$ rpki-client -vvf rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/FF41906ECD5711E9891EE882C4F9AE02.roa File: FF41906ECD5711E9891EE882C4F9AE02.roa (raw, json) Hash identifier: 7nwi4xt2gy9ofefrS7G3QotlbXQ09IRHuywiHjLXzG8= Subject key identifier: 05:5B:C0:0C:A8:50:C4:02:D8:1D:FF:BB:AC:70:B8:E0:E2:AC:7D:B3 Certificate issuer: /CN=A91E773E/serialNumber=2678D1DA2E26059A17DA83DC30BBF7E526EA8DCB Certificate serial: 0CE1 Authority key identifier: 26:78:D1:DA:2E:26:05:9A:17:DA:83:DC:30:BB:F7:E5:26:EA:8D:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JnjR2i4mBZoX2oPcMLv35Sbqjcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/FF41906ECD5711E9891EE882C4F9AE02.roa Signing time: Thu 12 Sep 2024 19:26:35 +0000 ROA not before: Thu 12 Sep 2024 19:26:35 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 139622 IP address blocks: 103.142.170.0/23 maxlen: 23 103.142.170.0/24 maxlen: 24 103.142.171.0/24 maxlen: 24 2001:df1:4a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/JnjR2i4mBZoX2oPcMLv35Sbqjcs.crl rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/JnjR2i4mBZoX2oPcMLv35Sbqjcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JnjR2i4mBZoX2oPcMLv35Sbqjcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3297 (0xce1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E773E/serialNumber=2678D1DA2E26059A17DA83DC30BBF7E526EA8DCB Validity Not Before: Sep 12 19:26:35 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e3406a-a373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:08:0b:47:6a:5c:f5:d8:c0:a4:3f:58:22:94: d2:76:b4:73:a4:b9:4b:39:02:56:b9:84:be:5c:ce: 28:60:11:d3:95:31:9c:db:ac:58:48:a3:c4:d6:11: af:72:3a:eb:f2:cf:08:6a:66:de:e5:1b:5d:78:84: db:31:f1:8f:7d:8d:11:81:16:21:2d:1d:3c:fb:be: c9:ee:69:86:f0:8d:05:a3:ac:7b:2a:47:39:a9:a0: 69:fe:4a:16:e8:21:b5:69:35:5b:d5:55:e3:8a:26: 68:91:5c:9b:ee:59:de:c6:b5:32:dd:53:ff:84:2c: 27:69:60:cf:b7:fa:b0:0f:7a:50:3d:49:87:36:d3: ba:f5:38:1c:2b:ff:41:6d:39:45:a6:52:98:68:21: db:51:33:dc:d7:22:fd:8d:e8:f2:26:e3:03:65:95: 28:6d:eb:85:24:d3:da:ba:fa:96:82:35:60:1c:bd: da:8d:4b:ce:48:9c:5b:d5:1c:e6:f0:f8:97:60:17: 98:4b:d1:a5:cb:60:44:00:a9:42:2a:3e:8f:a9:58: d5:0b:fc:03:b7:b6:58:00:ff:12:1e:a8:42:0c:24: 29:c5:79:e8:11:19:c9:4b:fc:29:ae:0e:83:ae:41: f8:3c:d4:f9:54:60:c2:63:be:00:cf:b9:8c:a5:94: a4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:5B:C0:0C:A8:50:C4:02:D8:1D:FF:BB:AC:70:B8:E0:E2:AC:7D:B3 X509v3 Authority Key Identifier: keyid:26:78:D1:DA:2E:26:05:9A:17:DA:83:DC:30:BB:F7:E5:26:EA:8D:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/JnjR2i4mBZoX2oPcMLv35Sbqjcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JnjR2i4mBZoX2oPcMLv35Sbqjcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E773E/8BA7762ECD5611E9A367FB80C4F9AE02/FF41906ECD5711E9891EE882C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.170.0/23 