNMfl+MqrOl5HkFhrB4crCrqDcsvQsetwfThS0C AdAqC90BfhbiRRxrcLg6+jDOn36SlZzilz1T2EI9IQayK0/mt3gBCx0Ch1z1MP1x BZWCPwozss/4FZaj/Fd+EGxUrMrK6XwyHf1ImlG2z7tklGaZPqkNuHc8A7Y/E+1l r4eBCBU= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org