$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/820D80C6843211EE9F151C39C4F9AE02.roa File: 820D80C6843211EE9F151C39C4F9AE02.roa (raw, json) Hash identifier: 5Fvz1Fv5rpNiHsiGPUHVrlMVnlEiscowwqcaE2Y3p64= Subject key identifier: 89:28:12:CA:BE:89:ED:7E:74:92:DB:A1:67:74:A6:F6:FA:50:4C:AA Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4591 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/820D80C6843211EE9F151C39C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:10 +0000 ROA not before: Thu 05 Sep 2024 03:33:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140759 IP address blocks: 103.159.48.0/23 maxlen: 24 2001:df5:7580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17809 (0x4591) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92675-fb7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:62:74:67:cf:38:6a:b7:56:63:50:68:a4:57: 8e:21:49:b4:24:ca:35:74:cb:76:a1:7c:7f:97:b9: 28:0e:6c:aa:cc:da:69:a0:67:09:9d:eb:97:94:a3: 9b:59:01:69:80:ef:da:19:99:8b:5a:1a:c6:c3:e4: 23:a9:2f:8c:99:69:5c:19:bd:b2:51:46:0a:b4:ce: 30:c3:33:83:0d:33:45:f7:50:dd:eb:1e:ea:51:ae: da:d9:72:96:41:ff:a5:cf:59:5c:dd:63:db:c4:15: 09:c1:96:f0:46:9d:ae:0c:c0:ba:11:1a:0b:17:7a: 9f:33:4d:70:e8:01:15:f6:dd:2a:b2:d9:25:52:19: 0e:31:cf:79:e7:15:8d:03:5c:be:10:11:46:68:c8: 3a:71:21:07:c8:3c:6c:a9:09:5d:73:79:77:46:9d: ca:92:dd:da:39:ba:68:c4:44:fc:d4:04:3e:b7:fa: 67:da:70:3a:08:df:75:40:70:a0:1c:0b:62:e9:11: 3a:27:e7:02:20:b6:1d:83:da:82:0e:06:a5:2b:b0: 43:3f:fe:6e:40:19:4a:dc:c4:70:d3:06:a1:71:ae: 31:2c:11:b7:c2:09:47:7e:87:04:b0:7b:de:1f:ce: 05:56:ec:3d:2f:b7:fe:fa:0f:cf:95:b2:96:7c:6c: d9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:28:12:CA:BE:89:ED:7E:74:92:DB:A1:67:74:A6:F6:FA:50:4C:AA X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/820D80C6843211EE9F151C39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.48.0/23 IPv6: 2001:df5:7580::/48 Signature Algorithm: sha256WithRSAEncryption 45:2a:0f:83:17:41:18:11:20:ca:44:3a:b1:21:bc:f7:6d:7c: e1:47:6d:88:b8:23:b7:5b:15:50:cf:0f:ba:59:f4:df:5d:c7: 1c:cd:85:56:c0:53:ed:a9:0f:71:5a:95:7e:fe:57:31:02:69: c2:e9:a4:b6:5c:5e:8f:fa:3f:04:ed:05:71:d3:8c:65:28:7c: 1c:d0:5d:12:bb:ec:60:5b:36:72:12:2e:71:97:71:e0:47:08: f1:95:32:91:31:15:b7:42:05:f2:70:b4:ab:73:3e:62:02:9b: 65:29:25:c5:3d:d2:39:f9:c4:e7:82:c3:a0:d5:de:05:b8:cc: 83:c7:7f:2e:0e:59:78:74:3c:52:1a:44:3d:da:2b:a1:f0:3e: 20:28:fb:69:49:03:9e:65:bc:2c:83:44:f9:a6:ff:28:54:77: 78:63:73:3d:d9:70:68:9b:18:ba:eb:a0:d3:95:bf:c4:16:75: b4:35:0c:36:7b:fa:72:83:d2:60:ad:4c:ab:17:e0:36:65:fb: 0a:ca:00:a4:b5:fb:c0:c6:f5:01:f5:53:1d:c6:3a:34:7e:98: 0e:b2:dd:a4:1a:f1:2e:f1:cd:17:76:6e:82:b0:e0:10:07:7b: f1:84:55:77:f6:a0:b4:5d:57:89:67:95:87:c5:89:73:8f:6d: 9d:4f:22:1f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY3NS1mYjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmJ0Z884ardWY1BopFeOIUm0JMo1dMt2oXx/l7koDmyqzNppoGcJneuXlKOb WQFpgO/aGZmLWhrGw+QjqS+MmWlcGb2yUUYKtM4wwzODDTNF91Dd6x7qUa7a2XKW Qf+lz1lc3WPbxBUJwZbwRp2uDMC6ERoLF3qfM01w6AEV9t0qstklUhkOMc955xWN A1y+EBFGaMg6cSEHyDxsqQldc3l3Rp3Kkt3aObpoxET81AQ+t/pn2nA6CN91QHCg HAti6RE6J+cCILYdg9qCDgalK7BDP/5uQBlK3MRw0wahca4xLBG3wglHfocEsHve H84FVuw9L7f++g/PlbKWfGzZUQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIkoEsq+ ie1+dJLboWd0pvb6UEyqMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvODIwRDgwQzY4 NDMyMTFFRTlGMTUxQzM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnzAwDwQCAAIwCQMHACABDfV1gDANBgkqhkiG9w0BAQsF AAOCAQEARSoPgxdBGBEgykQ6sSG892184UdtiLgjt1sVUM8Puln0313HHM2FVsBT 7akPcVqVfv5XMQJpwumktlxej/o/BO0FcdOMZSh8HNBdErvsYFs2chIucZdx4EcI 8ZUykTEVt0IF8nC0q3M+YgKbZSklxT3SOfnE54LDoNXeBbjMg8d/Lg5ZeHQ8UhpE PdorofA+ICj7aUkDnmW8LINE+ab/KFR3eGNzPdlwaJsYuuug05W/xBZ1tDUMNnv6 coPSYK1MqxfgNmX7CsoApLX7wMb1AfVTHcY6NH6YDrLdpBrxLvHNF3ZugrDgEAd7 8YRVd/agtF1XiWeVh8WJc49tnU8iHw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org