$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/2A766EA23A3411EDA1B7D863C4F9AE02.roa File: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (raw, json) Hash identifier: JUU9x04r0AO1GN2PUUX6ELgHywTKgyrE2nXs4Tcl03M= Subject key identifier: A8:5E:2E:37:8A:0A:E3:D7:6D:EA:62:E0:C8:C9:03:77:01:4B:F8:7C Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 0190 Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/2A766EA23A3411EDA1B7D863C4F9AE02.roa Signing time: Thu 03 Oct 2024 02:36:39 +0000 ROA not before: Thu 03 Oct 2024 02:36:39 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141152 IP address blocks: 103.155.88.0/23 maxlen: 23 103.155.88.0/24 maxlen: 24 103.155.89.0/24 maxlen: 24 2406:6a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Oct 3 02:36:39 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fe0337-a2a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:06:de:c4:2b:05:00:25:67:63:5e:89:68:5b: 4a:5c:4f:b1:98:c0:5d:38:29:56:b8:3a:c3:25:02: 8b:14:49:55:38:e3:36:4d:1a:4e:05:70:e0:2d:f5: 34:7a:9b:38:80:4f:36:84:66:bf:bf:02:ff:4c:25: 43:fe:ee:e0:72:92:0f:87:41:3c:d3:2d:7a:f0:b6: ae:de:d0:59:b0:56:c9:6b:7f:da:5e:14:54:fb:f6: bc:5f:f9:b0:42:9c:15:06:6d:a3:ba:e1:9e:ca:43: 61:e3:5e:72:39:33:39:af:41:0a:25:3e:e3:58:3d: 4f:a7:fb:26:1a:46:d9:27:37:71:58:34:d0:81:2e: a7:77:cb:f0:98:d8:08:64:c4:b3:3a:f9:03:4d:ee: d0:20:e7:01:de:8e:d5:2c:59:e4:01:db:79:28:e3: 88:25:aa:05:f9:24:b0:f6:bd:0b:b2:c2:aa:91:5e: 47:f0:c8:ca:10:1b:d1:24:e7:be:18:76:1d:2b:bf: 02:6b:ca:d5:3e:85:ae:13:ce:bc:6a:76:34:74:18: 9b:89:49:30:56:a4:5c:14:45:e9:9b:12:aa:c2:2e: 43:98:c7:43:d2:08:d6:2c:0f:65:d3:1c:02:91:59: 2b:9b:d7:79:33:7d:b1:0f:34:9b:bd:5a:af:01:69: 42:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:5E:2E:37:8A:0A:E3:D7:6D:EA:62:E0:C8:C9:03:77:01:4B:F8:7C X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/2A766EA23A3411EDA1B7D863C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.88.0/23 IPv6: 2406:6a40::/32 Signature Algorithm: sha256WithRSAEncryption 72:00:01:d4:6a:4a:2f:d7:56:87:ee:5f:99:f9:1e:c0:75:d4: 69:c7:d2:1f:b1:44:38:5f:9a:81:82:5a:bf:75:0d:26:42:ac: e6:23:0c:20:b6:76:9e:2a:a9:2c:a7:db:b2:30:c6:13:89:c7: 98:ce:bb:8d:5d:93:a0:a5:4e:77:77:08:b6:32:f4:f2:e5:ab: 04:cc:3a:cf:e7:7d:ea:03:96:e5:e7:70:5e:fc:80:85:4f:93: 5f:70:f0:f9:d3:99:81:38:fb:ab:67:31:07:4a:d4:ea:33:f6: 6b:a6:f3:b4:f4:e7:17:d1:52:be:53:7a:29:13:de:a5:2d:30: a8:c4:7d:67:5e:a8:73:99:c9:18:c6:14:1e:7c:84:5d:cc:4d: 5b:2f:49:27:a8:e9:15:92:ac:8b:b5:3d:7e:41:f1:56:ad:fe: fb:61:0a:e3:c2:6c:78:cf:7a:43:b4:3c:20:89:00:86:76:20: 45:37:ef:a4:11:13:23:84:93:d3:2a:dd:fc:ae:31:f7:2f:c3: 7e:9e:f3:c3:62:1b:ea:17:65:16:39:1c:2e:42:5d:13:49:1a: df:22:98:d6:c2:e2:f3:77:99:57:21:4e:86:8f:e5:d0:01:0b: c2:6d:a8:c9:8c:06:56:d6:d3:96:b7:fd:52:c1:f4:e6:ca:a0: 67:1d:14:5a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjQxMDAzMDIzNjM5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZlMDMzNy1hMmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkwbexCsFACVnY16JaFtKXE+xmMBdOClWuDrDJQKLFElVOOM2TRpOBXDgLfU0 eps4gE82hGa/vwL/TCVD/u7gcpIPh0E80y168Lau3tBZsFbJa3/aXhRU+/a8X/mw QpwVBm2juuGeykNh415yOTM5r0EKJT7jWD1Pp/smGkbZJzdxWDTQgS6nd8vwmNgI ZMSzOvkDTe7QIOcB3o7VLFnkAdt5KOOIJaoF+SSw9r0LssKqkV5H8MjKEBvRJOe+ GHYdK78Ca8rVPoWuE868anY0dBibiUkwVqRcFEXpmxKqwi5DmMdD0gjWLA9l0xwC kVkrm9d5M32xDzSbvVqvAWlCcQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKheLjeK CuPXbepi4MjJA3cBS/h8MB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhGNjgvNkI2MEJGQkEzQTMxMTFFREExMENBNzYxQzRGOUFFMDIvMkE3NjZFQTIz QTM0MTFFREExQjdEODYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnm1gwDQQCAAIwBwMFACQGakAwDQYJKoZIhvcNAQELBQAD ggEBAHIAAdRqSi/XVofuX5n5HsB11GnH0h+xRDhfmoGCWr91DSZCrOYjDCC2dp4q qSyn27IwxhOJx5jOu41dk6ClTnd3CLYy9PLlqwTMOs/nfeoDluXncF78gIVPk19w 8PnTmYE4+6tnMQdK1Ooz9mum87T05xfRUr5TeikT3qUtMKjEfWdeqHOZyRjGFB58 hF3MTVsvSSeo6RWSrIu1PX5B8Vat/vthCuPCbHjPekO0PCCJAIZ2IEU376QREyOE k9Mq3fyuMfcvw36e88NiG+oXZRY5HC5CXRNJGt8imNbC4vN3mVchToaP5dABC8Jt qMmMBlbW05a3/VLB9ObKoGcdFFo= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:45 2024 by rpki-client on console-fra.rpki-client.org