$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FAEF8E244E4D11EDA5687857C4F9AE02.roa File: FAEF8E244E4D11EDA5687857C4F9AE02.roa (raw, json) Hash identifier: 1VAZlUUdGh1PwoR0mAKV8f275WTJ6Lr7RY2pv2yjveU= Subject key identifier: D5:F0:9E:47:4E:71:69:7C:F3:BE:1D:3C:DB:8E:66:13:8E:3D:29:36 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45D5 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FAEF8E244E4D11EDA5687857C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:34:09 +0000 ROA not before: Thu 05 Sep 2024 03:34:09 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149138 IP address blocks: 103.16.212.0/23 maxlen: 23 2001:df1:57c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17877 (0x45d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:34:09 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926b1-1a37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a2:b1:ea:a6:5f:ad:ec:09:d1:20:5c:36:e5: c0:4c:94:75:64:66:14:be:23:64:0c:90:4d:bf:73: 17:a3:c9:c8:f1:60:50:47:fe:a8:98:50:e4:68:87: f9:b8:52:86:53:ee:7f:2a:2a:c0:85:b4:cf:07:dd: 57:cc:84:b5:06:3d:ef:5a:38:2e:31:52:e3:75:2f: 22:0c:8e:77:c6:9e:da:b1:98:d1:60:da:9a:c0:49: ab:66:ac:09:a3:a3:ed:66:0d:c1:7d:c2:e9:ca:fe: bb:80:21:8e:52:e2:ed:48:b1:09:96:a6:db:27:df: f1:21:f4:f8:e3:d1:ce:6d:9f:92:f7:84:50:4e:4e: 5d:84:7c:fb:67:99:9a:c1:df:1f:c1:dc:33:dc:44: 8e:b6:3f:50:8e:b7:6b:9d:a6:80:1b:13:b7:c3:fc: ba:93:ab:53:00:27:cc:42:13:e4:71:47:63:e7:24: a5:41:2c:e5:b5:82:c4:9e:ed:8d:50:dc:f4:df:c8: d2:6c:76:2d:82:d1:04:72:4f:47:7d:44:8d:d4:cf: ea:6e:b8:84:d9:c0:a8:8b:b6:71:47:ae:61:73:bd: 36:57:0f:46:30:b8:1e:67:ba:2b:1c:6f:f5:3c:fd: ec:e0:25:16:fc:e5:59:4f:52:a4:2a:8e:5f:13:23: dc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F0:9E:47:4E:71:69:7C:F3:BE:1D:3C:DB:8E:66:13:8E:3D:29:36 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FAEF8E244E4D11EDA5687857C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.212.0/23 IPv6: 2001:df1:57c0::/48 Signature Algorithm: sha256WithRSAEncryption 34:fc:05:17:c2:22:0f:80:37:07:8c:ee:36:4d:2d:e4:f5:fe: 52:44:60:32:29:a2:d3:2f:1a:61:48:84:3f:74:a4:b5:3c:cd: 96:28:d4:1f:a4:03:01:d6:73:39:8b:16:74:ef:36:79:bd:c1: 80:96:68:d8:fe:04:8a:2f:a5:35:3d:2b:44:66:dc:6c:c0:bb: eb:5a:82:a1:31:a1:29:d4:1c:d2:37:3d:7a:33:e4:75:47:21: fc:bf:cc:31:1a:3b:ac:fa:be:2f:db:f8:53:4b:55:ce:73:16: 63:f9:f4:af:72:48:40:23:a1:ab:71:5e:92:66:28:d0:88:10: 7e:41:c0:3b:d9:b4:ce:6c:f6:63:d7:bf:a6:52:e0:f6:81:be: b4:4f:83:cd:bc:d7:4e:e3:69:91:e5:06:d7:4f:fe:0f:34:6b: 8e:bc:74:89:0f:d3:2b:e3:1c:cf:44:f1:68:6d:e7:d2:75:e4: e6:9c:10:f6:a0:6d:d3:37:4e:6a:ca:74:0e:df:e7:65:28:b3: 9c:4a:a9:8b:13:c8:b6:de:2d:0f:1b:6d:eb:56:8f:2b:f9:04: 58:2e:31:79:4a:e1:52:4b:40:73:ed:30:59:32:1d:73:b2:c2: 4f:86:c9:f3:40:1a:55:65:e3:cb:9f:9d:72:85:76:89:55:12: 66:fc:44:ff -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNDA5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZiMS0xYTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6Kx6qZfrewJ0SBcNuXATJR1ZGYUviNkDJBNv3MXo8nI8WBQR/6omFDkaIf5 uFKGU+5/KirAhbTPB91XzIS1Bj3vWjguMVLjdS8iDI53xp7asZjRYNqawEmrZqwJ o6PtZg3BfcLpyv67gCGOUuLtSLEJlqbbJ9/xIfT449HObZ+S94RQTk5dhHz7Z5ma wd8fwdwz3ESOtj9QjrdrnaaAGxO3w/y6k6tTACfMQhPkcUdj5ySlQSzltYLEnu2N UNz038jSbHYtgtEEck9HfUSN1M/qbriE2cCoi7ZxR65hc702Vw9GMLgeZ7orHG/1 PP3s4CUW/OVZT1KkKo5fEyPcrQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNXwnkdO cWl8874dPNuOZhOOPSk2MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRkFFRjhFMjQ0 RTREMTFFREE1Njg3ODU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnENQwDwQCAAIwCQMHACABDfFXwDANBgkqhkiG9w0BAQsF AAOCAQEANPwFF8IiD4A3B4zuNk0t5PX+UkRgMimi0y8aYUiEP3SktTzNlijUH6QD AdZzOYsWdO82eb3BgJZo2P4Eii+lNT0rRGbcbMC761qCoTGhKdQc0jc9ejPkdUch /L/MMRo7rPq+L9v4U0tVznMWY/n0r3JIQCOhq3FekmYo0IgQfkHAO9m0zmz2Y9e/ plLg9oG+tE+DzbzXTuNpkeUG10/+DzRrjrx0iQ/TK+Mcz0TxaG3n0nXk5pwQ9qBt 0zdOasp0Dt/nZSiznEqpixPItt4tDxtt61aPK/kEWC4xeUrhUktAc+0wWTIdc7LC T4bJ80AaVWXjy5+dcoV2iVUSZvxE/w== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org