$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/6903848C20A911EEBEC77485C4F9AE02.roa File: 6903848C20A911EEBEC77485C4F9AE02.roa (raw, json) Hash identifier: S9PKLGYirkzPYGzK9HsINhPnRnovSUZ4iSV2gi5DUCE= Subject key identifier: CA:27:B6:13:78:F7:9E:E7:0B:3F:6C:54:7C:21:83:6E:4C:54:A7:5D Certificate issuer: /CN=A91F7506/serialNumber=FF6A7C2CB3DD2D77BDE68B36BA836C7958A9D4DA Certificate serial: A9 Authority key identifier: FF:6A:7C:2C:B3:DD:2D:77:BD:E6:8B:36:BA:83:6C:79:58:A9:D4:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_2p8LLPdLXe95os2uoNseVip1No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/6903848C20A911EEBEC77485C4F9AE02.roa Signing time: Thu 11 Jan 2024 05:25:57 +0000 ROA not before: Thu 11 Jan 2024 05:25:57 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134068 IP address blocks: 103.56.0.0/23 maxlen: 24 2001:df1:b540::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/_2p8LLPdLXe95os2uoNseVip1No.crl rsync://rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/_2p8LLPdLXe95os2uoNseVip1No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_2p8LLPdLXe95os2uoNseVip1No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7506/serialNumber=FF6A7C2CB3DD2D77BDE68B36BA836C7958A9D4DA Validity Not Before: Jan 11 05:25:57 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659f7be5-93d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:df:de:c1:f5:5b:5d:c0:02:0a:03:58:f6:7a: a3:3f:70:f9:80:ae:a9:dc:a3:91:b7:5e:a3:f3:03: 2f:b7:f4:3e:1b:1c:0d:39:5b:1f:ca:b1:4c:f1:55: 07:21:5a:de:93:91:d8:47:39:79:7b:ae:cd:bf:28: d0:9c:df:c8:0d:e4:89:7b:cf:65:69:43:00:c8:71: 75:db:d4:11:ad:dc:3d:76:d2:c4:b3:d5:f7:da:e3: 91:43:5d:19:af:3c:5d:a2:79:0a:d8:cc:d0:0b:0a: bf:f7:d3:1d:50:66:f2:c0:b4:ba:72:9d:13:df:c0: 8c:01:30:71:e0:6a:4c:d3:a1:91:6b:8d:dc:4b:7d: 85:58:6f:af:54:fa:53:7d:1a:f1:15:1e:96:c5:22: e9:fc:1b:21:fa:55:78:65:bf:f5:c5:cb:3f:de:b8: c4:4e:c3:de:9e:61:0d:cb:5c:fb:0b:80:3b:f5:19: 28:ac:6f:7b:9a:c0:71:95:34:07:9c:17:c4:1e:48: 05:d7:bf:c3:11:19:e1:15:ff:63:c7:20:11:ec:24: 1e:13:fa:e6:bd:6c:0a:ef:82:e0:7a:15:93:d9:2d: e6:bc:00:dc:63:30:8d:b8:95:92:a2:94:e2:fe:63: c4:d3:52:2f:d3:24:24:b8:bd:e8:e8:89:76:4d:62: 40:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:27:B6:13:78:F7:9E:E7:0B:3F:6C:54:7C:21:83:6E:4C:54:A7:5D X509v3 Authority Key Identifier: keyid:FF:6A:7C:2C:B3:DD:2D:77:BD:E6:8B:36:BA:83:6C:79:58:A9:D4:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/_2p8LLPdLXe95os2uoNseVip1No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_2p8LLPdLXe95os2uoNseVip1No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/6903848C20A911EEBEC77485C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.56.0.0/23 