$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa File: 8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa (raw, json) Hash identifier: lblbt/bGr2FEyYPEmfiLWI9KKmhgWaodN8wx1bXKK5Q= Subject key identifier: 35:D2:F4:22:88:75:BD:BF:96:C5:20:AE:E1:41:E4:F3:AC:4A:E8:61 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 467F Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:35 +0000 ROA not before: Thu 05 Sep 2024 03:36:35 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 63741 IP address blocks: 103.51.120.0/23 maxlen: 24 103.216.72.0/22 maxlen: 24 103.245.244.0/22 maxlen: 24 203.167.8.0/22 maxlen: 24 2404:ee80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18047 (0x467f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:35 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92743-1f14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:75:e4:98:e3:0b:a7:f2:c7:78:13:8b:3f:1b: 71:56:c2:13:98:0f:48:ef:77:0a:30:16:90:ba:06: 9a:dc:b8:0b:4c:01:7e:6d:ce:24:3f:eb:50:40:87: 8a:7c:82:dd:c2:1a:8e:e2:55:6b:76:e7:46:46:b5: 7f:d2:b6:bc:c0:44:d2:95:ab:5b:9d:b9:28:04:07: b6:34:46:ed:42:e0:34:8a:ab:87:9b:ef:35:7d:ed: f9:e2:a5:3f:8b:ef:ff:29:fd:cd:4e:a3:27:f6:f7: b4:a9:7d:b9:01:72:03:03:6c:84:3e:a3:98:77:b2: d9:1b:14:90:40:7e:d4:a8:b3:26:d0:64:c3:5b:14: 9a:a5:36:cc:27:e8:6a:85:a6:8f:a6:03:03:e7:4f: c2:48:0a:fa:c9:41:8a:4e:34:e8:93:cc:ea:fe:7b: da:d3:a1:cb:1c:08:66:e8:70:68:12:b1:9f:aa:ce: 4c:96:c9:3c:97:40:ed:5a:56:2d:b4:73:67:96:d0: 27:a2:2d:a0:b8:bc:38:65:88:7e:a8:9c:3e:a6:76: b6:a7:57:e8:c8:d4:4e:33:cd:fd:e4:6a:11:77:3e: 53:bc:26:db:3a:52:db:39:c8:7b:b1:e1:4c:f2:07: a4:e5:52:a1:71:40:64:a0:02:e9:04:af:b9:01:c9: ba:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D2:F4:22:88:75:BD:BF:96:C5:20:AE:E1:41:E4:F3:AC:4A:E8:61 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.120.0/23 103.216.72.0/22 103.245.244.0/22 203.167.8.0/22 IPv6: 2404:ee80::/48 Signature Algorithm: sha256WithRSAEncryption 89:d2:ff:a8:34:14:2a:44:3c:31:16:6a:58:e6:5e:a0:77:b0: 0a:5f:c5:09:8b:d0:af:5f:55:66:45:0e:da:d2:0e:08:9e:73: 92:e7:a0:7f:98:dc:ab:9c:c0:1a:49:a3:e7:48:1b:5e:26:e1: 51:a6:94:ca:a2:aa:96:94:7b:d5:3b:15:f5:9d:43:36:12:42: 9c:a6:59:88:8a:46:4b:52:33:e3:0c:df:00:c1:82:85:69:bf: d4:19:41:d4:bd:fe:a7:9e:3c:fc:0e:83:77:c7:4f:a9:26:8f: c8:e8:eb:f8:8b:2f:38:55:7f:01:c4:88:8f:e1:a5:b2:d0:29: 82:90:3e:15:89:3d:99:29:d6:31:b5:ad:de:32:b5:f1:7c:a1: 71:e3:d0:18:18:d8:3f:f3:7e:13:85:9d:0a:de:b1:2a:dd:43: 3d:bf:2b:c4:05:7b:79:eb:48:a2:db:14:de:21:b9:f3:1a:b4: fb:2f:55:f6:dd:9c:1f:e5:09:32:5a:8e:4c:7e:78:fb:1b:a9: da:f9:f4:d0:62:3e:94:a1:03:77:43:5f:c4:65:31:8f:10:0c: 12:3e:6f:45:6c:88:5e:c5:6a:e8:0e:f2:12:80:4c:13:a5:05: d8:50:82:ac:bd:3a:11:56:7a:77:f5:e8:2e:dd:db:11:3a:6a: 40:0c:96:29 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICRn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjM1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5Mjc0My0xZjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnXkmOMLp/LHeBOLPxtxVsITmA9I73cKMBaQugaa3LgLTAF+bc4kP+tQQIeK fILdwhqO4lVrdudGRrV/0ra8wETSlatbnbkoBAe2NEbtQuA0iquHm+81fe354qU/ i+//Kf3NTqMn9ve0qX25AXIDA2yEPqOYd7LZGxSQQH7UqLMm0GTDWxSapTbMJ+hq haaPpgMD50/CSAr6yUGKTjTok8zq/nva06HLHAhm6HBoErGfqs5Mlsk8l0DtWlYt tHNnltAnoi2guLw4ZYh+qJw+pna2p1foyNROM8395GoRdz5TvCbbOlLbOch7seFM 8gek5VKhcUBkoALpBK+5Acm6nwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFDXS9CKI db2/lsUgruFB5POsSuhhMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEFFQThEM0NE RkZDMTFFQ0FFN0NFNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAFnM3gDBAJn2EgDBAJn9fQDBALLpwgwDwQCAAIwCQMHACQE 7oAAADANBgkqhkiG9w0BAQsFAAOCAQEAidL/qDQUKkQ8MRZqWOZeoHewCl/FCYvQ r19VZkUO2tIOCJ5zkuegf5jcq5zAGkmj50gbXibhUaaUyqKqlpR71TsV9Z1DNhJC nKZZiIpGS1Iz4wzfAMGChWm/1BlB1L3+p548/A6Dd8dPqSaPyOjr+IsvOFV/AcSI j+GlstApgpA+FYk9mSnWMbWt3jK18XyhcePQGBjYP/N+E4WdCt6xKt1DPb8rxAV7 eetIotsU3iG58xq0+y9V9t2cH+UJMlqOTH54+xup2vn00GI+lKEDd0NfxGUxjxAM Ej5vRWyIXsVq6A7yEoBME6UF2FCCrL06EVZ6d/XoLt3bETpqQAyWKQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org