$ rpki-client -vvf rpki.apnic.net/member_repository/A91F34FA/45E9E16A658A11ED99A21B6FC4F9AE02/81B847F4444A11EFB043DE36C4F9AE02.roa File: 81B847F4444A11EFB043DE36C4F9AE02.roa (raw, json) Hash identifier: iBZ0Vc5oqFw84Bi0mykH6jGLVo3+N0cmUjqo5T+vIIo= Subject key identifier: 51:80:EC:3E:5E:0F:0F:80:76:E9:D8:B3:6C:69:37:4B:09:E1:A4:21 Certificate issuer: /CN=A91F34FA/serialNumber=E17234638931F4396510D7D0BAD51F8AF4EB86B6 Certificate serial: 0164 Authority key identifier: E1:72:34:63:89:31:F4:39:65:10:D7:D0:BA:D5:1F:8A:F4:EB:86:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XI0Y4kx9DllENfQutUfivTrhrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F34FA/45E9E16A658A11ED99A21B6FC4F9AE02/81B847F4444A11EFB043DE36C4F9AE02.roa Signing time: Mon 07 Oct 2024 02:46:25 +0000 ROA not before: Mon 07 Oct 2024 02:46:25 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58715 IP address blocks: 103.16.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F34FA/45E9E16A658A11ED99A21B6FC4F9AE02/4XI0Y4kx9DllENfQutUfivTrhrY.crl rsync://rpki.apnic.net/member_repository/A91F34FA/45E9E16A658A11ED99A21B6FC4F9AE02/4XI0Y4kx9DllENfQutUfivTrhrY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XI0Y4kx9DllENfQutUfivTrhrY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F34FA/serialNumber=E17234638931F4396510D7D0BAD51F8AF4EB86B6 Validity Not Before: Oct 7 02:46:25 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67034b81-bcd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:43:35:c5:29:74:d0:a5:36:bb:4a:c3:51:de: 57:d9:83:ea:e0:82:a8:68:ec:ca:bb:0e:57:51:a6: 62:af:72:8f:7d:e9:3b:b0:61:84:0c:bc:26:ba:4f: 5a:2a:0f:95:a2:4c:f5:7f:41:dd:79:06:97:e1:16: 70:80:da:cb:59:f1:cd:e9:db:9a:7e:4c:01:a2:93: 91:e1:76:ec:b0:7c:8a:87:01:87:53:ae:00:79:61: c4:c5:de:fa:f2:8c:52:8f:22:a3:f7:f0:ec:bd:83: 5d:91:be:78:fd:6b:38:e4:60:84:6d:7e:2d:94:b4: 14:9e:28:c8:ed:65:24:c2:fe:1c:03:ed:85:f7:32: ed:7e:34:8f:81:c8:b0:65:83:7d:2f:2f:a2:cd:87: 0b:ce:43:b9:ec:0f:da:9e:39:07:fa:af:ae:42:ef: 02:39:48:eb:b7:20:3d:1c:41:94:5d:ea:f3:b4:cd: 34:e3:b1:fe:16:d3:7a:e0:23:c5:20:99:e4:f6:e7: 5e:66:b4:24:06:77:fe:2d:69:6f:64:0a:93:c6:3e: fd:8d:f0:75:81:30:da:3b:ef:da:f7:a7:c3:65:cf: 9a:be:c3:1d:50:d1:1a:1d:c3:fd:37:b0:6e:76:07: 60:c5:38:21:8d:56:2b:82:37:79:7d:d1:fb:83:eb: 39:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:80:EC:3E:5E:0F:0F:80:76:E9:D8:B3:6C:69:37:4B:09:E1:A4:21 X509v3 Authority Key Identifier: keyid:E1:72:34:63:89:31:F4:39:65:10:D7:D0:BA:D5:1F:8A:F4:EB:86:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F34FA/45E9E16A658A11ED99A21B6FC4F9AE02/4XI0Y4kx9DllENfQutUfivTrhrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XI0Y4kx9DllENfQutUfivTrhrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F34FA/45E9E16A658A11ED99A21B6FC4F9AE02/81B847F4444A11EFB043DE36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.226.0/23 