$ rpki-client -vvf rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/FF41906ECD5711E9891EE882C4F9AE02.roa File: FF41906ECD5711E9891EE882C4F9AE02.roa (raw, json) Hash identifier: JFExDB3UWM+6oY9L9unkAkDMZqR6L7xjp+IepzjKJ/4= Subject key identifier: AF:2E:B3:4D:34:3B:A7:5B:4B:31:87:E6:50:15:4A:E5:B3:6F:0A:F6 Certificate issuer: /CN=A91E773E/serialNumber=2678D1DA2E26059A17DA83DC30BBF7E526EA8DCB Certificate serial: 0C8A Authority key identifier: 26:78:D1:DA:2E:26:05:9A:17:DA:83:DC:30:BB:F7:E5:26:EA:8D:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JnjR2i4mBZoX2oPcMLv35Sbqjcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/FF41906ECD5711E9891EE882C4F9AE02.roa Signing time: Wed 03 Apr 2024 10:06:05 +0000 ROA not before: Wed 03 Apr 2024 10:06:05 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 139622 IP address blocks: 103.142.170.0/23 maxlen: 23 103.142.170.0/24 maxlen: 24 103.142.171.0/24 maxlen: 24 2001:df1:4a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/JnjR2i4mBZoX2oPcMLv35Sbqjcs.crl rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/JnjR2i4mBZoX2oPcMLv35Sbqjcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JnjR2i4mBZoX2oPcMLv35Sbqjcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 18:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3210 (0xc8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E773E/serialNumber=2678D1DA2E26059A17DA83DC30BBF7E526EA8DCB Validity Not Before: Apr 3 10:06:05 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=660d2a0c-8304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:af:14:9a:4b:ff:06:16:ce:ad:62:62:8b:ee: 9f:b7:df:f4:4c:ee:37:a6:d0:35:fd:f9:f6:8e:05: 3d:66:36:6c:2c:3f:49:b3:0b:50:f2:a6:91:58:22: 30:74:49:b3:68:cf:52:e9:a8:1f:37:3e:de:fb:f0: 0d:22:d6:47:ba:22:8f:80:a9:dc:73:69:65:d8:c3: d3:ab:56:4f:2d:8b:25:0f:55:c2:ed:4a:26:d2:df: ea:7a:b4:4e:27:ae:33:2c:64:7b:0c:07:03:b7:3e: 7f:50:5e:68:08:57:0a:8f:e0:4f:80:3f:1f:49:41: 1d:a1:79:2f:c6:ff:38:40:65:51:c7:b1:9a:84:0e: 9a:ae:7f:d2:e3:22:3e:4f:8e:3f:a6:7a:06:7a:a2: 68:b8:96:13:31:45:1e:32:29:45:b5:1b:83:89:f4: a9:4b:de:c4:71:2f:0e:24:4e:7e:8e:f7:85:e9:6e: 63:81:34:5c:40:c4:db:b5:cf:ca:40:4b:93:4c:31: a5:ca:4a:eb:da:75:c5:40:9d:98:78:82:a4:67:8a: 07:31:ed:bf:5b:0b:1c:66:42:9d:b4:f6:03:40:19: 3c:85:ae:f4:ba:a4:fc:b8:da:e9:04:8d:e2:79:9a: b0:cf:15:06:a5:9d:bc:f5:76:ac:8b:0d:f3:a8:eb: 7b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:2E:B3:4D:34:3B:A7:5B:4B:31:87:E6:50:15:4A:E5:B3:6F:0A:F6 X509v3 Authority Key Identifier: keyid:26:78:D1:DA:2E:26:05:9A:17:DA:83:DC:30:BB:F7:E5:26:EA:8D:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/JnjR2i4mBZoX2oPcMLv35Sbqjcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JnjR2i4mBZoX2oPcMLv35Sbqjcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/FF41906ECD5711E9891EE882C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.170.0/23 