$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/F1949C08A4BC11EF8A9DA10EC4F9AE02.roa File: F1949C08A4BC11EF8A9DA10EC4F9AE02.roa (raw, json) Hash identifier: bJPKbQp4lkEdDuOhGHyfXoEbs3q+tE0WDtTrrI+ooLQ= Subject key identifier: 4D:33:35:99:33:8C:30:FF:C3:65:92:D3:02:B5:C2:DF:6E:F4:2D:B7 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 012F Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/F1949C08A4BC11EF8A9DA10EC4F9AE02.roa Signing time: Sun 17 Nov 2024 08:21:58 +0000 ROA not before: Sun 17 Nov 2024 08:21:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 153371 IP address blocks: 103.176.0.0/23 maxlen: 24 2001:df2:7cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Nov 17 08:21:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6739a7a5-2ae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f8:2d:08:16:c7:de:93:e1:92:b7:36:e5:3b: a4:06:4d:78:05:cf:a2:e7:5f:50:6e:40:f1:11:34: 16:6f:17:44:24:44:8b:a2:1a:a8:c8:80:9e:dc:ee: 42:ce:50:87:09:20:f9:13:dc:5e:47:93:31:51:0a: d1:f4:91:a2:f7:41:be:01:03:fa:d6:28:98:c2:d8: 07:dc:ac:12:1f:3f:a1:f4:26:21:4f:4d:87:69:61: b9:15:e0:5f:18:62:e6:86:eb:c9:b4:58:b6:f5:18: 13:0c:51:f4:97:ad:32:9c:e3:1d:f4:45:d7:de:e6: f9:40:0f:53:41:88:50:1b:69:73:75:12:f7:46:18: d4:32:6f:ce:83:d6:55:79:a8:ed:96:dd:b4:4a:d1: d6:40:bc:cb:2c:49:e8:7d:3b:1e:ed:3d:c8:b1:a7: ac:a5:33:cc:78:e4:bf:c9:fb:c4:87:3f:03:bd:88: 1d:26:97:e4:8c:cd:f3:4a:9a:30:01:14:7b:5e:79: 1b:63:81:fc:b5:f7:50:19:d3:75:9f:4c:13:c3:a6: 33:46:bf:da:9b:33:92:5c:2f:99:e1:58:00:28:56: d2:00:97:fb:a9:2f:af:cd:ef:d8:3f:c6:8b:b3:ec: ef:57:01:f0:ce:e0:c5:cd:6b:e4:0e:51:b9:54:fe: fd:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:33:35:99:33:8C:30:FF:C3:65:92:D3:02:B5:C2:DF:6E:F4:2D:B7 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/F1949C08A4BC11EF8A9DA10EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.0.0/23 IPv6: 2001:df2:7cc0::/48 Signature Algorithm: sha256WithRSAEncryption 4a:8b:b1:55:f4:45:70:44:4b:1e:f0:7d:3f:3a:95:2f:9f:8b: dd:5b:b3:e7:15:6c:bd:9c:6b:15:cb:8c:25:e8:b8:90:1a:16: 5e:f6:32:3f:d4:d7:ff:0b:f1:76:05:6d:3e:df:14:ce:3a:4c: a5:b9:7a:d3:ff:73:7f:d1:95:d8:5c:02:aa:7a:6b:2d:35:4d: 2f:8f:33:f5:ed:2e:0e:32:8f:b0:6c:05:2e:9a:0f:81:e7:9b: e6:e8:6e:ca:66:24:49:68:87:a4:44:28:b7:33:5d:64:58:ea: f1:5d:c0:c2:90:80:c9:dc:b5:1d:02:6f:32:61:c7:27:d6:05: d1:1c:c7:e2:c5:09:4f:ab:2b:7f:02:66:1c:0f:c1:82:32:f3: f2:5b:bd:ae:b0:af:33:e8:52:f3:89:c9:e3:f6:7e:e0:49:6f: ba:92:8e:ab:f3:95:df:fa:0c:e6:18:1c:55:a7:8e:7b:85:e8: 6e:3a:0f:12:1b:8d:83:e4:0e:34:4a:ee:6a:43:51:56:c9:96: d7:fa:f1:f0:3a:62:2d:f1:ce:d6:75:fe:73:1c:6c:25:61:54: 1b:82:76:8b:fd:30:f1:c0:ac:da:9a:f9:81:fa:a0:dc:17:32: 83:88:cc:9c:98:36:a9:47:7c:ff:d1:1d:49:a9:68:e7:93:b8: 54:19:4e:83 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjQxMTE3MDgyMTU4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM5YTdhNS0yYWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvgtCBbH3pPhkrc25TukBk14Bc+i519QbkDxETQWbxdEJESLohqoyICe3O5C zlCHCSD5E9xeR5MxUQrR9JGi90G+AQP61iiYwtgH3KwSHz+h9CYhT02HaWG5FeBf GGLmhuvJtFi29RgTDFH0l60ynOMd9EXX3ub5QA9TQYhQG2lzdRL3RhjUMm/Og9ZV eajtlt20StHWQLzLLEnofTse7T3IsaespTPMeOS/yfvEhz8DvYgdJpfkjM3zSpow ARR7XnkbY4H8tfdQGdN1n0wTw6YzRr/amzOSXC+Z4VgAKFbSAJf7qS+vze/YP8aL s+zvVwHwzuDFzWvkDlG5VP79UQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFE0zNZkz jDD/w2WS0wK1wt9u9C23MB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDIyNkYvRDVDNTZFMjhGQUQ0MTFFRDgwRUVEMDVGQzRGOUFFMDIvRjE5NDlDMDhB NEJDMTFFRjhBOURBMTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsAAwDwQCAAIwCQMHACABDfJ8wDANBgkqhkiG9w0BAQsF AAOCAQEASouxVfRFcERLHvB9PzqVL5+L3Vuz5xVsvZxrFcuMJei4kBoWXvYyP9TX /wvxdgVtPt8UzjpMpbl60/9zf9GV2FwCqnprLTVNL48z9e0uDjKPsGwFLpoPgeeb 5uhuymYkSWiHpEQotzNdZFjq8V3AwpCAydy1HQJvMmHHJ9YF0RzH4sUJT6srfwJm HA/BgjLz8lu9rrCvM+hS84nJ4/Z+4ElvupKOq/OV3/oM5hgcVaeOe4XobjoPEhuN g+QONEruakNRVsmW1/rx8DpiLfHO1nX+cxxsJWFUG4J2i/0w8cCs2pr5gfqg3Bcy g4jMnJg2qUd8/9EdSalo55O4VBlOgw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:17 2024 by rpki-client on console-ams.rpki-client.org