Signature Algorithm: sha256WithRSAEncryption 25:a8:31:02:5c:c9:07:a3:ab:f1:ff:c2:66:38:8c:27:7c:3d: 80:6f:26:78:d6:2c:6d:ca:93:81:b7:86:61:b4:bd:52:b8:38: 7e:70:d8:7e:8e:07:d5:e9:93:99:d5:55:03:9e:24:35:be:74: 71:de:5a:ac:4f:4d:b1:73:83:1c:1a:da:a6:c2:54:53:f3:7d: 52:97:d3:ed:14:1e:f8:9f:50:3f:c2:64:cd:65:99:37:fb:0d: 67:b8:3e:13:2c:e4:2a:3f:ad:f3:de:f1:64:73:e1:be:f1:4b: 1f:1c:68:aa:34:23:28:e7:d6:da:02:03:e1:5f:42:fa:f1:4f: 57:b7:fc:ca:c2:a7:39:b7:9c:fe:0a:76:d6:47:13:94:20:b3: ed:29:51:c4:5a:4b:32:ee:b2:24:c0:9d:c3:9b:58:89:d8:04: 1b:90:03:db:9b:59:e6:66:a0:57:54:f9:03:73:a7:41:2d:c6: fc:51:f4:aa:20:ee:f9:f3:03:7a:c3:77:21:e4:2e:79:1d:33: 27:14:9c:12:8b:39:92:4a:22:47:a1:81:2d:6a:30:f3:33:b9: f2:ce:c6:a7:d3:ba:47:a4:ca:ba:ae:cc:77:b3:83:c5:a0:3e: 88:db:aa:70:63:f7:f0:42:63:ce:b3:39:89:15:8c:09:a7:c0: c8:ff:d0:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM0RkExMTAvBgNVBAUTKEUxNzIzNDYzODkzMUY0Mzk2NTEwRDdEMEJBRDUxRjhB RjRFQjg2QjYwHhcNMjQxMDA3MDI0NjI1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAzNGI4MS1iY2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskM1xSl00KU2u0rDUd5X2YPq4IKoaOzKuw5XUaZir3KPfek7sGGEDLwmuk9a Kg+Vokz1f0HdeQaX4RZwgNrLWfHN6duafkwBopOR4XbssHyKhwGHU64AeWHExd76 8oxSjyKj9/DsvYNdkb54/Ws45GCEbX4tlLQUnijI7WUkwv4cA+2F9zLtfjSPgciw ZYN9Ly+izYcLzkO57A/anjkH+q+uQu8COUjrtyA9HEGUXerztM0047H+FtN64CPF IJnk9udeZrQkBnf+LWlvZAqTxj79jfB1gTDaO+/a96fDZc+avsMdUNEaHcP9N7Bu dgdgxTghjVYrgjd5fdH7g+s5TQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFGA7D5e Dw+AdunYs2xpN0sJ4aQhMB8GA1UdIwQYMBaAFOFyNGOJMfQ5ZRDX0LrVH4r064a2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzRGQS80NUU5RTE2QTY1 OEExMUVEOTlBMjFCNkZDNEY5QUUwMi80WEkwWTRreDlEbGxFTmZRdXRVZml2VHJo clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYSTBZNGt4OURsbEVOZlF1dFVmaXZUcmhyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM0RkEvNDVFOUUxNkE2NThBMTFFRDk5QTIxQjZGQzRGOUFFMDIvODFCODQ3RjQ0 NDRBMTFFRkIwNDNERTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnEOIwDQYJKoZIhvcNAQELBQADggEBACWoMQJcyQejq/H/ wmY4jCd8PYBvJnjWLG3Kk4G3hmG0vVK4OH5w2H6OB9Xpk5nVVQOeJDW+dHHeWqxP TbFzgxwa2qbCVFPzfVKX0+0UHvifUD/CZM1lmTf7DWe4PhMs5Co/rfPe8WRz4b7x Sx8caKo0Iyjn1toCA+FfQvrxT1e3/MrCpzm3nP4KdtZHE5Qgs+0pUcRaSzLusiTA ncObWInYBBuQA9ubWeZmoFdU+QNzp0EtxvxR9Kog7vnzA3rDdyHkLnkdMycUnBKL OZJKIkehgS1qMPMzufLOxqfTukekyrquzHezg8WgPojbqnBj9/BCY86zOYkVjAmn wMj/0BE= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:57 2024 by rpki-client on console-ams.rpki-client.org