$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa File: FCF99042301011EFBC350682C4F9AE02.roa (raw, json) Hash identifier: jBAmYh9ksJUIXjl6D8GUTZmcd/9XnW0epRK5w3L/De8= Subject key identifier: FB:95:63:41:0C:15:D8:B4:52:05:CD:29:A9:A9:08:40:41:8E:EC:2E Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 90 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa Signing time: Thu 21 Nov 2024 22:32:59 +0000 ROA not before: Thu 21 Nov 2024 22:32:59 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 53813 IP address blocks: 167.103.110.0/24 maxlen: 24 167.103.111.0/24 maxlen: 24 167.103.118.0/23 maxlen: 24 167.103.122.0/23 maxlen: 24 167.103.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Nov 21 22:32:59 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673fb51b-5ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:df:4c:ee:c8:73:d0:d3:f3:4f:13:60:a2:bf: b6:9f:be:fc:c1:1f:db:4e:9a:b3:79:73:02:2d:23: 84:98:f6:a2:99:6b:2a:5f:be:0d:83:1d:eb:74:b2: e7:2b:a8:18:ab:c6:cd:fb:01:80:cd:84:da:df:b8: de:48:ce:76:b8:d3:df:4b:89:cf:93:56:ec:a0:1e: 03:b6:49:d3:b8:b3:7e:86:cf:18:64:ff:ff:30:bd: a8:c7:05:df:fd:94:1a:2f:79:9f:5c:c7:42:c4:30: 2a:64:86:09:0b:9e:0d:23:01:9c:36:9b:85:8c:a1: 75:22:57:f1:9c:91:d4:74:7c:6e:77:b2:da:2f:27: ca:b5:80:44:80:9f:20:08:bf:83:4f:c4:d4:88:9c: e5:c8:00:a8:d4:84:58:b5:12:6f:70:4f:8a:a1:f3: 87:5b:7a:3c:e1:25:a5:fd:b0:5b:4c:24:90:e4:d3: 3e:e1:71:32:52:8e:da:84:b3:73:52:7d:3e:2f:67: 7a:f0:b5:d0:7e:87:6a:4f:88:c9:3c:53:76:72:9b: 80:4e:fc:65:49:9e:53:ab:cb:14:a6:17:8a:0b:e4: 11:f0:25:84:6c:cc:e4:79:a4:79:16:8b:6e:4a:b9: ec:21:e8:b9:dd:99:30:6d:5e:49:2f:3b:1b:0b:8e: 93:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:95:63:41:0C:15:D8:B4:52:05:CD:29:A9:A9:08:40:41:8E:EC:2E X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.110.0/23 167.103.118.0/23 167.103.122.0-167.103.125.255 Signature Algorithm: sha256WithRSAEncryption 7a:37:32:b3:f8:48:c6:d6:cd:a0:03:43:05:88:da:18:43:fd: a3:a2:c8:28:7a:4f:14:f3:8e:d9:2b:44:1e:af:42:67:83:5a: a2:77:8a:3d:d4:8e:d4:f5:12:d3:6a:1a:d3:61:01:b1:71:ef: 58:3b:1e:f3:2b:23:6c:a3:e6:8a:67:f9:9a:94:a8:75:20:15: 8f:2d:27:fa:bf:dd:6c:3c:1e:6f:3e:9a:76:dd:8c:7b:56:76: 5a:ce:58:0c:8c:35:99:a8:4b:89:8b:c1:96:39:50:c1:fc:63: 60:b4:3b:c7:6a:c4:37:64:77:a0:33:1d:38:79:18:fa:81:66: 05:35:7e:1d:a9:de:21:89:e3:03:7b:3c:c6:e5:a7:d6:ce:65: e2:c5:02:74:01:0c:1f:bf:15:7c:9f:a2:4e:a2:ac:e3:07:37: d0:f9:a1:08:17:50:4c:3a:c4:bf:f3:85:6d:a8:6c:2e:29:91: e2:21:1c:00:d8:b1:70:41:c7:f5:e5:e7:70:c9:43:29:6e:c6: 2c:27:a3:8b:5c:d5:f5:b0:6a:48:02:59:ea:5c:8f:eb:c0:37: 74:51:9c:3f:84:24:d9:b7:4a:37:de:84:b9:38:4e:33:87:cc: 44:83:0b:92:20:c7:47:05:99:60:00:ca:62:ce:41:b7:6a:97: e2:b0:21:7a -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjQxMTIxMjIzMjU5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNmYjUxYi01YWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxd9M7shz0NPzTxNgor+2n778wR/bTpqzeXMCLSOEmPaimWsqX74Ngx3rdLLn K6gYq8bN+wGAzYTa37jeSM52uNPfS4nPk1bsoB4DtknTuLN+hs8YZP//ML2oxwXf /ZQaL3mfXMdCxDAqZIYJC54NIwGcNpuFjKF1IlfxnJHUdHxud7LaLyfKtYBEgJ8g CL+DT8TUiJzlyACo1IRYtRJvcE+KofOHW3o84SWl/bBbTCSQ5NM+4XEyUo7ahLNz Un0+L2d68LXQfodqT4jJPFN2cpuATvxlSZ5Tq8sUpheKC+QR8CWEbMzkeaR5Fotu SrnsIei53ZkwbV5JLzsbC46TgwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFPuVY0EM Fdi0UgXNKampCEBBjuwuMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvRkNGOTkwNDIz MDEwMTFFRkJDMzUwNjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAGnZ24DBAGnZ3YwDAMEAadnegMEAadnfDANBgkqhkiG9w0B AQsFAAOCAQEAejcys/hIxtbNoANDBYjaGEP9o6LIKHpPFPOO2StEHq9CZ4NaoneK PdSO1PUS02oa02EBsXHvWDse8ysjbKPmimf5mpSodSAVjy0n+r/dbDwebz6adt2M e1Z2Ws5YDIw1mahLiYvBljlQwfxjYLQ7x2rEN2R3oDMdOHkY+oFmBTV+HaneIYnj A3s8xuWn1s5l4sUCdAEMH78VfJ+iTqKs4wc30PmhCBdQTDrEv/OFbahsLimR4iEc ANixcEHH9eXncMlDKW7GLCeji1zV9bBqSAJZ6lyP68A3dFGcP4Qk2bdKN96EuThO M4fMRIMLkiDHRwWZYADKYs5Bt2qX4rAheg== -----END CERTIFICATE-----Generated at Mon Nov 25 06:05:09 2024 by rpki-client on console-fra.rpki-client.org