$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/59179A7E0F3211EDA9D57685C4F9AE02.roa File: 59179A7E0F3211EDA9D57685C4F9AE02.roa (raw, json) Hash identifier: rMev8024uF8TEESVT+FsfOfbRH+3KQX0Th9l2lAdoEA= Subject key identifier: 80:6D:4B:BD:EC:04:95:28:2F:29:2B:6E:10:17:F3:FF:CA:8E:A4:2E Certificate issuer: /CN=A91AEE40/serialNumber=0305185735E097EFB36A860653B253ABE9FE115C Certificate serial: 01DD Authority key identifier: 03:05:18:57:35:E0:97:EF:B3:6A:86:06:53:B2:53:AB:E9:FE:11:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwUYVzXgl--zaoYGU7JTq-n-EVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/59179A7E0F3211EDA9D57685C4F9AE02.roa Signing time: Thu 01 Aug 2024 03:45:12 +0000 ROA not before: Thu 01 Aug 2024 03:45:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140988 IP address blocks: 103.66.168.0/23 maxlen: 23 103.66.168.0/24 maxlen: 24 103.66.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.crl rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwUYVzXgl--zaoYGU7JTq-n-EVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE40/serialNumber=0305185735E097EFB36A860653B253ABE9FE115C Validity Not Before: Aug 1 03:45:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ab04c7-fe33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e0:e6:7f:6b:ef:c7:6e:8b:fb:7a:75:50:7b: 4a:2e:55:1a:4b:c7:59:96:59:2a:55:41:e2:23:fa: a8:a3:68:aa:a8:cd:b4:63:20:d2:be:23:dd:bb:49: 47:16:23:79:74:a2:43:66:2e:7b:b2:e2:66:98:d9: af:15:e3:2a:1c:e7:35:8a:bc:f1:59:5a:bb:c3:f2: 23:5d:e7:7a:a6:2e:ad:1f:38:67:1c:c7:b0:bb:6b: 54:16:20:a1:8b:9e:67:e8:e9:17:b4:be:48:e9:74: 84:e1:7f:d6:4b:07:af:d3:98:4c:ae:6d:46:34:48: 20:27:dc:4c:77:95:eb:93:fc:0f:18:ab:2e:28:ec: 9d:87:a2:d4:22:86:35:fe:f5:95:53:11:35:f0:27: f2:6b:26:d5:7d:da:92:3f:bb:77:b1:1b:25:93:4b: 0e:c6:54:35:22:2f:37:9f:1e:45:80:e3:36:2a:5c: 71:6f:cd:dd:1c:87:21:1c:cf:e3:dc:1f:21:dd:39: 06:7d:fa:89:fc:df:00:bf:a4:fb:de:ee:7b:7c:12: d0:4e:3b:e3:cb:df:27:d3:74:a6:eb:12:fa:e2:90: ab:a4:a9:12:ef:15:d4:ed:fc:85:ca:3a:51:55:42: 80:75:60:c4:6e:4d:e7:d2:6b:a4:c2:77:a4:08:7a: 37:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:6D:4B:BD:EC:04:95:28:2F:29:2B:6E:10:17:F3:FF:CA:8E:A4:2E X509v3 Authority Key Identifier: keyid:03:05:18:57:35:E0:97:EF:B3:6A:86:06:53:B2:53:AB:E9:FE:11:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwUYVzXgl--zaoYGU7JTq-n-EVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/59179A7E0F3211EDA9D57685C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.168.0/23 