$ rpki-client -vvf rpki.apnic.net/member_repository/A91307F0/60D0C9FAB8A811ED9FA47843C4F9AE02/E4E7AE6EB8BE11ED83994B4AC4F9AE02.roa File: E4E7AE6EB8BE11ED83994B4AC4F9AE02.roa (raw, json) Hash identifier: 63NoI3hjIPZDykrhVPErerfXonxNepl4GKrFBmEJjM0= Subject key identifier: 98:EE:94:5F:14:35:63:1B:8B:12:FA:53:DF:85:EC:39:4A:46:7B:D5 Certificate issuer: /CN=A91307F0/serialNumber=62BEFA1C238DF8DE972EA5FE18097B112EF0477B Certificate serial: C1 Authority key identifier: 62:BE:FA:1C:23:8D:F8:DE:97:2E:A5:FE:18:09:7B:11:2E:F0:47:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yr76HCON-N6XLqX-GAl7ES7wR3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91307F0/60D0C9FAB8A811ED9FA47843C4F9AE02/E4E7AE6EB8BE11ED83994B4AC4F9AE02.roa Signing time: Sun 03 Mar 2024 05:37:46 +0000 ROA not before: Sun 03 Mar 2024 05:37:46 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 133206 IP address blocks: 103.80.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91307F0/60D0C9FAB8A811ED9FA47843C4F9AE02/Yr76HCON-N6XLqX-GAl7ES7wR3s.crl rsync://rpki.apnic.net/member_repository/A91307F0/60D0C9FAB8A811ED9FA47843C4F9AE02/Yr76HCON-N6XLqX-GAl7ES7wR3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yr76HCON-N6XLqX-GAl7ES7wR3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:35:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91307F0/serialNumber=62BEFA1C238DF8DE972EA5FE18097B112EF0477B Validity Not Before: Mar 3 05:37:46 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e40caa-7fe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:04:9e:fa:b4:4d:05:70:8b:c0:18:09:61:65: 97:33:ca:ad:f5:f7:55:e7:aa:cb:67:56:20:90:85: 9b:0d:d9:a8:59:6e:f7:36:9a:4c:30:2d:0e:44:d9: 76:24:ae:d8:be:1b:ab:9f:e8:64:89:8b:2c:df:62: 7d:3b:e4:a1:99:3e:2c:ba:07:cd:b0:58:94:84:3f: 8d:83:79:39:4e:c3:1f:89:df:f4:6c:ba:19:33:3e: 00:a6:2d:9e:41:46:74:de:78:9c:24:77:03:ae:51: 74:86:b5:3c:b7:60:ff:3b:ce:6d:e4:a9:b6:18:c3: 91:6b:50:f5:51:12:d2:d2:46:2f:64:63:8a:9e:e8: fe:9d:d8:74:6c:f9:71:9f:db:72:07:76:70:18:88: 88:45:87:19:dd:74:4c:9a:c6:65:3d:aa:5e:83:bd: d6:49:92:b4:08:56:da:6f:28:e8:5a:3f:7c:6c:a0: 2a:44:ae:fd:7b:9c:3a:24:28:0c:26:3c:df:2a:a2: 48:b4:89:46:65:b0:c8:ca:37:b9:2e:c4:67:fa:d3: a7:71:70:5a:b4:c0:46:7b:70:65:7e:a2:5e:f4:fa: 00:0a:14:2b:bd:26:f9:83:05:51:b3:52:c9:7c:ef: a6:e5:85:54:38:31:55:4f:59:dd:12:4f:97:9e:9d: 69:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:EE:94:5F:14:35:63:1B:8B:12:FA:53:DF:85:EC:39:4A:46:7B:D5 X509v3 Authority Key Identifier: