$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/FFFE92D29CE611EE883A672FC4F9AE02.roa File: FFFE92D29CE611EE883A672FC4F9AE02.roa (raw, json) Hash identifier: GWwckZ18h6sa8xUJU0MBnoisjDnt082CFlW4eSRU0Y4= Subject key identifier: F9:6B:69:C2:89:D2:96:99:5B:EC:11:D2:0B:3D:37:8A:46:06:47:08 Certificate issuer: /CN=A91CAA4E/serialNumber=9C4FFE65DEA35233D39E8702238565574DED466E Certificate serial: 06A6 Authority key identifier: 9C:4F:FE:65:DE:A3:52:33:D3:9E:87:02:23:85:65:57:4D:ED:46:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/FFFE92D29CE611EE883A672FC4F9AE02.roa Signing time: Mon 30 Sep 2024 17:25:11 +0000 ROA not before: Mon 30 Sep 2024 17:25:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138023 IP address blocks: 103.137.108.0/23 maxlen: 23 103.137.108.0/24 maxlen: 24 103.137.109.0/24 maxlen: 24 2001:df6:700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1702 (0x6a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E/serialNumber=9C4FFE65DEA35233D39E8702238565574DED466E Validity Not Before: Sep 30 17:25:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66fadef7-3abe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b8:15:c9:f5:e4:e8:2e:20:bd:20:dd:a2:59: 09:b2:fd:45:cd:06:fb:2c:e4:37:6c:bd:f6:e0:e7: f7:f3:63:92:2d:75:9e:59:f0:7b:3b:28:7c:f1:9c: db:8d:aa:0b:11:c5:7e:4e:21:1f:7d:3c:56:19:52: 15:76:f0:40:f4:a6:dd:98:1f:2d:f5:3a:91:3a:d0: a2:b1:20:ff:d8:9e:31:73:0e:61:b6:33:80:65:01: 9e:07:ae:e9:a4:6a:ab:20:2a:5f:f7:9c:8c:41:35: c5:2c:fd:c6:53:ef:df:c2:64:0d:0d:17:28:64:db: e3:14:6f:e8:83:13:4b:9c:5b:5a:1b:31:63:5e:6a: 99:26:d1:29:9a:7f:2f:a0:76:ee:86:5c:a2:6b:aa: 7b:c4:fe:b6:cb:fe:4c:77:b2:51:ce:c8:2a:d2:77: 55:36:8d:b5:bf:3f:f8:20:55:a5:73:17:8f:26:ce: 6f:8d:9a:2a:50:1d:bd:eb:44:8f:3c:51:91:4a:c0: 18:25:9b:e0:ad:85:67:48:fa:b4:5c:cd:0e:21:2a: 32:c5:1c:a6:f6:18:80:1f:ef:f0:fd:ab:d2:c9:5a: 40:f4:c1:c8:3d:63:1f:79:95:79:c6:d9:97:dd:c6: 69:e5:77:1f:17:14:c8:8e:0b:4f:4b:71:f9:72:ca: d7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:6B:69:C2:89:D2:96:99:5B:EC:11:D2:0B:3D:37:8A:46:06:47:08 X509v3 Authority Key Identifier: keyid:9C:4F:FE:65:DE:A3:52:33:D3:9E:87:02:23:85:65:57:4D:ED:46:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/FFFE92D29CE611EE883A672FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.108.0/23 IPv6: 2001:df6:700::/48 Signature Algorithm: sha256WithRSAEncryption e3:45:2f:31:11:65:21:14:bd:67:ff:ce:d4:9c:b5:fb:ae:75: 51:a6:e5:98:d0:8d:69:2f:19:c1:61:31:a7:d5:02:43:cf:02: 16:c0:14:48:9d:32:65:f7:e8:0a:29:86:31:05:89:51:ad:23: be:2e:2f:ad:28:84:9a:20:ff:0b:6b:30:cc:65:93:32:7b:f7: 70:a8:ac:9c:b2:ec:58:4a:2d:d5:12:8e:9e:85:19:ef:d1:d5: 52:12:7e:16:4e:43:53:b6:af:da:c0:3a:e8:5a:e6:e4:68:3f: 55:2c:0a:2a:7a:a2:d2:6c:34:56:fa:d3:1d:bd:07:9a:f2:73: 84:46:c0:dc:60:59:07:78:31:3e:d5:92:39:5c:7a:0b:42:83: a0:a4:c8:c8:23:7c:60:b2:9d:bd:7a:49:79:66:76:8c:03:20: 5b:5c:c2:7b:15:f9:86:6c:b9:d2:43:61:02:8b:a9:b4:9d:2e: ea:11:da:6c:c7:32:51:5d:75:94:6a:62:6a:f3:8d:42:2c:5c: 8b:6c:fe:ce:ae:59:9f:8f:d0:67:05:77:ad:f4:a5:57:dc:f2: d0:8c:8c:06:a1:ca:8d:89:87:8c:2f:4f:d2:d3:5a:6a:14:51: f9:f6:95:53:06:74:d9:7b:8a:95:44:2e:d9:2b:ff:4a:d2:f5: 91:65:b5:1b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDlDNEZGRTY1REVBMzUyMzNEMzlFODcwMjIzODU2NTU3 NERFRDQ2NkUwHhcNMjQwOTMwMTcyNTExWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhZGVmNy0zYWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbgVyfXk6C4gvSDdolkJsv1FzQb7LOQ3bL324Of382OSLXWeWfB7Oyh88Zzb jaoLEcV+TiEffTxWGVIVdvBA9KbdmB8t9TqROtCisSD/2J4xcw5htjOAZQGeB67p pGqrICpf95yMQTXFLP3GU+/fwmQNDRcoZNvjFG/ogxNLnFtaGzFjXmqZJtEpmn8v oHbuhlyia6p7xP62y/5Md7JRzsgq0ndVNo21vz/4IFWlcxePJs5vjZoqUB2960SP PFGRSsAYJZvgrYVnSPq0XM0OISoyxRym9hiAH+/w/avSyVpA9MHIPWMfeZV5xtmX 3cZp5XcfFxTIjgtPS3H5csrXTwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPlracKJ 0paZW+wR0gs9N4pGBkcIMB8GA1UdIwQYMBaAFJxP/mXeo1Iz056HAiOFZVdN7UZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9uRV8tWmQ2alVqUFRub2NDSTRWbFYwM3RS bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25FXy1aZDZqVWpQVG5vY0NJNFZsVjAzdFJtNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0FBNEUvNTVFOTc5NUFBOTRGMTFFOEFBMEM5MDBFQzRGOUFFMDIvRkZGRTkyRDI5 Q0U2MTFFRTg4M0E2NzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFniWwwDwQCAAIwCQMHACABDfYHADANBgkqhkiG9w0BAQsF AAOCAQEA40UvMRFlIRS9Z//O1Jy1+651UablmNCNaS8ZwWExp9UCQ88CFsAUSJ0y ZffoCimGMQWJUa0jvi4vrSiEmiD/C2swzGWTMnv3cKisnLLsWEot1RKOnoUZ79HV UhJ+Fk5DU7av2sA66Frm5Gg/VSwKKnqi0mw0VvrTHb0HmvJzhEbA3GBZB3gxPtWS OVx6C0KDoKTIyCN8YLKdvXpJeWZ2jAMgW1zCexX5hmy50kNhAouptJ0u6hHabMcy UV11lGpiavONQixci2z+zq5Zn4/QZwV3rfSlV9zy0IyMBqHKjYmHjC9P0tNaahRR +faVUwZ02XuKlUQu2Sv/StL1kWW1Gw== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org