$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CD748A00A03111ECADA0802DC4F9AE02.roa File: CD748A00A03111ECADA0802DC4F9AE02.roa (raw, json) Hash identifier: 6Y5FCGhGuq6RKctmSV377VpSsyr7wueU5ZikyftxhDg= Subject key identifier: B2:FF:1E:44:0F:62:E6:B4:7A:9C:94:B6:01:32:A1:98:B8:92:63:85 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 456C Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CD748A00A03111ECADA0802DC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:32:35 +0000 ROA not before: Thu 05 Sep 2024 03:32:35 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135926 IP address blocks: 103.100.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17772 (0x456c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:32:35 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92653-72c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ac:40:c6:3a:56:bf:6c:a8:90:d3:89:22:23: 6d:69:ff:81:0f:48:61:e1:a8:cb:d2:ae:ad:9b:da: 58:8c:84:40:59:b2:f2:b0:6b:19:58:c1:64:a9:d7: 3c:84:a7:8c:bc:1b:50:f7:74:92:c2:b9:a0:2b:40: 89:e6:0b:a3:88:39:29:24:33:97:f4:37:41:5a:fd: d3:f0:e3:e4:fa:8c:22:4e:84:95:70:ce:02:8b:c7: 02:e1:39:74:cc:92:6e:9b:ed:8c:d8:c5:3d:7b:0c: a4:13:a5:c3:31:3e:48:7d:2d:12:e3:f9:f9:3c:59: a3:63:89:99:1b:cf:be:31:d9:1a:5a:56:3c:df:ce: 3d:c0:56:7f:b4:32:38:39:8a:4b:9c:e7:aa:8b:ef: fa:c5:52:a7:60:c0:08:a6:57:30:c0:ee:4b:32:37: 14:04:b9:6f:6d:1a:5e:21:bf:6a:c1:35:13:8f:59: 7b:25:5e:6e:c2:c0:5e:51:23:55:06:02:42:0b:ea: d7:7e:e0:e7:a4:73:b7:79:a6:43:ad:ed:df:f5:06: 3d:4c:1f:42:6a:43:01:64:a9:f8:84:81:0a:03:d5: 41:d6:0a:49:8a:c1:b6:23:17:20:87:d4:d3:4a:7b: c4:7d:10:fe:0d:82:eb:2d:9f:ec:3e:20:d9:2a:26: 6d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FF:1E:44:0F:62:E6:B4:7A:9C:94:B6:01:32:A1:98:B8:92:63:85 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CD748A00A03111ECADA0802DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.228.0/22 Signature Algorithm: sha256WithRSAEncryption 82:40:68:0c:9a:d1:d5:56:f0:5f:c4:4b:0e:c2:8f:ad:e0:4a: f7:d8:70:ac:2a:77:64:76:4f:65:4a:20:36:8d:a9:32:05:e1: f2:95:59:e0:bf:9f:6c:14:8b:79:6f:b1:b5:93:63:6b:02:d2: 41:30:0a:1b:b7:e1:f1:6a:43:47:43:17:96:67:cc:93:e9:0b: 59:ca:11:29:e6:f9:7e:a0:bf:3e:45:9a:91:8b:84:f4:91:4c: f7:1d:68:b3:d1:c5:51:23:b1:f0:a4:aa:b5:78:38:2c:0d:42: c7:44:08:a6:39:24:69:97:24:41:c0:57:42:5b:c3:ad:c8:8f: 8b:47:4f:d2:09:8f:a2:6c:34:ec:83:f0:b1:9c:7e:b9:7a:44: c1:7e:ab:ff:df:26:34:84:3a:9b:d1:45:20:23:83:d1:26:4d: 66:5a:b9:3a:7b:d5:a2:c0:a7:a1:97:db:f3:d9:71:db:97:a2: a6:51:ad:cf:96:c6:a2:bf:77:1d:ea:fa:09:70:74:a6:c6:6b: 06:66:b2:e6:a6:ba:ad:7a:e9:5c:6b:ff:0e:e9:20:25:fa:03: d1:d7:8c:e0:24:9a:7f:ee:02:ab:4b:ca:4e:72:10:92:c7:a2: db:22:15:e3:1a:ae:92:70:03:55:59:99:2c:31:3b:92:53:c3: d0:3d:b8:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMjM1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY1My03MmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KxAxjpWv2yokNOJIiNtaf+BD0hh4ajL0q6tm9pYjIRAWbLysGsZWMFkqdc8 hKeMvBtQ93SSwrmgK0CJ5gujiDkpJDOX9DdBWv3T8OPk+owiToSVcM4Ci8cC4Tl0 zJJum+2M2MU9ewykE6XDMT5IfS0S4/n5PFmjY4mZG8++MdkaWlY83849wFZ/tDI4 OYpLnOeqi+/6xVKnYMAIplcwwO5LMjcUBLlvbRpeIb9qwTUTj1l7JV5uwsBeUSNV BgJCC+rXfuDnpHO3eaZDre3f9QY9TB9CakMBZKn4hIEKA9VB1gpJisG2Ixcgh9TT SnvEfRD+DYLrLZ/sPiDZKiZtGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLL/HkQP Yua0epyUtgEyoZi4kmOFMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQ0Q3NDhBMDBB MDMxMTFFQ0FEQTA4MDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnZOQwDQYJKoZIhvcNAQELBQADggEBAIJAaAya0dVW8F/E Sw7Cj63gSvfYcKwqd2R2T2VKIDaNqTIF4fKVWeC/n2wUi3lvsbWTY2sC0kEwChu3 4fFqQ0dDF5ZnzJPpC1nKESnm+X6gvz5FmpGLhPSRTPcdaLPRxVEjsfCkqrV4OCwN QsdECKY5JGmXJEHAV0Jbw63Ij4tHT9IJj6JsNOyD8LGcfrl6RMF+q//fJjSEOpvR RSAjg9EmTWZauTp71aLAp6GX2/PZcduXoqZRrc+WxqK/dx3q+glwdKbGawZmsuam uq166Vxr/w7pICX6A9HXjOAkmn/uAqtLyk5yEJLHotsiFeMarpJwA1VZmSwxO5JT w9A9uBk= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org