keyid:62:BE:FA:1C:23:8D:F8:DE:97:2E:A5:FE:18:09:7B:11:2E:F0:47:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91307F0/60D0C9FAB8A811ED9FA47843C4F9AE02/Yr76HCON-N6XLqX-GAl7ES7wR3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yr76HCON-N6XLqX-GAl7ES7wR3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91307F0/60D0C9FAB8A811ED9FA47843C4F9AE02/E4E7AE6EB8BE11ED83994B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.170.0/23 Signature Algorithm: sha256WithRSAEncryption 48:35:5f:f5:26:12:e9:18:a7:5f:15:16:d9:3d:37:4f:48:9f: 37:86:24:91:49:62:29:2d:e9:a7:88:34:af:93:ad:dc:d7:85: e9:80:8e:96:f3:83:48:31:48:c8:b1:80:a5:12:7c:25:a5:1f: 89:86:3e:ae:d2:b1:44:c5:1f:fe:bb:6a:6f:e0:2f:89:25:a6: 9e:27:fd:0d:dd:52:7e:66:9d:a2:fa:a9:ca:0e:a1:75:6a:80: d4:6f:e0:8b:ea:15:05:a9:bc:f2:1b:3e:90:6e:c4:b7:63:43: 25:bd:b7:e7:d8:98:cf:98:ce:33:88:9b:5f:4c:c9:1a:bd:f8: 1e:14:a3:cd:b7:82:fa:33:4d:13:75:bb:7d:b2:2c:21:d3:eb: 2d:64:61:9e:fa:ed:7e:a9:35:64:95:52:f4:69:75:a6:3a:35: 6e:2e:2b:d4:f2:bd:4b:7a:4a:7c:69:4f:a4:98:21:51:38:ff: c7:cf:ad:37:0a:e0:9e:60:96:5b:1e:c7:be:33:ba:82:f4:4f: f4:cc:11:d8:47:0e:fa:cd:1a:a0:1d:89:b0:de:f8:17:26:67: aa:b7:a7:80:da:f2:a7:c1:ba:91:ac:fd:07:dc:07:01:39:d6: 2b:28:f7:eb:a5:aa:00:ca:bb:8f:a5:e4:bc:dd:71:a0:40:28: f5:ca:c0:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA3RjAxMTAvBgNVBAUTKDYyQkVGQTFDMjM4REY4REU5NzJFQTVGRTE4MDk3QjEx MkVGMDQ3N0IwHhcNMjQwMzAzMDUzNzQ2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU0MGNhYS03ZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwASe+rRNBXCLwBgJYWWXM8qt9fdV56rLZ1YgkIWbDdmoWW73NppMMC0ORNl2 JK7Yvhurn+hkiYss32J9O+ShmT4sugfNsFiUhD+Ng3k5TsMfid/0bLoZMz4Api2e QUZ03nicJHcDrlF0hrU8t2D/O85t5Km2GMORa1D1URLS0kYvZGOKnuj+ndh0bPlx n9tyB3ZwGIiIRYcZ3XRMmsZlPapeg73WSZK0CFbabyjoWj98bKAqRK79e5w6JCgM JjzfKqJItIlGZbDIyje5LsRn+tOncXBatMBGe3BlfqJe9PoAChQrvSb5gwVRs1LJ fO+m5YVUODFVT1ndEk+Xnp1phwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJjulF8U NWMbixL6U9+F7DlKRnvVMB8GA1UdIwQYMBaAFGK++hwjjfjely6l/hgJexEu8Ed7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDdGMC82MEQwQzlGQUI4 QTgxMUVEOUZBNDc4NDNDNEY5QUUwMi9Zcjc2SENPTi1ONlhMcVgtR0FsN0VTN3dS M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lyNzZIQ09OLU42WExxWC1HQWw3RVM3d1Izcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzA3RjAvNjBEMEM5RkFCOEE4MTFFRDlGQTQ3ODQzQzRGOUFFMDIvRTRFN0FFNkVC OEJFMTFFRDgzOTk0QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnUKowDQYJKoZIhvcNAQELBQADggEBAEg1X/UmEukYp18V Ftk9N09InzeGJJFJYikt6aeINK+TrdzXhemAjpbzg0gxSMixgKUSfCWlH4mGPq7S sUTFH/67am/gL4klpp4n/Q3dUn5mnaL6qcoOoXVqgNRv4IvqFQWpvPIbPpBuxLdj QyW9t+fYmM+YzjOIm19MyRq9+B4Uo823gvozTRN1u32yLCHT6y1kYZ767X6pNWSV UvRpdaY6NW4uK9TyvUt6SnxpT6SYIVE4/8fPrTcK4J5gllsex74zuoL0T/TMEdhH DvrNGqAdibDe+BcmZ6q3p4Da8qfBupGs/QfcBwE51iso9+ulqgDKu4+l5LzdcaBA KPXKwGM= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org