$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/A26BC92C09F511EC8F20233BC4F9AE02.roa File: A26BC92C09F511EC8F20233BC4F9AE02.roa (raw, json) Hash identifier: aF6v+/1YX32zwi/hMnMaYg+3hri5AIMnlhYo0H+VwpM= Subject key identifier: 09:DA:B7:EB:0F:C4:DE:55:30:77:63:39:0D:16:CA:F5:C0:A6:8D:88 Certificate issuer: /CN=A91F6CB0/serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Certificate serial: 048B Authority key identifier: 6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/A26BC92C09F511EC8F20233BC4F9AE02.roa Signing time: Sat 03 Aug 2024 01:43:55 +0000 ROA not before: Sat 03 Aug 2024 01:43:55 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 56079 IP address blocks: 103.22.196.0/24 maxlen: 24 103.22.197.0/24 maxlen: 24 103.22.198.0/24 maxlen: 24 103.22.199.0/24 maxlen: 24 115.31.88.0/24 maxlen: 24 115.31.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1163 (0x48b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6CB0/serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Validity Not Before: Aug 3 01:43:55 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad8b5b-c982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:16:56:fe:29:60:53:ba:fe:08:3e:d0:4e:12: 5d:59:38:21:b2:94:df:ea:ab:fc:27:49:cb:dc:25: 06:7a:1e:ee:27:b0:36:66:0c:92:5c:82:df:9d:32: 87:19:d1:b6:38:70:b8:90:1f:d7:57:07:29:82:3a: 9d:2c:2b:6b:02:55:48:2f:39:54:5e:84:8f:64:74: 6a:56:54:6b:bc:33:ea:4c:0c:63:fc:09:13:70:dc: 84:83:cd:4d:b0:23:71:14:95:52:e5:34:b3:a4:ca: a5:40:a9:df:3b:21:5f:7a:9b:3c:fa:89:6b:cf:05: 69:35:28:2b:b0:b8:0d:c8:ab:56:6d:fa:28:bf:e4: d7:3f:31:f3:c1:2e:f4:a4:5e:fa:b3:0a:25:04:88: d2:c1:c8:d2:72:5f:f8:ad:c3:65:64:f6:a0:45:02: 7f:f9:f5:e8:41:81:01:70:8e:16:83:ab:35:7f:3e: b4:27:99:d1:c6:d2:d2:3b:8d:d0:2a:e6:65:09:3f: d8:84:b0:77:21:9c:de:2c:79:1f:34:c0:ba:a8:f7: bf:c4:6a:d9:df:c9:13:1c:39:48:7a:06:74:ad:aa: 86:28:a7:3c:f3:68:65:b5:dd:81:14:a1:7a:26:b8: 01:d4:82:f9:7e:ef:5d:8b:be:94:41:0c:5c:7a:cf: 42:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:DA:B7:EB:0F:C4:DE:55:30:77:63:39:0D:16:CA:F5:C0:A6:8D:88 X509v3 Authority Key Identifier: keyid:6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/A26BC92C09F511EC8F20233BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.22.196.0/22 115.31.88.0/24 115.31.91.0/24 Signature Algorithm: sha256WithRSAEncryption cc:4a:8f:fd:ea:f5:8f:09:1a:1d:43:f2:dc:48:a4:4e:99:d0: 11:eb:e7:12:7a:d7:4d:28:b0:90:9a:2a:82:c4:5e:70:99:84: 88:59:03:00:cb:29:a1:84:62:7f:ae:92:60:74:5e:41:48:b3: e4:62:af:28:84:7f:2d:7f:50:ba:b7:68:c8:ba:47:d1:58:cb: d6:e7:1a:78:d9:77:ee:c0:f3:8e:39:c8:67:12:f2:b0:c8:31: 48:4a:a3:06:e2:5e:78:de:bb:6d:d0:be:b7:78:48:92:88:25: bc:91:60:31:0f:05:b1:1e:5d:6d:a3:82:77:4d:42:7b:b4:03: f7:72:b6:05:db:23:ad:8f:02:6c:5f:d5:d1:8e:d7:e8:d7:dd: 1f:51:7c:e3:6c:87:c1:56:d3:38:52:85:a5:27:bd:d6:38:2e: 79:ad:96:a2:8e:57:f1:69:b6:8a:b2:36:93:d0:d3:75:5b:5d: a4:b2:4d:3c:55:77:8d:4b:ae:eb:8e:63:26:0d:85:71:fc:20: ec:7f:01:de:65:ce:2d:49:c6:96:e0:98:85:e5:3b:52:85:04: a7:41:b8:2b:54:eb:99:57:18:aa:51:a6:d7:c5:01:99:4b:52: 7c:8a:5f:35:78:1f:e6:ce:08:bd:17:ad:78:d1:da:7c:e0:e7: 3f:41:3f:2f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZDQjAxMTAvBgNVBAUTKDZEMTc1QTc0QzFBMDk4QkZBMkRGN0VFNDM3MTYwNUZG NkEzMDQyNDkwHhcNMjQwODAzMDE0MzU1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkOGI1Yi1jOTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhZW/ilgU7r+CD7QThJdWTghspTf6qv8J0nL3CUGeh7uJ7A2ZgySXILfnTKH GdG2OHC4kB/XVwcpgjqdLCtrAlVILzlUXoSPZHRqVlRrvDPqTAxj/AkTcNyEg81N sCNxFJVS5TSzpMqlQKnfOyFfeps8+olrzwVpNSgrsLgNyKtWbfoov+TXPzHzwS70 pF76swolBIjSwcjScl/4rcNlZPagRQJ/+fXoQYEBcI4Wg6s1fz60J5nRxtLSO43Q KuZlCT/YhLB3IZzeLHkfNMC6qPe/xGrZ38kTHDlIegZ0raqGKKc882hltd2BFKF6 JrgB1IL5fu9di76UQQxces9CvwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAnat+sP xN5VMHdjOQ0WyvXApo2IMB8GA1UdIwQYMBaAFG0XWnTBoJi/ot9+5DcWBf9qMEJJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkNCMC8zNTU2MjAxQzA5 MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21MLWkzMzdrTnhZRl8yb3dR a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JSZGFkTUdnbUwtaTMzN2tOeFlGXzJvd1Fray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZDQjAvMzU1NjIwMUMwOTMyMTFFQzk4QjhERjBFQzRGOUFFMDIvQTI2QkM5MkMw OUY1MTFFQzhGMjAyMzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnFsQDBABzH1gDBABzH1swDQYJKoZIhvcNAQELBQADggEB AMxKj/3q9Y8JGh1D8txIpE6Z0BHr5xJ6100osJCaKoLEXnCZhIhZAwDLKaGEYn+u kmB0XkFIs+RiryiEfy1/ULq3aMi6R9FYy9bnGnjZd+7A8445yGcS8rDIMUhKowbi Xnjeu23Qvrd4SJKIJbyRYDEPBbEeXW2jgndNQnu0A/dytgXbI62PAmxf1dGO1+jX 3R9RfONsh8FW0zhShaUnvdY4LnmtlqKOV/FptoqyNpPQ03VbXaSyTTxVd41LruuO YyYNhXH8IOx/Ad5lzi1JxpbgmIXlO1KFBKdBuCtU65lXGKpRptfFAZlLUnyKXzV4 H+bOCL0XrXjR2nzg5z9BPy8= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:39 2024 by rpki-client on console-fra.rpki-client.org