$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5A40661A65DB11EDA2559051C4F9AE02.roa File: 5A40661A65DB11EDA2559051C4F9AE02.roa (raw, json) Hash identifier: YwB0UKFoBlAdoS3mvlO61uMiVGXVbfX8P0UrskZ8vPw= Subject key identifier: 96:0D:CA:CC:A1:0E:BA:A4:9F:96:AC:2D:37:3C:D5:28:48:46:A8:B8 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4577 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5A40661A65DB11EDA2559051C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:32:46 +0000 ROA not before: Thu 05 Sep 2024 03:32:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135946 IP address blocks: 103.106.220.0/22 maxlen: 24 2001:df3:b500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17783 (0x4577) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:32:46 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9265e-244e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d4:81:f2:77:98:aa:80:2c:f9:b3:64:c8:98: 4f:a1:f2:a2:14:84:a7:b2:b0:f4:7c:b6:7d:9e:ee: d5:64:a2:a5:98:d6:b5:3b:69:c8:23:37:31:e9:db: d1:65:6a:f7:db:ad:de:43:88:d4:0b:99:56:da:47: b4:0b:61:8d:20:5a:8c:c9:3c:48:5f:2d:6b:a4:91: 70:1e:17:0c:d0:31:53:c3:d8:a2:e8:cb:4b:ad:e2: e3:f1:1c:50:1d:e2:34:8f:86:00:1d:fd:5b:be:43: 8c:5b:03:0c:85:fe:99:b2:a1:7f:de:7c:f5:f2:8b: d5:e3:64:50:09:ad:53:28:9d:96:0c:78:e3:c3:be: 44:31:22:c7:56:98:09:50:8c:b8:ec:a9:f2:8b:cb: b8:df:55:37:28:64:ba:ec:11:d1:28:36:19:83:0e: f5:d0:cc:01:54:21:20:13:a0:ef:d4:dc:eb:de:e8: 88:f9:e7:ee:85:20:d8:b1:cb:fe:ec:72:f6:85:9d: bd:f4:c9:0f:4f:7d:26:a0:ef:bd:b8:79:f9:b0:56: 43:33:d3:6b:c2:ba:ed:e5:2a:41:52:a8:16:fe:1d: f9:33:a2:86:ef:25:31:e1:9b:30:c9:24:cd:7a:9d: 13:76:85:4a:8d:9c:bf:7b:b4:44:25:50:61:8c:79: 89:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:0D:CA:CC:A1:0E:BA:A4:9F:96:AC:2D:37:3C:D5:28:48:46:A8:B8 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5A40661A65DB11EDA2559051C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.220.0/22 IPv6: 2001:df3:b500::/48 Signature Algorithm: sha256WithRSAEncryption 39:a8:3c:c2:8f:00:ef:98:c7:f2:54:b0:93:3d:76:31:14:27: 0c:56:bd:e4:64:cb:ec:7c:36:72:ac:bf:32:ca:84:50:4b:17: 7f:00:5b:ea:83:1b:72:bf:c3:61:39:8f:0f:e2:a0:a3:1d:9f: 8e:24:c0:f2:62:12:47:60:09:b3:66:fe:17:b9:d9:19:29:1b: d9:85:cb:90:5d:ae:df:15:e4:01:1a:d7:4d:a4:48:8a:58:72: f9:c4:d0:0f:c2:43:0d:7c:ec:2c:ed:b4:b4:85:81:12:9f:95: 47:c6:4a:47:bd:84:b6:ea:02:97:9c:32:af:1e:34:59:53:9d: d9:0b:c4:bf:90:32:7a:4e:d8:d3:a5:45:ca:94:78:0d:4a:f2: ff:6e:2f:a1:53:86:c3:1f:97:ad:c6:1c:88:f8:2b:ab:2c:b2: 08:a5:ff:d0:1f:b4:4b:fd:a5:58:a2:6a:98:52:7e:a7:b7:b9: 3f:09:c9:6b:29:c7:8f:23:ad:96:b3:67:a7:34:e4:c4:9f:07: 87:a9:05:36:ec:d7:61:d3:8c:05:72:12:f8:c2:e2:d3:22:c9: e8:63:dc:b6:eb:2b:ed:c9:26:bf:e4:c6:a2:10:63:6b:65:ed: e6:d2:40:09:ac:59:9e:d5:c5:40:3c:df:53:07:7f:e3:a2:49: 41:d2:af:ff -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMjQ2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY1ZS0yNDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdSB8neYqoAs+bNkyJhPofKiFISnsrD0fLZ9nu7VZKKlmNa1O2nIIzcx6dvR ZWr3263eQ4jUC5lW2ke0C2GNIFqMyTxIXy1rpJFwHhcM0DFTw9ii6MtLreLj8RxQ HeI0j4YAHf1bvkOMWwMMhf6ZsqF/3nz18ovV42RQCa1TKJ2WDHjjw75EMSLHVpgJ UIy47Knyi8u431U3KGS67BHRKDYZgw710MwBVCEgE6Dv1Nzr3uiI+efuhSDYscv+ 7HL2hZ299MkPT30moO+9uHn5sFZDM9Nrwrrt5SpBUqgW/h35M6KG7yUx4ZswySTN ep0TdoVKjZy/e7REJVBhjHmJjQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJYNysyh Drqkn5asLTc81ShIRqi4MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNUE0MDY2MUE2 NURCMTFFREEyNTU5MDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnatwwDwQCAAIwCQMHACABDfO1ADANBgkqhkiG9w0BAQsF AAOCAQEAOag8wo8A75jH8lSwkz12MRQnDFa95GTL7Hw2cqy/MsqEUEsXfwBb6oMb cr/DYTmPD+Kgox2fjiTA8mISR2AJs2b+F7nZGSkb2YXLkF2u3xXkARrXTaRIilhy +cTQD8JDDXzsLO20tIWBEp+VR8ZKR72EtuoCl5wyrx40WVOd2QvEv5Ayek7Y06VF ypR4DUry/24voVOGwx+XrcYciPgrqyyyCKX/0B+0S/2lWKJqmFJ+p7e5PwnJaynH jyOtlrNnpzTkxJ8Hh6kFNuzXYdOMBXIS+MLi0yLJ6GPctusr7ckmv+TGohBja2Xt 5tJACaxZntXFQDzfUwd/46JJQdKv/w== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org