$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4AF9C7926EF811EE8230D338C4F9AE02.roa File: 4AF9C7926EF811EE8230D338C4F9AE02.roa (raw, json) Hash identifier: m0jRn9ZRkDgEXNxRay7wyJC43bQ/R7NUgi3wa/UKbIA= Subject key identifier: A8:BD:BB:A3:1C:33:40:CE:A1:24:79:E6:CF:6A:50:2A:5B:BE:4C:EA Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 461B Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4AF9C7926EF811EE8230D338C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:10 +0000 ROA not before: Thu 05 Sep 2024 03:35:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151855 IP address blocks: 103.242.100.0/24 maxlen: 24 103.242.101.0/24 maxlen: 24 2401:4220::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17947 (0x461b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926ee-0d44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6e:5d:ed:16:19:d9:77:89:1f:d8:59:7a:fb: 99:25:56:38:f5:d1:e6:b4:83:43:dd:ca:3e:d4:46: 31:64:0d:b0:8f:ba:a7:63:e9:4c:43:3a:b6:92:39: 2f:cd:12:62:7b:4b:0a:88:08:fc:07:3d:94:c0:af: 58:39:d3:d2:61:31:b3:e0:16:62:30:2c:64:af:df: b8:25:7a:58:b5:57:73:45:e9:1e:bc:42:92:d2:e9: 47:6a:95:8f:c9:40:18:f1:53:dc:5e:86:4c:cb:df: d8:c5:d5:ce:fc:45:7b:c6:7b:ca:e3:24:70:83:9a: c9:16:f3:c9:64:78:47:01:a8:80:3b:ae:5d:7e:37: 87:9d:f0:d5:66:e8:e3:22:0b:e6:f6:47:db:c0:b1: 1c:2c:fb:73:a0:3e:d8:78:65:f8:5d:52:2e:51:37: d1:e0:28:6b:f1:c7:99:40:f3:7a:89:a2:82:52:fc: 2a:89:40:d9:6c:45:21:64:c9:c9:a8:2e:da:9d:7a: 74:8a:b4:18:cc:64:7e:e7:af:a2:f7:4b:cc:07:94: 3f:9d:b8:5a:cb:03:d0:f6:28:74:f1:21:c5:05:c4: aa:63:37:4b:c3:c0:f7:aa:8e:ec:22:64:17:52:fb: 12:3f:3b:df:ac:df:d7:d9:ae:98:79:a2:34:5e:09: 06:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:BD:BB:A3:1C:33:40:CE:A1:24:79:E6:CF:6A:50:2A:5B:BE:4C:EA X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4AF9C7926EF811EE8230D338C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.242.100.0/23 IPv6: 2401:4220::/48 Signature Algorithm: sha256WithRSAEncryption 5a:e1:78:e6:01:11:cf:8f:2d:21:1d:33:4c:73:a0:25:27:f3: 7f:dd:58:a2:29:e0:3d:96:b0:ac:4b:2a:29:09:cf:c2:71:96: 1e:7a:17:07:ff:cc:99:97:b0:44:e7:67:12:84:b9:1c:3a:4f: 93:1d:b6:87:6b:b1:c0:62:f0:fb:d1:d3:64:bd:76:6b:6f:45: 05:83:57:92:69:6a:09:c0:1f:3a:6a:0d:7e:ab:0b:60:fe:83: d7:e1:d0:fb:3f:6a:f3:97:74:76:8d:3e:e3:e4:a0:e5:f1:f0: b7:25:9e:9d:41:b8:d2:53:d6:b5:8e:b4:7c:10:22:7a:82:eb: 3f:e4:2b:9a:61:8c:b4:db:b9:33:e4:26:56:c0:bf:c0:31:c3: ed:28:8c:81:c6:55:31:3c:e9:0a:f2:46:b0:df:c1:14:e1:d7: ea:1e:ce:85:e1:e7:e0:d9:ba:9e:38:5e:ac:c7:bf:7c:b8:f5: 70:b3:2b:73:0e:98:be:7c:92:e7:78:37:c4:e7:74:39:a0:88: 69:26:3e:d9:c1:0c:68:ad:63:44:b7:89:a1:fe:62:28:d6:38: 4a:64:09:64:11:05:8c:69:11:30:b3:fa:68:24:c6:14:a7:61: 74:13:98:61:a2:cd:84:fe:ba:e8:4e:67:d9:13:88:06:8e:66: 17:88:01:b2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZlZS0wZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp25d7RYZ2XeJH9hZevuZJVY49dHmtIND3co+1EYxZA2wj7qnY+lMQzq2kjkv zRJie0sKiAj8Bz2UwK9YOdPSYTGz4BZiMCxkr9+4JXpYtVdzRekevEKS0ulHapWP yUAY8VPcXoZMy9/YxdXO/EV7xnvK4yRwg5rJFvPJZHhHAaiAO65dfjeHnfDVZujj Igvm9kfbwLEcLPtzoD7YeGX4XVIuUTfR4Chr8ceZQPN6iaKCUvwqiUDZbEUhZMnJ qC7anXp0irQYzGR+56+i90vMB5Q/nbhaywPQ9ih08SHFBcSqYzdLw8D3qo7sImQX UvsSPzvfrN/X2a6YeaI0XgkGeQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKi9u6Mc M0DOoSR55s9qUCpbvkzqMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNEFGOUM3OTI2 RUY4MTFFRTgyMzBEMzM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn8mQwDwQCAAIwCQMHACQBQiAAADANBgkqhkiG9w0BAQsF AAOCAQEAWuF45gERz48tIR0zTHOgJSfzf91YoingPZawrEsqKQnPwnGWHnoXB//M mZewROdnEoS5HDpPkx22h2uxwGLw+9HTZL12a29FBYNXkmlqCcAfOmoNfqsLYP6D 1+HQ+z9q85d0do0+4+Sg5fHwtyWenUG40lPWtY60fBAieoLrP+QrmmGMtNu5M+Qm VsC/wDHD7SiMgcZVMTzpCvJGsN/BFOHX6h7OheHn4Nm6njherMe/fLj1cLMrcw6Y vnyS53g3xOd0OaCIaSY+2cEMaK1jRLeJof5iKNY4SmQJZBEFjGkRMLP6aCTGFKdh dBOYYaLNhP666E5n2ROIBo5mF4gBsg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org