$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A61E9E4D5311EEAC075D5AC4F9AE02.roa File: 43A61E9E4D5311EEAC075D5AC4F9AE02.roa (raw, json) Hash identifier: idwnMcohOsLtk+FAPdIrDe3xXYJCpRrk2yR5Q5jdVVY= Subject key identifier: BF:07:FF:DA:19:B1:CA:9E:D1:A1:E0:27:24:6E:22:76:C8:78:CC:E4 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4601 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A61E9E4D5311EEAC075D5AC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:34:46 +0000 ROA not before: Thu 05 Sep 2024 03:34:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150872 IP address blocks: 103.249.158.0/24 maxlen: 24 2401:2220::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17921 (0x4601) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:34:46 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926d6-8a2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a1:8d:24:33:36:6e:23:70:4a:7b:8c:01:91: 11:e1:72:24:9c:bd:d6:b5:ae:53:bf:2e:08:3f:fd: eb:a0:d9:eb:ea:80:29:29:48:b7:a2:c0:6e:28:68: 16:78:2b:f2:9d:f7:7f:82:0e:56:4b:53:47:2d:01: 8b:c3:1d:27:95:d2:ea:22:6d:ff:04:6c:c0:f3:01: 3f:7f:00:c4:df:69:27:e7:a2:2f:d8:20:f9:eb:40: 00:cb:06:85:bc:f9:fc:62:46:ce:ce:8e:71:d7:51: 76:40:af:dd:5c:d6:0b:5c:64:59:7f:27:77:21:7c: c5:d0:eb:67:41:14:ff:ea:7f:96:be:51:c2:4d:03: 43:62:2e:bf:07:d1:1b:3f:18:06:df:c1:50:23:55: 3e:df:97:d8:fa:e4:1d:f1:88:ce:7f:a5:58:98:3f: 4d:f2:c6:c2:7e:4c:9d:7e:57:c5:d9:f6:13:be:99: 7f:a2:a5:23:68:db:9c:a6:83:17:93:5d:2f:1f:31: ed:8c:bc:9c:8c:ba:8d:53:ca:37:b7:3d:f5:e2:2c: 2c:33:b7:91:48:4b:c2:21:58:4d:f9:dc:1f:14:f1: 15:3e:0b:73:a2:da:75:34:b0:50:ad:be:fe:0d:98: 33:36:5a:68:a8:6c:ec:7b:6c:66:25:f1:0f:a3:21: 7f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:07:FF:DA:19:B1:CA:9E:D1:A1:E0:27:24:6E:22:76:C8:78:CC:E4 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A61E9E4D5311EEAC075D5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.158.0/24 IPv6: 2401:2220::/48 Signature Algorithm: sha256WithRSAEncryption 39:7f:e6:3b:2d:61:f6:73:ef:a3:fe:1c:2c:29:cc:d9:e7:dd: 36:ff:10:00:51:52:59:5f:1e:a2:4c:73:99:6b:d1:f9:70:ef: bf:49:94:95:81:c0:3f:d9:44:25:64:e7:43:ce:2b:86:5f:b3: 7c:1f:f1:e2:c6:a4:1b:d3:71:69:92:d5:3f:f4:f7:3f:28:c8: 96:17:04:38:37:8a:cb:27:f7:44:a1:ef:e2:98:8c:b4:bf:fa: 6f:ab:34:8c:7f:80:dc:d0:e9:99:77:77:83:e6:de:5a:29:96: 44:54:7c:9c:11:72:40:24:29:95:40:e0:7e:7d:19:b9:a7:72: 3a:6b:e2:c8:6a:82:63:38:dd:65:a1:1e:bc:6d:2b:20:08:8d: b0:2a:7d:95:9a:63:5f:87:60:c0:db:51:c1:d8:21:f1:bf:f3: 47:9e:e9:b0:f0:60:5c:74:b7:70:86:84:68:54:93:6e:1c:bc: 6d:b2:4c:ff:a8:35:c3:e8:54:e9:ff:28:fb:c3:9a:16:67:20: 95:b4:33:4a:dd:e7:3f:b5:8f:8b:39:4b:f5:8c:56:0c:84:61: 17:1a:57:46:e2:df:03:69:30:2b:95:ff:a1:6e:ec:7a:f5:61: 00:8a:7e:57:24:12:31:98:1f:dc:69:31:14:43:25:b2:b0:e0: c2:a3:9f:f2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNDQ2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZkNi04YTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6GNJDM2biNwSnuMAZER4XIknL3Wta5Tvy4IP/3roNnr6oApKUi3osBuKGgW eCvynfd/gg5WS1NHLQGLwx0nldLqIm3/BGzA8wE/fwDE32kn56Iv2CD560AAywaF vPn8YkbOzo5x11F2QK/dXNYLXGRZfyd3IXzF0OtnQRT/6n+WvlHCTQNDYi6/B9Eb PxgG38FQI1U+35fY+uQd8YjOf6VYmD9N8sbCfkydflfF2fYTvpl/oqUjaNucpoMX k10vHzHtjLycjLqNU8o3tz314iwsM7eRSEvCIVhN+dwfFPEVPgtzotp1NLBQrb7+ DZgzNlpoqGzse2xmJfEPoyF/kQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFL8H/9oZ scqe0aHgJyRuInbIeMzkMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDNBNjFFOUU0 RDUzMTFFRUFDMDc1RDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+Z4wDwQCAAIwCQMHACQBIiAAADANBgkqhkiG9w0BAQsF AAOCAQEAOX/mOy1h9nPvo/4cLCnM2efdNv8QAFFSWV8eokxzmWvR+XDvv0mUlYHA P9lEJWTnQ84rhl+zfB/x4sakG9NxaZLVP/T3PyjIlhcEODeKyyf3RKHv4piMtL/6 b6s0jH+A3NDpmXd3g+beWimWRFR8nBFyQCQplUDgfn0ZuadyOmviyGqCYzjdZaEe vG0rIAiNsCp9lZpjX4dgwNtRwdgh8b/zR57psPBgXHS3cIaEaFSTbhy8bbJM/6g1 w+hU6f8o+8OaFmcglbQzSt3nP7WPizlL9YxWDIRhFxpXRuLfA2kwK5X/oW7sevVh AIp+VyQSMZgf3GkxFEMlsrDgwqOf8g== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org