$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5639E2F0799711EEB916293AC4F9AE02.roa File: 5639E2F0799711EEB916293AC4F9AE02.roa (raw, json) Hash identifier: DunO1LpCiuzIl4lkO0S3vWViDbfGMXMNHXchOmczd+8= Subject key identifier: 49:A3:93:01:DE:BA:77:CD:06:D3:9D:31:5E:CC:F1:C7:4D:F6:CC:01 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45D4 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5639E2F0799711EEB916293AC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:34:08 +0000 ROA not before: Thu 05 Sep 2024 03:34:08 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149137 IP address blocks: 103.15.222.0/23 maxlen: 23 103.117.198.0/23 maxlen: 24 103.131.84.0/23 maxlen: 24 103.205.60.0/23 maxlen: 24 103.209.34.0/23 maxlen: 24 103.238.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17876 (0x45d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:34:08 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926b0-5626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d7:3a:31:65:6e:38:8f:e3:55:26:88:b0:45: 92:12:89:4d:42:c1:cd:24:d7:ca:58:b1:a7:63:65: 84:2e:43:92:3c:59:5e:b4:00:28:08:e4:13:7f:0e: a9:70:a5:f0:80:16:a0:6e:9b:36:bd:a6:e1:6e:4d: 9d:f3:4b:30:15:ea:45:08:23:04:07:8a:6c:fb:f4: 7a:de:fb:3e:4e:e0:62:75:dd:0b:f6:2c:5d:a8:6c: 5b:4b:3a:8a:89:d5:8c:42:17:77:2c:fa:03:12:8c: f2:2d:44:84:ab:d1:86:cd:84:e6:40:8b:31:6a:33: f0:7d:15:dd:a4:8c:f1:0d:a1:4c:e8:45:c9:62:a3: 6f:43:59:93:4f:3e:e8:51:39:45:2d:de:c1:8b:42: e7:1d:2d:6e:9d:79:b5:6f:e5:17:45:7e:de:8e:22: fd:9e:a1:ca:00:84:e9:6d:05:f7:bc:18:ef:f3:11: f2:54:9a:c5:67:b7:12:02:52:ab:3d:d9:ed:84:4b: 7e:86:62:2b:93:6e:9d:3b:1a:1c:e4:0d:b4:0b:76: 8c:eb:c9:9d:59:bd:be:41:f6:b2:56:85:bc:0f:c9: cd:8e:71:21:90:6b:f3:01:ba:38:1f:25:ac:94:72: d1:bf:ae:2b:b0:01:a2:3e:61:ad:13:97:ff:bb:15: ba:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A3:93:01:DE:BA:77:CD:06:D3:9D:31:5E:CC:F1:C7:4D:F6:CC:01 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5639E2F0799711EEB916293AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.15.222.0/23 103.117.198.0/23 103.131.84.0/23 103.205.60.0/23 103.209.34.0/23 103.238.235.0/24 Signature Algorithm: sha256WithRSAEncryption be:3e:b1:63:34:47:5b:9f:fc:42:b5:3d:3a:29:57:d7:2d:cf: d1:aa:3d:b2:b8:8d:56:25:f0:de:76:63:1c:6b:03:ce:fc:dd: f5:6d:3f:2e:74:e6:88:db:eb:1a:96:91:38:f6:d4:29:8f:bb: 83:8f:cd:24:12:35:4d:db:d1:13:90:52:0c:26:09:5a:33:6d: 58:f0:fc:12:6b:5d:7d:77:ec:8c:1e:80:48:0c:f8:1e:70:b0: 3d:cb:46:c4:59:36:7e:85:4f:55:47:1d:b2:3c:1b:d7:0f:49: 88:2b:c7:2a:8f:d3:6f:fc:23:f3:ee:f8:cb:af:48:b7:85:e9: 1a:7a:91:a7:f3:bc:6a:c8:5a:fc:d7:35:77:49:05:26:d4:20: 37:f0:44:93:f9:e0:38:36:f1:bc:96:d3:75:b3:72:f3:57:45: a0:73:89:da:d1:8c:58:ba:0c:99:ee:d6:32:48:40:f6:1d:9b: 45:28:04:3e:6e:fd:af:66:40:e1:e9:e6:6f:1f:ff:37:d4:c3: ab:0d:55:a0:e5:ba:6d:c7:78:6a:72:66:70:f2:09:c3:64:14: 31:8b:f6:2f:f0:93:d9:1d:74:71:5c:fe:12:28:16:17:40:0b: 61:5e:45:dc:00:d7:24:96:8f:9e:80:ab:9f:72:41:6b:58:d6: cc:7c:2c:4e -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICRdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNDA4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZiMC01NjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytc6MWVuOI/jVSaIsEWSEolNQsHNJNfKWLGnY2WELkOSPFletAAoCOQTfw6p cKXwgBagbps2vabhbk2d80swFepFCCMEB4ps+/R63vs+TuBidd0L9ixdqGxbSzqK idWMQhd3LPoDEozyLUSEq9GGzYTmQIsxajPwfRXdpIzxDaFM6EXJYqNvQ1mTTz7o UTlFLd7Bi0LnHS1unXm1b+UXRX7ejiL9nqHKAITpbQX3vBjv8xHyVJrFZ7cSAlKr PdnthEt+hmIrk26dOxoc5A20C3aM68mdWb2+QfayVoW8D8nNjnEhkGvzAbo4HyWs lHLRv64rsAGiPmGtE5f/uxW6pQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFEmjkwHe unfNBtOdMV7M8cdN9swBMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNTYzOUUyRjA3 OTk3MTFFRUI5MTYyOTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAFnD94DBAFndcYDBAFng1QDBAFnzTwDBAFn0SIDBABn7usw DQYJKoZIhvcNAQELBQADggEBAL4+sWM0R1uf/EK1PTopV9ctz9GqPbK4jVYl8N52 YxxrA8783fVtPy505ojb6xqWkTj21CmPu4OPzSQSNU3b0ROQUgwmCVozbVjw/BJr XX137IwegEgM+B5wsD3LRsRZNn6FT1VHHbI8G9cPSYgrxyqP02/8I/Pu+MuvSLeF 6Rp6kafzvGrIWvzXNXdJBSbUIDfwRJP54Dg28byW03WzcvNXRaBzidrRjFi6DJnu 1jJIQPYdm0UoBD5u/a9mQOHp5m8f/zfUw6sNVaDlum3HeGpyZnDyCcNkFDGL9i/w k9kddHFc/hIoFhdAC2FeRdwA1ySWj56Aq59yQWtY1sx8LE4= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org