$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/74F2E74E398A11EDBB00B772C4F9AE02.roa File: 74F2E74E398A11EDBB00B772C4F9AE02.roa (raw, json) Hash identifier: hdGXu0zMDFcsiORVzfrpmKjPIyUJ49ZM7yP9yUR61hk= Subject key identifier: CB:AE:50:A2:38:77:2D:42:E0:69:DB:07:0D:52:ED:F2:0B:0C:62:54 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4593 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/74F2E74E398A11EDBB00B772C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:11 +0000 ROA not before: Thu 05 Sep 2024 03:33:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140762 IP address blocks: 103.154.176.0/23 maxlen: 23 2001:df4:9380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17811 (0x4593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92677-efc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:92:c3:69:a2:56:8a:aa:bd:69:5a:a4:ee:85: ab:48:db:6e:52:82:b7:a6:da:23:02:cc:6b:7b:88: f2:c4:cd:37:b8:f3:52:eb:d8:e2:42:a0:48:e2:c5: 05:fe:57:13:c9:e3:95:58:9e:dd:70:cb:1c:8e:da: 25:e6:02:f7:5e:29:df:09:b2:16:0f:56:37:cc:46: 4c:1d:d3:ac:12:2a:f8:a1:87:20:a2:fd:69:6b:26: 89:0d:d3:fc:a6:8f:64:d4:79:e9:bd:53:63:8a:b2: 43:e7:a3:20:8e:2f:ed:cc:74:d8:3b:bb:36:61:3b: 96:9d:d2:72:25:c7:ea:a3:e2:f5:57:7c:a5:04:a0: ab:26:f1:b9:90:f8:74:15:af:db:e5:53:e8:b8:af: 77:1d:6a:6f:8f:1f:88:4b:b4:68:b5:65:cd:0e:01: f1:fe:36:e5:e0:c8:fd:51:88:85:8a:e8:73:22:a0: ad:25:ec:0c:b5:49:4a:ba:28:6d:5e:93:17:61:3a: 39:9b:51:30:5d:6f:6d:17:12:e4:23:7e:56:86:85: aa:00:85:d4:8e:bd:8e:c0:b4:49:75:00:b6:49:6d: 02:99:5e:77:04:21:86:79:ff:1f:ea:c9:13:c8:46: 56:d2:f4:32:85:29:ed:e4:8c:09:a3:ce:1b:b2:3a: de:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AE:50:A2:38:77:2D:42:E0:69:DB:07:0D:52:ED:F2:0B:0C:62:54 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/74F2E74E398A11EDBB00B772C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.176.0/23 IPv6: 2001:df4:9380::/48 Signature Algorithm: sha256WithRSAEncryption c0:0f:72:46:44:13:01:d9:62:71:b1:b0:61:47:ba:e3:ed:c4: 46:5f:c7:c7:6d:14:7e:79:58:e2:37:bc:2e:6a:a8:cc:2a:46: dc:23:b6:e1:a2:e5:6e:f3:fb:d8:c1:e3:c3:74:98:4f:a0:96: f0:9b:5d:f3:41:27:fa:4b:37:21:8b:68:58:49:ac:90:a7:c0: 79:33:a4:36:f7:23:39:22:15:dd:53:6e:d7:3a:b1:ac:41:16: 6d:33:38:60:8a:bc:b1:8d:d1:84:1e:45:44:fe:70:35:5a:c2: a0:50:71:e4:31:07:17:4a:8a:e3:4e:b1:87:47:ce:8e:ee:1f: 30:29:14:12:80:50:61:8a:b0:09:b7:4c:96:45:ca:ae:9d:35: 96:33:78:5b:76:8e:72:1c:1a:18:08:4a:da:96:07:7d:bd:d0: 1a:e5:c7:59:81:34:93:cc:82:be:39:18:e2:e6:b6:3b:35:d6: 84:6a:dc:08:f4:3e:6f:21:a1:db:b8:f9:e4:43:68:1e:86:35: 33:d3:27:1f:44:17:f7:7d:d9:9b:8a:84:b5:88:06:65:4a:d5: cb:20:8a:13:37:64:da:b4:f2:56:63:e8:aa:71:02:67:43:e8: 0a:fb:9f:75:ca:85:c4:b3:f8:c4:ae:a4:d9:71:c7:0b:2b:52: db:2c:12:d5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzExWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY3Ny1lZmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpLDaaJWiqq9aVqk7oWrSNtuUoK3ptojAsxre4jyxM03uPNS69jiQqBI4sUF /lcTyeOVWJ7dcMscjtol5gL3XinfCbIWD1Y3zEZMHdOsEir4oYcgov1payaJDdP8 po9k1HnpvVNjirJD56Mgji/tzHTYO7s2YTuWndJyJcfqo+L1V3ylBKCrJvG5kPh0 Fa/b5VPouK93HWpvjx+IS7RotWXNDgHx/jbl4Mj9UYiFiuhzIqCtJewMtUlKuiht XpMXYTo5m1EwXW9tFxLkI35WhoWqAIXUjr2OwLRJdQC2SW0CmV53BCGGef8f6skT yEZW0vQyhSnt5IwJo84bsjreywIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMuuUKI4 dy1C4GnbBw1S7fILDGJUMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNzRGMkU3NEUz OThBMTFFREJCMDBCNzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmrAwDwQCAAIwCQMHACABDfSTgDANBgkqhkiG9w0BAQsF AAOCAQEAwA9yRkQTAdlicbGwYUe64+3ERl/Hx20UfnlY4je8LmqozCpG3CO24aLl bvP72MHjw3SYT6CW8Jtd80En+ks3IYtoWEmskKfAeTOkNvcjOSIV3VNu1zqxrEEW bTM4YIq8sY3RhB5FRP5wNVrCoFBx5DEHF0qK406xh0fOju4fMCkUEoBQYYqwCbdM lkXKrp01ljN4W3aOchwaGAhK2pYHfb3QGuXHWYE0k8yCvjkY4ua2OzXWhGrcCPQ+ byGh27j55ENoHoY1M9MnH0QX933Zm4qEtYgGZUrVyyCKEzdk2rTyVmPoqnECZ0Po CvufdcqFxLP4xK6k2XHHCytS2ywS1Q== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org