$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/F7AA5B1CA1DA11EF86B88981C4F9AE02.roa File: F7AA5B1CA1DA11EF86B88981C4F9AE02.roa (raw, json) Hash identifier: plZkhxc00wQXxhpH5zdDV/kYvwUsg48B+WnMIB2ox4E= Subject key identifier: DE:AA:8B:09:D7:8C:34:B6:F1:4B:E8:98:76:C2:3B:D3:60:E5:55:F1 Certificate issuer: /CN=A91DD299/serialNumber=156ED5BF81437C1B71E71CB02EEC27AB18AF79A4 Certificate serial: 03 Authority key identifier: 15:6E:D5:BF:81:43:7C:1B:71:E7:1C:B0:2E:EC:27:AB:18:AF:79:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW7Vv4FDfBtx5xywLuwnqxiveaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/F7AA5B1CA1DA11EF86B88981C4F9AE02.roa Signing time: Wed 13 Nov 2024 16:18:50 +0000 ROA not before: Wed 13 Nov 2024 16:18:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132294 IP address blocks: 103.166.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/FW7Vv4FDfBtx5xywLuwnqxiveaQ.crl rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/FW7Vv4FDfBtx5xywLuwnqxiveaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW7Vv4FDfBtx5xywLuwnqxiveaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD299/serialNumber=156ED5BF81437C1B71E71CB02EEC27AB18AF79A4 Validity Not Before: Nov 13 16:18:50 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6734d16a-5e06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d1:25:b1:aa:ab:d8:14:0b:02:a3:28:82:4f: a0:c2:20:ba:35:14:3b:04:e7:07:a0:dc:a9:70:77: a1:f5:c6:ce:01:6e:9f:51:9a:45:13:12:4b:72:14: 27:73:65:65:a0:5b:63:83:95:7b:9d:ee:0e:dc:c5: 07:97:8d:bf:75:e8:71:91:61:6b:be:27:21:e3:cf: 2b:f8:c3:68:57:40:9c:3e:3a:03:c1:0b:c7:1f:46: d8:37:64:dc:bd:37:86:78:cf:c9:19:70:9e:fb:51: 5d:96:7a:f5:4e:79:27:51:55:c4:85:c1:90:df:95: 74:d9:ae:e9:7a:86:5d:6c:9b:b7:e5:a9:07:4f:28: e0:56:a8:4b:fc:34:e2:d8:3b:62:62:08:77:2f:06: 1c:ac:ad:01:29:2a:3e:24:81:6c:87:94:44:37:68: ab:a1:0d:55:84:30:1f:ba:ed:9e:b8:c8:7a:8c:80: 1a:ad:0e:12:ae:93:fd:2b:70:7f:e4:22:1f:a9:59: 66:0c:24:f8:4b:b3:54:1e:2c:13:7c:77:41:16:29: 7a:53:67:29:dd:34:84:9b:3d:f9:56:ed:12:74:81: 30:b7:52:cf:c9:25:1a:0b:ac:fb:43:f5:64:02:95: 36:b0:8f:67:1c:b6:4a:74:1a:a7:06:ed:a6:bd:c4: 71:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AA:8B:09:D7:8C:34:B6:F1:4B:E8:98:76:C2:3B:D3:60:E5:55:F1 X509v3 Authority Key Identifier: keyid:15:6E:D5:BF:81:43:7C:1B:71:E7:1C:B0:2E:EC:27:AB:18:AF:79:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/FW7Vv4FDfBtx5xywLuwnqxiveaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW7Vv4FDfBtx5xywLuwnqxiveaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/F7AA5B1CA1DA11EF86B88981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.47.