$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/FCF7126E310711ECBFFF5E62C4F9AE02.roa File: FCF7126E310711ECBFFF5E62C4F9AE02.roa (raw, json) Hash identifier: K8MEnpY81QC6SsQD4pcGiG8o6X8/vkX27uo2IWB0rss= Subject key identifier: F5:95:7C:5A:9B:C0:BE:2E:D7:C4:87:44:B9:4D:AF:C3:F2:D2:4F:6F Certificate issuer: /CN=A91EC38C/serialNumber=C396C1E5037D335F7341CA2ECF82261300CDFE95 Certificate serial: 039A Authority key identifier: C3:96:C1:E5:03:7D:33:5F:73:41:CA:2E:CF:82:26:13:00:CD:FE:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5bB5QN9M19zQcouz4ImEwDN_pU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/FCF7126E310711ECBFFF5E62C4F9AE02.roa Signing time: Fri 01 Dec 2023 02:34:10 +0000 ROA not before: Fri 01 Dec 2023 02:34:10 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 147176 IP address blocks: 103.174.190.0/24 maxlen: 24 103.174.191.0/24 maxlen: 24 2001:df7:d280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/w5bB5QN9M19zQcouz4ImEwDN_pU.crl rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/w5bB5QN9M19zQcouz4ImEwDN_pU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5bB5QN9M19zQcouz4ImEwDN_pU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC38C/serialNumber=C396C1E5037D335F7341CA2ECF82261300CDFE95 Validity Not Before: Dec 1 02:34:10 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65694622-db26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5f:23:31:6d:18:85:6e:f7:f5:84:3f:35:73: ed:73:44:dc:9a:21:10:b8:56:a4:86:19:74:9c:18: 86:2a:cc:b5:32:c1:cb:93:42:90:74:b0:06:81:e1: 32:9e:a1:55:2b:96:2f:d4:8a:26:fa:46:b4:58:ed: 4e:fc:a4:fb:60:60:62:5b:8c:9f:fa:1a:36:9b:92: 82:10:72:21:2a:e7:10:ed:ec:13:96:19:fe:59:0e: ac:5e:fb:dc:3b:9c:a7:ea:4d:4e:7f:fa:78:f0:9d: 2b:3c:f1:a7:48:27:4c:8e:be:9b:8a:5f:15:1f:5a: 91:89:b7:39:b3:4e:85:0e:c7:18:b2:25:c7:2b:9d: d7:26:31:97:6c:fb:90:84:bc:08:77:f7:00:8f:c0: d2:4b:fb:78:b3:26:be:ed:58:f7:94:de:86:63:37: 77:29:22:ab:81:d7:a3:ef:d5:1e:f5:41:a2:4d:18: 08:65:c0:ac:87:80:81:a3:64:84:8b:e5:a4:e9:10: dc:88:77:ea:fd:1b:b9:4e:c1:7e:d5:e4:66:d8:67: 98:11:13:32:78:13:35:1a:5f:ee:8f:fc:16:01:32: 10:17:6b:9e:44:8a:5a:60:c5:a2:e9:34:54:44:99: 07:98:30:28:ad:00:16:e6:45:75:64:20:83:c8:f8: 13:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:95:7C:5A:9B:C0:BE:2E:D7:C4:87:44:B9:4D:AF:C3:F2:D2:4F:6F X509v3 Authority Key Identifier: keyid:C3:96:C1:E5:03:7D:33:5F:73:41:CA:2E:CF:82:26:13:00:CD:FE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/w5bB5QN9M19zQcouz4ImEwDN_pU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5bB5QN9M19zQcouz4ImEwDN_pU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/FCF7126E310711ECBFFF5E62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.190.0/23 