Signature Algorithm: sha256WithRSAEncryption 90:a9:c0:c7:cc:13:75:03:b1:06:de:df:4f:f0:d3:75:13:0a: 40:91:c6:2b:d9:38:67:fc:0a:ed:30:f8:38:b6:d5:8b:76:0a: 91:20:fb:e6:fe:e4:ad:2f:d8:7c:0c:c8:e0:d2:6d:ef:4a:d1: 8a:a0:8b:7f:0d:07:c8:d3:d6:a5:b1:2a:76:2d:3d:c3:63:d5: 2c:d6:85:1d:b0:0c:10:ac:d0:02:b0:4f:eb:f2:93:27:7a:eb: 76:75:6d:dd:4e:b1:4a:d2:d5:00:8d:c0:25:24:10:b5:01:b6: aa:fa:5f:28:92:5f:61:f3:75:73:5c:42:c7:32:65:91:4c:17: 9b:79:6c:02:fd:81:c9:c5:77:40:ef:26:50:7d:b4:5d:84:43: 6d:b0:74:85:6b:1f:c6:29:eb:c4:88:b2:84:fb:27:49:f0:a0: c9:38:94:79:9f:06:31:b9:b7:e6:bd:4a:5b:cb:c6:ac:ce:1f: db:88:9e:c2:51:db:8e:a5:45:10:80:93:77:8d:93:66:67:f2: 98:dc:30:95:9f:95:18:6b:b6:e7:1b:c2:1f:8b:32:5a:e8:43: 27:58:69:63:b3:0c:02:81:1a:e7:ea:76:fc:3b:02:c5:b2:00: 26:bc:87:f3:61:de:09:53:82:e2:e8:a8:1f:d6:13:f1:6c:e2: 7a:7b:7c:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNDAxMTAvBgNVBAUTKDAzMDUxODU3MzVFMDk3RUZCMzZBODYwNjUzQjI1M0FC RTlGRTExNUMwHhcNMjQwODAxMDM0NTEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFiMDRjNy1mZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+Dmf2vvx26L+3p1UHtKLlUaS8dZllkqVUHiI/qoo2iqqM20YyDSviPdu0lH FiN5dKJDZi57suJmmNmvFeMqHOc1irzxWVq7w/IjXed6pi6tHzhnHMewu2tUFiCh i55n6OkXtL5I6XSE4X/WSwev05hMrm1GNEggJ9xMd5Xrk/wPGKsuKOydh6LUIoY1 /vWVUxE18CfyaybVfdqSP7t3sRslk0sOxlQ1Ii83nx5FgOM2Klxxb83dHIchHM/j 3B8h3TkGffqJ/N8Av6T73u57fBLQTjvjy98n03Sm6xL64pCrpKkS7xXU7fyFyjpR VUKAdWDEbk3n0mukwnekCHo3AQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIBtS73s BJUoLykrbhAX8//KjqQuMB8GA1UdIwQYMBaAFAMFGFc14Jfvs2qGBlOyU6vp/hFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0MC8wRUVDMjlGODBG MzAxMUVEQjM1NjhBODRDNEY5QUUwMi9Bd1VZVnpYZ2wtLXphb1lHVTdKVHEtbi1F VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F3VVlWelhnbC0temFvWUdVN0pUcS1uLUVWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVFNDAvMEVFQzI5RjgwRjMwMTFFREIzNTY4QTg0QzRGOUFFMDIvNTkxNzlBN0Uw RjMyMTFFREE5RDU3Njg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnQqgwDQYJKoZIhvcNAQELBQADggEBAJCpwMfME3UDsQbe 30/w03UTCkCRxivZOGf8Cu0w+Di21Yt2CpEg++b+5K0v2HwMyODSbe9K0Yqgi38N B8jT1qWxKnYtPcNj1SzWhR2wDBCs0AKwT+vykyd663Z1bd1OsUrS1QCNwCUkELUB tqr6XyiSX2HzdXNcQscyZZFMF5t5bAL9gcnFd0DvJlB9tF2EQ22wdIVrH8Yp68SI soT7J0nwoMk4lHmfBjG5t+a9SlvLxqzOH9uInsJR246lRRCAk3eNk2Zn8pjcMJWf lRhrtucbwh+LMlroQydYaWOzDAKBGufqdvw7AsWyACa8h/Nh3glTguLoqB/WE/Fs 4np7fPQ= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:43 2024 by rpki-client on console-fra.rpki-client.org