$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1729/A7A1A29ADF1611E6BABC0E26C4F9AE02/FFA62018DF1811E6805D922AC4F9AE02.roa File: FFA62018DF1811E6805D922AC4F9AE02.roa (raw, json) Hash identifier: soiy3Hpj7mqRgQ/hwN14mYIrc6Nq37CBEl6xEMwp1/8= Subject key identifier: FE:55:C5:36:70:58:29:19:90:B0:B8:68:17:7C:2B:BC:04:33:FA:2F Certificate issuer: /CN=A91E1729/serialNumber=C1BB822B258A60FCD2F6C808A55167498A50754C Certificate serial: 1B66 Authority key identifier: C1:BB:82:2B:25:8A:60:FC:D2:F6:C8:08:A5:51:67:49:8A:50:75:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbuCKyWKYPzS9sgIpVFnSYpQdUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1729/A7A1A29ADF1611E6BABC0E26C4F9AE02/FFA62018DF1811E6805D922AC4F9AE02.roa Signing time: Tue 30 Jan 2024 16:44:05 +0000 ROA not before: Tue 30 Jan 2024 16:44:05 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 64093 IP address blocks: 103.252.80.0/23 maxlen: 23 103.252.82.0/24 maxlen: 24 103.252.83.0/24 maxlen: 24 110.232.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1729/A7A1A29ADF1611E6BABC0E26C4F9AE02/wbuCKyWKYPzS9sgIpVFnSYpQdUw.crl rsync://rpki.apnic.net/member_repository/A91E1729/A7A1A29ADF1611E6BABC0E26C4F9AE02/wbuCKyWKYPzS9sgIpVFnSYpQdUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbuCKyWKYPzS9sgIpVFnSYpQdUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7014 (0x1b66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1729/serialNumber=C1BB822B258A60FCD2F6C808A55167498A50754C Validity Not Before: Jan 30 16:44:05 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b92755-21dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0c:70:6a:49:38:95:05:4d:6a:f7:0c:39:46: 62:c9:c7:98:11:22:f9:24:32:df:c3:04:c6:8a:01: 89:87:44:af:e9:04:eb:fd:2d:15:24:6b:ed:da:f4: 89:42:17:16:e6:2a:1f:51:77:0e:d5:94:4c:c9:19: 51:94:e8:c1:73:a0:33:2d:61:69:e2:e1:2e:3d:4e: c7:ed:75:88:18:65:8a:76:cb:b1:bf:02:43:76:09: a8:ab:e6:b5:e5:c2:aa:79:47:93:00:eb:8a:af:49: e0:3b:da:54:d9:23:37:df:8f:0b:ba:30:94:ca:5a: 6b:b0:60:51:21:f9:43:74:fe:bc:d8:2a:08:3d:53: e1:33:13:24:db:ee:d0:93:18:c0:3f:f1:04:e3:ed: 4a:90:99:ba:d3:b5:f2:83:11:0a:3f:0f:ca:16:fd: 5f:bc:6d:6f:cc:44:84:44:ba:df:4c:a7:53:68:6d: 20:38:d3:55:7e:26:3c:6a:b7:e6:df:76:64:a1:e9: 9a:60:c6:61:66:fc:8b:37:bb:03:a2:72:b4:c0:6b: fc:11:ff:36:14:ee:ab:b2:f2:fc:1b:15:61:b3:fb: 08:c6:fb:df:8f:72:ba:12:a1:5c:73:c8:3a:b2:87: d3:ba:06:f9:bd:ab:02:b9:b5:d3:d8:71:3a:30:29: 1e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:55:C5:36:70:58:29:19:90:B0:B8:68:17:7C:2B:BC:04:33:FA:2F X509v3 Authority Key Identifier: