$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/168BE8747EEE11ECAB036C59C4F9AE02.roa File: 168BE8747EEE11ECAB036C59C4F9AE02.roa (raw, json) Hash identifier: sMkmA3v1p4jx5f3ipHrRmT8JP1JXJsSi8TF2vkWAUxc= Subject key identifier: 2A:92:18:D6:A9:E6:20:89:55:A2:1C:1A:E8:7C:54:52:6A:1D:5C:D5 Certificate issuer: /CN=A91FDAD4/serialNumber=5430A414AA05B6731DC2D64A70C619C669346A0E Certificate serial: 03BB Authority key identifier: 54:30:A4:14:AA:05:B6:73:1D:C2:D6:4A:70:C6:19:C6:69:34:6A:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/168BE8747EEE11ECAB036C59C4F9AE02.roa Signing time: Thu 07 Nov 2024 21:08:07 +0000 ROA not before: Thu 07 Nov 2024 21:08:07 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 149440 IP address blocks: 103.179.142.0/24 maxlen: 24 103.179.143.0/24 maxlen: 24 223.165.6.0/24 maxlen: 24 2400:8d60:1::/48 maxlen: 48 2400:8d60:2::/48 maxlen: 48 2400:8d60:3::/48 maxlen: 48 2400:8d60:4::/48 maxlen: 48 2400:8d60:5::/48 maxlen: 48 2400:8d60:6::/48 maxlen: 48 2400:8d60:7::/48 maxlen: 48 2400:8d60:8::/48 maxlen: 48 2400:8d60:9::/48 maxlen: 48 2400:8d60:10::/48 maxlen: 48 2400:8d60:11::/48 maxlen: 48 2400:8d60:12::/48 maxlen: 48 2400:8d60:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 955 (0x3bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4/serialNumber=5430A414AA05B6731DC2D64A70C619C669346A0E Validity Not Before: Nov 7 21:08:07 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=672d2c36-033e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e4:52:01:90:78:13:79:6c:a2:a8:e0:36:ce: 99:46:5e:a3:7e:a5:06:44:a0:a4:18:b8:60:b2:29: 48:32:25:b8:0b:19:ac:b4:88:92:17:e8:d6:05:9b: 23:d3:46:06:ca:00:52:64:41:48:6f:8d:99:c4:db: db:36:3c:b1:55:1b:b8:b8:22:5f:e0:f7:68:0c:e3: 64:6a:96:a7:e1:52:98:2a:3d:c7:f4:76:71:e1:2f: 4b:6d:81:d9:04:56:24:7c:a0:e6:ff:32:dd:c4:12: a1:4c:d2:7b:76:25:aa:e3:7d:44:a5:77:b0:7e:59: 33:17:3f:8b:f7:bf:e8:14:22:a6:fd:3e:84:9a:1a: 73:ee:68:43:96:23:32:89:93:e1:7b:f7:05:c2:d7: 4d:ae:d6:bf:aa:44:fa:58:b5:f3:c8:85:2c:da:e3: b2:1e:e9:8e:b0:95:ed:93:04:0e:5e:c7:bd:23:2b: d1:99:de:f0:85:82:89:ac:33:e0:ed:51:00:5a:64: 41:a8:a3:68:9c:2e:8f:53:41:7c:bf:d3:a3:05:96: 45:36:85:04:06:f8:68:e2:77:ca:bc:14:52:40:53: c1:31:e3:bc:e0:ee:c4:2e:50:95:aa:0a:4c:2e:8e: 4a:45:fe:f7:79:2b:7a:c2:e5:6f:8a:73:37:b5:e0: 2c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:92:18:D6:A9:E6:20:89:55:A2:1C:1A:E8:7C:54:52:6A:1D:5C:D5 X509v3 Authority Key Identifier: keyid:54:30:A4:14:AA:05:B6:73:1D:C2:D6:4A:70:C6:19:C6:69:34:6A:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/168BE8747EEE11ECAB036C59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.142.0/23 