$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5B04EBF23BE611EE86CE677AC4F9AE02.roa File: 5B04EBF23BE611EE86CE677AC4F9AE02.roa (raw, json) Hash identifier: mK5EDn5OYFeuZEps0J3A7eN5WjcPVRJ7ihKFXuht/0U= Subject key identifier: FF:13:9A:BD:FE:87:B7:7E:81:2B:22:A3:F2:B1:FC:63:45:99:ED:49 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4602 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5B04EBF23BE611EE86CE677AC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:34:47 +0000 ROA not before: Thu 05 Sep 2024 03:34:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150873 IP address blocks: 103.249.200.0/23 maxlen: 23 2401:22a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17922 (0x4602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:34:47 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926d7-ee66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f6:ad:bc:dc:31:38:37:af:4d:f5:fd:0b:0c: af:e6:0a:1d:1c:8d:3e:d7:8f:bf:81:28:1d:92:3c: 34:66:05:a0:1a:eb:26:11:25:90:2b:59:13:85:fc: 06:41:90:ea:b4:0a:dd:0d:30:84:a0:5a:2b:6c:ff: ee:83:51:3c:89:5c:f5:bb:74:68:4b:ab:83:ec:f9: 62:9b:58:58:0c:3d:b9:23:17:4a:2a:03:35:0f:41: 9a:ed:73:a0:91:0c:49:52:c3:e6:8d:00:6a:b9:c9: ba:ff:7f:bf:ae:4c:ba:3e:44:37:9a:3e:a4:29:89: d8:08:75:aa:78:13:a0:a4:0b:7c:ae:04:00:42:ce: 37:42:ac:01:90:55:fc:31:09:02:dc:b8:1b:15:62: 88:51:83:2f:70:c0:2d:46:72:73:3c:11:9c:8c:e0: 53:57:2a:88:33:c2:24:84:90:33:da:c5:f7:92:c8: 12:74:3f:df:d8:00:87:47:5e:c4:95:15:23:c6:e3: af:3e:03:4c:fd:85:c1:f3:1a:9c:e3:07:7c:19:af: 87:f3:08:2b:bf:51:13:68:87:4c:64:fb:6d:51:76: 62:7e:93:6d:0d:c3:27:85:d5:ef:83:b5:25:19:a0: f1:ea:63:5d:b6:13:8c:46:b3:f6:e8:9c:f6:13:52: 36:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:13:9A:BD:FE:87:B7:7E:81:2B:22:A3:F2:B1:FC:63:45:99:ED:49 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5B04EBF23BE611EE86CE677AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.200.0/23 IPv6: 2401:22a0::/48 Signature Algorithm: sha256WithRSAEncryption a2:39:74:7b:bd:d0:8c:7d:fb:ec:eb:fa:4c:b1:0b:c3:f9:a3: 97:60:89:ca:16:6a:ce:b3:15:69:bf:2d:fc:57:41:72:68:cb: 7e:36:51:c1:0b:d7:98:c7:2a:3d:bd:a2:a5:21:b2:43:b8:9b: eb:c3:43:ba:0e:9b:8e:81:84:30:f1:f7:7b:d2:b6:3a:8d:77: 73:6c:0b:c8:a6:27:65:f6:9a:e7:31:14:3a:bc:16:f3:86:8f: cc:7c:62:7c:7a:4c:82:3c:d0:3b:0e:e3:09:fc:94:db:a9:c9: 92:33:1c:06:2f:92:ee:3e:9d:40:17:2f:d5:13:ae:f6:b7:0e: 71:28:01:e1:40:f8:7e:39:89:bf:f9:6b:1f:a3:a9:26:4a:cf: d4:1d:19:48:86:a4:2c:55:ba:84:18:cf:2c:84:ef:7a:c6:fe: d2:10:81:73:0b:ca:ed:91:5e:d4:bd:7f:04:64:5f:ad:5a:c7: 52:7a:f2:10:2d:1a:8d:92:e7:96:2e:0b:9b:83:51:de:72:0e: c0:aa:af:21:b9:95:a1:bd:b8:dd:14:8d:aa:e4:57:8d:11:37: 7d:6a:9e:07:46:55:95:7b:dc:27:12:50:13:ff:13:40:0e:e9: 05:fc:c0:9c:a8:58:b7:1c:c6:b7:d3:0c:91:c1:5b:bb:ce:e8: f3:f3:95:b1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNDQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZkNy1lZTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPatvNwxODevTfX9Cwyv5godHI0+14+/gSgdkjw0ZgWgGusmESWQK1kThfwG QZDqtArdDTCEoForbP/ug1E8iVz1u3RoS6uD7Plim1hYDD25IxdKKgM1D0Ga7XOg kQxJUsPmjQBqucm6/3+/rky6PkQ3mj6kKYnYCHWqeBOgpAt8rgQAQs43QqwBkFX8 MQkC3LgbFWKIUYMvcMAtRnJzPBGcjOBTVyqIM8IkhJAz2sX3ksgSdD/f2ACHR17E lRUjxuOvPgNM/YXB8xqc4wd8Ga+H8wgrv1ETaIdMZPttUXZifpNtDcMnhdXvg7Ul GaDx6mNdthOMRrP26Jz2E1I2CwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP8Tmr3+ h7d+gSsio/Kx/GNFme1JMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNUIwNEVCRjIz QkU2MTFFRTg2Q0U2NzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn+cgwDwQCAAIwCQMHACQBIqAAADANBgkqhkiG9w0BAQsF AAOCAQEAojl0e73QjH377Ov6TLELw/mjl2CJyhZqzrMVab8t/FdBcmjLfjZRwQvX mMcqPb2ipSGyQ7ib68NDug6bjoGEMPH3e9K2Oo13c2wLyKYnZfaa5zEUOrwW84aP zHxifHpMgjzQOw7jCfyU26nJkjMcBi+S7j6dQBcv1ROu9rcOcSgB4UD4fjmJv/lr H6OpJkrP1B0ZSIakLFW6hBjPLITvesb+0hCBcwvK7ZFe1L1/BGRfrVrHUnryEC0a jZLnli4Lm4NR3nIOwKqvIbmVob243RSNquRXjRE3fWqeB0ZVlXvcJxJQE/8TQA7p BfzAnKhYtxzGt9MMkcFbu87o8/OVsQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org