$ rpki-client -vvf rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/2F35179A907C11EF97CA7824C4F9AE02.roa File: 2F35179A907C11EF97CA7824C4F9AE02.roa (raw, json) Hash identifier: N1E6EDW+BfkIrsKM/1nBV4JVmLq28DTPNLOrimSi0TY= Subject key identifier: 8F:7B:A1:CA:11:F4:51:56:5C:3D:A9:7B:00:43:CE:C7:9F:C8:74:40 Certificate issuer: /CN=A91F13B9/serialNumber=7EAC0C2CB27A30A138EE475B07FE97E8E933FDCA Certificate serial: 2818 Authority key identifier: 7E:AC:0C:2C:B2:7A:30:A1:38:EE:47:5B:07:FE:97:E8:E9:33:FD:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/2F35179A907C11EF97CA7824C4F9AE02.roa Signing time: Tue 22 Oct 2024 14:30:13 +0000 ROA not before: Tue 22 Oct 2024 14:30:13 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141681 IP address blocks: 103.254.120.0/24 maxlen: 24 103.254.121.0/24 maxlen: 24 103.254.122.0/24 maxlen: 24 103.254.123.0/24 maxlen: 24 2401:ae0::/32 maxlen: 32 2401:ae0::/48 maxlen: 48 2401:ae0:1::/48 maxlen: 48 2401:ae0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.crl rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10264 (0x2818) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F13B9/serialNumber=7EAC0C2CB27A30A138EE475B07FE97E8E933FDCA Validity Not Before: Oct 22 14:30:13 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6717b6f5-d035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:df:1b:50:24:12:d5:57:58:5f:7e:80:47:6b: 4c:c6:16:93:37:08:6a:87:ef:f4:b2:33:bc:bb:dd: 30:09:77:39:9c:f1:1c:87:df:5a:15:06:74:10:32: f9:eb:15:32:fc:ec:6b:c5:8c:79:52:53:39:30:b5: b6:09:82:e4:d8:bd:8d:ae:d4:7e:99:95:ef:bc:2a: 92:3f:c4:72:96:1d:4c:ab:fb:42:5e:ad:ce:fa:8f: 37:aa:49:c7:aa:a5:c1:2a:2d:d0:de:14:de:49:bc: 2f:b0:f8:9f:33:88:a1:31:bf:7a:48:55:b5:9c:4f: 71:eb:08:49:17:b0:e3:c6:eb:79:11:85:f0:ad:40: c5:d6:c4:4f:38:7d:e2:b5:c7:d1:0c:ef:42:e8:0b: 47:a6:a7:98:8e:b3:92:f7:85:3b:6a:b9:ec:26:7c: ec:81:3d:0f:2b:f7:ea:ff:57:fb:5d:62:1a:1b:9c: 5d:a2:be:16:0f:0b:b3:70:ea:5c:e4:04:97:a7:57: f7:75:42:81:ac:e7:7b:c5:25:8b:ab:ae:a4:7a:0f: f9:94:ff:b5:24:b5:ac:63:c9:b5:f3:7c:a1:3b:f8: 67:60:9f:86:48:16:8f:52:01:a5:6f:f4:7b:7e:06: 30:1d:27:23:ea:44:a2:06:74:2d:59:65:6c:e9:34: a8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7B:A1:CA:11:F4:51:56:5C:3D:A9:7B:00:43:CE:C7:9F:C8:74:40 X509v3 Authority Key Identifier: keyid:7E:AC:0C:2C:B2:7A:30:A1:38:EE:47:5B:07:FE:97:E8:E9:33:FD:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/2F35179A907C11EF97CA7824C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.120.0/22 IPv6: 