keyid:C1:BB:82:2B:25:8A:60:FC:D2:F6:C8:08:A5:51:67:49:8A:50:75:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1729/A7A1A29ADF1611E6BABC0E26C4F9AE02/wbuCKyWKYPzS9sgIpVFnSYpQdUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbuCKyWKYPzS9sgIpVFnSYpQdUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1729/A7A1A29ADF1611E6BABC0E26C4F9AE02/FFA62018DF1811E6805D922AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.80.0/22 110.232.188.0/23 Signature Algorithm: sha256WithRSAEncryption 39:c7:d6:83:b1:d3:1f:34:b9:18:4e:93:a1:e3:2a:d5:92:d8: f1:87:81:c0:cb:a9:01:b7:6e:4e:d4:cd:39:c4:2b:30:c7:b9: 86:03:86:29:e0:5b:de:45:18:2e:6c:74:db:ca:9a:9f:09:1c: f1:d4:15:21:48:02:bd:56:c3:fb:dc:fe:65:91:01:cd:df:61: 43:fd:3f:37:0a:4b:3a:d0:9d:0e:ba:0f:68:32:5a:8f:89:bd: 40:ee:a6:b3:e1:81:5f:64:28:37:f6:87:f7:50:e9:18:7c:43: 72:17:f3:cb:16:e5:c6:c6:58:2b:26:c0:c1:76:1c:0c:50:f6: 12:c9:ac:69:10:d9:1f:e1:0b:d8:2c:ff:4d:df:9f:4d:51:d8: 87:e2:9d:ed:21:2a:06:7b:53:33:d1:b0:a0:78:2c:83:0d:98: 66:5f:d6:1c:73:f0:a2:34:4b:66:13:13:87:a9:39:ea:b8:24: 29:6e:07:20:44:d0:bd:39:47:79:3f:85:27:8d:61:dc:b1:47: 90:57:4f:53:17:01:96:26:c6:2a:3c:6b:04:eb:54:8b:39:b3: 52:2c:55:01:bb:1b:d9:f7:e8:d0:67:d1:40:75:84:ed:4f:78: 6b:d5:92:3c:83:1e:48:a6:8d:06:5e:97:b6:27:77:1d:95:b2: 97:ca:ee:f3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICG2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MjkxMTAvBgNVBAUTKEMxQkI4MjJCMjU4QTYwRkNEMkY2QzgwOEE1NTE2NzQ5 OEE1MDc1NEMwHhcNMjQwMTMwMTY0NDA1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5Mjc1NS0yMWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAxwakk4lQVNavcMOUZiyceYESL5JDLfwwTGigGJh0Sv6QTr/S0VJGvt2vSJ QhcW5iofUXcO1ZRMyRlRlOjBc6AzLWFp4uEuPU7H7XWIGGWKdsuxvwJDdgmoq+a1 5cKqeUeTAOuKr0ngO9pU2SM3348LujCUylprsGBRIflDdP682CoIPVPhMxMk2+7Q kxjAP/EE4+1KkJm607XygxEKPw/KFv1fvG1vzESERLrfTKdTaG0gONNVfiY8arfm 33ZkoemaYMZhZvyLN7sDonK0wGv8Ef82FO6rsvL8GxVhs/sIxvvfj3K6EqFcc8g6 sofTugb5vasCubXT2HE6MCketwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFP5VxTZw WCkZkLC4aBd8K7wEM/ovMB8GA1UdIwQYMBaAFMG7gislimD80vbICKVRZ0mKUHVM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcyOS9BN0ExQTI5QURG MTYxMUU2QkFCQzBFMjZDNEY5QUUwMi93YnVDS3lXS1lQelM5c2dJcFZGblNZcFFk VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3didUNLeVdLWVB6UzlzZ0lwVkZuU1lwUWRVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MjkvQTdBMUEyOUFERjE2MTFFNkJBQkMwRTI2QzRGOUFFMDIvRkZBNjIwMThE RjE4MTFFNjgwNUQ5MjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn/FADBAFu6LwwDQYJKoZIhvcNAQELBQADggEBADnH1oOx 0x80uRhOk6HjKtWS2PGHgcDLqQG3bk7UzTnEKzDHuYYDhingW95FGC5sdNvKmp8J HPHUFSFIAr1Ww/vc/mWRAc3fYUP9PzcKSzrQnQ66D2gyWo+JvUDuprPhgV9kKDf2 h/dQ6Rh8Q3IX88sW5cbGWCsmwMF2HAxQ9hLJrGkQ2R/hC9gs/03fn01R2Ifine0h KgZ7UzPRsKB4LIMNmGZf1hxz8KI0S2YTE4epOeq4JCluByBE0L05R3k/hSeNYdyx R5BXT1MXAZYmxio8awTrVIs5s1IsVQG7G9n36NBn0UB1hO1PeGvVkjyDHkimjQZe l7Yndx2VspfK7vM= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:19 2024 by rpki-client on console-ams.rpki-client.org