$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/FD22BBAE231F11EB99F53580C4F9AE02.roa File: FD22BBAE231F11EB99F53580C4F9AE02.roa (raw, json) Hash identifier: 9qOXZArIIUyJUewjOCf9oYo9vbgS16mz3+p2fdmL0tQ= Subject key identifier: 34:BA:26:1E:CE:1F:6E:4F:F1:F3:D4:77:94:64:1F:D8:F2:F3:74:FB Certificate issuer: /CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Certificate serial: 0F21 Authority key identifier: 6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/FD22BBAE231F11EB99F53580C4F9AE02.roa Signing time: Tue 24 Sep 2024 17:55:47 +0000 ROA not before: Tue 24 Sep 2024 17:55:47 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137969 IP address blocks: 103.99.40.0/23 maxlen: 24 103.132.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3873 (0xf21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Validity Not Before: Sep 24 17:55:47 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2fd23-a62a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c3:b7:52:44:71:60:26:a6:01:28:96:ac:92: d2:2d:eb:27:35:23:ff:d6:41:43:2d:0f:2a:ff:81: 22:97:cd:30:4f:c0:e1:00:3a:31:89:a1:d8:d4:e2: 13:34:85:f1:d5:ab:60:19:e5:6c:27:01:10:2f:ba: 90:67:25:06:27:c1:08:51:23:e1:8b:6f:8e:21:56: 00:45:a6:63:b6:8b:3b:f4:d7:f1:df:5f:4f:5d:1d: 88:d1:fb:fb:13:89:61:0c:cf:27:9f:db:6e:b3:0f: 70:3c:68:dd:2e:76:e4:75:ed:9c:c3:a1:04:c7:c6: 4e:b3:97:ab:29:47:a0:f7:56:50:b8:be:50:f9:c6: 3b:ba:67:91:51:f4:a4:cf:42:3b:24:75:bf:5d:5b: dc:69:ae:64:76:8f:dc:21:cc:7c:e7:de:c0:e5:47: 90:c9:fa:15:64:ae:1b:62:10:43:c0:b6:95:e7:f6: 28:43:f5:82:6a:28:32:9c:9b:50:27:47:cb:c0:e2: ac:62:8c:02:0a:5b:f4:72:56:cc:87:3b:26:03:c2: 0b:c4:a9:df:82:6b:a5:73:e0:85:70:be:4e:a5:ec: d3:b9:d0:55:ae:75:d9:63:35:9b:f4:86:f4:91:0e: 71:66:41:26:a8:c6:8d:8c:36:8a:0b:c9:ea:67:14: 1c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BA:26:1E:CE:1F:6E:4F:F1:F3:D4:77:94:64:1F:D8:F2:F3:74:FB X509v3 Authority Key Identifier: keyid:6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/FD22BBAE231F11EB99F53580C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.40.0/23 103.132.234.0/23 Signature Algorithm: sha256WithRSAEncryption ce:60:7b:5c:e8:58:21:8b:7c:ce:1e:33:b9:e2:a4:64:5c:ba: 88:a6:7c:1a:71:ee:c7:06:02:a1:9c:03:bf:7a:19:dd:3e:a5: 80:e6:e8:c0:2d:d4:6f:cb:56:98:a2:f5:09:26:07:64:14:6b: 47:45:28:c5:b8:02:99:20:47:61:3d:6d:b7:9d:7c:a9:b3:09: af:43:a2:16:b1:cb:66:ee:38:c7:05:83:73:e7:97:2d:18:b1: a1:f1:a7:c0:dc:bf:15:54:43:b6:64:49:71:e9:3b:38:b4:d9: 05:7d:17:99:08:da:8b:f7:e4:c8:ac:4b:9b:09:9e:a0:29:62: d7:04:fb:45:51:d8:a2:48:b8:4b:51:98:e6:45:a9:e8:fd:2f: 83:ce:47:f8:48:0e:ef:bd:07:11:97:80:b0:c9:cd:fa:d4:bf: ac:68:63:ae:4b:f0:fb:bf:e4:5f:46:37:96:7a:81:69:7c:0a: 65:99:87:9d:6b:17:49:3e:ee:f3:71:e6:b4:ea:99:a2:db:62: b4:93:65:ef:13:8b:7d:59:c5:65:82:0f:25:bd:1a:00:07:0c: 3d:cb:8c:5f:bb:26:32:a4:42:7a:87:ea:e1:38:84:d9:7a:60: 5c:67:1d:1d:e6:2b:96:13:ec:28:27:1e:ec:93:1f:44:ce:a6: 5e:cf:a0:1f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2QjQxMTAvBgNVBAUTKDZDQTZCMkFDMUREMTdCMDE0REI2Qzc2NzI3OUQwOEM2 NkU0RUZDMDUwHhcNMjQwOTI0MTc1NTQ3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZmQyMy1hNjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcO3UkRxYCamASiWrJLSLesnNSP/1kFDLQ8q/4Eil80wT8DhADoxiaHY1OIT NIXx1atgGeVsJwEQL7qQZyUGJ8EIUSPhi2+OIVYARaZjtos79Nfx319PXR2I0fv7 E4lhDM8nn9tusw9wPGjdLnbkde2cw6EEx8ZOs5erKUeg91ZQuL5Q+cY7umeRUfSk z0I7JHW/XVvcaa5kdo/cIcx8597A5UeQyfoVZK4bYhBDwLaV5/YoQ/WCaigynJtQ J0fLwOKsYowCClv0clbMhzsmA8ILxKnfgmulc+CFcL5OpezTudBVrnXZYzWb9Ib0 kQ5xZkEmqMaNjDaKC8nqZxQcDQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDS6Jh7O H25P8fPUd5RkH9jy83T7MB8GA1UdIwQYMBaAFGymsqwd0XsBTbbHZyedCMZuTvwF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZCNC83MjZGNTFDMjYz RjIxMUU5QkIyMERENDVDNEY5QUUwMi9iS2F5ckIzUmV3Rk50c2RuSjUwSXhtNU9f QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLYXlyQjNSZXdGTnRzZG5KNTBJeG01T19BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2QjQvNzI2RjUxQzI2M0YyMTFFOUJCMjBERDQ1QzRGOUFFMDIvRkQyMkJCQUUy MzFGMTFFQjk5RjUzNTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYygDBAFnhOowDQYJKoZIhvcNAQELBQADggEBAM5ge1zo WCGLfM4eM7nipGRcuoimfBpx7scGAqGcA796Gd0+pYDm6MAt1G/LVpii9QkmB2QU a0dFKMW4ApkgR2E9bbedfKmzCa9Dohaxy2buOMcFg3Pnly0YsaHxp8DcvxVUQ7Zk SXHpOzi02QV9F5kI2ov35MisS5sJnqApYtcE+0VR2KJIuEtRmOZFqej9L4POR/hI Du+9BxGXgLDJzfrUv6xoY65L8Pu/5F9GN5Z6gWl8CmWZh51rF0k+7vNx5rTqmaLb YrSTZe8Ti31ZxWWCDyW9GgAHDD3LjF+7JjKkQnqH6uE4hNl6YFxnHR3mK5YT7Cgn HuyTH0TOpl7PoB8= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:04 2024 by rpki-client on console-fra.rpki-client.org