$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FF720066912211EF9222B024C4F9AE02.roa File: FF720066912211EF9222B024C4F9AE02.roa (raw, json) Hash identifier: h+9iSQNvszVUmo0lrqkKpQNjHPPvYVvg5gpu2c+Bkb0= Subject key identifier: 82:C8:D6:07:36:E5:E4:49:6B:74:40:59:74:95:8A:68:C7:E1:28:2A Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 481D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FF720066912211EF9222B024C4F9AE02.roa Signing time: Fri 15 Nov 2024 04:05:56 +0000 ROA not before: Fri 15 Nov 2024 04:05:56 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 56153 IP address blocks: 103.97.124.0/24 maxlen: 24 103.97.125.0/24 maxlen: 24 103.97.126.0/24 maxlen: 24 103.97.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18461 (0x481d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Nov 15 04:05:56 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6736c8a4-d937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b5:19:74:85:b8:cb:45:6f:b1:c5:e6:cb:13: 0b:fd:12:ff:97:d3:39:16:55:34:c2:33:20:3c:4b: e1:79:0a:f5:57:9d:2a:64:5f:a9:ba:60:32:d8:d4: 62:ce:88:98:4b:8f:07:b3:f5:7f:42:98:f6:a3:64: 17:09:7e:46:a5:99:49:2e:97:32:64:9e:6f:e8:03: f0:dd:09:56:88:82:fe:21:6d:30:45:73:f8:ce:48: 2c:df:90:da:65:45:62:5c:ce:6c:ea:7d:5b:b0:8c: 6e:be:f1:63:51:cf:02:55:d1:51:e6:a6:b0:d0:7b: dd:aa:d1:79:80:8f:d0:8c:4e:e6:81:21:af:a7:27: d8:b9:d8:1e:80:ba:17:c9:dc:79:dc:44:1e:2c:fb: 54:df:8d:e8:22:fa:67:36:ef:3f:0c:18:60:71:42: e1:5c:b7:e3:32:65:4f:63:9a:8f:33:c7:14:dd:ac: 41:df:69:7c:19:f6:cb:6c:59:38:38:38:66:41:84: 41:05:8d:a0:5a:bf:a3:0d:fa:be:59:0a:a3:0b:38: 84:10:35:0f:4d:33:71:5b:5d:f6:84:ad:10:fd:e7: c0:b5:10:e6:a6:50:33:53:c2:52:65:e7:4d:e9:a9: 73:63:bc:f4:a5:b1:cc:07:09:78:00:74:df:7b:ec: b3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C8:D6:07:36:E5:E4:49:6B:74:40:59:74:95:8A:68:C7:E1:28:2A X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FF720066912211EF9222B024C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.124.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:16:ab:6c:72:df:bc:84:0d:32:2d:d5:b6:3e:8f:7a:2d:c8: 1f:7a:b7:b8:bf:74:40:5a:c1:2c:75:75:53:4e:05:27:29:34: 9d:3d:bd:93:21:ec:a0:8c:fe:20:0c:75:a0:54:53:f7:6c:ae: c2:2e:35:d9:16:84:ad:e1:ef:81:fe:e4:cb:9b:e8:3e:ff:ad: 28:c5:af:85:d1:42:39:3e:cd:8b:96:09:ef:96:bb:45:cf:6b: 72:69:98:15:de:c3:09:10:a6:33:0f:ea:4e:f4:81:fe:c4:2e: de:18:8a:3c:77:ae:aa:b6:ff:08:9e:b0:f8:f3:fb:a5:44:a9: 75:33:3a:fd:73:32:3f:ad:68:06:d3:ab:cc:94:02:71:4d:2f: ca:90:5f:d8:cd:3b:f4:f8:12:a0:39:60:cb:d2:1c:c6:12:3c: c2:ce:29:3d:b3:3b:ac:17:5d:e4:a8:60:d7:87:3c:6f:43:77: 71:ab:5b:96:ff:8f:3f:06:fe:44:b9:7e:10:fa:16:c6:c0:3f: 7d:14:27:c6:4f:17:83:54:ce:01:a1:76:07:46:c9:37:e1:7e: b4:c5:3b:c6:cf:2b:2e:c5:4d:c6:d7:bd:d4:27:9b:df:e8:cf: 93:e6:71:da:31:95:4a:57:68:20:0b:6d:c9:74:5a:db:ca:19: 62:3c:bb:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICSB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQxMTE1MDQwNTU2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2YzhhNC1kOTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7UZdIW4y0VvscXmyxML/RL/l9M5FlU0wjMgPEvheQr1V50qZF+pumAy2NRi zoiYS48Hs/V/Qpj2o2QXCX5GpZlJLpcyZJ5v6APw3QlWiIL+IW0wRXP4zkgs35Da ZUViXM5s6n1bsIxuvvFjUc8CVdFR5qaw0HvdqtF5gI/QjE7mgSGvpyfYudgegLoX ydx53EQeLPtU343oIvpnNu8/DBhgcULhXLfjMmVPY5qPM8cU3axB32l8GfbLbFk4 ODhmQYRBBY2gWr+jDfq+WQqjCziEEDUPTTNxW132hK0Q/efAtRDmplAzU8JSZedN 6alzY7z0pbHMBwl4AHTfe+yzOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFILI1gc2 5eRJa3RAWXSVimjH4SgqMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRkY3MjAwNjY5 MTIyMTFFRjkyMjJCMDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYXwwDQYJKoZIhvcNAQELBQADggEBAGwWq2xy37yEDTIt 1bY+j3otyB96t7i/dEBawSx1dVNOBScpNJ09vZMh7KCM/iAMdaBUU/dsrsIuNdkW hK3h74H+5Mub6D7/rSjFr4XRQjk+zYuWCe+Wu0XPa3JpmBXewwkQpjMP6k70gf7E Lt4Yijx3rqq2/wiesPjz+6VEqXUzOv1zMj+taAbTq8yUAnFNL8qQX9jNO/T4EqA5 YMvSHMYSPMLOKT2zO6wXXeSoYNeHPG9Dd3GrW5b/jz8G/kS5fhD6FsbAP30UJ8ZP F4NUzgGhdgdGyTfhfrTFO8bPKy7FTcbXvdQnm9/oz5PmcdoxlUpXaCALbcl0WtvK GWI8u88= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org