$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/106F283CB74311EDB0C38030C4F9AE02.roa File: 106F283CB74311EDB0C38030C4F9AE02.roa (raw, json) Hash identifier: 2ess2+aqjcLPy2+BGdLHTuvI+dzY0+eD7HCX2k3smvc= Subject key identifier: 96:AB:DA:B0:76:82:5E:07:94:DE:ED:D7:E8:D8:46:B1:45:DB:E0:B0 Certificate issuer: /CN=A91FA9BC/serialNumber=4ABBD7301CFF7FB4ACB6A04A14F0A36CCE85611C Certificate serial: F7 Authority key identifier: 4A:BB:D7:30:1C:FF:7F:B4:AC:B6:A0:4A:14:F0:A3:6C:CE:85:61:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrvXMBz_f7SstqBKFPCjbM6FYRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/106F283CB74311EDB0C38030C4F9AE02.roa Signing time: Sun 07 Apr 2024 06:08:48 +0000 ROA not before: Sun 07 Apr 2024 06:08:48 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150787 IP address blocks: 103.163.225.0/24 maxlen: 24 103.243.179.0/24 maxlen: 24 2001:df6:3480::/47 maxlen: 47 2001:df6:3480::/48 maxlen: 48 2001:df6:3481::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/SrvXMBz_f7SstqBKFPCjbM6FYRw.crl rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/SrvXMBz_f7SstqBKFPCjbM6FYRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrvXMBz_f7SstqBKFPCjbM6FYRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA9BC/serialNumber=4ABBD7301CFF7FB4ACB6A04A14F0A36CCE85611C Validity Not Before: Apr 7 06:08:48 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66123870-9bb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:75:a2:14:5c:e4:3c:a3:de:f2:98:b7:84:9e: 80:46:5b:5c:c6:17:48:c3:1c:d4:1f:3a:0a:86:89: c4:13:23:18:22:a0:8c:77:17:57:51:d5:62:ac:05: 75:7c:27:0d:30:b3:fb:92:59:77:15:80:03:cd:43: 1b:9d:75:13:5c:12:08:58:43:b6:da:a6:9b:1c:7d: a8:1f:89:b3:1a:41:6c:05:65:e4:e8:26:e4:26:31: 63:22:d9:45:93:0a:e7:58:ed:a2:0a:98:1f:f8:23: 86:87:b8:f7:83:a5:98:ea:2b:41:b3:46:fd:49:ed: 3e:36:ce:78:96:ac:3a:4e:a7:71:a6:8f:af:47:92: f8:21:1d:43:ae:ea:5e:54:76:3c:33:88:bb:38:53: d3:d7:3f:9c:56:c5:2b:0e:c7:41:6f:38:7b:70:b6: bf:c9:f0:f6:77:c9:3c:d0:26:8b:d6:4a:03:f5:0a: 75:59:de:e5:8b:57:65:4b:1d:5f:f6:a3:51:6d:b4: 18:28:ee:17:0c:ad:b6:08:07:ab:cf:8b:b5:1f:06: 71:95:06:ae:14:27:0c:cc:03:c7:e4:7a:e9:2c:c8: 50:55:5a:2a:67:cb:3f:2d:bc:b3:3c:18:53:15:e8: e2:12:76:59:8b:5f:8a:2d:2c:27:e1:43:58:dc:0a: 1a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AB:DA:B0:76:82:5E:07:94:DE:ED:D7:E8:D8:46:B1:45:DB:E0:B0 X509v3 Authority Key Identifier: keyid:4A:BB:D7:30:1C:FF:7F:B4:AC:B6:A0:4A:14:F0:A3:6C:CE:85:61:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/SrvXMBz_f7SstqBKFPCjbM6FYRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrvXMBz_f7SstqBKFPCjbM6FYRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/106F283CB74311EDB0C38030C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.225.0/24 