$ rpki-client -vvf rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa File: 3E730FA28E8111EAB2038B6BC4F9AE02.roa (raw, json) Hash identifier: daPv+SX5G+t+lBu/9eE3wzv1kdiunichnFivR9qNxI4= Subject key identifier: 7A:4E:57:68:0A:93:FB:F3:74:32:B3:3F:1D:48:84:40:4E:F4:B0:B4 Certificate issuer: /CN=A91293F4/serialNumber=E6A54BAD7D176E4447A9E94F24480327C1B40C9E Certificate serial: 092C Authority key identifier: E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa Signing time: Fri 29 Nov 2024 01:31:28 +0000 ROA not before: Fri 29 Nov 2024 01:31:28 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45355 IP address blocks: 45.117.244.0/22 maxlen: 22 103.1.180.0/22 maxlen: 22 103.101.240.0/22 maxlen: 22 202.129.228.0/22 maxlen: 22 2400:6d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2348 (0x92c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91293F4 Validity Not Before: Nov 29 01:31:28 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6749196f-d1b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:dc:60:f5:fc:a2:84:72:06:7a:28:01:7c:f7: 4a:f2:94:ba:81:42:fc:a2:a1:be:5e:f3:ad:93:56: b4:9a:03:af:70:bc:87:06:1a:13:e1:05:3c:30:4c: 48:c4:27:09:56:ae:c7:56:3d:4d:47:2e:ad:ea:f8: ab:29:d9:47:3b:da:94:ad:1a:b5:4d:d8:98:23:ef: 0c:05:5c:72:30:76:49:09:52:51:ac:aa:e3:33:c0: 19:36:2f:20:3d:b2:63:6c:26:f2:39:52:ae:e7:38: f7:77:5b:5c:47:5f:cd:86:6b:ce:da:ec:d2:9b:b3: b4:32:ef:de:c7:09:28:23:36:40:9d:be:0b:e5:ef: e6:9e:20:bc:1d:d0:e7:41:74:b4:e9:83:78:50:53: bd:22:e4:d2:bd:cb:1c:e5:f2:be:74:79:b2:a8:d3: a2:f7:8a:76:cf:9c:ed:20:46:26:e5:c6:10:c2:e0: 7d:66:47:39:cc:db:d5:b7:b1:b1:30:91:80:81:9f: 19:d3:08:c5:59:db:7f:43:34:ae:79:15:a2:b4:a5: e2:0a:15:53:e1:48:64:02:94:c7:47:01:20:19:5f: a5:b7:06:eb:b2:a7:7a:17:4c:df:4c:4e:6f:79:25: 13:03:e2:1f:49:c0:1e:1e:64:44:84:57:3c:28:7b: 3c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:4E:57:68:0A:93:FB:F3:74:32:B3:3F:1D:48:84:40:4E:F4:B0:B4 X509v3 Authority Key Identifier: keyid:E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.244.0/22 103.1.180.0/22 103.101.240.0/22 202.129.228.0/22 IPv6: 2400:6d00::/32 Signature Algorithm: sha256WithRSAEncryption 11:73:df:c9:a5:8d:98:7f:e7:25:07:0a:63:42:1f:39:82:a9: 7b:c8:48:76:45:ee:76:2f:a6:04:4e:1a:79:2b:a2:42:be:e5: d2:b9:83:c4:b2:9d:b6:58:7f:d1:1a:c4:68:ef:f3:c4:cc:14: d2:30:fb:5b:3c:27:af:4a:5d:ab:e3:16:89:4f:4b:2b:10:cf: 2b:c8:38:87:c6:57:0f:21:cc:a5:8c:b5:7d:ac:aa:54:0f:32: 24:00:80:33:a7:44:04:23:16:07:cf:10:09:c0:97:0a:79:8d: f1:3b:4a:99:e2:d6:67:af:11:5d:e0:22:8b:57:eb:ce:ad:95: 2b:21:fd:9d:1e:46:26:3d:11:88:a4:23:a3:c8:b6:17:f1:e2: 08:09:2b:22:f7:1c:95:2d:17:c9:dc:b9:65:84:c8:42:86:71: 1c:1a:5f:10:d5:4d:5e:3b:a1:5b:53:61:02:b4:c2:21:c8:2f: 4e:25:e7:12:e9:62:a5:d8:3c:3e:ca:e7:b3:3b:29:bb:79:e7: 73:bf:6a:03:68:77:e8:8b:65:f8:bc:6d:67:ac:fa:c0:19:77: 1d:49:76:50:71:5a:e0:ef:d4:23:93:35:de:b6:ee:ea:36:a2: d3:40:c0:56:cb:f7:ed:70:cd:d1:7e:9a:a6:16:41:42:b6:6b: 53:bb:f5:86 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICCSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkzRjQxMTAvBgNVBAUTKEU2QTU0QkFEN0QxNzZFNDQ0N0E5RTk0RjI0NDgwMzI3 QzFCNDBDOUUwHhcNMjQxMTI5MDEzMTI4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ5MTk2Zi1kMWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1txg9fyihHIGeigBfPdK8pS6gUL8oqG+XvOtk1a0mgOvcLyHBhoT4QU8MExI xCcJVq7HVj1NRy6t6virKdlHO9qUrRq1TdiYI+8MBVxyMHZJCVJRrKrjM8AZNi8g PbJjbCbyOVKu5zj3d1tcR1/NhmvO2uzSm7O0Mu/exwkoIzZAnb4L5e/mniC8HdDn QXS06YN4UFO9IuTSvcsc5fK+dHmyqNOi94p2z5ztIEYm5cYQwuB9Zkc5zNvVt7Gx MJGAgZ8Z0wjFWdt/QzSueRWitKXiChVT4UhkApTHRwEgGV+ltwbrsqd6F0zfTE5v eSUTA+IfScAeHmREhFc8KHs8NwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHpOV2gK k/vzdDKzPx1IhEBO9LC0MB8GA1UdIwQYMBaAFOalS619F25ER6npTyRIAyfBtAye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTNGNC8xRjY5NUVFQzhF N0YxMUVBQTk1ODRDNjdDNEY5QUUwMi81cVZMclgwWGJrUkhxZWxQSkVnREo4RzBE SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVxVkxyWDBYYmtSSHFlbFBKRWdESjhHMERKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjkzRjQvMUY2OTVFRUM4RTdGMTFFQUE5NTg0QzY3QzRGOUFFMDIvM0U3MzBGQTI4 RTgxMTFFQUIyMDM4QjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAItdfQDBAJnAbQDBAJnZfADBALKgeQwDQQCAAIwBwMFACQA bQAwDQYJKoZIhvcNAQELBQADggEBABFz38mljZh/5yUHCmNCHzmCqXvISHZF7nYv pgROGnkrokK+5dK5g8SynbZYf9EaxGjv88TMFNIw+1s8J69KXavjFolPSysQzyvI OIfGVw8hzKWMtX2sqlQPMiQAgDOnRAQjFgfPEAnAlwp5jfE7Spni1mevEV3gIotX 686tlSsh/Z0eRiY9EYikI6PIthfx4ggJKyL3HJUtF8ncuWWEyEKGcRwaXxDVTV47 oVtTYQK0wiHIL04l5xLpYqXYPD7K57M7Kbt553O/agNod+iLZfi8bWes+sAZdx1J dlBxWuDv1COTNd627uo2otNAwFbL9+1wzdF+mqYWQUK2a1O79YY= -----END CERTIFICATE-----Generated at Sun Apr 6 14:21:34 2025 by rpki-client