$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/92DBB0469A8D11EEBCC9CE5EC4F9AE02.roa File: 92DBB0469A8D11EEBCC9CE5EC4F9AE02.roa (raw, json) Hash identifier: rb2e456rsoKinwxkVHN7jSDVAjHc21jV6O2IbJVtKV8= Subject key identifier: 1C:E1:23:8A:45:23:F8:69:BC:22:F1:C3:65:A5:15:1F:3F:B8:41:57 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4568 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/92DBB0469A8D11EEBCC9CE5EC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:32:32 +0000 ROA not before: Thu 05 Sep 2024 03:32:32 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135921 IP address blocks: 103.45.232.0/22 maxlen: 24 103.69.188.0/22 maxlen: 22 103.98.148.0/22 maxlen: 22 2407:f1c0::/36 maxlen: 48 2407:f1c0:1000::/36 maxlen: 48 2407:f1c0:2000::/36 maxlen: 48 2407:f1c0:3000::/36 maxlen: 48 2407:f1c0:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17768 (0x4568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:32:32 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92650-b8d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:33:bb:ca:b9:b4:e9:ce:22:33:70:bb:9a:bf: 4b:3b:9c:63:f8:de:54:dd:70:64:96:aa:ff:e6:a5: 18:61:25:37:fb:0e:2b:f2:0c:1b:74:b5:59:a1:04: 83:04:c4:8c:99:f0:27:eb:3e:9c:38:b5:01:ed:4a: c1:c4:ce:01:cb:26:d8:e4:78:9a:e1:30:fd:b4:29: 7a:4f:6c:21:d5:d7:76:f6:30:e4:b2:43:07:98:1d: 4c:c5:da:44:ac:a7:b6:d4:0c:54:7e:67:6f:68:97: 87:fa:f0:bb:dc:35:f9:2d:03:54:f2:6a:84:04:bf: 17:06:c7:6e:c4:1e:5f:ec:df:fa:e3:a0:d9:58:55: 2f:5c:3c:55:fe:a6:98:2a:5c:94:1e:98:ef:17:8c: 42:fe:2f:5b:77:c6:eb:cd:4c:0c:3d:13:bc:ad:98: 65:3c:22:b5:a2:7e:84:e8:3a:37:28:c7:43:fa:bc: d1:35:2b:e7:09:c9:24:80:dc:ab:ff:82:46:9e:22: 55:fc:81:80:25:67:0b:c4:82:66:db:d8:9c:ec:76: 10:5d:02:55:78:e5:c3:cc:61:20:dc:6c:56:ee:c9: bc:49:79:4b:fb:b5:8e:c0:1d:56:70:be:e6:f3:1e: 70:51:61:cd:68:45:a7:30:5a:9d:6f:cc:0d:3a:1c: 13:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E1:23:8A:45:23:F8:69:BC:22:F1:C3:65:A5:15:1F:3F:B8:41:57 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/92DBB0469A8D11EEBCC9CE5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.45.232.0/22 103.69.188.0/22 103.98.148.0/22 IPv6: 2407:f1c0::-2407:f1c0:4fff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 91:34:fc:bc:eb:61:d0:e7:16:6d:82:fc:90:55:cc:1c:75:5e: ce:38:29:41:33:7f:fb:96:d3:d8:05:ce:b7:ac:31:e9:07:22: 11:26:b8:88:bb:da:bd:3d:f0:03:04:e0:ae:57:7a:7f:7c:b4: 76:ae:84:7f:3c:b7:77:36:ab:5b:9c:c9:29:fc:7b:b6:ba:ee: ee:ba:e4:f1:29:03:47:9d:cc:1e:f1:f5:99:e5:b5:33:bd:4a: 3a:94:22:60:45:7c:94:13:8a:cc:bf:35:89:f3:2a:7c:7d:67: c1:52:4d:5f:c2:d4:57:ea:67:02:16:e7:66:52:56:94:a2:d1: 12:89:cf:59:f7:c7:b2:52:cb:d8:b8:45:23:3f:b9:22:95:6e: 0d:9b:8a:0d:40:c6:60:94:7c:c3:4f:bd:71:8c:f2:2e:50:ba: fd:e8:f2:43:17:10:6b:b6:54:81:97:38:c6:14:45:02:79:92: 6f:03:79:ab:c7:73:16:e8:ac:ab:1b:21:dd:c5:40:5d:ff:85: 01:d4:1d:9a:f0:19:e5:df:f6:8f:91:28:9d:29:93:42:ae:4e: df:78:7f:6f:ba:59:3a:74:6a:a1:d5:86:4c:82:12:f8:d8:ba: 9c:89:03:9e:22:40:a7:53:95:ac:7c:c6:a7:88:81:9f:77:74: 13:87:db:4f -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICRWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMjMyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY1MC1iOGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTO7yrm06c4iM3C7mr9LO5xj+N5U3XBklqr/5qUYYSU3+w4r8gwbdLVZoQSD BMSMmfAn6z6cOLUB7UrBxM4ByybY5Hia4TD9tCl6T2wh1dd29jDkskMHmB1MxdpE rKe21AxUfmdvaJeH+vC73DX5LQNU8mqEBL8XBsduxB5f7N/646DZWFUvXDxV/qaY KlyUHpjvF4xC/i9bd8brzUwMPRO8rZhlPCK1on6E6Do3KMdD+rzRNSvnCckkgNyr /4JGniJV/IGAJWcLxIJm29ic7HYQXQJVeOXDzGEg3GxW7sm8SXlL+7WOwB1WcL7m 8x5wUWHNaEWnMFqdb8wNOhwTwQIDAQABo4ICujCCArYwHQYDVR0OBBYEFBzhI4pF I/hpvCLxw2WlFR8/uEFXMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTJEQkIwNDY5 QThEMTFFRUJDQzlDRTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMBgEAgABMBIDBAJnLegDBAJnRbwDBAJnYpQwFwQCAAIwETAPAwUGJAfxwAMG BCQH8cBAMA0GCSqGSIb3DQEBCwUAA4IBAQCRNPy862HQ5xZtgvyQVcwcdV7OOClB M3/7ltPYBc63rDHpByIRJriIu9q9PfADBOCuV3p/fLR2roR/PLd3NqtbnMkp/Hu2 uu7uuuTxKQNHncwe8fWZ5bUzvUo6lCJgRXyUE4rMvzWJ8yp8fWfBUk1fwtRX6mcC FudmUlaUotESic9Z98eyUsvYuEUjP7kilW4Nm4oNQMZglHzDT71xjPIuULr96PJD FxBrtlSBlzjGFEUCeZJvA3mrx3MW6KyrGyHdxUBd/4UB1B2a8Bnl3/aPkSidKZNC rk7feH9vulk6dGqh1YZMghL42LqciQOeIkCnU5WsfManiIGfd3QTh9tP -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org