$ rpki-client -vvf rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/2789A9EEE38B11EBB246E13FC4F9AE02.roa File: 2789A9EEE38B11EBB246E13FC4F9AE02.roa (raw, json) Hash identifier: vl7ru7jGeXouITslQ3P7oElUqX5fMm8OE7sy4pQtZjQ= Subject key identifier: 22:CF:D1:A8:5E:D2:1F:93:64:BD:AC:8B:26:9E:3E:3B:F4:02:E9:C7 Certificate issuer: /CN=A91A92FE/serialNumber=3D43EDFE64F614E11306A87F1EF24F282E7E3714 Certificate serial: 1282 Authority key identifier: 3D:43:ED:FE:64:F6:14:E1:13:06:A8:7F:1E:F2:4F:28:2E:7E:37:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/2789A9EEE38B11EBB246E13FC4F9AE02.roa Signing time: Tue 30 Apr 2024 17:56:17 +0000 ROA not before: Tue 30 Apr 2024 17:56:17 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 58868 IP address blocks: 103.17.250.0/23 maxlen: 24 103.17.252.0/23 maxlen: 24 202.155.180.0/22 maxlen: 24 203.27.248.0/24 maxlen: 24 2406:6700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.crl rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4738 (0x1282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A92FE/serialNumber=3D43EDFE64F614E11306A87F1EF24F282E7E3714 Validity Not Before: Apr 30 17:56:17 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663130c1-418b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:a6:07:46:29:38:2a:df:6e:2e:50:63:f7: 48:76:61:50:d2:5c:b0:d7:03:c1:38:11:06:c3:f9: 72:0b:86:d5:50:3b:7f:54:22:4c:cc:58:52:20:66: ce:88:fb:c0:3a:8d:1c:03:e1:aa:78:55:2d:cd:14: c7:86:7a:d7:62:51:3c:3a:9e:c3:74:30:df:c0:e7: 35:c3:26:da:ba:74:fe:02:07:19:2a:93:25:22:77: a5:8c:85:2c:e9:63:49:34:ee:84:50:81:bf:10:66: 6f:d4:27:37:2a:fd:f0:40:c9:95:8b:23:ca:c8:18: 42:a5:ba:6f:43:48:68:3f:bf:3c:e2:ea:cb:21:14: 1c:f3:36:db:74:fd:61:52:f6:54:f6:7b:e0:a3:c9: dd:5b:17:fc:40:93:89:48:c1:05:f6:03:c0:b4:03: 28:8a:1c:dd:de:bb:d6:82:72:dd:fb:63:d6:63:f5: 5f:66:ef:61:39:d2:32:e7:36:5b:f0:d1:fd:d0:31: 4d:87:7f:74:ee:0b:5b:b7:dd:a1:71:e2:37:4e:ea: 5f:ef:9b:e0:d7:1b:67:3e:08:60:df:14:a0:bf:b8: ce:a0:13:e2:a2:bb:f2:71:d9:5c:1e:3e:d3:e8:98: 29:f3:01:c9:53:18:c3:e9:d8:3f:9c:a2:78:bb:72: 86:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CF:D1:A8:5E:D2:1F:93:64:BD:AC:8B:26:9E:3E:3B:F4:02:E9:C7 X509v3 Authority Key Identifier: keyid:3D:43:ED:FE:64:F6:14:E1:13:06:A8:7F:1E:F2:4F:28:2E:7E:37:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/2789A9EEE38B11EBB246E13FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.250.0-103.17.253.255 202.155.180.0/22 203.27.248.0/24 IPv6: 2406:6700::/32 Signature Algorithm: