$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A0023244173B11ED8153E75CC4F9AE02.roa File: A0023244173B11ED8153E75CC4F9AE02.roa (raw, json) Hash identifier: uEim+ONoCI962scqfZ4iCORYcK/3fhufNgf9o0pcbNA= Subject key identifier: C5:EA:32:27:F4:09:45:23:B3:0F:43:67:3E:6F:68:FF:7A:7E:C6:B5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 468E Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A0023244173B11ED8153E75CC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:47 +0000 ROA not before: Thu 05 Sep 2024 03:36:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 63766 IP address blocks: 103.78.93.0/24 maxlen: 24 103.78.94.0/23 maxlen: 24 103.216.120.0/22 maxlen: 24 157.119.244.0/23 maxlen: 24 2001:df6:1e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Dec 2024 03:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18062 (0x468e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:47 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9274f-dbd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b7:a0:45:14:96:79:bd:43:94:28:2c:53:d6: dc:69:16:d9:7b:57:83:7b:98:93:47:da:70:b6:6e: 2c:03:33:95:bc:f8:a3:9c:cf:ef:65:bb:45:a8:58: 4f:fe:4d:a2:cc:66:52:31:a7:43:05:0d:ee:ab:d3: 1e:d7:b0:ab:80:68:2a:dd:e7:6b:cc:f5:3c:1b:43: c5:a1:a8:56:12:08:46:a9:e2:b1:7c:6a:cc:40:de: 0c:06:1c:f6:a4:68:99:75:bb:3d:fd:18:9b:09:5d: a8:f0:7e:66:d4:73:7d:37:55:69:7a:c6:20:3b:3e: 54:ad:05:27:8d:71:de:81:13:0a:0e:1d:5f:32:bd: dc:8a:1b:72:94:df:6c:79:55:c4:6b:37:84:72:b6: d4:f6:d1:14:3d:a0:33:0b:b2:74:4a:96:45:08:af: 37:86:85:b9:a9:f5:7b:9a:59:e7:a7:38:79:9d:fc: a6:2d:7b:7b:68:ce:34:c3:50:13:df:80:9e:83:59: b8:ae:05:49:77:48:c6:09:65:59:66:c7:e2:b6:e8: 1b:8a:64:04:db:e3:d2:7c:a5:8d:2a:43:cd:12:33: 4f:db:77:bb:9a:58:60:93:c0:12:ea:93:73:03:b3: 7a:69:8c:af:0b:55:02:a6:79:8d:ab:23:c0:17:9f: 3d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:EA:32:27:F4:09:45:23:B3:0F:43:67:3E:6F:68:FF:7A:7E:C6:B5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A0023244173B11ED8153E75CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.93.0-103.78.95.255 103.216.120.0/22 157.119.244.0/23 IPv6: 2001:df6:1e00::/48 Signature Algorithm: sha256WithRSAEncryption 82:05:20:3d:90:9d:82:d7:67:e4:a8:fa:db:59:b0:ab:e9:ea: de:90:59:c9:e9:67:4f:a3:aa:ed:86:c3:1a:4a:22:98:f7:19: 0c:4d:d6:2f:52:bf:94:00:c2:71:33:b2:7f:5b:e9:d3:c1:fa: f6:db:fb:23:96:f8:86:78:3c:d2:b1:5b:bc:24:2b:73:d2:ef: 9e:25:b6:26:1a:83:cc:eb:c9:1b:f3:3c:bf:4c:09:86:ee:35: ee:ac:1c:2e:6f:22:26:6c:71:b8:84:0b:67:c8:27:d4:13:f5: ee:f5:27:b1:b4:82:54:f3:cd:cb:e2:91:b9:f0:a1:b1:a5:2f: dd:07:03:04:68:4a:f7:5e:b4:02:07:83:fb:79:8a:cd:e0:14: a6:2c:4c:09:f6:97:26:a2:dd:31:10:0b:b9:e4:2d:00:21:4c: 70:84:c1:56:63:4f:00:e7:17:94:07:ca:2e:7b:8e:26:c3:44: 81:dc:65:d9:01:7e:38:72:3b:4d:9b:4e:3b:00:db:1f:cd:50: cb:92:b9:52:be:a2:99:84:74:68:bc:ad:68:ab:ab:d3:2b:85: 19:fa:f3:df:47:b0:b9:b3:24:20:24:a1:44:c6:10:e8:b7:41: 64:02:80:2b:8c:69:ed:19:78:c2:f9:19:63:3a:60:9e:29:d6: 34:6d:c1:2c -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICRo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5Mjc0Zi1kYmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3regRRSWeb1DlCgsU9bcaRbZe1eDe5iTR9pwtm4sAzOVvPijnM/vZbtFqFhP /k2izGZSMadDBQ3uq9Me17CrgGgq3edrzPU8G0PFoahWEghGqeKxfGrMQN4MBhz2 pGiZdbs9/RibCV2o8H5m1HN9N1VpesYgOz5UrQUnjXHegRMKDh1fMr3cihtylN9s eVXEazeEcrbU9tEUPaAzC7J0SpZFCK83hoW5qfV7mlnnpzh5nfymLXt7aM40w1AT 34Ceg1m4rgVJd0jGCWVZZsfitugbimQE2+PSfKWNKkPNEjNP23e7mlhgk8AS6pNz A7N6aYyvC1UCpnmNqyPAF589+QIDAQABo4ICujCCArYwHQYDVR0OBBYEFMXqMif0 CUUjsw9DZz5vaP96fsa1MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQTAwMjMyNDQx NzNCMTFFRDgxNTNFNzVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMCAEAgABMBowDAMEAGdOXQMEBWdOQAMEAmfYeAMEAZ139DAPBAIAAjAJAwcA IAEN9h4AMA0GCSqGSIb3DQEBCwUAA4IBAQCCBSA9kJ2C12fkqPrbWbCr6erekFnJ 6WdPo6rthsMaSiKY9xkMTdYvUr+UAMJxM7J/W+nTwfr22/sjlviGeDzSsVu8JCtz 0u+eJbYmGoPM68kb8zy/TAmG7jXurBwubyImbHG4hAtnyCfUE/Xu9SextIJU883L 4pG58KGxpS/dBwMEaEr3XrQCB4P7eYrN4BSmLEwJ9pcmot0xEAu55C0AIUxwhMFW Y08A5xeUB8oue44mw0SB3GXZAX44cjtNm047ANsfzVDLkrlSvqKZhHRovK1oq6vT K4UZ+vPfR7C5syQgJKFExhDot0FkAoArjGntGXjC+RljOmCeKdY0bcEs -----END CERTIFICATE-----Generated at Fri Nov 29 05:35:52 2024 by rpki-client on console-ams.rpki-client.org