$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AB057E8ADD9811ECA143AA87C4F9AE02.roa File: AB057E8ADD9811ECA143AA87C4F9AE02.roa (raw, json) Hash identifier: h/UlNkTfK5APh2fqZgV0R0AjG1Mzz3+5FuoozQFthDM= Subject key identifier: 9A:74:60:82:2D:86:CB:05:99:58:18:A1:E6:14:20:C3:11:F3:D0:83 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4659 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AB057E8ADD9811ECA143AA87C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:01 +0000 ROA not before: Thu 05 Sep 2024 03:36:01 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45552 IP address blocks: 103.20.144.0/22 maxlen: 24 202.43.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Dec 2024 03:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18009 (0x4659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:01 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92721-2bd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:61:d6:cf:20:3c:c1:9e:9e:ba:22:13:77:e5: b4:1a:94:2b:3d:2a:ca:cb:e9:a4:f9:f1:79:e4:33: ca:1e:4c:f4:20:9d:bb:c7:7f:03:34:7e:83:03:b9: 7a:63:ff:a1:4a:f3:47:e5:64:62:19:b4:f2:21:f2: 2d:5a:7c:4e:e7:9e:17:1c:63:fc:85:64:0d:c7:f4: 66:8f:b0:c5:41:20:11:fa:4f:68:b1:4e:67:45:98: bf:8e:e7:c1:f1:91:38:40:d2:d8:49:72:b2:1d:4a: f0:90:8a:8c:b1:4e:a3:5c:d3:97:22:13:20:5a:51: 72:20:3c:44:43:1d:ec:eb:59:c8:c0:4e:c7:f7:2e: 2c:d0:98:56:67:88:f5:0a:f2:94:8f:f4:8e:d2:72: e3:43:4e:d9:de:02:f4:b3:eb:95:b6:ab:81:81:24: 00:29:be:13:31:60:3b:86:ef:23:65:48:a1:68:50: b8:cd:a3:47:7d:32:eb:0d:b2:0c:ee:fe:e3:f3:6f: 61:c8:8d:6a:c0:b1:01:6c:6f:a9:c7:0b:9a:a9:9b: eb:32:dc:15:f9:b7:59:3c:c3:ef:79:8e:0c:15:73: ae:a2:c5:ac:ba:e1:75:cc:a4:a7:d2:9a:ed:cb:15: b7:c1:55:71:04:66:c9:13:fb:4b:50:20:4c:d2:d3: 49:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:74:60:82:2D:86:CB:05:99:58:18:A1:E6:14:20:C3:11:F3:D0:83 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AB057E8ADD9811ECA143AA87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.144.0/22 202.43.108.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:c8:68:2c:f4:e3:88:27:0e:c5:87:e7:52:b1:57:48:f9:55: 32:ff:d2:6f:b7:fa:cb:cb:07:83:73:c0:d1:7c:d6:3b:bd:53: f8:0e:21:4e:b6:66:5d:d5:68:eb:0f:46:02:27:75:83:d4:20: d6:79:3b:a6:65:2a:eb:53:ba:de:96:01:eb:d0:3e:52:85:ee: 82:29:45:b5:94:23:58:cf:57:1f:fb:08:65:07:5c:51:61:d7: 46:07:3f:b5:4f:d4:0c:19:99:da:8f:a1:92:bc:cd:0a:40:0c: 25:05:da:ff:ad:a0:1e:e0:f3:36:42:2f:ca:9b:88:5b:7f:de: 8a:89:62:a4:ce:35:bd:81:61:66:0b:fe:55:f4:00:4a:f2:32: 5d:48:f7:d9:8e:df:19:cb:dd:b6:ac:13:4d:0a:61:71:f1:7a: f2:b8:aa:a1:ca:12:09:44:ff:dc:46:ff:e9:c8:dd:13:e3:64: 86:10:a5:65:80:2e:ca:e7:58:61:a6:73:7a:ad:02:56:df:8a: 47:fb:30:54:7b:52:ad:c4:7b:c5:c7:95:81:40:90:5f:42:18: 06:6d:b1:c1:b1:93:84:0c:c7:9e:07:ae:6a:f4:b3:a9:e9:1a: 5a:72:90:a4:f7:95:9e:67:61:cc:46:42:75:60:43:79:c6:c4: 43:98:ca:3e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICRlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjAxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcyMS0yYmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2HWzyA8wZ6euiITd+W0GpQrPSrKy+mk+fF55DPKHkz0IJ27x38DNH6DA7l6 Y/+hSvNH5WRiGbTyIfItWnxO554XHGP8hWQNx/Rmj7DFQSAR+k9osU5nRZi/jufB 8ZE4QNLYSXKyHUrwkIqMsU6jXNOXIhMgWlFyIDxEQx3s61nIwE7H9y4s0JhWZ4j1 CvKUj/SO0nLjQ07Z3gL0s+uVtquBgSQAKb4TMWA7hu8jZUihaFC4zaNHfTLrDbIM 7v7j829hyI1qwLEBbG+pxwuaqZvrMtwV+bdZPMPveY4MFXOuosWsuuF1zKSn0prt yxW3wVVxBGbJE/tLUCBM0tNJhQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJp0YIIt hssFmVgYoeYUIMMR89CDMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQUIwNTdFOEFE RDk4MTFFQ0ExNDNBQTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnFJADBALKK2wwDQYJKoZIhvcNAQELBQADggEBADvIaCz0 44gnDsWH51KxV0j5VTL/0m+3+svLB4NzwNF81ju9U/gOIU62Zl3VaOsPRgIndYPU INZ5O6ZlKutTut6WAevQPlKF7oIpRbWUI1jPVx/7CGUHXFFh10YHP7VP1AwZmdqP oZK8zQpADCUF2v+toB7g8zZCL8qbiFt/3oqJYqTONb2BYWYL/lX0AEryMl1I99mO 3xnL3basE00KYXHxevK4qqHKEglE/9xG/+nI3RPjZIYQpWWALsrnWGGmc3qtAlbf ikf7MFR7Uq3Ee8XHlYFAkF9CGAZtscGxk4QMx54Hrmr0s6npGlpykKT3lZ5nYcxG QnVgQ3nGxEOYyj4= -----END CERTIFICATE-----Generated at Fri Nov 29 05:35:52 2024 by rpki-client on console-ams.rpki-client.org