$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa File: FCC3542E445E11EBB692887EC4F9AE02.roa (raw, json) Hash identifier: mIOY2vhOsc+nNqge7lnkHLB5M4DsgX2WsmX/mvk1lyU= Subject key identifier: AD:19:14:DA:5F:F5:86:3F:D0:82:BF:F3:05:6F:02:ED:67:92:3A:6A Certificate issuer: /CN=A91E0435/serialNumber=42911B109D46E88661FA85616C812803C5AB3C64 Certificate serial: 06AC Authority key identifier: 42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa Signing time: Mon 02 Dec 2024 22:00:56 +0000 ROA not before: Mon 02 Dec 2024 22:00:56 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 141456 IP address blocks: 103.160.8.0/24 maxlen: 24 103.160.20.0/24 maxlen: 24 2001:df1:3a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.crl rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1708 (0x6ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0435, serialNumber=42911B109D46E88661FA85616C812803C5AB3C64 Validity Not Before: Dec 2 22:00:56 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e2e18-c028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:33:61:d5:6f:b4:cb:1f:ff:20:ef:6d:57:ef: 3b:e4:46:a2:00:8c:39:1d:dd:a7:7e:5f:5c:30:d7: ed:fa:dd:08:e4:54:38:6c:d1:c3:67:5f:26:d2:9d: 62:eb:ad:62:11:ea:b0:a5:93:03:e3:f5:c9:4f:f0: eb:88:c8:d8:a4:95:8c:c3:71:49:82:69:2c:e2:a7: 12:da:a6:a5:80:ba:7e:ff:61:54:66:a7:e6:95:05: 9d:dd:ff:95:5a:84:4c:8c:c3:49:45:ca:b3:c1:58: f7:3d:24:c6:a6:39:4d:5c:ed:98:26:fd:6f:79:1b: 08:25:e0:75:df:6d:27:3e:fd:41:a5:25:b3:57:ac: 74:68:65:bf:ea:7c:35:e4:40:cb:4a:24:8d:97:f0: db:2f:5a:1b:0f:99:f3:d6:24:ba:7c:38:d2:47:98: 71:ea:da:2c:6a:bd:eb:80:19:6a:c3:f4:9f:74:ab: 26:31:57:aa:9c:25:b0:7f:a7:f2:d1:c2:e0:62:cd: a7:ff:de:38:0e:74:5c:6b:cb:6d:5b:b5:15:d3:d9: 83:a9:70:9d:82:e1:6b:3d:c5:a7:dc:13:0e:92:19: 45:10:3b:0a:e0:29:98:11:a9:cd:e6:06:10:72:18: 1c:d0:c3:5e:f8:2a:dd:96:2e:90:25:d6:c9:4e:31: 5b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:19:14:DA:5F:F5:86:3F:D0:82:BF:F3:05:6F:02:ED:67:92:3A:6A X509v3 Authority Key Identifier: keyid:42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.8.0/24 103.160.20.0/24 IPv6: 2001:df1:3a40::/48 Signature Algorithm: sha256WithRSAEncryption 05:1a:17:6d:1b:05:e4:e5:9f:e4:d6:d6:6a:63:b3:03:ef:7d: cb:ae:29:b9:b9:97:45:68:e8:87:43:ae:44:bd:d7:0b:7e:4a: b1:4f:34:e8:80:c6:29:f4:c9:e1:97:57:37:8a:53:2e:e6:d7: 61:57:cb:f2:10:05:d7:3f:ef:ee:9b:8f:83:cb:ef:b2:05:b9: af:84:cd:50:2e:1e:52:46:e6:cd:f6:80:01:e2:a6:3c:da:60: 35:89:75:12:28:7e:86:a2:b7:9c:b5:d9:e6:f9:9a:ed:49:7e: f6:b6:4b:77:16:6f:e7:e7:c5:0f:90:b3:42:8a:4d:56:af:a2: e8:2d:5e:15:d5:86:46:d7:ac:2c:a8:8a:c1:6e:5c:eb:3e:c4: 83:a7:bc:26:2e:5c:af:f9:3a:b1:64:cd:e3:69:66:38:a3:20: c7:54:8d:1a:a9:25:80:17:b0:0e:1c:4b:6d:76:09:f2:fc:34: eb:c1:a0:17:ae:a4:7f:00:29:3e:89:84:2d:9c:a1:e7:ed:76: 9f:37:84:17:5e:d8:ab:e6:c6:01:e9:cc:74:bc:49:ee:6d:a4: df:52:b7:af:c5:40:58:d6:a8:33:62:b9:00:10:8e:c4:5c:78: 65:80:2b:53:f7:57:4e:02:53:3c:b0:03:20:e1:7e:9e:05:ad: aa:7c:97:fc -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0MzUxMTAvBgNVBAUTKDQyOTExQjEwOUQ0NkU4ODY2MUZBODU2MTZDODEyODAz QzVBQjNDNjQwHhcNMjQxMjAyMjIwMDU2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlMmUxOC1jMDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzNh1W+0yx//IO9tV+875EaiAIw5Hd2nfl9cMNft+t0I5FQ4bNHDZ18m0p1i 661iEeqwpZMD4/XJT/DriMjYpJWMw3FJgmks4qcS2qalgLp+/2FUZqfmlQWd3f+V WoRMjMNJRcqzwVj3PSTGpjlNXO2YJv1veRsIJeB1320nPv1BpSWzV6x0aGW/6nw1 5EDLSiSNl/DbL1obD5nz1iS6fDjSR5hx6tosar3rgBlqw/SfdKsmMVeqnCWwf6fy 0cLgYs2n/944DnRca8ttW7UV09mDqXCdguFrPcWn3BMOkhlFEDsK4CmYEanN5gYQ chgc0MNe+Crdli6QJdbJTjFb8QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFK0ZFNpf 9YY/0IK/8wVvAu1nkjpqMB8GA1UdIwQYMBaAFEKRGxCdRuiGYfqFYWyBKAPFqzxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDQzNS9EMjg4NUJDNDQ0 NUQxMUVCQTUxNzQ1N0VDNEY5QUUwMi9RcEViRUoxRzZJWmgtb1ZoYklFb0E4V3JQ R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwRWJFSjFHNklaaC1vVmhiSUVvQThXclBHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA0MzUvRDI4ODVCQzQ0NDVEMTFFQkE1MTc0NTdFQzRGOUFFMDIvRkNDMzU0MkU0 NDVFMTFFQkI2OTI4ODdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnoAgDBABnoBQwDwQCAAIwCQMHACABDfE6QDANBgkqhkiG 9w0BAQsFAAOCAQEABRoXbRsF5OWf5NbWamOzA+99y64pubmXRWjoh0OuRL3XC35K sU806IDGKfTJ4ZdXN4pTLubXYVfL8hAF1z/v7puPg8vvsgW5r4TNUC4eUkbmzfaA AeKmPNpgNYl1Eih+hqK3nLXZ5vma7Ul+9rZLdxZv5+fFD5CzQopNVq+i6C1eFdWG RtesLKiKwW5c6z7Eg6e8Ji5cr/k6sWTN42lmOKMgx1SNGqklgBewDhxLbXYJ8vw0 68GgF66kfwApPomELZyh5+12nzeEF17Yq+bGAenMdLxJ7m2k31K3r8VAWNaoM2K5 ABCOxFx4ZYArU/dXTgJTPLADIOF+ngWtqnyX/A== -----END CERTIFICATE-----Generated at Sat Apr 26 08:15:04 2025 by rpki-client