$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FECE3C3C855711EF8E79C52BC4F9AE02.roa File: FECE3C3C855711EF8E79C52BC4F9AE02.roa (raw, json) Hash identifier: qIG1nrRqmqeXhlJ4QfxZpQrhglB0XBpLi9GUgb6DFzg= Subject key identifier: BE:DE:66:C6:DB:C1:E7:5B:1D:14:B0:B7:E0:F6:2E:3B:B7:A9:8A:A2 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 025C Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FECE3C3C855711EF8E79C52BC4F9AE02.roa Signing time: Tue 08 Oct 2024 09:30:46 +0000 ROA not before: Tue 08 Oct 2024 09:30:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 8708 IP address blocks: 103.243.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Oct 8 09:30:46 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6704fbc5-14a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ec:89:a2:cf:84:b2:98:a8:e8:9a:c1:80:57: a4:06:31:98:7f:e7:d5:12:3d:2f:94:09:5b:c1:9e: 42:3d:91:50:27:f4:47:b6:03:77:74:cb:e9:4a:7e: c4:64:4d:fe:cb:9d:45:a5:25:dd:b1:d5:4f:6c:2e: 37:de:99:31:8f:9f:ba:d2:5e:60:44:a1:e8:3a:72: 67:96:b7:b7:62:c2:03:fe:7c:21:2a:a5:b5:5c:0e: 4e:d3:e1:b5:6e:66:2c:04:d4:89:10:b2:fb:6a:00: 90:73:9e:a5:fa:a5:fd:03:ed:2d:47:58:d4:30:b7: 15:3d:3a:03:15:52:ae:51:c0:27:fb:79:0b:c4:8a: f1:10:f7:7d:b0:4c:40:36:8a:29:49:83:1c:87:e4: 6a:bd:58:ff:fb:b6:40:77:90:c3:78:f8:8f:c2:89: 92:85:80:0c:d5:13:b5:df:60:6c:f7:9d:32:97:7a: ef:4d:35:65:8c:f2:10:76:4c:7e:b1:3c:5c:86:e2: d9:9c:8c:04:fb:6e:bf:1c:2b:36:bd:ce:6e:6e:57: 55:0a:47:99:d2:45:a2:6e:4a:55:f0:ba:00:2c:f6: d9:0c:81:e2:25:15:48:7e:7a:73:d6:f6:c1:03:bd: 8b:76:dd:34:b3:b8:9f:42:1a:b8:d3:d1:53:15:4f: 5d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DE:66:C6:DB:C1:E7:5B:1D:14:B0:B7:E0:F6:2E:3B:B7:A9:8A:A2 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FECE3C3C855711EF8E79C52BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.144.0/22 Signature Algorithm: sha256WithRSAEncryption 27:e2:db:00:4b:16:7d:2a:75:85:77:9d:6f:60:1b:c9:f1:fd: 59:ae:f0:d4:22:7c:22:0b:ac:80:d6:3d:22:37:b6:41:d1:f7: 1e:d5:e5:00:60:17:e2:3f:c0:ab:5e:66:8b:1c:6a:c1:70:f2: f5:f6:bf:9b:72:71:64:f8:ca:02:8b:27:7c:c1:0c:6e:56:27: 2c:bd:f0:82:f9:51:5d:f8:e8:fd:71:3e:be:92:32:b0:89:5e: 52:31:be:ac:14:90:8a:37:a0:ae:15:e8:50:da:45:14:56:4b: 32:00:f0:23:dd:4b:02:51:17:c8:1c:a9:70:aa:86:e3:8a:0f: 84:8c:20:12:ce:16:30:28:0c:04:89:20:c2:b3:a1:6c:d8:a8: 9c:3f:bd:12:7c:5b:8e:b6:86:64:b1:6a:b2:e3:cf:ef:3b:60: 8d:87:db:22:9e:b8:3f:c4:51:f8:81:56:d0:d7:ed:f3:23:e5: 47:34:30:82:f0:3f:a0:c2:2d:2d:ae:fd:3c:19:1c:0e:b4:37: 16:8d:b1:c5:c9:ac:b1:73:71:5d:c4:9d:a1:87:ae:c3:17:2c: e4:bc:82:14:52:71:92:a8:fd:b3:3b:91:e6:8b:47:3b:7c:34: 77:ea:d4:d8:25:5e:e6:38:33:64:2f:81:bf:38:3c:71:fc:7f: 57:fb:32:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQxMDA4MDkzMDQ2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA0ZmJjNS0xNGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+yJos+Espio6JrBgFekBjGYf+fVEj0vlAlbwZ5CPZFQJ/RHtgN3dMvpSn7E ZE3+y51FpSXdsdVPbC433pkxj5+60l5gRKHoOnJnlre3YsID/nwhKqW1XA5O0+G1 bmYsBNSJELL7agCQc56l+qX9A+0tR1jUMLcVPToDFVKuUcAn+3kLxIrxEPd9sExA NoopSYMch+RqvVj/+7ZAd5DDePiPwomShYAM1RO132Bs950yl3rvTTVljPIQdkx+ sTxchuLZnIwE+26/HCs2vc5ubldVCkeZ0kWibkpV8LoALPbZDIHiJRVIfnpz1vbB A72Ldt00s7ifQhq409FTFU9dWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL7eZsbb wedbHRSwt+D2Lju3qYqiMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRkVDRTNDM0M4 NTU3MTFFRjhFNzlDNTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn85AwDQYJKoZIhvcNAQELBQADggEBACfi2wBLFn0qdYV3 nW9gG8nx/Vmu8NQifCILrIDWPSI3tkHR9x7V5QBgF+I/wKteZoscasFw8vX2v5ty cWT4ygKLJ3zBDG5WJyy98IL5UV346P1xPr6SMrCJXlIxvqwUkIo3oK4V6FDaRRRW SzIA8CPdSwJRF8gcqXCqhuOKD4SMIBLOFjAoDASJIMKzoWzYqJw/vRJ8W462hmSx arLjz+87YI2H2yKeuD/EUfiBVtDX7fMj5Uc0MILwP6DCLS2u/TwZHA60NxaNscXJ rLFzcV3EnaGHrsMXLOS8ghRScZKo/bM7keaLRzt8NHfq1NglXuY4M2Qvgb84PHH8 f1f7Mi8= -----END CERTIFICATE-----Generated at Mon Nov 25 03:00:25 2024 by rpki-client on console-fra.rpki-client.org