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:3c:84:05:32:ac:40:d3:a4:14:f6:11:58:da:ab:ae:1e:3e: 76:cb:2d:e0:8d:1e:2e:9a:98:d4:f1:7c:ac:06:5c:7e:1c:d0: 04:53:2a:16:33:0e:04:04:7d:81:0f:b4:1d:3b:8e:f0:2e:3d: 0c:d8:e1:e7:0b:f2:21:42:b6:88:66:96:2e:88:06:bd:f2:2d: 5b:cf:b2:73:2b:59:0e:9d:b5:45:bd:36:23:3d:fb:f8:00:33: 08:81:c4:dc:b8:fe:b8:b5:38:40:c0:32:2b:8a:72:2c:6e:62: 71:95:89:fa:e1:08:9d:23:fd:99:21:4e:9b:34:b9:72:ec:f4: f2:c3:a0:30:0e:e4:5c:fa:c4:46:8e:cb:e7:6a:43:3f:d5:7e: 72:d6:ad:f1:c9:02:4d:f5:77:18:12:f3:9f:de:1f:be:c8:37: 6e:90:f2:f2:bf:34:61:c2:76:34:ac:48:51:da:49:79:93:86: a2:bd:a4:aa:18:22:90:c6:f2:50:c5:43:14:10:dc:97:8e:01: 3e:0d:d8:5e:05:7c:53:70:94:48:7a:7d:d7:96:4a:a3:31:56: fd:74:75:76:52:07:f2:7d:bb:c8:4e:c1:76:f1:0d:c6:d7:6e: 1c:ea:19:fa:a3:6f:7e:38:0a:f1:4f:db:bb:5e:8c:81:45:2e: 3b:82:6e:62 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDI5OTExMC8GA1UEBRMoMTU2RUQ1QkY4MTQzN0MxQjcxRTcxQ0IwMkVFQzI3QUIx OEFGNzlBNDAeFw0yNDExMTMxNjE4NTBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzRkMTZhLTVlMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+0SWxqqvYFAsCoyiCT6DCILo1FDsE5weg3Klwd6H1xs4Bbp9RmkUTEktyFCdz ZWWgW2ODlXud7g7cxQeXjb916HGRYWu+JyHjzyv4w2hXQJw+OgPBC8cfRtg3ZNy9 N4Z4z8kZcJ77UV2WevVOeSdRVcSFwZDflXTZrul6hl1sm7flqQdPKOBWqEv8NOLY O2JiCHcvBhysrQEpKj4kgWyHlEQ3aKuhDVWEMB+67Z64yHqMgBqtDhKuk/0rcH/k Ih+pWWYMJPhLs1QeLBN8d0EWKXpTZyndNISbPflW7RJ0gTC3Us/JJRoLrPtD9WQC lTawj2cctkp0GqcG7aa9xHEJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3qqLCdeM NLbxS+iYdsI702DlVfEwHwYDVR0jBBgwFoAUFW7Vv4FDfBtx5xywLuwnqxiveaQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMjk5LzVFQjkzQTcyQTFE QTExRUZCMjMzM0E0NUM0RjlBRTAyL0ZXN1Z2NEZEZkJ0eDV4eXdMdXducXhpdmVh US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlc3VnY0RkRmQnR4NXh5d0x1d25xeGl2ZWFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDI5OS81RUI5M0E3MkExREExMUVGQjIzMzNBNDVDNEY5QUUwMi9GN0FBNUIxQ0Ex REExMUVGODZCODg5ODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGemLzANBgkqhkiG9w0BAQsFAAOCAQEAezyEBTKsQNOkFPYR WNqrrh4+dsst4I0eLpqY1PF8rAZcfhzQBFMqFjMOBAR9gQ+0HTuO8C49DNjh5wvy IUK2iGaWLogGvfItW8+ycytZDp21Rb02Iz37+AAzCIHE3Lj+uLU4QMAyK4pyLG5i cZWJ+uEInSP9mSFOmzS5cuz08sOgMA7kXPrERo7L52pDP9V+ctat8ckCTfV3GBLz n94fvsg3bpDy8r80YcJ2NKxIUdpJeZOGor2kqhgikMbyUMVDFBDcl44BPg3YXgV8 U3CUSHp915ZKozFW/XR1dlIH8n27yE7BdvENxtduHOoZ+qNvfjgK8U/bu16MgUUu O4JuYg== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:32 2024 by rpki-client on console-fra.rpki-client.org