sha256WithRSAEncryption 60:29:e5:6d:6d:7d:66:4a:bd:53:ea:40:c6:9e:7e:b1:da:89: 37:4e:a4:68:26:2c:c8:31:9d:c2:10:29:bb:f8:ee:50:8e:f6: 21:8b:53:67:9f:15:1b:e3:89:8e:44:7b:0f:5c:01:80:f2:b0: 7f:ad:ae:4a:2b:7a:a7:98:ba:7c:51:26:cb:71:df:61:1c:50: df:f1:39:d1:db:65:e5:49:6c:b3:74:ae:e1:cc:79:34:1f:3b: 0a:53:9d:b3:2c:43:43:fa:8f:09:28:3a:6c:57:b3:52:40:12: 60:5b:a2:25:1a:e8:32:cf:4d:1e:7e:c9:1c:75:f9:4e:49:15: ec:2c:e9:33:b3:bf:45:55:c0:22:84:81:2d:f9:f0:44:d3:c9: 12:a8:13:33:11:c0:3c:2f:08:75:3e:2e:e6:82:90:df:62:c5: 18:4e:d3:f5:03:41:ba:f6:7c:c2:47:16:73:9b:54:95:86:79: 06:c1:74:e3:92:b3:fb:1b:4c:21:7a:74:e1:c1:e2:a6:5a:d0: 54:d7:f0:b6:18:06:0f:49:51:37:1d:fa:e7:2f:cb:c0:15:87: 85:9d:5a:b9:b1:21:1d:74:40:60:6c:c8:52:4e:18:d9:bd:c8: 97:50:5e:c3:ab:08:bc:07:0b:cb:2a:1d:68:76:a8:d0:a6:b4: 09:33:28:0f -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICEoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkyRkUxMTAvBgNVBAUTKDNENDNFREZFNjRGNjE0RTExMzA2QTg3RjFFRjI0RjI4 MkU3RTM3MTQwHhcNMjQwNDMwMTc1NjE3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMzBjMS00MThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulqmB0YpOCrfbi5QY/dIdmFQ0lyw1wPBOBEGw/lyC4bVUDt/VCJMzFhSIGbO iPvAOo0cA+GqeFUtzRTHhnrXYlE8Op7DdDDfwOc1wybaunT+AgcZKpMlIneljIUs 6WNJNO6EUIG/EGZv1Cc3Kv3wQMmViyPKyBhCpbpvQ0hoP7884urLIRQc8zbbdP1h UvZU9nvgo8ndWxf8QJOJSMEF9gPAtAMoihzd3rvWgnLd+2PWY/VfZu9hOdIy5zZb 8NH90DFNh3907gtbt92hceI3Tupf75vg1xtnPghg3xSgv7jOoBPiorvycdlcHj7T 6Jgp8wHJUxjD6dg/nKJ4u3KGGQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFCLP0ahe 0h+TZL2siyaePjv0AunHMB8GA1UdIwQYMBaAFD1D7f5k9hThEwaofx7yTygufjcU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTJGRS83MTgxN0Y2Q0E1 QkUxMUU4QTQwQzZGMUVDNEY5QUUwMi9QVVB0X21UMkZPRVRCcWhfSHZKUEtDNS1O eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVUHRfbVQyRk9FVEJxaF9IdkpQS0M1LU54US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkyRkUvNzE4MTdGNkNBNUJFMTFFOEE0MEM2RjFFQzRGOUFFMDIvMjc4OUE5RUVF MzhCMTFFQkIyNDZFMTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBowDAMEAWcR+gMEAWcR/AMEAsqbtAMEAMsb+DANBAIAAjAHAwUA JAZnADANBgkqhkiG9w0BAQsFAAOCAQEAYCnlbW19Zkq9U+pAxp5+sdqJN06kaCYs yDGdwhApu/juUI72IYtTZ58VG+OJjkR7D1wBgPKwf62uSit6p5i6fFEmy3HfYRxQ 3/E50dtl5Ulss3Su4cx5NB87ClOdsyxDQ/qPCSg6bFezUkASYFuiJRroMs9NHn7J HHX5TkkV7CzpM7O/RVXAIoSBLfnwRNPJEqgTMxHAPC8IdT4u5oKQ32LFGE7T9QNB uvZ8wkcWc5tUlYZ5BsF045Kz+xtMIXp04cHiplrQVNfwthgGD0lRNx365y/LwBWH hZ1aubEhHXRAYGzIUk4Y2b3Il1Bew6sIvAcLyyodaHao0Ka0CTMoDw== -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org