$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa File: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (raw, json) Hash identifier: cUJGyZcVowcCyXH2QiojzhWnaBYy0l9+HvH8D9IR1zs= Subject key identifier: C6:32:E7:95:29:A9:E2:C9:6F:41:FD:93:AD:FB:CA:EF:A7:1B:FF:72 Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 0220 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa Signing time: Wed 03 Jul 2024 03:25:01 +0000 ROA not before: Wed 03 Jul 2024 03:25:01 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58057 IP address blocks: 103.189.238.0/23 maxlen: 24 2001:df0:de40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Jul 3 03:25:01 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6684c48c-dac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fe:61:04:00:08:f1:ae:ca:ea:5a:a3:d0:3e: 02:d5:c7:30:43:5d:a3:06:4c:b9:29:b8:db:52:a3: e9:57:3d:c9:1d:60:9c:26:10:b4:b8:3c:30:14:95: dd:c2:65:3c:24:96:73:fb:be:65:55:ba:3a:43:1d: 47:3c:cc:86:cc:7e:49:2a:50:55:15:9f:42:14:40: 5c:b4:87:7b:21:21:33:75:7e:7c:81:76:09:bb:53: 0d:ab:4f:de:ae:03:21:40:c6:80:b2:84:6f:5d:d0: 7c:08:66:b8:82:9f:01:d5:8e:c8:43:b9:e1:e9:f8: 34:14:ec:ae:a2:e5:1b:9e:75:c6:49:12:55:85:8b: 09:5d:67:65:7e:26:75:6c:0d:9a:cf:5a:75:60:92: f9:98:51:01:a3:54:e1:0d:2b:96:71:22:7a:5f:33: 3b:17:03:f7:88:0b:17:7a:7d:14:f2:b5:5e:2e:73: 07:f6:5c:6f:89:5a:6c:76:ad:ed:f1:c5:7c:e1:f9: 84:42:7f:04:19:a8:da:f1:58:a4:69:fa:5a:13:b3: 3e:c4:e2:a4:87:1f:87:e2:ed:15:a0:c5:33:1b:a2: ab:22:ae:f2:aa:4f:3f:0c:d4:95:24:18:1e:5e:dc: c5:33:38:3a:84:ac:6b:dd:6e:a6:85:10:22:f2:c6: 7a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:32:E7:95:29:A9:E2:C9:6F:41:FD:93:AD:FB:CA:EF:A7:1B:FF:72 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.238.0/23 IPv6: 2001:df0:de40::/48 Signature Algorithm: sha256WithRSAEncryption 24:c4:8a:2f:5f:06:e9:25:9d:d7:c7:11:7a:39:56:16:8b:db: 04:36:6e:44:7a:38:c1:56:ae:0b:ee:5e:40:67:64:db:04:dc: 7a:51:58:86:f6:1c:4b:a9:1e:d8:0c:3d:32:21:30:cb:68:55: dd:a4:e4:3f:fa:f6:2d:16:f1:23:77:db:c6:6d:a1:08:75:1a: 6e:44:bb:a1:c8:48:6b:a6:74:b5:2a:41:9e:d8:9d:2c:0d:e5: 6d:03:dd:30:1a:18:cd:82:69:93:bc:42:b0:1a:08:75:c4:c2: ae:22:64:de:43:d0:4a:64:a9:1b:06:4b:25:83:fc:94:fa:7a: 53:14:6c:fb:77:42:57:62:c8:9f:f1:2e:dd:10:da:f2:77:a4: f1:96:6c:78:0d:44:38:e0:24:00:93:67:db:db:6c:f3:a3:d7: 4f:fe:f4:dd:d8:7a:a7:6c:5a:84:d7:14:1d:8e:2f:61:e1:e4: 1d:cc:ff:8f:b5:c4:46:db:a7:4b:e4:50:bc:77:d3:c2:83:65: bf:8c:59:3c:ed:cd:3f:2f:29:f0:0e:90:c4:41:f8:1d:70:f9: c0:4c:4b:e4:d5:64:0b:41:e7:f9:32:4f:e2:87:e9:06:f9:f0: 09:2d:0c:10:4b:1c:e7:66:2e:71:f5:e0:41:f8:cd:7a:a7:8f: 9a:53:b4:08 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjQwNzAzMDMyNTAxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0YzQ4Yy1kYWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/5hBAAI8a7K6lqj0D4C1ccwQ12jBky5KbjbUqPpVz3JHWCcJhC0uDwwFJXd wmU8JJZz+75lVbo6Qx1HPMyGzH5JKlBVFZ9CFEBctId7ISEzdX58gXYJu1MNq0/e rgMhQMaAsoRvXdB8CGa4gp8B1Y7IQ7nh6fg0FOyuouUbnnXGSRJVhYsJXWdlfiZ1 bA2az1p1YJL5mFEBo1ThDSuWcSJ6XzM7FwP3iAsXen0U8rVeLnMH9lxviVpsdq3t 8cV84fmEQn8EGaja8VikafpaE7M+xOKkhx+H4u0VoMUzG6KrIq7yqk8/DNSVJBge XtzFMzg6hKxr3W6mhRAi8sZ6VwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMYy55Up qeLJb0H9k637yu+nG/9yMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBDNzMvODIxNDU3RDJGMTM3MTFFQzk3Rjc0RjBDQzRGOUFFMDIvRkEzRkYxRDRG MTNEMTFFQzlCNjczQTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnve4wDwQCAAIwCQMHACABDfDeQDANBgkqhkiG9w0BAQsF AAOCAQEAJMSKL18G6SWd18cRejlWFovbBDZuRHo4wVauC+5eQGdk2wTcelFYhvYc S6ke2Aw9MiEwy2hV3aTkP/r2LRbxI3fbxm2hCHUabkS7ochIa6Z0tSpBntidLA3l bQPdMBoYzYJpk7xCsBoIdcTCriJk3kPQSmSpGwZLJYP8lPp6UxRs+3dCV2LIn/Eu 3RDa8nek8ZZseA1EOOAkAJNn29ts86PXT/703dh6p2xahNcUHY4vYeHkHcz/j7XE RtunS+RQvHfTwoNlv4xZPO3NPy8p8A6QxEH4HXD5wExL5NVkC0Hn+TJP4ofpBvnw CS0MEEsc52YucfXgQfjNeqePmlO0CA== -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:08 2024 by rpki-client on console-fra.rpki-client.org