$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/F1D384D031D311E88735EA0AC4F9AE02.roa File: F1D384D031D311E88735EA0AC4F9AE02.roa (raw, json) Hash identifier: 1WW3WJFCQXTAgfqp4BPT1d+bkbg/Wm5DIDF6W6wSe5I= Subject key identifier: 43:69:EB:AB:50:BB:5A:AA:36:80:F9:01:59:CC:83:08:EB:1A:9B:66 Certificate issuer: /CN=A91D8DCB/serialNumber=E9B7A1DF208C75B9EB303CF883CA128EA04FC50A Certificate serial: 152F Authority key identifier: E9:B7:A1:DF:20:8C:75:B9:EB:30:3C:F8:83:CA:12:8E:A0:4F:C5:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6beh3yCMdbnrMDz4g8oSjqBPxQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/F1D384D031D311E88735EA0AC4F9AE02.roa Signing time: Fri 18 Oct 2024 16:54:55 +0000 ROA not before: Fri 18 Oct 2024 16:54:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135607 IP address blocks: 103.196.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.crl rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6beh3yCMdbnrMDz4g8oSjqBPxQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5423 (0x152f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8DCB/serialNumber=E9B7A1DF208C75B9EB303CF883CA128EA04FC50A Validity Not Before: Oct 18 16:54:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671292de-727a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cd:40:0b:08:88:38:d3:69:78:da:6b:f5:43: f0:15:07:e1:e5:fa:76:78:b0:06:10:63:9a:4f:a9: c9:b3:6e:b4:d7:a2:e1:74:45:99:86:81:8c:e1:c4: 03:1d:3f:9d:2c:1a:01:06:dd:85:11:3e:ec:62:25: af:05:07:e0:45:0c:78:ff:c0:e9:f6:6f:45:47:14: 37:d2:18:5a:90:25:6f:2c:e6:f4:4d:df:d1:14:6a: cf:41:73:f9:6a:81:b1:60:ff:92:dd:fd:0d:2d:c9: af:8f:d8:f1:1f:ea:73:9f:a8:e1:e0:00:a3:e9:9c: 54:78:d3:39:e4:52:ac:d9:4a:61:61:a5:38:a5:b6: 2f:f2:26:99:71:30:7b:24:ec:d9:38:48:50:61:f4: a0:0e:8d:0c:4e:b3:09:99:f2:cc:36:db:82:e2:ba: b3:e0:73:9e:25:f4:75:9d:62:fb:34:33:ac:8e:2c: 20:a3:e3:b1:3e:ea:91:24:e9:64:9d:68:f6:40:4c: b5:26:aa:43:9b:5c:be:2e:89:3c:a0:99:3e:de:23: 98:7d:7f:eb:43:c7:a7:42:33:8f:46:a9:3a:87:44: 5f:63:46:0d:04:02:fe:94:34:c6:cd:32:08:3a:6e: 83:96:58:8a:42:d9:5f:f1:95:a3:7c:09:4c:83:0c: 92:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:69:EB:AB:50:BB:5A:AA:36:80:F9:01:59:CC:83:08:EB:1A:9B:66 X509v3 Authority Key Identifier: keyid:E9:B7:A1:DF:20:8C:75:B9:EB:30:3C:F8:83:CA:12:8E:A0:4F:C5:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6beh3yCMdbnrMDz4g8oSjqBPxQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/F1D384D031D311E88735EA0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.56.0/22 