$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/9190CF9E2E7811EFB7206224C4F9AE02.roa File: 9190CF9E2E7811EFB7206224C4F9AE02.roa (raw, json) Hash identifier: NisE469y5d348oXLVRF6OR5U4DDqVPlO1GJzigp9ABk= Subject key identifier: FA:F0:DE:0E:CA:B8:39:23:0C:9D:AB:9F:B3:05:F0:ED:B1:F2:9B:E8 Certificate issuer: /CN=A91A0FC0/serialNumber=03EF0E390A315E5F3C461B0A72B218BEE223E00E Certificate serial: 19 Authority key identifier: 03:EF:0E:39:0A:31:5E:5F:3C:46:1B:0A:72:B2:18:BE:E2:23:E0:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A-8OOQoxXl88RhsKcrIYvuIj4A4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/9190CF9E2E7811EFB7206224C4F9AE02.roa Signing time: Wed 19 Jun 2024 20:17:40 +0000 ROA not before: Wed 19 Jun 2024 20:17:40 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 149517 IP address blocks: 103.182.62.0/23 maxlen: 23 103.182.62.0/24 maxlen: 24 103.182.63.0/24 maxlen: 24 2001:df0:75c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/A-8OOQoxXl88RhsKcrIYvuIj4A4.crl rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/A-8OOQoxXl88RhsKcrIYvuIj4A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A-8OOQoxXl88RhsKcrIYvuIj4A4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Dec 2024 00:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0FC0/serialNumber=03EF0E390A315E5F3C461B0A72B218BEE223E00E Validity Not Before: Jun 19 20:17:40 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66733ce3-27ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:89:f4:90:8c:30:53:d7:a5:4e:5e:1c:4f:9e: 42:8c:d9:dd:71:f4:2c:7e:fc:d7:ec:01:54:96:1c: 93:c5:6d:f4:90:10:e4:47:77:4b:5a:eb:9e:93:28: f9:d9:da:16:0a:07:84:41:61:c6:c4:5b:e8:3d:97: f1:e6:71:3a:1c:9f:cd:c0:7a:08:30:76:19:59:a6: 27:17:cb:17:76:66:62:8c:2d:4a:33:64:5a:63:58: d8:9a:fe:c0:7c:93:12:55:1f:83:b5:7e:cd:d7:f2: 76:1e:fc:93:28:cd:51:58:f1:2a:f2:98:cc:47:6a: aa:05:5d:5d:da:ee:a1:7f:dc:db:2f:cf:3c:b5:26: a5:b0:9d:d6:da:24:fb:cd:9f:bd:70:e8:9f:3b:3d: 83:81:82:0b:88:23:9a:3c:87:2b:2e:9c:c6:8d:6f: 6e:6d:24:2f:f2:de:db:03:99:75:0a:14:e0:a4:6a: 9a:75:35:6e:f8:6d:a3:1e:ed:65:75:a5:38:88:2a: 64:4b:3d:73:67:df:8b:bf:53:48:5b:cc:2b:a8:1a: 98:b6:0b:8e:c6:20:5b:2d:d4:88:1b:b1:6f:54:3b: 61:95:ba:78:a9:4e:df:75:20:b7:c4:d1:ae:5d:40: 7c:10:eb:80:30:a6:8d:a6:18:84:ae:9f:15:55:57: 33:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F0:DE:0E:CA:B8:39:23:0C:9D:AB:9F:B3:05:F0:ED:B1:F2:9B:E8 X509v3 Authority Key Identifier: keyid:03:EF:0E:39:0A:31:5E:5F:3C:46:1B:0A:72:B2:18:BE:E2:23:E0:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/A-8OOQoxXl88RhsKcrIYvuIj4A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A-8OOQoxXl88RhsKcrIYvuIj4A4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/9190CF9E2E7811EFB7206224C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.62.0/23 