$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6E718C72D21811EE83507085C4F9AE02.roa File: 6E718C72D21811EE83507085C4F9AE02.roa (raw, json) Hash identifier: YmzO4wPSvRzfaPu72Zf+SQs1jo8MJBEGUBaCkXswh+4= Subject key identifier: 0B:13:ED:45:DF:2A:83:C1:25:6B:8E:E2:C2:89:15:D8:E8:4A:ED:2A Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4592 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6E718C72D21811EE83507085C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:10 +0000 ROA not before: Thu 05 Sep 2024 03:33:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140760 IP address blocks: 103.159.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17810 (0x4592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92676-37f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:80:7d:23:b6:fb:06:ab:95:f2:90:00:45:bd: cd:a2:21:7e:a4:8a:2f:3f:1b:78:a3:d9:ce:24:fc: f7:ab:20:1d:6c:6a:d7:db:17:d2:fa:f2:5e:5d:f2: af:dc:5d:4a:d8:f5:17:5a:98:84:10:0a:c6:8f:c2: d6:1e:97:7a:a4:21:7a:02:1a:9f:42:37:91:7b:05: 11:75:c3:3c:ad:72:65:1f:51:08:95:86:af:5c:23: 84:04:42:b5:35:1f:11:7c:0d:75:a1:3b:7e:24:46: b6:52:a4:a8:ac:55:59:41:6d:4c:01:e8:d4:6a:41: 39:31:7e:ff:98:4c:97:4a:dc:0e:81:0b:52:66:42: 80:eb:d5:f7:6f:1c:20:ed:34:a8:7a:88:67:aa:2d: e0:da:3d:be:f1:73:6e:61:e1:c8:b7:50:a7:72:31: f8:1c:f6:9c:ce:a6:e8:df:6c:22:1d:26:49:2d:19: b0:84:3a:95:03:59:d0:4e:b0:1f:d9:1d:d0:50:7f: 57:e1:2b:92:0f:5f:47:bd:3b:21:5d:3f:f8:d6:5b: b3:01:3f:53:c8:ba:a0:91:f8:d6:b5:a4:16:03:db: 55:66:30:70:b1:35:34:6e:ae:1e:d3:fa:b6:cd:2a: d2:8a:44:ac:23:7d:cd:eb:9e:94:f1:42:fe:06:04: bd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:13:ED:45:DF:2A:83:C1:25:6B:8E:E2:C2:89:15:D8:E8:4A:ED:2A X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6E718C72D21811EE83507085C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.56.0/23 Signature Algorithm: sha256WithRSAEncryption 28:1d:40:8b:da:cc:19:2f:6c:13:1c:e3:13:1a:bb:27:2f:fd: 64:b9:5c:0b:8d:90:58:ad:75:70:78:3e:7a:0e:27:07:6a:e3: 92:04:a4:3f:3d:24:80:3e:73:15:d5:66:22:3f:3c:30:53:82: c0:ad:f4:61:5e:c5:1b:ce:83:e1:05:a4:92:ff:c9:40:59:de: e1:33:b5:6d:60:a0:e4:f4:41:6e:02:65:59:f8:89:8a:0d:4f: f6:e0:36:60:3a:05:5d:bc:f7:f2:d9:10:56:d0:6a:7c:51:da: c8:ca:52:1d:5a:c3:56:dd:44:05:2d:87:ba:ea:60:c6:63:91: 96:7f:ed:ca:07:c3:b8:fe:7c:6f:36:b5:94:b8:6a:09:a8:cf: 94:d7:30:22:de:c8:c2:54:1b:a3:be:5c:97:ca:47:c4:54:3f: b5:a9:71:02:f7:8e:c6:ef:93:e9:18:66:6b:45:12:a2:42:e4: a2:4e:23:ee:3e:bc:00:a0:45:b4:ed:ac:b7:1f:f7:54:a5:20: ac:98:90:7c:7c:45:9b:8d:a1:1e:17:de:2c:10:4f:f2:da:9c: 53:2b:37:6a:29:ab:d6:ab:b0:7f:5e:52:a4:fe:6e:48:3e:e6: 98:b5:9a:27:1e:93:3d:aa:77:c3:c6:d7:1a:43:6a:43:64:9a: 1b:70:2b:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY3Ni0zN2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoB9I7b7BquV8pAARb3NoiF+pIovPxt4o9nOJPz3qyAdbGrX2xfS+vJeXfKv 3F1K2PUXWpiEEArGj8LWHpd6pCF6AhqfQjeRewURdcM8rXJlH1EIlYavXCOEBEK1 NR8RfA11oTt+JEa2UqSorFVZQW1MAejUakE5MX7/mEyXStwOgQtSZkKA69X3bxwg 7TSoeohnqi3g2j2+8XNuYeHIt1CncjH4HPaczqbo32wiHSZJLRmwhDqVA1nQTrAf 2R3QUH9X4SuSD19HvTshXT/41luzAT9TyLqgkfjWtaQWA9tVZjBwsTU0bq4e0/q2 zSrSikSsI33N656U8UL+BgS9VwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAsT7UXf KoPBJWuO4sKJFdjoSu0qMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNkU3MThDNzJE MjE4MTFFRTgzNTA3MDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnzgwDQYJKoZIhvcNAQELBQADggEBACgdQIvazBkvbBMc 4xMauycv/WS5XAuNkFitdXB4PnoOJwdq45IEpD89JIA+cxXVZiI/PDBTgsCt9GFe xRvOg+EFpJL/yUBZ3uEztW1goOT0QW4CZVn4iYoNT/bgNmA6BV289/LZEFbQanxR 2sjKUh1aw1bdRAUth7rqYMZjkZZ/7coHw7j+fG82tZS4agmoz5TXMCLeyMJUG6O+ XJfKR8RUP7WpcQL3jsbvk+kYZmtFEqJC5KJOI+4+vACgRbTtrLcf91SlIKyYkHx8 RZuNoR4X3iwQT/LanFMrN2opq9arsH9eUqT+bkg+5pi1micekz2qd8PG1xpDakNk mhtwK4Y= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org