IPv6: 2001:df1:b540::/48 Signature Algorithm: sha256WithRSAEncryption 45:ff:2a:da:68:fd:69:10:aa:60:c0:d2:75:2a:68:6c:86:81: 59:a9:d6:d6:89:b6:c5:90:a2:ae:f4:3b:5f:0d:4b:3a:92:ee: e6:c1:70:7f:93:5d:43:4b:35:38:32:70:2a:04:88:92:9d:ff: 39:fb:53:6a:63:b2:6a:8a:d5:bb:7d:a9:2f:9e:86:40:5a:bd: e9:cd:e6:2d:0d:48:f5:96:2d:63:62:89:29:a6:30:fd:65:4c: 08:2e:65:0d:ce:45:7c:4f:38:cd:16:33:4e:e3:e3:3e:09:d1: 5d:3b:52:3e:52:d4:e2:7c:44:10:11:77:ac:02:2e:8b:1a:4c: 7c:7d:e0:1e:69:99:76:24:b5:81:84:aa:85:09:06:ef:52:71: e1:a8:a4:b9:2e:7b:95:33:7e:21:b9:4f:71:df:63:60:e6:e1: c5:04:d1:e8:5c:e9:b5:a7:57:10:77:d1:79:d9:9b:77:a0:d3: 3e:fc:06:fc:a6:5b:6b:5f:90:57:52:da:b7:4a:10:d6:38:9a: 1a:04:22:24:b0:3e:1f:18:2a:d6:27:3e:37:91:ad:6b:d7:d1: 20:4e:1f:8a:d8:20:b7:ad:9d:5c:cf:18:90:ae:a2:08:d9:0c: 37:01:55:03:38:97:bf:e3:62:52:5d:b8:0a:40:4f:a2:1b:b6: 19:c6:24:75 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc1MDYxMTAvBgNVBAUTKEZGNkE3QzJDQjNERDJENzdCREU2OEIzNkJBODM2Qzc5 NThBOUQ0REEwHhcNMjQwMTExMDUyNTU3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmN2JlNS05M2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1d/ewfVbXcACCgNY9nqjP3D5gK6p3KORt16j8wMvt/Q+GxwNOVsfyrFM8VUH IVrek5HYRzl5e67NvyjQnN/IDeSJe89laUMAyHF129QRrdw9dtLEs9X32uORQ10Z rzxdonkK2MzQCwq/99MdUGbywLS6cp0T38CMATBx4GpM06GRa43cS32FWG+vVPpT fRrxFR6WxSLp/Bsh+lV4Zb/1xcs/3rjETsPenmENy1z7C4A79RkorG97msBxlTQH nBfEHkgF17/DERnhFf9jxyAR7CQeE/rmvWwK74LgehWT2S3mvADcYzCNuJWSopTi /mPE01Iv0yQkuL3o6Il2TWJA7wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMonthN4 957nCz9sVHwhg25MVKddMB8GA1UdIwQYMBaAFP9qfCyz3S13veaLNrqDbHlYqdTa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzUwNi85NTU0MjY2MkI2 ODMxMUVEOEExODVDMURDNEY5QUUwMi9fMnA4TExQZExYZTk1b3MydW9Oc2VWaXAx Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18ycDhMTFBkTFhlOTVvczJ1b05zZVZpcDFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjc1MDYvOTU1NDI2NjJCNjgzMTFFRDhBMTg1QzFEQzRGOUFFMDIvNjkwMzg0OEMy MEE5MTFFRUJFQzc3NDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnOAAwDwQCAAIwCQMHACABDfG1QDANBgkqhkiG9w0BAQsF AAOCAQEARf8q2mj9aRCqYMDSdSpobIaBWanW1om2xZCirvQ7Xw1LOpLu5sFwf5Nd Q0s1ODJwKgSIkp3/OftTamOyaorVu32pL56GQFq96c3mLQ1I9ZYtY2KJKaYw/WVM CC5lDc5FfE84zRYzTuPjPgnRXTtSPlLU4nxEEBF3rAIuixpMfH3gHmmZdiS1gYSq hQkG71Jx4aikuS57lTN+IblPcd9jYObhxQTR6FzptadXEHfRedmbd6DTPvwG/KZb a1+QV1Lat0oQ1jiaGgQiJLA+Hxgq1ic+N5Gta9fRIE4fitggt62dXM8YkK6iCNkM NwFVAziXv+NiUl24CkBPohu2GcYkdQ== -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org