$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/F31E86967B2311EF93801A72C4F9AE02.roa File: F31E86967B2311EF93801A72C4F9AE02.roa (raw, json) Hash identifier: BEOqbF1TGcTRTm0s2SIEOuWAgReYPdYwd9z1Tb5qS/E= Subject key identifier: F4:4F:DE:A3:43:8B:C2:60:E7:6C:A5:E5:BE:80:A0:C0:36:18:9F:EA Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 0328 Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/F31E86967B2311EF93801A72C4F9AE02.roa Signing time: Wed 25 Sep 2024 09:53:01 +0000 ROA not before: Wed 25 Sep 2024 09:53:00 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 214766 IP address blocks: 103.163.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 808 (0x328) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Validity Not Before: Sep 25 09:53:00 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66f3dd7c-e34f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7e:c2:f6:84:f3:5a:39:c2:91:d7:dd:de:8b: b2:0f:35:96:32:36:6c:11:48:45:12:fb:31:9a:18: 30:b9:f7:07:d0:bc:8f:51:b2:ab:c5:02:b1:d7:a8: d5:07:71:7b:46:d3:21:dc:ac:be:22:78:1f:87:00: c7:53:b5:12:ad:c8:73:40:24:9e:85:94:ab:96:8c: 3b:14:0b:85:92:3f:31:a0:96:aa:46:98:94:45:fc: d5:67:c5:58:a4:36:69:aa:c0:9c:b4:0d:29:3e:1b: 3f:c6:d8:39:f2:77:b1:e6:12:95:7d:45:b2:43:ff: b1:2f:09:76:f9:8b:f4:22:96:8d:56:34:fe:2d:a9: 52:74:72:f6:ac:50:41:30:d8:7a:f7:79:a0:17:44: 7d:b0:1d:f5:09:be:29:ce:cd:b6:ed:c8:12:d2:af: d4:25:1e:f2:01:75:43:cf:d9:18:6e:39:f6:0b:ff: 2b:bd:2a:46:4b:fa:00:a0:b2:8f:1b:3a:62:12:d1: f9:15:50:f7:01:ec:27:7d:8f:f4:6f:22:38:d6:7b: 3a:24:27:57:cc:1e:48:52:9d:dd:09:25:22:e0:54: 09:12:2d:0b:b8:51:b3:c3:2c:30:c7:d3:69:00:24: 45:10:a6:8d:1c:55:53:8f:f3:62:76:99:6e:af:35: 69:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:4F:DE:A3:43:8B:C2:60:E7:6C:A5:E5:BE:80:A0:C0:36:18:9F:EA X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/F31E86967B2311EF93801A72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.155.0/24 Signature Algorithm: sha256WithRSAEncryption 72:94:ba:3d:c5:37:62:8b:fe:48:ea:04:5b:0b:49:a8:c9:8b: f4:13:2f:72:0b:d9:fb:61:83:92:1f:c6:bc:bc:ac:f7:2c:4c: 70:f2:d1:69:9a:52:a7:20:cd:cd:f4:a7:18:e1:f5:f1:3e:6b: bf:61:77:5e:aa:91:5d:80:64:96:9c:d2:00:50:1c:39:62:55: 09:d6:8d:48:db:24:78:16:3f:95:e5:63:2f:2c:1a:d3:50:63: 06:7a:88:43:94:fe:ee:c5:c8:c6:42:da:b5:1f:ae:02:33:b1: a0:77:d5:ab:86:b4:9c:37:6f:43:17:16:6a:25:8e:8e:77:bb: 1b:9d:17:69:55:ef:b6:f1:10:86:0c:02:59:99:46:ea:29:a7: 27:ad:17:ca:e5:42:86:29:b3:05:f5:9e:35:2a:b1:7b:fe:6a: bc:33:d1:90:5c:60:5b:7b:ca:58:1a:19:ac:5f:ef:f2:ea:d1: f8:36:5a:7f:5d:95:61:f3:f9:70:6d:e9:92:8a:10:b1:d1:ce: 75:b1:c1:4b:6c:5d:fd:9f:5f:aa:60:d2:43:53:e5:6f:88:df: 05:ac:d0:0c:50:d9:20:c6:d3:41:c4:5f:76:91:55:8f:2e:1d: 33:ff:45:47:75:d7:62:45:d7:bb:c0:bf:f8:42:d7:54:3d:bd: 4b:65:f3:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjQwOTI1MDk1MzAwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzZGQ3Yy1lMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3H7C9oTzWjnCkdfd3ouyDzWWMjZsEUhFEvsxmhgwufcH0LyPUbKrxQKx16jV B3F7RtMh3Ky+IngfhwDHU7USrchzQCSehZSrlow7FAuFkj8xoJaqRpiURfzVZ8VY pDZpqsCctA0pPhs/xtg58nex5hKVfUWyQ/+xLwl2+Yv0IpaNVjT+LalSdHL2rFBB MNh693mgF0R9sB31Cb4pzs227cgS0q/UJR7yAXVDz9kYbjn2C/8rvSpGS/oAoLKP GzpiEtH5FVD3AewnfY/0byI41ns6JCdXzB5IUp3dCSUi4FQJEi0LuFGzwywwx9Np ACRFEKaNHFVTj/NidplurzVpjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPRP3qND i8Jg52yl5b6AoMA2GJ/qMB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI4RDkvOEIwMDIzNzY5QTAyMTFFQzhCODE3Nzg1QzRGOUFFMDIvRjMxRTg2OTY3 QjIzMTFFRjkzODAxQTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABno5swDQYJKoZIhvcNAQELBQADggEBAHKUuj3FN2KL/kjq BFsLSajJi/QTL3IL2fthg5Ifxry8rPcsTHDy0WmaUqcgzc30pxjh9fE+a79hd16q kV2AZJac0gBQHDliVQnWjUjbJHgWP5XlYy8sGtNQYwZ6iEOU/u7FyMZC2rUfrgIz saB31auGtJw3b0MXFmoljo53uxudF2lV77bxEIYMAlmZRuoppyetF8rlQoYpswX1 njUqsXv+arwz0ZBcYFt7ylgaGaxf7/Lq0fg2Wn9dlWHz+XBt6ZKKELHRznWxwUts Xf2fX6pg0kNT5W+I3wWs0AxQ2SDG00HEX3aRVY8uHTP/RUd112JF17vAv/hC11Q9 vUtl834= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:59 2024 by rpki-client on console-fra.rpki-client.org