$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa File: FDC6A888AEB111EE9A78E132C4F9AE02.roa (raw, json) Hash identifier: ad9Tfv/iWodqT/H7WQAlzhe7NiHE1ZfwLf6/Rguc5gE= Subject key identifier: 26:22:1C:6B:EE:4F:41:CD:5C:2F:93:9A:D3:97:87:71:B1:7C:14:B4 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 023D Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa Signing time: Thu 05 Sep 2024 04:18:19 +0000 ROA not before: Thu 05 Sep 2024 04:18:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 146943 IP address blocks: 103.101.58.0/24 maxlen: 24 103.101.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 5 04:18:19 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9310b-c5d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f0:40:fb:dd:c9:48:a1:b9:05:e0:c4:75:f2: 69:4f:40:64:ac:16:a3:70:91:4c:c0:be:2f:e8:42: 52:fa:50:81:0b:12:88:60:dc:0d:bc:5d:71:6f:f7: 6c:06:89:1f:56:62:6f:d4:cc:50:68:29:a0:df:ad: 43:a2:6f:ba:b3:1f:d1:4b:1e:20:eb:78:fd:d5:6f: 4d:2e:ef:9b:e6:55:00:51:99:0e:b6:da:91:14:71: 20:29:12:f5:0d:ab:09:09:f5:67:a1:b3:55:a4:62: 31:8a:2d:17:64:24:bd:e0:f4:04:47:a1:ab:a4:6e: 87:48:46:8a:8d:50:c0:e0:07:85:d9:e5:21:8b:d5: e9:8c:7f:e2:12:34:0a:83:73:8e:e1:d1:3f:fd:8c: f3:12:77:2b:85:dc:23:40:c1:bd:92:ea:9a:d9:2c: 39:cb:cc:fb:bd:bf:35:9b:f2:29:89:2d:ec:51:1e: aa:79:e7:36:dc:7a:30:c1:34:2b:c2:bc:be:f8:4d: 33:bf:22:3a:16:c3:61:48:b2:62:98:4d:b0:d3:ec: 77:bb:84:18:a0:67:c4:71:a5:3e:e3:d7:ab:3e:00: 72:09:65:33:8b:c5:a4:3e:40:ba:b9:78:49:ec:e9: 31:ec:b5:25:f1:aa:96:83:38:30:dc:f4:70:d9:43: e1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:22:1C:6B:EE:4F:41:CD:5C:2F:93:9A:D3:97:87:71:B1:7C:14:B4 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.58.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:cf:8c:5e:ce:34:df:be:4b:56:50:f2:2c:89:6a:fa:bf:1b: c3:57:81:b3:1a:90:7a:a1:55:10:61:ab:a0:b4:0c:11:68:5e: 2d:35:41:87:3f:12:5a:68:b8:86:e4:b7:df:35:ef:ed:5a:8f: dc:a9:9a:f0:17:de:32:bc:fe:70:45:00:63:ab:40:c4:d1:38: b5:e2:ce:f1:be:29:7f:dd:e2:4a:1b:db:d7:64:0d:6d:28:33: 55:dd:43:b1:ba:e1:25:22:3c:91:d2:ca:be:84:08:60:cb:24: af:d5:82:98:92:11:b5:d1:93:10:0b:6f:92:3e:19:1a:ba:38: 59:ee:de:9c:c2:b0:50:e2:5b:87:08:87:df:bb:86:24:e8:73: d5:7b:25:39:5a:d7:08:90:54:b3:cd:e9:df:ae:3e:2e:c2:82: 5a:e2:b1:9f:df:05:bc:5d:7f:22:d3:e2:c2:ec:03:e8:01:4f: 9f:bf:5a:90:2f:e3:f4:87:53:33:df:24:eb:b4:64:62:58:0d: 83:91:e1:e5:04:7c:7c:58:30:e1:4a:4a:56:6b:fb:7b:24:7d: b5:8e:fb:6f:20:d9:55:52:52:79:93:73:4d:5c:0f:5c:2a:f9: 89:ce:5d:41:37:e7:49:90:8d:5f:5c:11:d5:93:6b:1e:98:bd: b9:d0:2d:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwOTA1MDQxODE5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MzEwYi1jNWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PBA+93JSKG5BeDEdfJpT0BkrBajcJFMwL4v6EJS+lCBCxKIYNwNvF1xb/ds BokfVmJv1MxQaCmg361Dom+6sx/RSx4g63j91W9NLu+b5lUAUZkOttqRFHEgKRL1 DasJCfVnobNVpGIxii0XZCS94PQER6GrpG6HSEaKjVDA4AeF2eUhi9XpjH/iEjQK g3OO4dE//YzzEncrhdwjQMG9kuqa2Sw5y8z7vb81m/IpiS3sUR6qeec23HowwTQr wry++E0zvyI6FsNhSLJimE2w0+x3u4QYoGfEcaU+49erPgByCWUzi8WkPkC6uXhJ 7Okx7LUl8aqWgzgw3PRw2UPhjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCYiHGvu T0HNXC+TmtOXh3GxfBS0MB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRkRDNkE4ODhB RUIxMTFFRTlBNzhFMTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnZTowDQYJKoZIhvcNAQELBQADggEBACzPjF7ONN++S1ZQ 8iyJavq/G8NXgbMakHqhVRBhq6C0DBFoXi01QYc/ElpouIbkt9817+1aj9ypmvAX 3jK8/nBFAGOrQMTROLXizvG+KX/d4kob29dkDW0oM1XdQ7G64SUiPJHSyr6ECGDL JK/VgpiSEbXRkxALb5I+GRq6OFnu3pzCsFDiW4cIh9+7hiToc9V7JTla1wiQVLPN 6d+uPi7CglrisZ/fBbxdfyLT4sLsA+gBT5+/WpAv4/SHUzPfJOu0ZGJYDYOR4eUE fHxYMOFKSlZr+3skfbWO+28g2VVSUnmTc01cD1wq+YnOXUE350mQjV9cEdWTax6Y vbnQLVI= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:50 2024 by rpki-client on console-ams.rpki-client.org