$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/678C56906AD511EDBBAAF90AC4F9AE02.roa File: 678C56906AD511EDBBAAF90AC4F9AE02.roa (raw, json) Hash identifier: Dx5tQsLHKBB9MQRVfbGs6SD33s3ZNcRqsTy175i9RE4= Subject key identifier: 1E:81:E8:27:25:00:65:5E:A0:1A:56:04:A7:28:FD:C2:00:34:E1:77 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45DB Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/678C56906AD511EDBBAAF90AC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:34:15 +0000 ROA not before: Thu 05 Sep 2024 03:34:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149148 IP address blocks: 103.38.236.0/23 maxlen: 23 202.158.248.0/23 maxlen: 23 2400:c0e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17883 (0x45db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:34:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926b6-becd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f2:a9:67:e5:35:cb:cf:3c:76:25:70:e3:e0: 04:76:01:52:41:77:fb:8c:0f:1d:28:df:e3:a9:ea: b0:29:41:a1:b2:41:7b:f0:d8:3c:f5:ed:0a:47:7f: 64:b4:96:ff:43:76:7f:4d:46:e3:f9:bf:91:60:58: 6b:fe:3c:d8:10:b5:03:0b:14:0a:71:90:50:56:d5: f6:09:ca:1e:fb:f5:58:98:1f:34:a0:cf:26:e0:5a: 21:bb:38:95:af:6c:a3:50:b5:bd:52:8c:d5:5f:7b: 06:0a:0b:7b:0e:de:f1:7b:aa:8e:ee:5d:c9:04:a5: f9:10:0f:14:b1:e0:0d:c2:ba:b0:21:69:ac:a2:ce: 81:47:21:45:0f:9b:d9:ef:3e:ec:8b:d8:62:cb:13: 69:8a:16:bb:71:3a:65:45:3a:5b:23:14:b6:55:7d: 33:42:b3:e2:f8:5f:6d:2a:b2:8e:21:4a:b0:a6:91: 8a:1e:07:86:b2:03:60:cc:ed:e9:f4:79:37:5c:38: 2f:d8:0f:d5:5a:fd:79:0b:9a:c5:15:eb:9b:07:90: 86:77:b1:7a:0a:a4:8d:23:84:a7:b4:76:fc:6a:4c: aa:88:85:a1:54:d2:cd:ce:ab:d7:f0:3f:9d:6b:3c: 94:8b:3f:05:80:c7:f8:ba:1e:3b:cd:89:56:99:2a: 49:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:81:E8:27:25:00:65:5E:A0:1A:56:04:A7:28:FD:C2:00:34:E1:77 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/678C56906AD511EDBBAAF90AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.236.0/23 202.158.248.0/23 IPv6: 2400:c0e0::/48 Signature Algorithm: sha256WithRSAEncryption 50:80:fd:24:88:ac:94:48:31:8d:44:7b:77:cd:3f:6e:f5:7a: 55:4c:97:d3:77:b9:0d:5f:c5:a3:13:b5:66:34:5d:da:42:c8: fa:8a:8e:4b:96:51:61:38:d1:c9:36:b1:5b:c2:e9:95:42:33: 8a:02:e6:17:e9:c4:63:84:7d:e2:65:a5:37:27:18:1e:b9:03: 63:bd:ad:c2:77:63:43:bc:d6:5f:cb:f6:03:a1:e2:76:40:ab: 26:8b:80:66:87:12:bf:4f:52:41:f5:ac:71:b8:d7:f2:4a:85: b7:9d:89:f8:1f:1e:63:eb:c0:3f:b5:ab:d2:19:58:6e:41:ca: 03:46:aa:77:70:20:da:86:92:ee:38:61:81:6a:ea:db:f4:40: e2:6e:3f:58:72:54:dd:74:85:c7:01:09:80:f6:58:e1:ff:e1: fd:74:20:03:80:b2:d4:b2:a5:bb:04:5f:07:ca:72:35:f7:8c: d6:be:5a:ad:8a:44:b0:14:29:16:72:5d:e2:d5:c4:c1:ff:2a: ff:c5:64:c1:e1:56:09:01:d4:80:4c:86:e8:5d:80:35:af:37: 27:dc:e8:c8:15:d6:02:2a:cb:01:9c:26:5f:8e:70:6e:2d:c5: 27:ee:8c:1a:f2:a5:f3:28:fd:8c:81:e6:ab:22:01:62:7d:51: 5a:04:5e:40 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICRdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNDE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZiNi1iZWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/KpZ+U1y888diVw4+AEdgFSQXf7jA8dKN/jqeqwKUGhskF78Ng89e0KR39k tJb/Q3Z/TUbj+b+RYFhr/jzYELUDCxQKcZBQVtX2Ccoe+/VYmB80oM8m4FohuziV r2yjULW9UozVX3sGCgt7Dt7xe6qO7l3JBKX5EA8UseANwrqwIWmsos6BRyFFD5vZ 7z7si9hiyxNpiha7cTplRTpbIxS2VX0zQrPi+F9tKrKOIUqwppGKHgeGsgNgzO3p 9Hk3XDgv2A/VWv15C5rFFeubB5CGd7F6CqSNI4SntHb8akyqiIWhVNLNzqvX8D+d azyUiz8FgMf4uh47zYlWmSpJ9QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFB6B6Ccl AGVeoBpWBKco/cIANOF3MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNjc4QzU2OTA2 QUQ1MTFFREJCQUFGOTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnJuwDBAHKnvgwDwQCAAIwCQMHACQAwOAAADANBgkqhkiG 9w0BAQsFAAOCAQEAUID9JIislEgxjUR7d80/bvV6VUyX03e5DV/FoxO1ZjRd2kLI +oqOS5ZRYTjRyTaxW8LplUIzigLmF+nEY4R94mWlNycYHrkDY72twndjQ7zWX8v2 A6HidkCrJouAZocSv09SQfWscbjX8kqFt52J+B8eY+vAP7Wr0hlYbkHKA0aqd3Ag 2oaS7jhhgWrq2/RA4m4/WHJU3XSFxwEJgPZY4f/h/XQgA4Cy1LKluwRfB8pyNfeM 1r5arYpEsBQpFnJd4tXEwf8q/8VkweFWCQHUgEyG6F2ANa83J9zoyBXWAirLAZwm X45wbi3FJ+6MGvKl8yj9jIHmqyIBYn1RWgReQA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org