$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E87976C65BA511EFBB8C405EC4F9AE02.roa File: E87976C65BA511EFBB8C405EC4F9AE02.roa (raw, json) Hash identifier: EIlvI+WRVXcsr0QNKd1ENHs+/9GIn+eMZR4HvpVV5/8= Subject key identifier: 89:CB:96:AB:3E:A9:B3:A1:B6:2D:D8:D0:A8:13:A8:7F:71:C2:96:CC Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4583 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E87976C65BA511EFBB8C405EC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:32:56 +0000 ROA not before: Thu 05 Sep 2024 03:32:56 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135978 IP address blocks: 103.140.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17795 (0x4583) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:32:56 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92668-b69f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c3:eb:75:27:84:56:95:c1:0f:b1:ce:3a:f0: d2:d8:18:db:48:44:3f:b3:ed:7d:41:36:6c:b7:94: 05:5f:7e:dc:a2:dd:31:d4:75:1c:8d:72:70:72:96: ff:26:4c:ef:9f:a6:ea:98:46:f2:72:e9:52:73:69: 21:63:fb:5c:f4:39:92:ef:29:62:fa:4a:0e:5b:24: 46:e9:25:e5:81:29:68:85:f0:75:d0:73:90:a9:ba: b3:d1:76:df:d5:ad:c9:c3:55:0d:40:47:1a:fb:6d: 64:5b:79:d2:19:a4:d4:c2:92:d1:b4:7d:27:61:ce: 43:2d:01:35:36:04:39:dc:5e:58:d3:a4:76:14:74: 9c:d0:4b:5a:81:48:03:7a:b9:03:f5:aa:63:ac:2d: 50:db:66:1d:fb:99:5b:de:6e:74:7e:ca:c3:1d:95: 96:89:e2:a1:d5:f0:7f:f6:e8:d1:7f:ab:9f:bc:17: b3:bb:9d:94:d1:81:15:e6:63:43:6f:d1:1d:58:6c: 67:c7:25:06:e0:0e:4c:a9:f2:3e:50:b1:03:3a:1f: 9a:2b:a7:47:20:83:91:81:c6:9c:ca:ca:05:99:06: 59:e8:dc:f0:d6:8b:96:bc:a0:66:4d:25:7c:58:78: 1f:c9:c9:65:f3:cb:a0:67:62:e5:b1:48:a2:eb:9d: 7e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:CB:96:AB:3E:A9:B3:A1:B6:2D:D8:D0:A8:13:A8:7F:71:C2:96:CC X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E87976C65BA511EFBB8C405EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.38.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:73:8d:25:32:cb:22:59:2d:1f:a8:0a:00:3b:5b:d0:e6:1c: 22:c0:3c:4a:8f:1a:bf:ab:e8:4d:50:0f:87:82:1f:1a:de:94: 89:ab:01:db:93:2c:91:af:d5:a2:14:14:dc:c9:59:11:30:04: 27:e9:98:2f:69:cc:e9:43:77:eb:10:bb:a1:1e:73:71:d4:c6: 38:c0:f7:de:a5:8d:51:66:37:17:1f:4f:73:ee:11:e1:de:0c: f0:dc:3b:c8:a9:6b:4c:72:09:3f:9c:59:af:f5:f1:bc:f2:dd: 87:60:c2:9d:99:61:44:e6:e5:dc:16:f7:45:0d:8e:c6:11:18: 02:96:7f:cf:1b:7b:fb:b8:6c:c9:cd:96:03:58:86:43:ca:b4: 48:0c:ea:f7:89:99:12:44:5e:9e:0c:e6:78:7e:79:14:b9:42: 03:15:b1:2e:90:38:8a:36:f7:bd:e3:85:ed:4e:df:50:01:78: b2:66:23:c1:7c:5c:9a:5a:d5:49:c9:bf:fc:da:73:55:c2:01: 9d:6a:a9:82:16:00:4f:de:28:e2:42:4a:64:8b:0d:0b:cf:5a: 93:d1:c7:83:db:08:c4:ba:6d:2f:5b:97:77:fa:32:22:48:31: 83:ab:f0:89:ba:e7:51:8d:5a:ed:8e:87:e0:9c:34:bc:8c:8b: 40:e7:13:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMjU2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY2OC1iNjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsPrdSeEVpXBD7HOOvDS2BjbSEQ/s+19QTZst5QFX37cot0x1HUcjXJwcpb/ Jkzvn6bqmEbyculSc2khY/tc9DmS7yli+koOWyRG6SXlgSlohfB10HOQqbqz0Xbf 1a3Jw1UNQEca+21kW3nSGaTUwpLRtH0nYc5DLQE1NgQ53F5Y06R2FHSc0EtagUgD erkD9apjrC1Q22Yd+5lb3m50fsrDHZWWieKh1fB/9ujRf6ufvBezu52U0YEV5mND b9EdWGxnxyUG4A5MqfI+ULEDOh+aK6dHIIORgcacysoFmQZZ6Nzw1ouWvKBmTSV8 WHgfycll88ugZ2LlsUii651+twIDAQABo4IClTCCApEwHQYDVR0OBBYEFInLlqs+ qbOhti3Y0KgTqH9xwpbMMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRTg3OTc2QzY1 QkE1MTFFRkJCOEM0MDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjCYwDQYJKoZIhvcNAQELBQADggEBAH1zjSUyyyJZLR+o CgA7W9DmHCLAPEqPGr+r6E1QD4eCHxrelImrAduTLJGv1aIUFNzJWREwBCfpmC9p zOlDd+sQu6Eec3HUxjjA996ljVFmNxcfT3PuEeHeDPDcO8ipa0xyCT+cWa/18bzy 3Ydgwp2ZYUTm5dwW90UNjsYRGAKWf88be/u4bMnNlgNYhkPKtEgM6veJmRJEXp4M 5nh+eRS5QgMVsS6QOIo2973jhe1O31ABeLJmI8F8XJpa1UnJv/zac1XCAZ1qqYIW AE/eKOJCSmSLDQvPWpPRx4PbCMS6bS9bl3f6MiJIMYOr8Im651GNWu2Oh+CcNLyM i0DnE54= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org