$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/99E2F960AF0911ECA3FB4F28C4F9AE02.roa File: 99E2F960AF0911ECA3FB4F28C4F9AE02.roa (raw, json) Hash identifier: bdL1lpAMDewMH/wFvEZV2O03HYqrhnQFcItBERLVXV0= Subject key identifier: F4:00:5C:D6:36:B6:8F:12:E2:B9:AD:97:91:20:15:0A:98:5D:4B:53 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 458B Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/99E2F960AF0911ECA3FB4F28C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:04 +0000 ROA not before: Thu 05 Sep 2024 03:33:04 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135997 IP address blocks: 103.146.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17803 (0x458b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:04 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92670-0c74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c6:df:62:d4:45:c7:37:7d:b9:8f:51:8e:a1: 18:69:98:53:8c:fb:18:66:95:b8:35:7b:07:f7:35: 7a:b4:94:54:81:fe:1e:ae:89:42:36:d4:eb:5e:6f: 7d:34:82:ae:fd:f1:1a:f4:b6:e9:26:0f:6b:34:f6: 21:f9:fd:ba:63:98:7a:52:21:69:38:cf:fc:69:86: 0d:93:a1:5a:27:73:ce:9f:ea:81:47:60:9b:77:69: 96:c8:d8:cd:a1:74:bb:bc:59:e3:36:67:7a:0f:d4: 25:cf:0b:7b:58:7b:7e:04:50:cd:83:da:76:1a:3c: d6:d9:9e:38:2e:7b:87:a1:45:2a:6f:74:9a:84:c2: e4:7d:dc:c9:89:98:c1:6c:48:ad:a2:77:23:e6:e2: 5c:fc:07:0c:d7:d3:6b:a5:ca:2b:2d:bc:81:5c:9d: 3d:ea:cb:64:06:cf:df:8a:74:87:b0:e3:ec:6a:fb: 88:c3:4d:1a:33:bb:ee:68:27:da:4c:70:14:7e:f6: 62:21:6e:29:90:18:db:9c:b4:52:9c:b7:f7:ad:45: 69:19:61:f4:0e:45:d4:70:05:9f:f0:16:5c:71:0e: af:80:70:0b:c6:05:68:98:4a:cc:72:b2:68:9e:a3: 97:2a:9a:06:f0:0e:7d:68:c0:ab:e9:65:5d:33:94: 26:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:00:5C:D6:36:B6:8F:12:E2:B9:AD:97:91:20:15:0A:98:5D:4B:53 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/99E2F960AF0911ECA3FB4F28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.18.0/23 Signature Algorithm: sha256WithRSAEncryption ac:39:f6:1e:b3:26:cc:7b:7b:63:05:f3:05:91:a4:14:ab:b3: e5:c6:54:cb:3d:81:9f:47:10:7f:c8:ed:84:83:29:06:eb:6e: be:fa:ba:97:07:0d:51:9e:03:20:58:2a:38:58:b2:d1:d3:3a: 0f:56:50:a8:c0:4a:6b:62:67:47:7c:15:61:63:35:2a:fa:a6: b1:b7:82:15:da:a8:ec:be:cb:5a:d3:96:57:43:00:e6:d6:6e: 1b:00:16:7a:b5:a2:29:5d:7d:c2:32:e8:13:9c:e6:56:03:c6: a2:51:45:ea:2f:b4:df:f0:fb:09:51:b5:45:18:98:59:06:19: b6:17:e0:30:5d:ff:b2:07:8d:5e:77:ae:ee:53:c8:58:68:71: 66:1b:ed:32:b9:3a:7d:77:eb:bc:7d:59:55:34:22:d4:47:5c: b5:f6:65:df:b0:54:96:43:31:50:bc:0a:e6:fc:f9:5b:90:fc: 1f:3f:85:41:50:70:5e:a0:7d:3b:53:57:89:91:a8:7b:a5:31: 4a:fa:b6:91:0b:1f:9a:2e:13:8a:41:cf:e3:51:53:a9:b7:15: e4:13:6e:8f:01:5f:66:58:5f:a4:3c:67:3c:5f:7c:96:45:89: 16:e7:24:72:00:80:66:de:9a:07:62:56:e9:0f:0f:1e:ba:c8: 6f:24:55:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzA0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY3MC0wYzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MbfYtRFxzd9uY9RjqEYaZhTjPsYZpW4NXsH9zV6tJRUgf4erolCNtTrXm99 NIKu/fEa9LbpJg9rNPYh+f26Y5h6UiFpOM/8aYYNk6FaJ3POn+qBR2Cbd2mWyNjN oXS7vFnjNmd6D9Qlzwt7WHt+BFDNg9p2GjzW2Z44LnuHoUUqb3SahMLkfdzJiZjB bEitoncj5uJc/AcM19NrpcorLbyBXJ096stkBs/finSHsOPsavuIw00aM7vuaCfa THAUfvZiIW4pkBjbnLRSnLf3rUVpGWH0DkXUcAWf8BZccQ6vgHALxgVomErMcrJo nqOXKpoG8A59aMCr6WVdM5Qm3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPQAXNY2 to8S4rmtl5EgFQqYXUtTMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTlFMkY5NjBB RjA5MTFFQ0EzRkI0RjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkhIwDQYJKoZIhvcNAQELBQADggEBAKw59h6zJsx7e2MF 8wWRpBSrs+XGVMs9gZ9HEH/I7YSDKQbrbr76upcHDVGeAyBYKjhYstHTOg9WUKjA SmtiZ0d8FWFjNSr6prG3ghXaqOy+y1rTlldDAObWbhsAFnq1oildfcIy6BOc5lYD xqJRReovtN/w+wlRtUUYmFkGGbYX4DBd/7IHjV53ru5TyFhocWYb7TK5On1367x9 WVU0ItRHXLX2Zd+wVJZDMVC8Cub8+VuQ/B8/hUFQcF6gfTtTV4mRqHulMUr6tpEL H5ouE4pBz+NRU6m3FeQTbo8BX2ZYX6Q8ZzxffJZFiRbnJHIAgGbemgdiVukPDx66 yG8kVds= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org