Signature Algorithm: sha256WithRSAEncryption 72:75:bf:67:e4:cc:39:e6:48:b7:ce:01:b8:48:fd:6b:9b:e5: f8:2d:da:98:46:4f:49:b5:93:8e:f2:b5:3d:a5:67:29:1e:d2: bd:6b:fc:70:1e:d3:fd:1e:c6:bf:1b:8f:89:6f:a3:d1:fa:47: 47:39:67:4c:76:7a:1d:11:a3:74:4f:72:86:b6:35:ac:b6:0e: 03:f1:26:d4:87:83:c1:b0:0a:14:0e:95:56:2f:9e:94:70:9b: 27:a1:b4:51:97:ea:c9:1d:e3:7b:96:82:53:3a:c2:57:b9:e0: c6:0b:0e:2d:9b:2e:b8:9d:b4:ed:05:07:15:4a:b4:25:89:5b: c0:cf:43:b1:75:c1:bb:ff:a8:3d:63:9c:a4:7f:8d:b0:56:61: 2c:ae:8b:c2:96:5a:36:08:fe:de:cc:be:d7:21:f7:b6:30:1a: 08:cd:3e:8b:e2:f9:d6:92:96:b2:81:38:7b:77:dc:28:88:5d: e7:0b:1d:f6:58:81:5d:ec:1c:e1:e8:6b:9f:72:96:3b:67:37: 65:e6:cb:32:fa:6f:82:53:1f:6c:23:4f:cb:13:4d:6f:55:d2: 98:00:a7:40:a7:93:24:c4:12:0e:f8:ed:72:83:ee:53:e1:44: 99:20:5e:18:9d:5e:97:cb:5c:34:b6:5b:c1:7c:96:6a:4d:a8: 96:3b:80:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhEQ0IxMTAvBgNVBAUTKEU5QjdBMURGMjA4Qzc1QjlFQjMwM0NGODgzQ0ExMjhF QTA0RkM1MEEwHhcNMjQxMDE4MTY1NDU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEyOTJkZS03MjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo81ACwiIONNpeNpr9UPwFQfh5fp2eLAGEGOaT6nJs26016LhdEWZhoGM4cQD HT+dLBoBBt2FET7sYiWvBQfgRQx4/8Dp9m9FRxQ30hhakCVvLOb0Td/RFGrPQXP5 aoGxYP+S3f0NLcmvj9jxH+pzn6jh4ACj6ZxUeNM55FKs2UphYaU4pbYv8iaZcTB7 JOzZOEhQYfSgDo0MTrMJmfLMNtuC4rqz4HOeJfR1nWL7NDOsjiwgo+OxPuqRJOlk nWj2QEy1JqpDm1y+Lok8oJk+3iOYfX/rQ8enQjOPRqk6h0RfY0YNBAL+lDTGzTII Om6DlliKQtlf8ZWjfAlMgwySOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFENp66tQ u1qqNoD5AVnMgwjrGptmMB8GA1UdIwQYMBaAFOm3od8gjHW56zA8+IPKEo6gT8UK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOERDQi83NDNGNzBDODJG MkMxMUU4OTlEMUUwMTdDNEY5QUUwMi82YmVoM3lDTWRibnJNRHo0ZzhvU2pxQlB4 UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZiZWgzeUNNZGJuck1EejRnOG9TanFCUHhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhEQ0IvNzQzRjcwQzgyRjJDMTFFODk5RDFFMDE3QzRGOUFFMDIvRjFEMzg0RDAz MUQzMTFFODg3MzVFQTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnxDgwDQYJKoZIhvcNAQELBQADggEBAHJ1v2fkzDnmSLfO AbhI/Wub5fgt2phGT0m1k47ytT2lZyke0r1r/HAe0/0exr8bj4lvo9H6R0c5Z0x2 eh0Ro3RPcoa2Nay2DgPxJtSHg8GwChQOlVYvnpRwmyehtFGX6skd43uWglM6wle5 4MYLDi2bLridtO0FBxVKtCWJW8DPQ7F1wbv/qD1jnKR/jbBWYSyui8KWWjYI/t7M vtch97YwGgjNPovi+daSlrKBOHt33CiIXecLHfZYgV3sHOHoa59yljtnN2XmyzL6 b4JTH2wjT8sTTW9V0pgAp0CnkyTEEg747XKD7lPhRJkgXhidXpfLXDS2W8F8lmpN qJY7gEw= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:08 2024 by rpki-client on console-ams.rpki-client.org