IPv6: 2001:df1:4a80::/48 Signature Algorithm: sha256WithRSAEncryption 38:d5:b6:79:67:0d:80:70:23:1f:45:91:dd:1a:3a:a6:d6:d0: 79:ad:60:f3:5c:f1:ae:0c:e2:da:03:7f:bd:44:20:7b:44:b3: fa:85:65:d4:06:cf:2e:85:d0:3a:28:50:69:df:2b:58:00:ae: d3:ae:69:04:66:82:eb:0b:68:4a:91:ac:3a:71:dc:ac:5b:d7: 98:7e:b5:df:2e:e2:c1:a9:de:86:1f:cb:0c:67:72:78:54:6f: 24:66:e4:83:2d:47:9a:b4:9c:7d:f0:93:af:2c:e6:c2:f6:5f: b2:3f:fb:1e:ba:1a:ea:ec:39:6c:ff:78:c8:ae:6d:0d:92:dd: 44:c8:44:e2:b0:55:10:aa:42:f3:80:36:f7:a3:20:15:7c:10: 32:2f:f1:94:8e:6b:f1:aa:ef:6e:2b:1d:5f:ad:64:55:c3:99: d6:60:3a:50:c4:d9:f4:0c:a3:a3:22:95:91:b1:ec:62:6d:d3: 3a:90:be:75:d3:ff:e5:5f:92:dd:8c:1a:b0:fe:68:d7:21:5a: 20:7f:ec:f8:4b:cf:d4:e4:67:b8:36:1b:6a:a3:d6:2d:09:7c: ae:40:94:48:8d:81:12:ef:1f:38:40:e3:17:b6:a4:b8:b3:9c: 62:ca:52:21:54:48:95:97:93:3d:1c:33:11:14:b6:e3:09:cc: fc:94:9e:89 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc3M0UxMTAvBgNVBAUTKDI2NzhEMURBMkUyNjA1OUExN0RBODNEQzMwQkJGN0U1 MjZFQThEQ0IwHhcNMjQwNDAzMTAwNjA1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBkMmEwYy04MzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyK8Umkv/BhbOrWJii+6ft9/0TO43ptA1/fn2jgU9ZjZsLD9JswtQ8qaRWCIw dEmzaM9S6agfNz7e+/ANItZHuiKPgKncc2ll2MPTq1ZPLYslD1XC7Uom0t/qerRO J64zLGR7DAcDtz5/UF5oCFcKj+BPgD8fSUEdoXkvxv84QGVRx7GahA6arn/S4yI+ T44/pnoGeqJouJYTMUUeMilFtRuDifSpS97EcS8OJE5+jveF6W5jgTRcQMTbtc/K QEuTTDGlykrr2nXFQJ2YeIKkZ4oHMe2/WwscZkKdtPYDQBk8ha70uqT8uNrpBI3i eZqwzxUGpZ289Xasiw3zqOt7mQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK8us000 O6dbSzGH5lAVSuWzbwr2MB8GA1UdIwQYMBaAFCZ40douJgWaF9qD3DC79+Um6o3L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzczRS84QkE3NzYyRUNE NTYxMUU5QTM2N0ZCODBDNEY5QUUwMi9KbmpSMmk0bUJab1gyb1BjTUx2MzVTYnFq Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pualIyaTRtQlpvWDJvUGNNTHYzNVNicWpjcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc3M0UvOEJBNzc2MkVDRDU2MTFFOUEzNjdGQjgwQzRGOUFFMDIvRkY0MTkwNkVD RDU3MTFFOTg5MUVFODgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjqowDwQCAAIwCQMHACABDfFKgDANBgkqhkiG9w0BAQsF AAOCAQEAONW2eWcNgHAjH0WR3Ro6ptbQea1g81zxrgzi2gN/vUQge0Sz+oVl1AbP LoXQOihQad8rWACu065pBGaC6wtoSpGsOnHcrFvXmH613y7iwanehh/LDGdyeFRv JGbkgy1HmrScffCTryzmwvZfsj/7Hroa6uw5bP94yK5tDZLdRMhE4rBVEKpC84A2 96MgFXwQMi/xlI5r8arvbisdX61kVcOZ1mA6UMTZ9AyjoyKVkbHsYm3TOpC+ddP/ 5V+S3YwasP5o1yFaIH/s+EvP1ORnuDYbaqPWLQl8rkCUSI2BEu8fOEDjF7akuLOc YspSIVRIlZeTPRwzERS24wnM/JSeiQ== -----END CERTIFICATE-----Generated at Mon May 20 19:20:12 2024 by rpki-client on console-fra.rpki-client.org