$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/E7C34456073711ED8BA93630C4F9AE02.roa File: E7C34456073711ED8BA93630C4F9AE02.roa (raw, json) Hash identifier: kldDMFdCdKUVHMXGUfTfraYPzp89poxoo5pvwA3fx9Y= Subject key identifier: 3A:38:B2:3E:D0:D2:C7:12:97:70:24:4B:1D:CD:5C:40:04:48:A0:E4 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 0200 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/E7C34456073711ED8BA93630C4F9AE02.roa Signing time: Thu 29 Aug 2024 03:15:53 +0000 ROA not before: Thu 29 Aug 2024 03:15:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 58423 IP address blocks: 43.254.20.0/24 maxlen: 24 43.254.21.0/24 maxlen: 24 43.254.22.0/24 maxlen: 24 43.254.23.0/24 maxlen: 24 103.5.72.0/24 maxlen: 24 103.5.73.0/24 maxlen: 24 103.5.74.0/24 maxlen: 24 103.5.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Aug 29 03:15:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cfe7e9-fa64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:52:06:01:de:d8:85:c9:c4:13:a7:7b:ea:85: 70:6b:1e:0b:ee:76:77:c2:8e:96:d8:88:70:2c:92: 3b:e0:85:1c:45:78:7b:6b:80:9a:dc:09:82:2e:0a: db:fd:d2:c2:cb:29:13:c8:93:17:a7:89:4c:f9:09: b8:df:13:79:5c:a5:5b:74:23:fa:d3:a7:88:f3:74: 79:b3:81:8a:62:e4:47:64:4d:08:02:aa:e2:95:08: a3:af:f7:80:91:99:75:53:81:7c:b4:38:6b:5e:e5: cc:6b:5b:3c:89:61:c3:c0:d1:d2:7e:46:8e:bb:64: 77:9a:48:92:c3:6a:91:a9:58:3f:61:3a:33:f3:9b: 52:ef:18:bb:4a:eb:9f:5e:5c:1b:7d:5b:ed:96:d1: e1:ec:aa:8b:fe:f1:e0:92:dd:b4:ba:d5:a6:b7:cc: 19:c3:b3:28:0f:6b:fd:af:f3:d1:9f:c0:bd:de:2e: f4:08:ab:33:d8:2a:f4:c3:9e:58:c9:40:34:b9:e3: 47:06:4e:e4:d5:53:f6:20:3f:f8:ba:8d:d5:a7:1e: 41:89:d5:05:f3:68:1d:15:54:51:cc:6b:03:4b:d1: ce:29:ea:bb:16:d5:72:56:d6:1a:29:12:c1:58:6f: 43:59:aa:be:e9:2a:9c:3f:f5:b0:58:2e:c4:44:60: c7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:38:B2:3E:D0:D2:C7:12:97:70:24:4B:1D:CD:5C:40:04:48:A0:E4 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/E7C34456073711ED8BA93630C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.20.0/22 103.5.72.0/22 Signature Algorithm: sha256WithRSAEncryption 72:3d:e9:41:88:d4:88:a2:7b:f3:96:d3:bc:05:98:ca:e4:c0: f2:1d:c8:4b:09:17:5c:af:73:ed:97:e3:39:fa:72:9a:75:4b: ff:f8:60:ac:eb:3a:83:a3:27:2c:ee:77:0d:0e:03:8a:18:f5: 61:b0:42:e2:e3:37:7a:c0:28:ea:d8:14:6f:ac:94:87:92:9e: ff:2f:e6:d1:93:b5:57:91:0f:36:6e:38:ef:53:6a:38:5f:88: 9a:96:8b:69:27:38:19:8a:94:13:a6:fc:1a:34:31:6f:79:63: cc:b6:f2:3c:5a:82:e7:53:49:a0:ce:c3:63:02:75:e7:8b:75: c3:14:09:c0:99:a1:42:d5:8a:10:6f:7f:ee:17:c7:bb:35:1f: 35:95:fd:da:32:1f:42:e1:fb:9e:02:39:13:d8:84:82:6a:de: 75:0c:95:14:ea:2b:19:9a:37:41:ab:75:36:85:59:24:f1:ef: 6f:84:56:8c:cf:66:2c:18:20:f4:52:df:d4:ee:ab:aa:b6:11: 15:c4:53:c3:03:f3:55:51:e7:a5:80:27:35:a1:c4:42:62:c6: 5a:33:46:09:90:af:80:35:9b:c0:e5:42:af:01:33:7d:16:67: 7a:65:ea:fb:c1:b7:3b:ac:aa:7c:43:fc:c4:6f:81:61:48:e4: 28:67:60:5c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjQwODI5MDMxNTUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNmZTdlOS1mYTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVIGAd7YhcnEE6d76oVwax4L7nZ3wo6W2IhwLJI74IUcRXh7a4Ca3AmCLgrb /dLCyykTyJMXp4lM+Qm43xN5XKVbdCP606eI83R5s4GKYuRHZE0IAqrilQijr/eA kZl1U4F8tDhrXuXMa1s8iWHDwNHSfkaOu2R3mkiSw2qRqVg/YToz85tS7xi7Suuf XlwbfVvtltHh7KqL/vHgkt20utWmt8wZw7MoD2v9r/PRn8C93i70CKsz2Cr0w55Y yUA0ueNHBk7k1VP2ID/4uo3Vpx5BidUF82gdFVRRzGsDS9HOKeq7FtVyVtYaKRLB WG9DWaq+6SqcP/WwWC7ERGDHuwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDo4sj7Q 0scSl3AkSx3NXEAESKDkMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg3OUMvRTFEMjAyOTIwNzM0MTFFREIwNEQzNzJEQzRGOUFFMDIvRTdDMzQ0NTYw NzM3MTFFRDhCQTkzNjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/hQDBAJnBUgwDQYJKoZIhvcNAQELBQADggEBAHI96UGI 1Iiie/OW07wFmMrkwPIdyEsJF1yvc+2X4zn6cpp1S//4YKzrOoOjJyzudw0OA4oY 9WGwQuLjN3rAKOrYFG+slIeSnv8v5tGTtVeRDzZuOO9TajhfiJqWi2knOBmKlBOm /Bo0MW95Y8y28jxagudTSaDOw2MCdeeLdcMUCcCZoULVihBvf+4Xx7s1HzWV/doy H0Lh+54CORPYhIJq3nUMlRTqKxmaN0GrdTaFWSTx72+EVozPZiwYIPRS39Tuq6q2 ERXEU8MD81VR56WAJzWhxEJixlozRgmQr4A1m8DlQq8BM30WZ3pl6vvBtzusqnxD /MRvgWFI5ChnYFw= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org