$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/F22D283A9B3B11EBA5C76B80C4F9AE02.roa File: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (raw, json) Hash identifier: egvdAkYLzu5gxxKonGYdt5g+UPStKzivhdsfzC6knl8= Subject key identifier: 8F:40:85:7F:A7:5A:2E:48:57:90:FF:AE:39:7A:F1:75:77:52:FA:CF Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 09AF Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/F22D283A9B3B11EBA5C76B80C4F9AE02.roa Signing time: Wed 06 Nov 2024 20:09:24 +0000 ROA not before: Wed 06 Nov 2024 20:09:24 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 141768 IP address blocks: 103.144.40.0/23 maxlen: 23 103.144.40.0/24 maxlen: 24 103.144.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2479 (0x9af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Nov 6 20:09:24 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bccf4-110a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d5:b8:5b:bd:fd:d8:8e:9d:95:3e:3c:06:88: 39:42:32:26:68:19:e0:95:6e:cc:12:13:c2:d0:16: cc:34:50:3f:dd:d8:2e:1e:0b:8e:98:6b:df:ff:1e: 0e:6e:2b:61:a6:e0:70:f3:f7:9c:d1:f3:00:04:a3: b5:3b:91:1b:c9:03:93:d9:46:90:f9:a6:d0:99:06: 77:8a:28:46:2e:73:5d:ff:01:88:19:2b:b8:b8:df: 6f:96:cc:1c:7f:f1:9c:e8:08:97:b5:a8:3a:be:e7: 8a:fc:0a:be:73:bf:2d:5c:0b:7c:1b:eb:6d:d4:89: 77:2f:91:d2:3f:36:e4:c6:96:12:c0:10:fa:0b:60: 68:4a:f6:10:91:ab:77:6b:fd:85:3a:dd:33:27:f9: ee:eb:5b:02:5c:4f:c1:ae:12:e8:dd:17:25:cc:8f: ba:cd:48:46:e8:9b:5b:0c:b9:cf:67:11:9f:22:ce: 62:ff:b1:ae:5c:16:d5:c5:e9:6e:81:94:00:28:d0: b9:94:ad:1f:00:4c:47:1b:b6:31:98:5c:64:78:65: c8:e7:55:bc:76:82:37:11:d1:ed:de:88:67:a8:b9: 09:0a:d9:1a:4e:ea:c6:4b:4c:f9:21:c7:ad:c9:0c: 1e:9c:3f:01:1a:dc:6e:87:61:b7:4a:7a:80:59:05: 76:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:40:85:7F:A7:5A:2E:48:57:90:FF:AE:39:7A:F1:75:77:52:FA:CF X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/F22D283A9B3B11EBA5C76B80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.40.0/23 Signature Algorithm: sha256WithRSAEncryption 59:b7:6b:a8:e9:a6:ac:e5:49:2b:dc:67:c5:e9:1b:b0:be:78: 96:ae:c8:e0:46:2f:b5:b9:6e:9d:27:ea:59:fe:84:77:2f:29: 42:6e:31:3a:39:f3:7a:9e:48:5c:c4:b2:58:6f:91:ed:83:64: b9:d1:2b:a3:37:93:e2:0b:48:b7:3f:5b:40:d3:68:79:f1:d9: ff:d6:2f:79:b9:5c:23:99:0d:68:1d:5e:4d:52:0d:d4:4a:65: 81:0f:d4:76:cc:5e:34:c2:43:53:53:72:ab:15:93:b7:74:a9: cb:28:7c:db:c8:1e:2f:3f:70:23:2e:dd:37:db:8b:c4:67:1c: bb:2d:90:3e:64:09:50:76:23:75:86:f7:09:43:08:0f:68:d9: 75:1b:cc:f0:48:4c:9b:80:09:a8:57:e3:d3:0a:17:30:27:14: 76:d7:eb:ea:8f:24:45:4b:d4:6e:8d:16:8e:75:c0:42:04:c0: 08:eb:58:e0:f9:b6:7f:12:67:d1:e9:e6:f1:e1:6e:48:10:02: 0f:19:93:4d:46:31:6f:f4:6b:72:d2:11:00:44:4d:72:7b:36: d4:62:96:b5:e8:89:52:7c:8d:94:3d:6d:fd:a1:2a:0a:8a:4d: 97:8f:cd:03:28:b2:9b:6b:21:81:83:a6:5c:7d:f7:18:80:cb: e6:0a:d2:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjQxMTA2MjAwOTI0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiY2NmNC0xMTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tW4W7392I6dlT48Bog5QjImaBnglW7MEhPC0BbMNFA/3dguHguOmGvf/x4O bithpuBw8/ec0fMABKO1O5EbyQOT2UaQ+abQmQZ3iihGLnNd/wGIGSu4uN9vlswc f/Gc6AiXtag6vueK/Aq+c78tXAt8G+tt1Il3L5HSPzbkxpYSwBD6C2BoSvYQkat3 a/2FOt0zJ/nu61sCXE/BrhLo3RclzI+6zUhG6JtbDLnPZxGfIs5i/7GuXBbVxelu gZQAKNC5lK0fAExHG7YxmFxkeGXI51W8doI3EdHt3ohnqLkJCtkaTurGS0z5Icet yQwenD8BGtxuh2G3SnqAWQV2XwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI9AhX+n Wi5IV5D/rjl68XV3UvrPMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJBQ0YvNUFDNjJCMkE3M0UzMTFFQTlCNTk0MzZFQzRGOUFFMDIvRjIyRDI4M0E5 QjNCMTFFQkE1Qzc2QjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkCgwDQYJKoZIhvcNAQELBQADggEBAFm3a6jppqzlSSvc Z8XpG7C+eJauyOBGL7W5bp0n6ln+hHcvKUJuMTo583qeSFzEslhvke2DZLnRK6M3 k+ILSLc/W0DTaHnx2f/WL3m5XCOZDWgdXk1SDdRKZYEP1HbMXjTCQ1NTcqsVk7d0 qcsofNvIHi8/cCMu3Tfbi8RnHLstkD5kCVB2I3WG9wlDCA9o2XUbzPBITJuACahX 49MKFzAnFHbX6+qPJEVL1G6NFo51wEIEwAjrWOD5tn8SZ9Hp5vHhbkgQAg8Zk01G MW/0a3LSEQBETXJ7NtRilrXoiVJ8jZQ9bf2hKgqKTZePzQMosptrIYGDplx99xiA y+YK0ho= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org