$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D243E2105F9411EDA8B4CE5CC4F9AE02.roa File: D243E2105F9411EDA8B4CE5CC4F9AE02.roa (raw, json) Hash identifier: deMX3fPRfz4JEntqbvw4R/ur80imJlESzFz2RkiMxD8= Subject key identifier: 5C:8C:1A:D3:D8:2B:CD:20:25:1C:A3:5E:C0:AF:3C:44:5A:2A:8D:31 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45CF Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D243E2105F9411EDA8B4CE5CC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:34:02 +0000 ROA not before: Thu 05 Sep 2024 03:34:02 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149131 IP address blocks: 103.234.160.0/24 maxlen: 24 103.234.161.0/24 maxlen: 24 2400:a920::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17871 (0x45cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:34:02 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926aa-101b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:49:e8:4b:20:d9:5a:e2:80:3b:ff:2e:b3:cd: 23:e4:f5:6f:80:fe:7a:b9:a6:ce:38:2c:de:08:98: b4:b7:6f:a0:70:88:7a:8b:4a:e4:aa:7c:1f:67:8b: 31:d0:c3:27:88:0a:0a:cc:6b:35:44:06:fb:7c:13: f3:9e:3d:0f:8f:81:ab:6f:e7:31:30:80:b8:52:cd: bd:a9:bc:b7:dd:e3:bc:77:ea:73:cb:fe:a1:01:0d: 66:e0:28:94:b2:a8:a0:34:28:8a:4f:77:b1:f6:25: 8b:be:6b:b1:cf:95:1c:a1:37:44:9d:df:a9:b3:91: 25:ad:40:37:9d:3a:5f:1c:bc:75:f4:13:35:84:67: a0:e3:fb:f5:23:d5:c7:c8:67:cf:42:0f:b0:e1:88: 27:09:0c:07:4a:ea:38:04:e2:02:e8:94:3f:26:b4: e5:2d:74:40:28:c4:a2:f1:0c:05:8a:18:2d:a6:88: 4a:03:23:cc:e3:ba:a5:be:d6:f3:79:1c:a0:59:5b: 17:03:06:16:b0:fa:8f:be:c1:0c:cd:52:1f:e3:21: 54:55:60:75:17:47:61:b5:89:38:57:6d:b7:a6:41: 9d:7a:d4:71:0c:83:9c:80:3b:d2:ba:8e:73:a3:81: 6f:c4:2e:14:88:48:77:b3:d1:54:2e:15:d4:a9:b3: 2c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:8C:1A:D3:D8:2B:CD:20:25:1C:A3:5E:C0:AF:3C:44:5A:2A:8D:31 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D243E2105F9411EDA8B4CE5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.160.0/23 IPv6: 2400:a920::/48 Signature Algorithm: sha256WithRSAEncryption 6a:67:b6:64:34:ce:92:79:de:88:7c:c0:2f:8d:c9:3a:5a:06: a9:35:da:15:65:9d:ae:e4:91:c3:9b:f8:0d:5c:95:e8:05:ae: 4a:95:f8:d3:dd:11:c7:66:4b:71:05:61:3b:4e:5d:d5:31:b0: 85:d0:d2:d1:9f:cb:aa:32:6f:dd:b3:06:9c:a7:4d:b0:61:34: 3a:71:53:8a:6d:32:c8:16:e3:82:49:d3:ea:e7:7b:ab:7c:bc: 95:56:3e:8f:83:86:2e:66:de:df:d2:79:43:2b:2e:45:bf:0f: 4a:dd:ac:40:4f:cc:53:a6:82:95:ad:42:79:2b:39:81:7e:92: 96:e7:06:63:f3:48:5a:92:cd:a8:d2:1a:e7:c5:0b:53:60:eb: b6:3f:5f:98:8a:53:0e:a0:09:75:e7:ee:b1:35:cb:9a:a3:bb: a0:bb:a1:8e:2b:bb:3e:1e:e2:d1:0b:39:b6:d7:49:2c:0b:e2: 57:23:7b:6e:14:9f:0c:ec:87:ce:04:40:bc:c7:26:32:88:9f: 50:9b:a8:fb:6a:f5:c5:86:91:98:ee:70:cf:c9:51:bb:43:2f: 88:a6:7e:a0:eb:f3:de:3d:cb:60:d2:b9:68:b4:2a:27:47:79: a6:95:70:51:45:aa:94:ea:67:9c:a8:52:43:d9:ce:c5:d2:ed: 82:ae:9c:e5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNDAyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZhYS0xMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0noSyDZWuKAO/8us80j5PVvgP56uabOOCzeCJi0t2+gcIh6i0rkqnwfZ4sx 0MMniAoKzGs1RAb7fBPznj0Pj4Grb+cxMIC4Us29qby33eO8d+pzy/6hAQ1m4CiU sqigNCiKT3ex9iWLvmuxz5UcoTdEnd+ps5ElrUA3nTpfHLx19BM1hGeg4/v1I9XH yGfPQg+w4YgnCQwHSuo4BOIC6JQ/JrTlLXRAKMSi8QwFihgtpohKAyPM47qlvtbz eRygWVsXAwYWsPqPvsEMzVIf4yFUVWB1F0dhtYk4V223pkGdetRxDIOcgDvSuo5z o4FvxC4UiEh3s9FULhXUqbMsnwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFyMGtPY K80gJRyjXsCvPERaKo0xMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRDI0M0UyMTA1 Rjk0MTFFREE4QjRDRTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn6qAwDwQCAAIwCQMHACQAqSAAADANBgkqhkiG9w0BAQsF AAOCAQEAame2ZDTOknneiHzAL43JOloGqTXaFWWdruSRw5v4DVyV6AWuSpX4090R x2ZLcQVhO05d1TGwhdDS0Z/LqjJv3bMGnKdNsGE0OnFTim0yyBbjgknT6ud7q3y8 lVY+j4OGLmbe39J5QysuRb8PSt2sQE/MU6aCla1CeSs5gX6SlucGY/NIWpLNqNIa 58ULU2Drtj9fmIpTDqAJdefusTXLmqO7oLuhjiu7Ph7i0Qs5ttdJLAviVyN7bhSf DOyHzgRAvMcmMoifUJuo+2r1xYaRmO5wz8lRu0MviKZ+oOvz3j3LYNK5aLQqJ0d5 ppVwUUWqlOpnnKhSQ9nOxdLtgq6c5Q== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org