$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5BEF6A4A245B11ED90A2B55DC4F9AE02.roa File: 5BEF6A4A245B11ED90A2B55DC4F9AE02.roa (raw, json) Hash identifier: 1sn8s4L/UVmRKZoGvHd09cUHh+9PyPvwY5+Ahm7JpRk= Subject key identifier: 87:D1:0B:83:93:BB:A6:C0:9D:9F:4D:53:8F:E6:F3:15:0A:6C:DB:EA Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45C6 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5BEF6A4A245B11ED90A2B55DC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:54 +0000 ROA not before: Thu 05 Sep 2024 03:33:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149117 IP address blocks: 103.82.28.0/22 maxlen: 22 103.190.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17862 (0x45c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926a2-16ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1b:f5:73:52:b3:cf:86:13:ce:1a:7d:ed:39: a3:5d:b1:16:78:eb:d4:4d:26:1d:96:c0:b0:4d:69: d2:9e:ae:32:e9:91:29:89:f9:21:59:71:0f:ed:20: 4c:13:d0:cf:1a:20:43:d7:b3:4f:1c:88:83:97:8e: dc:3c:ca:a1:8d:ff:93:4a:02:36:e4:67:10:74:c3: d1:cc:24:04:b9:f2:46:d7:bc:bf:dd:16:b5:3e:12: 33:ab:e8:4b:96:3e:67:a7:43:23:76:33:c7:27:1d: 9e:a9:f9:8a:c4:33:6c:11:b5:c8:30:56:f3:8b:92: ca:f8:4e:34:3e:b7:16:b8:73:b6:d0:b9:7c:93:46: fd:bd:fd:2e:34:3b:8a:f3:cf:7b:7f:3f:27:17:b9: 3b:c9:7d:38:ea:8e:bf:3c:1e:78:09:1c:12:e5:dc: bd:a3:87:b0:9d:47:e1:3c:76:da:a8:db:f2:cf:a1: 28:d1:ab:5c:a4:11:c8:6e:d5:17:e8:56:61:92:e7: 15:6b:a0:eb:13:56:1c:5a:dc:39:db:97:d1:2c:72: b6:c6:2c:9c:c9:2d:93:31:3e:47:38:8c:4f:dd:e0: aa:3b:26:f4:d7:d1:49:46:81:10:0a:c8:85:ae:31: f6:2f:1b:c0:c0:f5:d4:63:ba:37:b9:fa:a0:04:55: 83:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D1:0B:83:93:BB:A6:C0:9D:9F:4D:53:8F:E6:F3:15:0A:6C:DB:EA X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5BEF6A4A245B11ED90A2B55DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.28.0/22 103.190.202.0/23 Signature Algorithm: sha256WithRSAEncryption b1:a6:c9:20:1d:0f:3a:9e:e8:68:37:ca:ca:bf:9a:05:fa:3e: 51:22:73:78:58:95:82:33:e6:8d:53:df:83:f4:37:07:a6:58: ae:bf:fd:50:8c:d8:6d:56:fe:a2:f2:73:cc:10:e6:cc:a7:99: 87:d4:c8:6e:69:fa:c0:44:5d:14:a6:5b:3e:1e:3d:f1:21:5f: 0b:4e:17:40:4a:c0:6d:ea:03:26:98:6d:54:5a:8e:12:70:30: bf:04:86:c2:53:51:6c:72:44:38:42:89:ca:07:7e:06:f7:84: 5b:6f:dd:03:5e:af:c4:02:79:be:ec:24:b9:99:18:48:96:ae: f9:f1:06:86:e6:e9:81:8a:a6:11:fe:34:97:ea:44:15:66:c2: 24:6f:40:d5:39:2e:dd:5f:11:4e:11:ce:04:60:3c:26:99:e8: 6c:a9:09:64:5d:a0:8d:1b:05:cc:dd:68:58:57:bc:ab:af:91: 35:1b:47:67:26:cf:98:9b:6b:5e:0a:60:cc:3c:90:f2:50:1b: d0:d0:64:0b:5a:32:e3:c5:49:58:71:53:db:e0:5b:78:a0:48: 05:36:3b:0b:ad:e8:46:0a:af:40:2b:d7:d2:bd:50:a6:21:ff: 6d:bb:87:e8:8a:01:70:57:6f:90:9f:ca:15:4c:54:44:c7:e3: a9:22:94:7b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICRcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZhMi0xNmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRv1c1Kzz4YTzhp97TmjXbEWeOvUTSYdlsCwTWnSnq4y6ZEpifkhWXEP7SBM E9DPGiBD17NPHIiDl47cPMqhjf+TSgI25GcQdMPRzCQEufJG17y/3Ra1PhIzq+hL lj5np0MjdjPHJx2eqfmKxDNsEbXIMFbzi5LK+E40PrcWuHO20Ll8k0b9vf0uNDuK 8897fz8nF7k7yX046o6/PB54CRwS5dy9o4ewnUfhPHbaqNvyz6Eo0atcpBHIbtUX 6FZhkucVa6DrE1YcWtw525fRLHK2xiycyS2TMT5HOIxP3eCqOyb019FJRoEQCsiF rjH2LxvAwPXUY7o3ufqgBFWD0QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIfRC4OT u6bAnZ9NU4/m8xUKbNvqMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNUJFRjZBNEEy NDVCMTFFRDkwQTJCNTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUhwDBAFnvsowDQYJKoZIhvcNAQELBQADggEBALGmySAd Dzqe6Gg3ysq/mgX6PlEic3hYlYIz5o1T34P0NwemWK6//VCM2G1W/qLyc8wQ5syn mYfUyG5p+sBEXRSmWz4ePfEhXwtOF0BKwG3qAyaYbVRajhJwML8EhsJTUWxyRDhC icoHfgb3hFtv3QNer8QCeb7sJLmZGEiWrvnxBobm6YGKphH+NJfqRBVmwiRvQNU5 Lt1fEU4RzgRgPCaZ6GypCWRdoI0bBczdaFhXvKuvkTUbR2cmz5iba14KYMw8kPJQ G9DQZAtaMuPFSVhxU9vgW3igSAU2Owut6EYKr0Ar19K9UKYh/227h+iKAXBXb5Cf yhVMVETH46kilHs= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org