$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/FA13BAAC504611ED9AE40711C4F9AE02.roa File: FA13BAAC504611ED9AE40711C4F9AE02.roa (raw, json) Hash identifier: ezVuFYLFE5nPFWmkFpb3o3Zc1r5CWJVIlBRAQm/fLig= Subject key identifier: 9D:BA:06:CE:89:66:FD:20:F1:32:B5:0E:8E:54:2B:5B:58:B7:EF:7F Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 0158 Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/FA13BAAC504611ED9AE40711C4F9AE02.roa Signing time: Tue 13 Aug 2024 03:25:06 +0000 ROA not before: Tue 13 Aug 2024 03:25:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150118 IP address blocks: 103.191.19.0/24 maxlen: 26 2001:df0:f4c0::/48 maxlen: 48 2001:df0:f4c0::/49 maxlen: 49 2001:df0:f4c0::/50 maxlen: 50 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Aug 13 03:25:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bad212-80c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b9:18:74:1d:e6:3a:4b:c1:73:1e:31:67:63: 01:e3:90:55:b7:c8:aa:85:ce:0d:f9:ee:8a:2c:91: c6:b5:57:ff:8c:04:cc:46:9e:08:14:ce:5d:cc:f7: f2:da:3b:7f:3d:e1:35:ed:fe:78:eb:a8:49:51:85: 51:f9:40:5d:a1:df:88:23:6b:71:fe:77:4f:29:b6: ca:e9:da:27:2d:94:bd:10:e3:4a:2e:1d:6c:b0:1d: 0b:c1:47:3f:84:ec:97:3c:a3:0a:4b:19:55:2b:16: 9b:af:c2:66:12:85:76:f8:c0:ed:3f:ce:f5:38:3c: c7:0b:e1:42:f4:10:52:84:02:de:2d:64:f0:f5:72: 84:da:c7:19:93:58:a7:bd:3a:16:9e:79:fa:a5:69: 86:9e:e2:2f:11:22:0c:90:95:dd:5a:12:96:53:d0: 56:54:de:f5:cf:4a:c5:66:25:f4:3e:24:a9:83:92: b9:1b:b1:df:55:35:52:c0:bf:90:02:f7:73:c3:13: ac:9f:03:4c:30:a3:de:f4:15:20:04:51:74:ee:44: 2a:24:da:46:10:df:47:ed:a2:bb:70:73:48:2b:b0: eb:82:3e:97:f4:47:82:18:3c:e8:bd:4b:57:50:f0: 91:75:eb:99:2e:e6:b0:e6:a1:05:ed:1a:21:f9:fa: a5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BA:06:CE:89:66:FD:20:F1:32:B5:0E:8E:54:2B:5B:58:B7:EF:7F X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/FA13BAAC504611ED9AE40711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.19.0/24 IPv6: 2001:df0:f4c0::/48 Signature Algorithm: sha256WithRSAEncryption 68:60:46:68:a6:14:57:b2:e6:3e:b6:f8:d3:18:55:68:35:45: f3:86:64:75:6e:0f:81:dd:1a:67:56:e0:d3:03:13:94:53:79: fe:4e:aa:1f:01:0e:bf:73:75:fb:18:62:db:f1:eb:50:bf:c7: bf:86:81:58:09:0f:25:46:fb:07:c1:32:3c:2a:3b:6f:b9:9e: 6b:fb:5f:94:48:ad:3b:7d:53:eb:cc:98:71:65:1c:66:1c:3f: a3:78:ff:fd:38:11:49:ef:7b:30:59:8c:d4:4f:81:83:40:61: 98:30:26:df:10:69:19:4e:9d:00:f1:88:06:8d:50:c3:a2:14: 9e:b0:2f:18:2b:ed:f6:de:10:d1:43:1e:75:df:74:77:55:4c: ce:2b:ef:22:89:e8:3e:c6:9f:bb:54:1f:df:ed:87:38:fe:9e: f9:94:c9:d2:a5:13:cd:f3:35:6e:84:f0:64:0e:8f:1b:86:02: 1f:fa:b3:19:af:61:2f:12:dd:68:b3:44:1e:66:5d:7e:9d:d5: 2a:0b:a2:8c:e2:09:f6:b9:c9:f6:c9:bf:39:52:09:8d:b2:32: a1:c2:b5:2c:4b:58:60:62:b7:65:c7:c3:3d:a3:c2:05:32:7c: 56:33:b9:1c:1b:1c:8c:d8:37:22:03:a9:d6:d4:aa:6e:69:c3: 5b:39:7d:30 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjQwODEzMDMyNTA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhZDIxMi04MGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57kYdB3mOkvBcx4xZ2MB45BVt8iqhc4N+e6KLJHGtVf/jATMRp4IFM5dzPfy 2jt/PeE17f5466hJUYVR+UBdod+II2tx/ndPKbbK6donLZS9EONKLh1ssB0LwUc/ hOyXPKMKSxlVKxabr8JmEoV2+MDtP871ODzHC+FC9BBShALeLWTw9XKE2scZk1in vToWnnn6pWmGnuIvESIMkJXdWhKWU9BWVN71z0rFZiX0PiSpg5K5G7HfVTVSwL+Q AvdzwxOsnwNMMKPe9BUgBFF07kQqJNpGEN9H7aK7cHNIK7Drgj6X9EeCGDzovUtX UPCRdeuZLuaw5qEF7Roh+fql/wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJ26Bs6J Zv0g8TK1Do5UK1tYt+9/MB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVDQzAvQ0ZBNzlGMUE1MDNGMTFFRDgxRDA3NTZCQzRGOUFFMDIvRkExM0JBQUM1 MDQ2MTFFRDlBRTQwNzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnvxMwDwQCAAIwCQMHACABDfD0wDANBgkqhkiG9w0BAQsF AAOCAQEAaGBGaKYUV7LmPrb40xhVaDVF84ZkdW4Pgd0aZ1bg0wMTlFN5/k6qHwEO v3N1+xhi2/HrUL/Hv4aBWAkPJUb7B8EyPCo7b7mea/tflEitO31T68yYcWUcZhw/ o3j//TgRSe97MFmM1E+Bg0BhmDAm3xBpGU6dAPGIBo1Qw6IUnrAvGCvt9t4Q0UMe dd90d1VMzivvIonoPsafu1Qf3+2HOP6e+ZTJ0qUTzfM1boTwZA6PG4YCH/qzGa9h LxLdaLNEHmZdfp3VKguijOIJ9rnJ9sm/OVIJjbIyocK1LEtYYGK3ZcfDPaPCBTJ8 VjO5HBscjNg3IgOp1tSqbmnDWzl9MA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org