IPv6: 2001:df7:d280::/48 Signature Algorithm: sha256WithRSAEncryption 73:24:5d:c8:67:7f:a2:4c:f1:3a:75:7a:01:07:a5:23:b2:04: ef:cf:3d:d9:7b:22:ab:37:04:c1:5a:9b:cd:41:eb:ea:70:a6: 9c:22:8d:8b:60:a2:ba:59:17:4b:66:da:ac:85:01:cd:3c:ea: b1:36:c6:58:07:9e:9e:bc:08:9a:2b:28:16:52:a7:49:b5:6b: ce:ad:31:18:43:55:a2:7c:b0:79:53:e6:a6:13:7f:84:e1:7e: 4e:84:55:51:92:50:21:7d:76:71:5f:c2:16:97:aa:88:bc:ac: 89:20:87:7c:1e:53:0b:8b:30:c5:13:4d:b5:f3:91:ae:99:2c: 62:6c:29:b1:7b:c6:bb:e4:92:5c:5d:1f:d0:a9:bf:30:91:a8: b7:19:14:71:a5:3d:cb:51:fd:1a:d2:aa:5a:7c:1f:e9:3f:86: b9:48:2b:19:74:71:3a:1c:7d:c6:8f:12:cb:68:ff:6c:54:39: d4:7c:8c:fd:5a:cc:db:af:a0:1c:e1:0b:c5:e9:7c:8b:19:5b: 31:b3:08:94:6f:08:4e:3c:d4:0f:88:77:80:56:5a:d6:24:ef: ac:92:f0:fd:c9:55:32:45:23:e9:98:13:cd:7d:98:68:a0:e2: 42:95:bf:00:88:30:7a:33:a1:65:00:47:ea:98:ad:8e:70:2e: db:65:c0:66 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzOEMxMTAvBgNVBAUTKEMzOTZDMUU1MDM3RDMzNUY3MzQxQ0EyRUNGODIyNjEz MDBDREZFOTUwHhcNMjMxMjAxMDIzNDEwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY5NDYyMi1kYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoV8jMW0YhW739YQ/NXPtc0TcmiEQuFakhhl0nBiGKsy1MsHLk0KQdLAGgeEy nqFVK5Yv1Iom+ka0WO1O/KT7YGBiW4yf+ho2m5KCEHIhKucQ7ewTlhn+WQ6sXvvc O5yn6k1Of/p48J0rPPGnSCdMjr6bil8VH1qRibc5s06FDscYsiXHK53XJjGXbPuQ hLwId/cAj8DSS/t4sya+7Vj3lN6GYzd3KSKrgdej79Ue9UGiTRgIZcCsh4CBo2SE i+Wk6RDciHfq/Ru5TsF+1eRm2GeYERMyeBM1Gl/uj/wWATIQF2ueRIpaYMWi6TRU RJkHmDAorQAW5kV1ZCCDyPgTPQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPWVfFqb wL4u18SHRLlNr8Py0k9vMB8GA1UdIwQYMBaAFMOWweUDfTNfc0HKLs+CJhMAzf6V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzM4Qy84NzA0OERBQTMx MDQxMUVDODNERjJDNUJDNEY5QUUwMi93NWJCNVFOOU0xOXpRY291ejRJbUV3RE5f cFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c1YkI1UU45TTE5elFjb3V6NEltRXdETl9wVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUMzOEMvODcwNDhEQUEzMTA0MTFFQzgzREYyQzVCQzRGOUFFMDIvRkNGNzEyNkUz MTA3MTFFQ0JGRkY1RTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrr4wDwQCAAIwCQMHACABDffSgDANBgkqhkiG9w0BAQsF AAOCAQEAcyRdyGd/okzxOnV6AQelI7IE78892XsiqzcEwVqbzUHr6nCmnCKNi2Ci ulkXS2barIUBzTzqsTbGWAeenrwImisoFlKnSbVrzq0xGENVonyweVPmphN/hOF+ ToRVUZJQIX12cV/CFpeqiLysiSCHfB5TC4swxRNNtfORrpksYmwpsXvGu+SSXF0f 0Km/MJGotxkUcaU9y1H9GtKqWnwf6T+GuUgrGXRxOhx9xo8Sy2j/bFQ51HyM/VrM 26+gHOELxel8ixlbMbMIlG8ITjzUD4h3gFZa1iTvrJLw/clVMkUj6ZgTzX2YaKDi QpW/AIgwejOhZQBH6pitjnAu22XAZg== -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:06 2024 by rpki-client on console-ams.rpki-client.org