$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/164B8B986D8B11EEAE28C283C4F9AE02.roa File: 164B8B986D8B11EEAE28C283C4F9AE02.roa (raw, json) Hash identifier: zzpFcIYATvvz+ehYyoXcGsAYVOBFYBXyZDv/oX18Mx0= Subject key identifier: B4:F6:F9:58:F4:A5:50:C2:20:69:8D:55:A8:17:38:10:71:7A:87:43 Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: C7 Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/164B8B986D8B11EEAE28C283C4F9AE02.roa Signing time: Fri 25 Oct 2024 04:48:29 +0000 ROA not before: Fri 25 Oct 2024 04:48:29 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.172.192.0/24 maxlen: 24 2001:df2:f8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Oct 25 04:48:29 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671b231d-334f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:70:8c:d0:3a:86:c6:e7:20:29:31:2e:4a:b3: 80:7c:bd:66:52:52:92:f9:99:39:3b:2a:59:70:65: a2:65:3e:a2:4e:8e:c4:19:80:bf:a2:5a:ed:31:df: ea:79:2b:6e:0b:44:87:b7:84:22:5a:4a:5d:c6:4a: bb:fd:55:96:1d:f7:b8:53:de:9d:bb:63:19:36:3b: bc:d3:f0:8e:af:b9:78:4f:ca:b6:13:c7:f5:a4:7a: 12:e5:bf:6d:48:c0:fc:90:73:ab:25:e2:dd:79:90: 96:20:7d:89:28:ae:95:4a:53:45:30:71:22:11:c7: 06:68:7a:c1:67:9a:92:ad:ec:7b:e7:11:a5:35:95: 57:76:93:89:e8:29:13:d4:9f:e2:fd:eb:53:c5:78: 2a:2d:ac:5a:a2:cf:1b:d0:45:a7:58:9c:34:ff:c0: c7:0a:f5:1d:da:08:ad:17:40:f3:c0:2d:25:0a:ea: 44:cf:97:d9:df:2c:6d:78:1b:cf:22:a2:f9:fa:2a: 60:74:72:83:a7:ac:f8:23:a1:56:bc:60:3b:2e:7e: af:61:5b:33:67:13:2f:96:d7:5a:17:c4:5d:8c:b4: c8:db:67:a9:04:0e:e4:06:c1:94:85:09:fa:cf:1d: 8c:b4:47:a0:81:8c:56:1d:43:99:ee:89:b1:a3:87: d1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F6:F9:58:F4:A5:50:C2:20:69:8D:55:A8:17:38:10:71:7A:87:43 X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/164B8B986D8B11EEAE28C283C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.192.0/24 IPv6: 2001:df2:f8c0::/48 Signature Algorithm: sha256WithRSAEncryption 3b:57:a8:d5:a2:50:47:dc:d7:82:fd:f2:c7:3d:05:f6:2a:cd: ca:75:3b:d3:72:ad:35:01:66:87:c6:d5:71:fd:79:b8:47:bc: 45:76:42:82:c1:c6:7e:09:a4:52:9a:86:9b:a8:87:db:ae:fd: ae:3d:41:e0:7d:31:76:6c:db:d8:b0:fd:43:30:4c:00:8c:10: 8a:29:cf:ff:c3:a7:72:cd:eb:0c:96:91:c2:03:9f:28:f2:db: 9d:56:7a:a9:ea:55:17:c3:17:75:27:bc:b8:19:98:1e:00:54: cd:0a:9a:ff:ff:f5:1d:90:9f:8e:8c:4f:18:10:d8:ff:7d:49: b9:14:b6:5b:16:f6:2f:7c:83:c7:ca:cc:50:37:9d:80:f4:25: 0a:88:4a:74:90:01:eb:98:40:e1:6c:99:d6:ea:d3:10:65:c4: 9a:13:64:87:65:16:2b:90:38:62:d2:ea:cb:63:25:c6:cd:2d: 47:f7:15:0d:9a:a6:32:3b:1b:04:9c:08:b5:39:80:97:54:ec: e4:09:ef:1e:32:24:64:27:e3:84:73:ea:c1:8f:4d:90:a5:38: 45:d3:58:c7:e2:10:e5:95:01:49:f5:a1:7c:37:88:69:83:22: c8:cf:d7:08:f5:32:5a:bd:87:82:fa:5a:bb:bd:d2:07:37:92: 41:67:4d:28 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw RDQ5MTJFREQwHhcNMjQxMDI1MDQ0ODI5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFiMjMxZC0zMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03CM0DqGxucgKTEuSrOAfL1mUlKS+Zk5OypZcGWiZT6iTo7EGYC/olrtMd/q eStuC0SHt4QiWkpdxkq7/VWWHfe4U96du2MZNju80/COr7l4T8q2E8f1pHoS5b9t SMD8kHOrJeLdeZCWIH2JKK6VSlNFMHEiEccGaHrBZ5qSrex75xGlNZVXdpOJ6CkT 1J/i/etTxXgqLaxaos8b0EWnWJw0/8DHCvUd2gitF0DzwC0lCupEz5fZ3yxteBvP IqL5+ipgdHKDp6z4I6FWvGA7Ln6vYVszZxMvltdaF8RdjLTI22epBA7kBsGUhQn6 zx2MtEeggYxWHUOZ7omxo4fRUQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLT2+Vj0 pVDCIGmNVagXOBBxeodDMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFCRkQvODk1QTQ5NTA2RDg5MTFFRTgyQTFGNjgwQzRGOUFFMDIvMTY0QjhCOTg2 RDhCMTFFRUFFMjhDMjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnrMAwDwQCAAIwCQMHACABDfL4wDANBgkqhkiG9w0BAQsF AAOCAQEAO1eo1aJQR9zXgv3yxz0F9irNynU703KtNQFmh8bVcf15uEe8RXZCgsHG fgmkUpqGm6iH2679rj1B4H0xdmzb2LD9QzBMAIwQiinP/8Oncs3rDJaRwgOfKPLb nVZ6qepVF8MXdSe8uBmYHgBUzQqa///1HZCfjoxPGBDY/31JuRS2Wxb2L3yDx8rM UDedgPQlCohKdJAB65hA4WyZ1urTEGXEmhNkh2UWK5A4YtLqy2Mlxs0tR/cVDZqm MjsbBJwItTmAl1Ts5AnvHjIkZCfjhHPqwY9NkKU4RdNYx+IQ5ZUBSfWhfDeIaYMi yM/XCPUyWr2Hgvpau73SBzeSQWdNKA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:04 2024 by rpki-client on console-fra.rpki-client.org