$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/F3173EDC898C11EA97286262C4F9AE02.roa File: F3173EDC898C11EA97286262C4F9AE02.roa (raw, json) Hash identifier: 1ZtsZNF5jFsKlAT00IrDzQyZHeqFH7iBf+N8uJoqrEE= Subject key identifier: FA:3D:56:4A:45:3F:51:05:AF:AA:F2:0C:2A:D9:31:7B:E4:72:57:D1 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 092F Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/F3173EDC898C11EA97286262C4F9AE02.roa Signing time: Thu 24 Oct 2024 20:28:56 +0000 ROA not before: Thu 24 Oct 2024 20:28:56 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132165 IP address blocks: 27.96.92.0/24 maxlen: 24 27.96.93.0/24 maxlen: 24 27.96.94.0/24 maxlen: 24 27.96.95.0/24 maxlen: 24 103.196.160.0/24 maxlen: 24 103.196.161.0/24 maxlen: 24 103.196.162.0/24 maxlen: 24 103.196.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2351 (0x92f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Oct 24 20:28:56 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671aae07-b9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e1:d3:c4:78:1f:04:de:8d:9c:ef:b5:70:be: f6:79:42:9d:a4:ee:2b:4a:de:b1:0c:17:38:b8:09: 86:34:3a:47:75:a6:2d:0d:35:b1:9f:b7:ea:ac:a5: 5c:3d:0d:3a:52:58:7d:07:57:3d:d3:4c:47:bf:03: e3:3a:5b:19:3a:e2:91:52:22:63:f0:1f:ca:3f:24: 0c:e4:e8:f6:41:1f:80:6d:75:8b:50:91:c2:67:ee: 92:5d:e7:d1:85:2b:6d:49:62:de:11:11:8d:8e:80: 80:a3:de:b7:0d:ce:dc:e4:c5:2a:c7:9c:3e:48:49: 77:e9:8f:57:2f:9a:84:a2:d2:b4:99:30:f1:09:9d: 82:34:4c:8f:4b:60:76:0f:c9:df:51:9c:29:a8:ce: ae:e8:bb:b0:83:1c:21:fb:c9:fa:da:6f:36:27:97: 5c:c4:25:35:70:8b:12:c5:e8:95:98:b4:14:2d:9e: 26:8c:34:8d:c1:ff:ef:eb:1c:eb:ab:64:b0:98:12: 11:57:2d:3c:65:93:c6:41:96:05:ae:6e:5d:14:ea: a5:9a:2e:55:73:d7:b7:dc:f9:cb:1c:91:f7:7c:a7: e5:64:fe:cf:92:99:8b:6c:16:56:c0:f8:53:20:7e: 18:af:e6:5b:10:0c:86:cb:bc:73:2f:8e:af:5f:ab: 18:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:3D:56:4A:45:3F:51:05:AF:AA:F2:0C:2A:D9:31:7B:E4:72:57:D1 X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/F3173EDC898C11EA97286262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.96.92.0/22 103.196.160.0/22 Signature Algorithm: sha256WithRSAEncryption 97:ae:42:6b:b4:bd:c6:6a:78:22:93:49:2f:20:17:cf:57:4f: 59:7c:80:aa:aa:93:27:78:a8:b7:ef:cd:5f:e5:68:38:d8:57: 64:e2:5f:75:7c:f5:68:d6:b2:94:cc:cf:20:e8:9b:30:9a:b8: 08:5a:c4:5d:83:3d:b1:31:d4:1a:44:a5:03:55:75:12:64:5a: cf:5d:27:c3:9e:54:5d:de:21:d9:cf:35:c1:ba:84:d7:7f:24: 88:59:e2:84:30:1c:e2:0d:0b:eb:d5:d9:18:a2:7d:8c:5c:73: 84:54:b6:ad:91:e2:44:6a:f6:0b:16:d3:78:23:2d:1d:4e:a1: 96:23:af:a3:e4:af:eb:dd:46:80:f5:c9:20:dc:b3:bf:7d:cf: 1f:72:66:01:ac:54:5b:fe:05:22:73:e0:a8:15:fc:e0:c0:c9: 88:57:51:df:2d:d2:13:90:bb:93:a0:e0:dd:e6:e7:15:9f:b6: e5:6d:a1:17:bc:2a:b5:e1:48:ec:a4:95:38:5f:c6:cd:bc:9b: 3f:90:77:c1:46:7a:99:62:dd:80:c7:0d:e8:94:c5:cc:bc:79: b2:f4:05:af:f2:0a:02:df:b2:a4:70:65:3c:4b:65:98:6f:38: 0e:1a:a5:e4:89:ae:d6:a1:92:5d:66:58:fc:30:e4:98:83:c8: cc:9c:d4:50 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjQxMDI0MjAyODU2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhYWUwNy1iOWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquHTxHgfBN6NnO+1cL72eUKdpO4rSt6xDBc4uAmGNDpHdaYtDTWxn7fqrKVc PQ06Ulh9B1c900xHvwPjOlsZOuKRUiJj8B/KPyQM5Oj2QR+AbXWLUJHCZ+6SXefR hSttSWLeERGNjoCAo963Dc7c5MUqx5w+SEl36Y9XL5qEotK0mTDxCZ2CNEyPS2B2 D8nfUZwpqM6u6Luwgxwh+8n62m82J5dcxCU1cIsSxeiVmLQULZ4mjDSNwf/v6xzr q2SwmBIRVy08ZZPGQZYFrm5dFOqlmi5Vc9e33PnLHJH3fKflZP7PkpmLbBZWwPhT IH4Yr+ZbEAyGy7xzL46vX6sYzQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPo9VkpF P1EFr6ryDCrZMXvkclfRMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcxNjQvMjI4QUJGNzQ4OThCMTFFQTkyNzU5QTVDQzRGOUFFMDIvRjMxNzNFREM4 OThDMTFFQTk3Mjg2MjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIbYFwDBAJnxKAwDQYJKoZIhvcNAQELBQADggEBAJeuQmu0 vcZqeCKTSS8gF89XT1l8gKqqkyd4qLfvzV/laDjYV2TiX3V89WjWspTMzyDomzCa uAhaxF2DPbEx1BpEpQNVdRJkWs9dJ8OeVF3eIdnPNcG6hNd/JIhZ4oQwHOINC+vV 2RiifYxcc4RUtq2R4kRq9gsW03gjLR1OoZYjr6Pkr+vdRoD1ySDcs799zx9yZgGs VFv+BSJz4KgV/ODAyYhXUd8t0hOQu5Og4N3m5xWftuVtoRe8KrXhSOyklThfxs28 mz+Qd8FGepli3YDHDeiUxcy8ebL0Ba/yCgLfsqRwZTxLZZhvOA4apeSJrtahkl1m WPww5JiDyMyc1FA= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org