103.243.179.0/24 IPv6: 2001:df6:3480::/47 Signature Algorithm: sha256WithRSAEncryption a6:d8:a9:c0:a6:70:d2:f7:49:45:eb:78:1f:20:52:60:e6:70: f4:d9:2e:01:dc:bc:0c:98:3b:8a:83:c5:12:02:f6:df:51:99: ab:ff:9a:bb:e6:8e:b8:36:1c:eb:d6:91:e4:85:06:fc:25:31: 97:5b:dc:97:c5:9c:df:52:55:ce:67:2b:a9:62:c8:10:b0:41: fa:5c:ea:f7:6b:15:e8:e6:f2:ca:13:ae:d0:97:4c:eb:44:27: b7:49:8f:1a:09:90:9e:30:80:a4:bf:ef:55:e4:97:71:08:cf: 9e:c0:66:c2:c9:bb:62:7e:4f:8b:42:b0:04:b0:d0:ab:be:cc: fb:92:19:09:68:54:fe:42:f6:52:8f:37:04:9b:a8:49:03:9f: 21:8d:6d:7f:3a:cb:c0:51:f0:ce:52:6e:23:44:d0:ce:94:a1: 70:b0:07:ad:07:18:a2:d4:bb:a0:57:e7:f7:51:15:15:f8:34: 23:dd:38:50:d1:4a:34:52:86:4a:aa:1a:87:66:66:36:4e:ab: f0:e1:b6:1b:60:83:5e:9b:6a:b2:7c:d3:ad:01:4d:9d:21:6b: 5b:f9:cb:fa:6b:a5:98:79:d1:74:ab:57:b8:cf:9d:87:53:c6: 74:38:da:5f:e2:d3:ee:90:65:f7:0a:6f:5d:37:5d:ce:f8:b8: d8:0e:e9:bd -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE5QkMxMTAvBgNVBAUTKDRBQkJENzMwMUNGRjdGQjRBQ0I2QTA0QTE0RjBBMzZD Q0U4NTYxMUMwHhcNMjQwNDA3MDYwODQ4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjEyMzg3MC05YmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunWiFFzkPKPe8pi3hJ6ARltcxhdIwxzUHzoKhonEEyMYIqCMdxdXUdVirAV1 fCcNMLP7kll3FYADzUMbnXUTXBIIWEO22qabHH2oH4mzGkFsBWXk6CbkJjFjItlF kwrnWO2iCpgf+COGh7j3g6WY6itBs0b9Se0+Ns54lqw6Tqdxpo+vR5L4IR1Drupe VHY8M4i7OFPT1z+cVsUrDsdBbzh7cLa/yfD2d8k80CaL1koD9Qp1Wd7li1dlSx1f 9qNRbbQYKO4XDK22CAerz4u1HwZxlQauFCcMzAPH5HrpLMhQVVoqZ8s/LbyzPBhT FejiEnZZi1+KLSwn4UNY3AoaFQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJar2rB2 gl4HlN7t1+jYRrFF2+CwMB8GA1UdIwQYMBaAFEq71zAc/3+0rLagShTwo2zOhWEc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTlCQy9CRTJDRUZGMEIz QUExMUVEQUYzMTYyM0ZDNEY5QUUwMi9TcnZYTUJ6X2Y3U3N0cUJLRlBDamJNNkZZ UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NydlhNQnpfZjdTc3RxQktGUENqYk02RllSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE5QkMvQkUyQ0VGRjBCM0FBMTFFREFGMzE2MjNGQzRGOUFFMDIvMTA2RjI4M0NC NzQzMTFFREIwQzM4MDMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABno+EDBABn87MwDwQCAAIwCQMHASABDfY0gDANBgkqhkiG 9w0BAQsFAAOCAQEAptipwKZw0vdJRet4HyBSYOZw9NkuAdy8DJg7ioPFEgL231GZ q/+au+aOuDYc69aR5IUG/CUxl1vcl8Wc31JVzmcrqWLIELBB+lzq92sV6ObyyhOu 0JdM60Qnt0mPGgmQnjCApL/vVeSXcQjPnsBmwsm7Yn5Pi0KwBLDQq77M+5IZCWhU /kL2Uo83BJuoSQOfIY1tfzrLwFHwzlJuI0TQzpShcLAHrQcYotS7oFfn91EVFfg0 I904UNFKNFKGSqoah2ZmNk6r8OG2G2CDXptqsnzTrQFNnSFrW/nL+mulmHnRdKtX uM+dh1PGdDjaX+LT7pBl9wpvXTddzvi42A7pvQ== -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:57 2024 by rpki-client on console-ams.rpki-client.org