IPv6: 2001:df0:75c0::/48 Signature Algorithm: sha256WithRSAEncryption 4c:7f:31:cc:e0:a3:ef:a9:f8:d9:55:fd:38:5c:3d:db:83:64: 90:33:71:1a:3b:0a:db:b4:48:a3:0c:c6:42:76:f2:91:68:20: a9:dc:9d:8f:4d:bf:72:75:87:f5:49:b0:64:ce:e9:1c:42:76: 42:dc:87:46:03:b2:f5:b1:84:07:51:95:4a:fe:0e:1c:76:4a: 94:e2:9a:a3:be:20:84:85:a4:2c:4f:27:e2:a7:01:8c:65:26: 76:e0:7d:50:4d:cc:d5:c3:69:4c:9e:fa:2c:40:ed:15:08:7f: eb:3b:e0:13:c4:70:45:21:5a:37:b5:e7:2c:1e:bb:03:21:c7: 53:2e:68:f4:d1:5d:65:df:96:c2:83:41:87:ce:66:90:1e:fc: 95:3b:41:aa:fa:be:56:77:f9:9a:ba:d8:54:7a:75:3c:a8:2a: ee:3b:43:7d:b8:1c:2b:16:82:6d:6c:23:03:fa:0b:73:a4:aa: e2:a1:e7:b5:0f:cc:0c:c5:fc:71:1c:5b:e7:ed:0c:4f:ac:8c: 09:95:96:c5:f5:2b:18:72:69:23:ca:79:b9:01:51:35:1f:e4: 28:25:d4:0a:21:20:46:54:bd:61:04:56:74:c9:fa:fa:d7:68: 9b:43:ce:22:96:9e:0c:35:f6:79:63:03:6b:c0:9e:5b:e8:2d: 47:f1:4d:f0 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MEZDMDExMC8GA1UEBRMoMDNFRjBFMzkwQTMxNUU1RjNDNDYxQjBBNzJCMjE4QkVF MjIzRTAwRTAeFw0yNDA2MTkyMDE3NDBaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzMzY2UzLTI3YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUifSQjDBT16VOXhxPnkKM2d1x9Cx+/NfsAVSWHJPFbfSQEORHd0ta656TKPnZ 2hYKB4RBYcbEW+g9l/HmcTocn83AeggwdhlZpicXyxd2ZmKMLUozZFpjWNia/sB8 kxJVH4O1fs3X8nYe/JMozVFY8SrymMxHaqoFXV3a7qF/3Nsvzzy1JqWwndbaJPvN n71w6J87PYOBgguII5o8hysunMaNb25tJC/y3tsDmXUKFOCkapp1NW74baMe7WV1 pTiIKmRLPXNn34u/U0hbzCuoGpi2C47GIFst1IgbsW9UO2GVunipTt91ILfE0a5d QHwQ64Awpo2mGISunxVVVzP9AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU+vDeDsq4 OSMMnaufswXw7bHym+gwHwYDVR0jBBgwFoAUA+8OOQoxXl88RhsKcrIYvuIj4A4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwRkMwL0NERTA5ODc2OTU3 ODExRUNBMzJDQ0Y1NUM0RjlBRTAyL0EtOE9PUW94WGw4OFJoc0tjcklZdnVJajRB NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQS04T09Rb3hYbDg4UmhzS2NySVl2dUlqNEE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi85MTkwQ0Y5RTJF NzgxMUVGQjcyMDYyMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWe2PjAPBAIAAjAJAwcAIAEN8HXAMA0GCSqGSIb3DQEBCwUA A4IBAQBMfzHM4KPvqfjZVf04XD3bg2SQM3EaOwrbtEijDMZCdvKRaCCp3J2PTb9y dYf1SbBkzukcQnZC3IdGA7L1sYQHUZVK/g4cdkqU4pqjviCEhaQsTyfipwGMZSZ2 4H1QTczVw2lMnvosQO0VCH/rO+ATxHBFIVo3tecsHrsDIcdTLmj00V1l35bCg0GH zmaQHvyVO0Gq+r5Wd/mauthUenU8qCruO0N9uBwrFoJtbCMD+gtzpKrioee1D8wM xfxxHFvn7QxPrIwJlZbF9SsYcmkjynm5AVE1H+QoJdQKISBGVL1hBFZ0yfr612ib Q84ilp4MNfZ5YwNrwJ5b6C1H8U3w -----END CERTIFICATE-----Generated at Wed Nov 27 02:04:22 2024 by rpki-client on console-ams.rpki-client.org