$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/FD69130A94D211EA98E6DE1AC4F9AE02.roa File: FD69130A94D211EA98E6DE1AC4F9AE02.roa (raw, json) Hash identifier: fmT1mXhW6emSp6XK14Ezv8YhP2vzeN+DujMqHs6KlQA= Subject key identifier: 9A:56:3C:3C:B2:72:1D:F7:7A:BB:BF:82:C1:5F:84:70:D5:6B:0A:FA Certificate issuer: /CN=A91AB1F6/serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Certificate serial: 08BE Authority key identifier: 08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/FD69130A94D211EA98E6DE1AC4F9AE02.roa Signing time: Tue 02 Jul 2024 21:09:15 +0000 ROA not before: Tue 02 Jul 2024 21:09:15 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132896 IP address blocks: 103.56.151.0/24 maxlen: 24 103.115.224.0/23 maxlen: 23 103.115.224.0/24 maxlen: 24 103.115.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:08:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1F6/serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Validity Not Before: Jul 2 21:09:15 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66846c7b-ef94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f7:74:57:1a:f6:fd:33:27:c0:e2:89:8e:b6: 4d:dc:a1:37:15:50:ad:68:06:c7:15:3b:32:52:fd: a8:e0:de:15:f9:d8:07:34:7a:34:8e:d4:81:05:0d: b9:85:89:2b:41:b4:3b:65:15:4c:81:c3:98:f4:c7: 68:e2:c9:81:ea:bc:3f:4f:d3:c5:f9:fe:39:84:63: 0c:df:a1:b5:54:06:f0:00:8e:43:65:04:c8:f4:a7: f4:72:f2:fd:60:4a:e4:15:75:6d:09:5c:ef:f7:0c: 16:24:39:e0:e1:ee:17:37:d7:01:c9:65:91:5e:3d: 6b:56:b3:13:d9:66:6d:99:09:6e:64:c8:64:2e:eb: d8:c4:91:74:94:d8:91:b2:64:a3:82:e3:dd:1a:1f: 64:23:75:90:e0:f2:e6:26:59:a6:c0:aa:a0:d1:75: 9a:fb:b0:8c:26:c4:7e:05:9a:f9:43:c9:3a:95:e5: cc:ed:90:a7:38:70:70:86:6d:01:51:fe:79:f1:05: 32:81:ff:70:b2:4c:49:4b:8c:8c:83:77:dd:eb:e6: 45:a4:4b:69:ee:70:e1:07:40:ea:55:d7:56:a0:63: a8:3e:c2:ab:b7:de:4c:79:33:d7:85:7a:ef:56:da: a7:0e:70:7d:80:8b:46:6a:30:af:54:47:98:b8:41: 30:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:56:3C:3C:B2:72:1D:F7:7A:BB:BF:82:C1:5F:84:70:D5:6B:0A:FA X509v3 Authority Key Identifier: keyid:08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/FD69130A94D211EA98E6DE1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.56.151.0/24 103.115.224.0-103.115.226.255 Signature Algorithm: sha256WithRSAEncryption 7a:39:4a:81:92:c4:16:e3:ce:96:e0:7e:3d:8a:28:3d:c5:19: 84:ef:b0:c9:a6:d1:f5:98:a6:ce:9b:77:be:39:d3:25:ba:17: 12:83:38:74:39:41:1d:86:0d:48:26:6b:90:82:c1:0f:73:95: 65:41:c3:25:d8:4d:fd:e8:43:2c:20:5e:76:a7:ea:98:83:1b: 38:c6:7c:13:de:8d:94:b2:af:da:68:6a:35:73:e1:d1:ad:db: 5f:36:c4:59:21:78:96:90:fa:d5:ca:4b:e0:c6:f1:fe:9a:f4: 3e:bc:22:72:a2:b7:4a:db:27:79:6d:a2:34:c0:06:53:e8:1f: c9:55:fd:0e:7c:57:5b:e3:24:60:c4:8f:5d:7d:81:5e:31:8a: df:96:5f:85:6c:6a:fe:77:e5:97:16:14:fe:8b:e9:12:4a:a6: c3:60:f0:da:cc:99:db:c9:18:84:cd:d7:b7:ec:ac:bf:01:69: 53:ff:f6:2e:3c:d4:6a:29:e7:08:10:b9:17:36:76:69:24:e3: 9e:70:e3:df:98:66:4e:ea:11:69:6d:1e:32:a8:41:75:0f:b8: 13:65:8c:fd:0d:f6:dd:b7:9c:0c:ff:38:7d:6f:f0:72:1e:98: f3:10:cd:e9:43:43:1f:13:85:20:c1:b2:0a:7d:51:06:e4:47: 1a:1d:9e:71 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIxRjYxMTAvBgNVBAUTKDA4MUNFNUE2NzAzNkVGODU0Njk5MEJGNTk0Q0NENjMy ODA3NDA1MUQwHhcNMjQwNzAyMjEwOTE1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0NmM3Yi1lZjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vd0Vxr2/TMnwOKJjrZN3KE3FVCtaAbHFTsyUv2o4N4V+dgHNHo0jtSBBQ25 hYkrQbQ7ZRVMgcOY9Mdo4smB6rw/T9PF+f45hGMM36G1VAbwAI5DZQTI9Kf0cvL9 YErkFXVtCVzv9wwWJDng4e4XN9cByWWRXj1rVrMT2WZtmQluZMhkLuvYxJF0lNiR smSjguPdGh9kI3WQ4PLmJlmmwKqg0XWa+7CMJsR+BZr5Q8k6leXM7ZCnOHBwhm0B Uf558QUygf9wskxJS4yMg3fd6+ZFpEtp7nDhB0DqVddWoGOoPsKrt95MeTPXhXrv VtqnDnB9gItGajCvVEeYuEEwmQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFJpWPDyy ch33eru/gsFfhHDVawr6MB8GA1UdIwQYMBaAFAgc5aZwNu+FRpkL9ZTM1jKAdAUd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjFGNi8wRjE0MDE1MDk0 QzkxMUVBQjFEQjYyN0NDNEY5QUUwMi9DQnpscG5BMjc0VkdtUXYxbE16V01vQjBC UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCemxwbkEyNzRWR21RdjFsTXpXTW9CMEJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIxRjYvMEYxNDAxNTA5NEM5MTFFQUIxREI2MjdDQzRGOUFFMDIvRkQ2OTEzMEE5 NEQyMTFFQTk4RTZERTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnOJcwDAMEBWdz4AMEAGdz4jANBgkqhkiG9w0BAQsFAAOC AQEAejlKgZLEFuPOluB+PYooPcUZhO+wyabR9Zimzpt3vjnTJboXEoM4dDlBHYYN SCZrkILBD3OVZUHDJdhN/ehDLCBedqfqmIMbOMZ8E96NlLKv2mhqNXPh0a3bXzbE WSF4lpD61cpL4Mbx/pr0PrwicqK3StsneW2iNMAGU+gfyVX9DnxXW+MkYMSPXX2B XjGK35ZfhWxq/nfllxYU/ovpEkqmw2Dw2syZ28kYhM3Xt+ysvwFpU//2LjzUainn CBC5FzZ2aSTjnnDj35hmTuoRaW0eMqhBdQ+4E2WM/Q323becDP84fW/wch6Y8xDN 6UNDHxOFIMGyCn1RBuRHGh2ecQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org