2401:ae0::/32 Signature Algorithm: sha256WithRSAEncryption 2d:25:4a:14:14:f7:61:39:ea:65:00:7f:72:0e:2d:b8:6c:3a: 1a:89:e6:5a:a3:29:5a:fb:2d:3b:ea:ca:5b:56:d8:a5:ea:f6: 6b:90:f3:47:2f:ec:9c:51:ab:2c:35:eb:f0:71:0d:26:4a:7c: 41:62:dd:70:be:00:67:fd:1a:b9:9a:cc:02:ef:f6:26:45:ca: fc:2e:68:93:f2:af:30:0f:e9:f5:02:9f:a8:4a:7f:89:ca:6a: d7:20:2a:42:a5:92:a2:d5:a6:2d:c6:25:dd:d5:27:65:b4:f3: 9b:7d:bb:54:b2:47:07:83:6f:24:0e:0e:82:c8:fa:9f:0b:f7: 18:96:df:59:51:d3:99:b9:a9:36:93:36:b2:1c:82:4c:16:cf: 05:3c:8b:d7:11:f1:6a:a9:b1:dc:10:cd:5f:d7:9c:9e:43:be: 9b:bd:51:59:eb:75:85:91:d0:01:19:09:0b:42:f4:df:19:a0: 08:e8:5b:54:29:0f:26:a5:39:04:64:68:a9:6d:75:24:6b:88: cd:cc:cf:fa:bc:56:47:c6:80:26:24:d8:68:8f:dc:55:ea:a4: 23:9b:d1:9e:1e:bc:f2:d7:fc:e2:8c:ac:3d:51:87:97:cc:77: 31:6a:b2:e6:b5:1d:2d:80:56:89:bb:ea:1d:03:e1:43:2c:ec: 0f:e2:5c:0f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICKBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzQjkxMTAvBgNVBAUTKDdFQUMwQzJDQjI3QTMwQTEzOEVFNDc1QjA3RkU5N0U4 RTkzM0ZEQ0EwHhcNMjQxMDIyMTQzMDEzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3YjZmNS1kMDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsd8bUCQS1VdYX36AR2tMxhaTNwhqh+/0sjO8u90wCXc5nPEch99aFQZ0EDL5 6xUy/OxrxYx5UlM5MLW2CYLk2L2NrtR+mZXvvCqSP8Rylh1Mq/tCXq3O+o83qknH qqXBKi3Q3hTeSbwvsPifM4ihMb96SFW1nE9x6whJF7Djxut5EYXwrUDF1sRPOH3i tcfRDO9C6AtHpqeYjrOS94U7arnsJnzsgT0PK/fq/1f7XWIaG5xdor4WDwuzcOpc 5ASXp1f3dUKBrOd7xSWLq66keg/5lP+1JLWsY8m183yhO/hnYJ+GSBaPUgGlb/R7 fgYwHScj6kSiBnQtWWVs6TSoXQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI97ocoR 9FFWXD2pewBDzsefyHRAMB8GA1UdIwQYMBaAFH6sDCyyejChOO5HWwf+l+jpM/3K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTNCOS8xODk3QjI1MjlG OUQxMUU0OTYxOTUzMkRDNEY5QUUwMi9mcXdNTExKNk1LRTQ3a2RiQl82WDZPa3pf Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Zxd01MTEo2TUtFNDdrZGJCXzZYNk9rel9jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjEzQjkvMTg5N0IyNTI5RjlEMTFFNDk2MTk1MzJEQzRGOUFFMDIvMkYzNTE3OUE5 MDdDMTFFRjk3Q0E3ODI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn/ngwDQQCAAIwBwMFACQBCuAwDQYJKoZIhvcNAQELBQAD ggEBAC0lShQU92E56mUAf3IOLbhsOhqJ5lqjKVr7LTvqyltW2KXq9muQ80cv7JxR qyw16/BxDSZKfEFi3XC+AGf9GrmazALv9iZFyvwuaJPyrzAP6fUCn6hKf4nKatcg KkKlkqLVpi3GJd3VJ2W085t9u1SyRweDbyQODoLI+p8L9xiW31lR05m5qTaTNrIc gkwWzwU8i9cR8WqpsdwQzV/XnJ5Dvpu9UVnrdYWR0AEZCQtC9N8ZoAjoW1QpDyal OQRkaKltdSRriM3Mz/q8VkfGgCYk2GiP3FXqpCOb0Z4evPLX/OKMrD1Rh5fMdzFq sua1HS2AVom76h0D4UMs7A/iXA8= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org