$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa File: FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa (raw, json) Hash identifier: ceGnF1r8IOwVE50G1+2RnDibZLWap/obpLcH2ZWlhhY= Subject key identifier: C5:C0:00:5C:20:72:E7:25:36:B3:6C:73:22:CC:08:B4:93:AF:4E:7C Certificate issuer: /CN=A91BEBB1/serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Certificate serial: 017C Authority key identifier: EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa Signing time: Wed 23 Oct 2024 02:36:52 +0000 ROA not before: Wed 23 Oct 2024 02:36:52 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135019 IP address blocks: 103.23.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:58:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEBB1/serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Validity Not Before: Oct 23 02:36:52 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67186144-9f49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:71:26:2f:05:99:02:06:a6:e3:f9:d7:05:f2: 59:bf:b2:97:7a:6e:f4:8f:9a:09:62:48:57:5e:82: f5:49:02:ca:14:db:05:c3:4f:ac:f3:0f:da:71:bf: 63:a8:30:02:e5:3b:f5:fe:9f:16:f8:9c:1d:c9:55: 21:52:ea:cc:bb:e2:7d:65:1e:71:7d:4d:69:00:ad: 96:ad:16:55:92:23:e9:28:a9:da:4c:69:33:bf:4e: c2:9e:5c:44:c8:b7:17:c5:4b:81:7a:2c:e6:1b:99: 08:b5:e3:c9:09:95:c6:64:ef:8d:ed:fc:09:b1:e5: 6b:a5:e7:2f:ae:00:00:2f:8f:85:41:3a:1f:5a:74: 4b:c2:61:76:30:0d:17:31:c2:2d:34:0a:d7:a7:5b: 1d:6a:46:01:57:ae:10:8a:a8:88:9a:4b:b9:ba:b2: 10:bd:db:df:95:dc:77:6e:43:38:c2:e4:4b:18:60: e2:9e:b1:ab:bc:50:dc:33:57:f2:d3:c8:21:85:13: 2d:fa:71:cf:53:c6:f3:47:24:ef:93:51:97:dd:1f: 11:74:0f:18:c4:27:d9:6d:72:e0:cb:08:bd:76:f3: 86:f2:01:bf:ac:a2:71:f3:c7:82:9d:25:e6:99:33: 87:32:ce:68:2e:1c:43:87:6d:71:00:c0:84:1f:3e: e3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C0:00:5C:20:72:E7:25:36:B3:6C:73:22:CC:08:B4:93:AF:4E:7C X509v3 Authority Key Identifier: keyid:EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.255.0/24 Signature Algorithm: sha256WithRSAEncryption 23:04:aa:00:3f:90:3e:99:1a:55:fb:1c:c8:2d:98:53:fc:d4: 01:87:2c:d0:12:60:4f:e2:a8:6a:b4:3a:08:93:65:a2:42:0f: 00:ae:67:3c:f2:84:2a:5f:af:7f:50:7c:15:d3:7f:6f:9f:9c: 27:88:7d:df:54:97:32:ea:db:23:2b:ab:bb:53:a6:7d:a3:36: 8e:f2:5b:70:0e:fa:39:b7:a1:fe:5d:98:f8:18:28:34:ab:f3: e7:12:0f:ac:29:c2:ef:59:2d:c0:b4:61:8f:d7:dc:18:ea:a8: eb:e7:a9:09:f6:f2:58:37:ee:15:f1:17:90:62:8a:3b:2b:84: 7d:f6:01:d9:39:40:3e:fa:94:d2:de:77:a0:db:04:cf:aa:11: 12:72:73:c6:89:e9:08:d1:77:c2:4b:e5:05:46:16:6f:12:c7: 55:0a:da:de:96:d6:99:26:9a:ae:47:77:a8:b3:5c:4e:c2:e2: 3a:a2:28:c7:8c:56:1b:73:94:d0:01:29:13:6a:7c:2e:94:97: 91:66:76:59:2b:9b:ca:8f:2a:a1:8c:0b:fe:0f:b2:8a:11:cd: bf:b9:c4:b7:19:11:0b:3f:7a:79:5b:d3:d5:d3:96:dd:12:27: a9:f3:4f:51:a0:09:ab:a8:cd:4d:07:30:3e:a7:87:ff:9b:04: d0:55:6a:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCQjExMTAvBgNVBAUTKEVBNDE5QTc5NjI5OTYyNUEwNzRBNjVCN0NBQ0VGRjE4 QjgwNjZDOEIwHhcNMjQxMDIzMDIzNjUyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4NjE0NC05ZjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9nEmLwWZAgam4/nXBfJZv7KXem70j5oJYkhXXoL1SQLKFNsFw0+s8w/acb9j qDAC5Tv1/p8W+JwdyVUhUurMu+J9ZR5xfU1pAK2WrRZVkiPpKKnaTGkzv07CnlxE yLcXxUuBeizmG5kItePJCZXGZO+N7fwJseVrpecvrgAAL4+FQTofWnRLwmF2MA0X McItNArXp1sdakYBV64QiqiImku5urIQvdvfldx3bkM4wuRLGGDinrGrvFDcM1fy 08ghhRMt+nHPU8bzRyTvk1GX3R8RdA8YxCfZbXLgywi9dvOG8gG/rKJx88eCnSXm mTOHMs5oLhxDh21xAMCEHz7j1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMXAAFwg cuclNrNscyLMCLSTr058MB8GA1UdIwQYMBaAFOpBmnlimWJaB0plt8rO/xi4BmyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUJCMS82N0JFQTQwNjUz OUMxMUVEQUUwMDRFMTdDNEY5QUUwMi82a0dhZVdLWllsb0hTbVczeXM3X0dMZ0di SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZrR2FlV0taWWxvSFNtVzN5czdfR0xnR2JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVCQjEvNjdCRUE0MDY1MzlDMTFFREFFMDA0RTE3QzRGOUFFMDIvRkVERTYxQjZF RDJDMTFFRUJGOEYzRTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnF/8wDQYJKoZIhvcNAQELBQADggEBACMEqgA/kD6ZGlX7 HMgtmFP81AGHLNASYE/iqGq0OgiTZaJCDwCuZzzyhCpfr39QfBXTf2+fnCeIfd9U lzLq2yMrq7tTpn2jNo7yW3AO+jm3of5dmPgYKDSr8+cSD6wpwu9ZLcC0YY/X3Bjq qOvnqQn28lg37hXxF5BiijsrhH32Adk5QD76lNLed6DbBM+qERJyc8aJ6QjRd8JL 5QVGFm8Sx1UK2t6W1pkmmq5Hd6izXE7C4jqiKMeMVhtzlNABKRNqfC6Ul5Fmdlkr m8qPKqGMC/4PsooRzb+5xLcZEQs/enlb09XTlt0SJ6nzT1GgCauozU0HMD6nh/+b BNBVamg= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:49 2024 by rpki-client on console-ams.rpki-client.org