$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa File: FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa (raw, json) Hash identifier: 3D0F61i4bYzZFK1RP5xCz8C+pmRRrnbu/OVCc11V77A= Subject key identifier: DD:48:2C:58:D4:93:D9:C0:28:5C:99:50:77:17:54:DE:94:C5:2B:5F Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 061D Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa Signing time: Fri 08 Nov 2024 22:12:39 +0000 ROA not before: Fri 08 Nov 2024 22:12:39 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132825 IP address blocks: 103.42.104.0/24 maxlen: 24 103.42.105.0/24 maxlen: 24 103.42.106.0/24 maxlen: 24 103.42.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1565 (0x61d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Nov 8 22:12:39 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672e8cd7-614a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6f:9b:92:b7:e8:77:42:71:b1:e1:fd:bd:90: 0a:d9:7b:82:cd:98:6c:cd:51:12:34:61:12:d0:4f: e9:0d:a5:9b:b2:8a:45:6f:d6:7d:98:49:6c:24:7b: b2:a6:a3:7b:f5:d4:1d:65:a3:1a:b0:d6:44:69:bf: e1:85:87:7f:c2:2d:be:39:3d:b3:fd:c9:02:6a:76: fb:80:09:ca:d4:34:bb:38:18:35:25:dd:59:3e:f1: b3:f8:8d:da:d9:38:c6:bd:ba:fe:2e:8b:e9:d9:36: f4:db:68:e4:5b:1d:9a:10:3b:8e:6f:07:ea:ba:fe: e0:ea:d1:8f:bd:98:b5:8b:cc:a3:e5:c1:bf:79:b7: c5:e5:a2:58:8f:a0:10:e8:f6:6e:91:28:ee:63:c1: a7:63:e9:cf:b3:e5:cc:a2:cf:1f:a3:e9:c2:cb:f2: d0:fd:2f:c4:a9:e3:53:42:42:7c:fc:20:a5:29:50: 7b:26:22:3a:70:17:80:62:e3:b4:c5:32:f1:31:43: 00:1d:d3:72:2a:1c:2f:96:41:fa:9b:0f:df:c4:35: 5b:84:2d:d9:29:06:92:91:11:f9:25:d0:b5:ed:4e: d1:5b:2e:c8:4b:2f:f0:60:40:3f:0b:f9:89:96:ac: 82:45:80:d7:68:83:06:e6:9e:95:3a:5c:e4:f6:36: 0c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:48:2C:58:D4:93:D9:C0:28:5C:99:50:77:17:54:DE:94:C5:2B:5F X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.104.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:45:8f:08:02:f3:96:9d:80:67:30:5b:8c:9c:38:da:14:d7: fe:95:f2:ed:d3:15:ae:3a:49:a5:60:df:b0:12:52:c9:0c:1c: 0c:58:cc:de:88:c1:75:05:08:97:82:46:45:06:44:67:d9:5d: e7:90:02:b5:8e:3e:93:e4:ac:f5:71:6a:fc:a4:2c:27:25:c9: 8d:f1:ee:66:26:55:f8:9e:9d:80:ac:1a:20:5e:eb:95:e1:29: a8:52:6c:19:0b:8f:36:98:ea:2e:f2:cd:d5:59:14:03:25:ff: a5:f1:ae:e0:70:b1:73:bb:9e:49:43:9a:14:cf:50:65:81:c9: 24:bb:5d:b1:3e:48:a8:44:34:4b:fd:a7:46:92:77:dd:d1:61: af:4c:cb:8e:63:44:3c:56:c9:19:c4:21:6b:e1:68:b4:09:b4: 76:1a:72:c7:1a:8e:7b:2a:85:e9:72:65:1b:7a:d9:eb:5c:70: 25:07:55:1d:0f:a6:ae:71:87:b1:17:a6:92:1a:9d:f3:93:5a: bb:55:fe:c5:22:f4:14:e3:9a:fd:65:6f:48:a8:92:b3:00:18: cc:1f:7b:62:90:f2:48:82:8a:44:cb:d4:f6:b2:ce:6d:17:ca: 8e:d9:31:26:16:3a:69:5a:4f:c0:e9:eb:2b:ae:0d:e7:7d:24: 20:90:34:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjQxMTA4MjIxMjM5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJlOGNkNy02MTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArG+bkrfod0JxseH9vZAK2XuCzZhszVESNGES0E/pDaWbsopFb9Z9mElsJHuy pqN79dQdZaMasNZEab/hhYd/wi2+OT2z/ckCanb7gAnK1DS7OBg1Jd1ZPvGz+I3a 2TjGvbr+Lovp2Tb022jkWx2aEDuObwfquv7g6tGPvZi1i8yj5cG/ebfF5aJYj6AQ 6PZukSjuY8GnY+nPs+XMos8fo+nCy/LQ/S/EqeNTQkJ8/CClKVB7JiI6cBeAYuO0 xTLxMUMAHdNyKhwvlkH6mw/fxDVbhC3ZKQaSkRH5JdC17U7RWy7ISy/wYEA/C/mJ lqyCRYDXaIMG5p6VOlzk9jYMdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN1ILFjU k9nAKFyZUHcXVN6UxStfMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY0OTkvOUY4MzZDNTI3ODA5MTFFQkExNkFFMTU2QzRGOUFFMDIvRkFFRjE1MjZE RTlFMTFFQ0JFQThBQjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKmgwDQYJKoZIhvcNAQELBQADggEBAJtFjwgC85adgGcw W4ycONoU1/6V8u3TFa46SaVg37ASUskMHAxYzN6IwXUFCJeCRkUGRGfZXeeQArWO PpPkrPVxavykLCclyY3x7mYmVfienYCsGiBe65XhKahSbBkLjzaY6i7yzdVZFAMl /6XxruBwsXO7nklDmhTPUGWBySS7XbE+SKhENEv9p0aSd93RYa9My45jRDxWyRnE IWvhaLQJtHYacscajnsqhelyZRt62etccCUHVR0Ppq5xh7EXppIanfOTWrtV/sUi 9BTjmv1lb0iokrMAGMwfe2KQ8kiCikTL1Payzm0Xyo7ZMSYWOmlaT8Dp6yuuDed9 JCCQNOQ= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:00 2024 by rpki-client on console-ams.rpki-client.org