$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8F400B883FFE11EEBFDFCF4CC4F9AE02.roa File: 8F400B883FFE11EEBFDFCF4CC4F9AE02.roa (raw, json) Hash identifier: /VwQI221+igeeElqrMzo12olXeZ3n+c3e5VJB6ovs38= Subject key identifier: 6A:80:82:9A:3E:DE:CA:E2:5B:0A:BE:0E:2D:D2:0C:D1:7A:A1:85:46 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45FA Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8F400B883FFE11EEBFDFCF4CC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:34:40 +0000 ROA not before: Thu 05 Sep 2024 03:34:40 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150861 IP address blocks: 103.68.248.0/22 maxlen: 22 103.147.188.0/23 maxlen: 23 103.182.20.0/23 maxlen: 23 2001:df0:74c0::/48 maxlen: 48 2405:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17914 (0x45fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:34:40 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926d0-d170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:03:d8:05:29:db:55:d5:93:7d:5a:1c:50:63: 43:b7:0d:1e:fb:4a:4c:dd:08:c6:e3:ad:a6:c6:7d: e2:85:7d:ad:7b:53:b5:8e:c8:20:51:6a:52:ef:b9: 66:68:be:38:57:ad:6c:36:b0:2a:34:3a:07:69:39: 41:c4:84:b8:07:6d:3b:86:ca:88:37:bb:d6:5a:e9: 6b:2c:e1:ba:05:3d:a9:a3:38:be:7d:42:74:8c:95: 0b:81:9a:6c:b2:96:3d:77:34:b7:d5:61:89:8a:9f: 42:0c:11:bc:f5:b2:0e:b4:e2:de:05:4e:94:79:7f: a1:13:af:06:40:bd:e9:46:ba:85:6a:31:26:b6:14: a8:6d:7d:d4:9d:57:34:1e:76:b1:69:b6:b1:02:d5: d6:f5:3d:61:f7:9f:80:9e:b8:5a:7e:ff:12:f2:56: b4:86:a0:be:60:db:06:89:1c:d0:95:e9:69:ee:f3: 26:16:19:49:03:b2:4d:fb:e6:5b:b0:28:f9:cf:33: 1e:46:1e:e1:e7:2b:d9:90:a8:53:1c:88:9b:80:e6: ff:41:ec:8b:e9:2e:5d:89:ea:22:8e:8b:0d:f7:f0: ed:dc:e7:87:7d:9a:78:67:c1:66:05:df:1a:68:0d: eb:03:b5:ca:cf:44:47:b3:6b:3b:2a:d0:bd:05:dc: d3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:80:82:9A:3E:DE:CA:E2:5B:0A:BE:0E:2D:D2:0C:D1:7A:A1:85:46 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8F400B883FFE11EEBFDFCF4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.248.0/22 103.147.188.0/23 103.182.20.0/23 IPv6: 2001:df0:74c0::/48 2405:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 3c:65:96:e7:4d:d5:ab:5b:99:0a:f3:79:b5:d1:f3:46:ee:01: 9d:8d:a2:f9:fa:85:e9:e8:ec:d6:27:c7:50:e2:c4:38:58:39: 33:d6:c1:8e:d3:69:07:d0:db:38:07:19:af:e6:63:c5:e2:ab: 71:37:ca:52:e3:73:d4:0f:e9:a5:90:73:d3:63:6e:f4:12:31: 5b:4f:1b:10:d7:11:f8:2e:a8:15:25:75:11:14:04:38:cb:31: aa:d3:c3:77:ef:72:1e:0d:35:46:49:f0:fb:66:00:4f:01:ff: 81:e4:e5:33:2e:0b:ab:22:52:0c:3c:90:c8:ad:ff:4f:20:5c: ef:2c:0d:6d:42:06:c9:50:ec:28:cb:0b:a6:9a:53:84:bf:93: 76:64:d4:23:9e:f8:3c:ae:56:87:9c:c3:ea:9d:80:c2:76:32: 87:1b:a9:88:20:51:6f:d1:f3:b3:af:11:69:ac:e0:56:f3:7a: 4c:41:de:28:42:af:a4:f1:37:ad:38:fc:5a:d1:4a:6f:27:01: e7:a5:4b:90:2a:4d:ce:35:18:ff:5e:77:76:2c:57:82:f9:31: 97:5b:7a:2c:d2:07:31:7d:e4:5d:7b:fb:59:df:ec:4f:e3:a6: 4d:87:43:ef:b3:67:e1:c5:f3:fe:a4:82:03:c9:17:a1:d1:7e: 4f:d3:4b:29 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICRfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNDQwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZkMC1kMTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6APYBSnbVdWTfVocUGNDtw0e+0pM3QjG462mxn3ihX2te1O1jsggUWpS77lm aL44V61sNrAqNDoHaTlBxIS4B207hsqIN7vWWulrLOG6BT2pozi+fUJ0jJULgZps spY9dzS31WGJip9CDBG89bIOtOLeBU6UeX+hE68GQL3pRrqFajEmthSobX3UnVc0 HnaxabaxAtXW9T1h95+Anrhafv8S8la0hqC+YNsGiRzQlelp7vMmFhlJA7JN++Zb sCj5zzMeRh7h5yvZkKhTHIibgOb/QeyL6S5dieoijosN9/Dt3OeHfZp4Z8FmBd8a aA3rA7XKz0RHs2s7KtC9BdzT0QIDAQABo4ICuzCCArcwHQYDVR0OBBYEFGqAgpo+ 3sriWwq+Di3SDNF6oYVGMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEY0MDBCODgz RkZFMTFFRUJGREZDRjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAJnRPgDBAFnk7wDBAFnthQwGAQCAAIwEgMHACABDfB0wAMH ACQFEMAAADANBgkqhkiG9w0BAQsFAAOCAQEAPGWW503Vq1uZCvN5tdHzRu4BnY2i +fqF6ejs1ifHUOLEOFg5M9bBjtNpB9DbOAcZr+ZjxeKrcTfKUuNz1A/ppZBz02Nu 9BIxW08bENcR+C6oFSV1ERQEOMsxqtPDd+9yHg01Rknw+2YATwH/geTlMy4LqyJS DDyQyK3/TyBc7ywNbUIGyVDsKMsLpppThL+TdmTUI574PK5Wh5zD6p2AwnYyhxup iCBRb9Hzs68RaazgVvN6TEHeKEKvpPE3rTj8WtFKbycB56VLkCpNzjUY/153dixX gvkxl1t6LNIHMX3kXXv7Wd/sT+OmTYdD77Nn4cXz/qSCA8kXodF+T9NLKQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org