IPv6: 2001:df1:4a80::/48 Signature Algorithm: sha256WithRSAEncryption 53:f8:6f:9e:5f:e3:f8:0b:81:84:a0:f0:0b:b3:3d:2d:5e:ca: fc:72:6c:bd:65:43:37:fb:9c:d6:cc:81:46:cf:8b:44:02:2b: b6:4b:65:98:f3:37:b2:c5:20:75:4e:f7:98:a8:e9:d1:f0:2e: 8a:46:48:8c:10:be:71:8b:62:bf:70:e7:83:05:24:1d:fe:d2: f3:8f:fc:d1:80:b4:93:89:5c:35:8c:c1:d3:1b:2a:77:0b:79: 66:d5:8f:fd:7e:b9:e5:b7:2c:f0:b7:c4:09:e0:3f:f6:b8:96: 5d:3e:f5:4e:4e:96:23:2d:1c:1f:c0:c2:e9:b7:a3:d3:16:5d: d1:27:93:c1:a9:05:dd:45:09:c9:97:66:fc:4b:5e:a3:5e:1c: 4b:b7:9d:57:c3:50:88:44:5e:ac:4b:3a:06:b7:2e:ef:a3:8b: 80:99:a4:b3:5b:a5:5d:b4:92:49:d4:50:90:c2:aa:04:62:3f: e3:65:a3:e9:8a:36:76:30:ce:fc:b8:3e:5b:ef:64:bd:c7:ac: 14:f0:c4:cf:fa:83:d8:e8:ef:97:93:da:6d:f4:1c:10:19:bf: df:18:62:e7:fd:f7:c2:19:b5:9e:90:95:39:8a:4c:76:de:f9: 5e:55:ad:81:b5:0b:2b:d6:d0:9d:08:bd:4c:9d:72:72:b8:ab: 9b:f0:38:da -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc3M0UxMTAvBgNVBAUTKDI2NzhEMURBMkUyNjA1OUExN0RBODNEQzMwQkJGN0U1 MjZFQThEQ0IwHhcNMjQwOTEyMTkyNjM1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzNDA2YS1hMzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ggLR2pc9djApD9YIpTSdrRzpLlLOQJWuYS+XM4oYBHTlTGc26xYSKPE1hGv cjrr8s8Iambe5RtdeITbMfGPfY0RgRYhLR08+77J7mmG8I0Fo6x7Kkc5qaBp/koW 6CG1aTVb1VXjiiZokVyb7lnexrUy3VP/hCwnaWDPt/qwD3pQPUmHNtO69TgcK/9B bTlFplKYaCHbUTPc1yL9jejyJuMDZZUobeuFJNPauvqWgjVgHL3ajUvOSJxb1Rzm 8PiXYBeYS9Gly2BEAKlCKj6PqVjVC/wDt7ZYAP8SHqhCDCQpxXnoERnJS/wprg6D rkH4PNT5VGDCY74Az7mMpZSkDQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAVbwAyo UMQC2B3/u6xwuODirH2zMB8GA1UdIwQYMBaAFCZ40douJgWaF9qD3DC79+Um6o3L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzczRS84QkE3NzYyRUNE NTYxMUU5QTM2N0ZCODBDNEY5QUUwMi9KbmpSMmk0bUJab1gyb1BjTUx2MzVTYnFq Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pualIyaTRtQlpvWDJvUGNNTHYzNVNicWpjcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc3M0UvOEJBNzc2MkVDRDU2MTFFOUEzNjdGQjgwQzRGOUFFMDIvRkY0MTkwNkVD RDU3MTFFOTg5MUVFODgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjqowDwQCAAIwCQMHACABDfFKgDANBgkqhkiG9w0BAQsF AAOCAQEAU/hvnl/j+AuBhKDwC7M9LV7K/HJsvWVDN/uc1syBRs+LRAIrtktlmPM3 ssUgdU73mKjp0fAuikZIjBC+cYtiv3DngwUkHf7S84/80YC0k4lcNYzB0xsqdwt5 ZtWP/X655bcs8LfECeA/9riWXT71Tk6WIy0cH8DC6bej0xZd0SeTwakF3UUJyZdm /Eteo14cS7edV8NQiERerEs6Brcu76OLgJmks1ulXbSSSdRQkMKqBGI/42Wj6Yo2 djDO/Lg+W+9kvcesFPDEz/qD2Ojvl5PabfQcEBm/3xhi5/33whm1npCVOYpMdt75 XlWtgbULK9bQnQi9TJ1ycrirm/A42g== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:21 2024 by rpki-client on console-ams.rpki-client.org