223.165.6.0/24 IPv6: 2400:8d60:1::-2400:8d60:9:ffff:ffff:ffff:ffff:ffff 2400:8d60:10::/46 Signature Algorithm: sha256WithRSAEncryption 07:bd:46:93:a1:18:e1:5a:16:70:90:08:55:ca:5f:5e:53:d4: c7:86:dc:46:1c:93:7b:56:58:96:dd:18:62:cb:9a:6a:f0:40: 1a:5e:c8:16:fc:54:a2:ae:2e:54:1f:6c:e2:c7:17:a7:78:f8: 87:e9:dd:7b:42:5e:cb:b6:d5:f8:9c:af:37:8e:29:ed:17:0a: 1e:1e:95:08:ef:9c:ec:d8:75:bb:8d:77:92:81:cc:7c:6c:58: f9:9d:c2:dc:54:4f:d2:98:a3:22:e6:8c:80:17:aa:d1:58:ff: 3d:e7:38:6b:95:a6:26:d2:c1:f2:9b:1e:23:db:c1:28:c3:03: 1c:a2:2f:9f:d1:09:18:53:b6:63:e8:a6:c6:e3:ab:6a:77:c0: 85:92:24:8e:7e:5c:8c:70:c7:9e:ea:a9:de:14:d3:06:4d:84: 22:ea:ef:97:73:2d:8e:92:69:94:b7:e9:32:a2:f4:0e:e9:4e: 0f:ed:b8:99:32:62:13:08:9c:a3:47:3b:ac:1c:2b:30:da:5f: 3e:c4:0b:f1:ed:b4:28:0b:4f:b6:be:ac:66:ac:4d:42:2f:46: e4:63:f4:d6:e9:b3:50:07:ce:d8:22:51:c9:8b:a8:0b:19:02: 1b:25:e6:8d:59:03:50:df:5d:02:d0:3e:85:52:a7:4c:68:6c: 35:6b:b0:b4 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICA7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKDU0MzBBNDE0QUEwNUI2NzMxREMyRDY0QTcwQzYxOUM2 NjkzNDZBMEUwHhcNMjQxMTA3MjEwODA3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJkMmMzNi0wMzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuRSAZB4E3lsoqjgNs6ZRl6jfqUGRKCkGLhgsilIMiW4CxmstIiSF+jWBZsj 00YGygBSZEFIb42ZxNvbNjyxVRu4uCJf4PdoDONkapan4VKYKj3H9HZx4S9LbYHZ BFYkfKDm/zLdxBKhTNJ7diWq431EpXewflkzFz+L97/oFCKm/T6Emhpz7mhDliMy iZPhe/cFwtdNrta/qkT6WLXzyIUs2uOyHumOsJXtkwQOXse9IyvRmd7whYKJrDPg 7VEAWmRBqKNonC6PU0F8v9OjBZZFNoUEBvho4nfKvBRSQFPBMeO84O7ELlCVqgpM Lo5KRf73eSt6wuVvinM3teAsiQIDAQABo4ICwDCCArwwHQYDVR0OBBYEFCqSGNap 5iCJVaIcGuh8VFJqHVzVMB8GA1UdIwQYMBaAFFQwpBSqBbZzHcLWSnDGGcZpNGoO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DNDIzMTgzMDc3 QjUxMUVDQTVCQ0UwNUZDNEY5QUUwMi9WRENrRktvRnRuTWR3dFpLY01ZWnhtazBh ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZEQ2tGS29GdG5NZHd0WktjTVlaeG1rMGFnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBRDQvQzQyMzE4MzA3N0I1MTFFQ0E1QkNFMDVGQzRGOUFFMDIvMTY4QkU4NzQ3 RUVFMTFFQ0FCMDM2QzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MBIEAgABMAwDBAFns44DBADfpQYwIwQCAAIwHTASAwcAJACNYAABAwcBJACN YAAIAwcCJACNYAAQMA0GCSqGSIb3DQEBCwUAA4IBAQAHvUaToRjhWhZwkAhVyl9e U9THhtxGHJN7VliW3Rhiy5pq8EAaXsgW/FSiri5UH2zixxenePiH6d17Ql7LttX4 nK83jintFwoeHpUI75zs2HW7jXeSgcx8bFj5ncLcVE/SmKMi5oyAF6rRWP895zhr laYm0sHymx4j28EowwMcoi+f0QkYU7Zj6KbG46tqd8CFkiSOflyMcMee6qneFNMG TYQi6u+Xcy2OkmmUt+kyovQO6U4P7biZMmITCJyjRzusHCsw2l8+xAvx7bQoC0+2 vqxmrE1CL0bkY/TW6bNQB87YIlHJi6gLGQIbJeaNWQNQ310C0D6FUqdMaGw1a7C0 -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:34 2024 by rpki-client on console-fra.rpki-client.org