$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa File: E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa (raw, json) Hash identifier: JJtIODUU0vxeCd16MdkVxGe00rno7Fl7ALBMI2DvnXE= Subject key identifier: FC:EC:A0:46:9B:B8:38:28:08:FF:30:1B:5F:DB:97:4C:4A:6E:7D:8F Certificate issuer: /CN=A91ABD25/serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Certificate serial: 0192 Authority key identifier: 7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa Signing time: Sun 03 Nov 2024 02:15:50 +0000 ROA not before: Sun 03 Nov 2024 02:15:50 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136522 IP address blocks: 103.91.193.0/24 maxlen: 24 202.124.202.0/24 maxlen: 24 203.22.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABD25/serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Validity Not Before: Nov 3 02:15:50 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726dcd6-c449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4c:cf:38:d8:d4:d7:05:4c:33:8a:4c:75:e9: 56:b7:83:53:8c:52:eb:17:43:e4:3e:b8:fc:ca:9b: 21:ac:2b:65:fa:19:82:3b:c7:37:67:af:b0:86:af: 24:b0:37:55:1a:58:fa:02:e9:4b:d3:0d:49:0b:47: c3:5c:39:80:88:2f:88:51:6b:8c:f5:4d:3f:a8:df: 8b:80:07:ff:f7:04:52:d7:92:e9:d0:2a:39:ec:9f: 76:38:0e:49:dc:49:b0:9b:17:4f:00:8b:bf:16:ca: 9d:9d:00:d7:72:0d:38:1a:b9:59:9d:ee:ab:46:79: 9b:0c:bc:05:91:bc:2b:3c:cf:a0:a4:26:f1:96:bd: 9b:d8:b5:8d:fc:90:f8:f1:b6:47:ca:0b:7f:a4:04: 0e:14:86:b8:21:94:04:e8:fe:9c:ef:56:5e:d0:d2: 1a:74:9b:cd:93:01:52:9b:f7:e2:ec:18:45:e3:c2: c0:3f:86:ec:31:e3:81:26:18:be:da:4e:f6:bf:3f: 9e:04:03:d0:56:17:24:5d:1f:b0:76:9b:af:93:87: 69:54:f0:b6:18:2f:44:b1:1e:8c:43:2d:ba:09:0e: 76:fd:d1:ea:49:6e:4c:4a:84:4f:e7:cb:54:58:2e: 16:b1:2f:d2:39:59:4e:57:82:19:96:c8:90:d3:d2: 2d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:EC:A0:46:9B:B8:38:28:08:FF:30:1B:5F:DB:97:4C:4A:6E:7D:8F X509v3 Authority Key Identifier: keyid:7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.193.0/24 202.124.202.0/24 203.22.208.0/22 Signature Algorithm: sha256WithRSAEncryption 25:8a:34:18:91:f8:fc:bf:2b:41:7b:d5:ba:b4:93:b8:9d:4d: a0:83:ce:55:02:3d:c4:41:f8:39:75:1e:9e:14:9b:3b:2f:22: be:a8:49:25:a0:8b:4c:01:1b:ea:b4:b9:f3:af:1e:30:ea:0d: 3b:6e:c0:20:24:58:a2:a6:16:83:c9:27:c2:69:3e:bc:f9:9a: d4:f4:82:2f:d1:e1:bf:7e:83:27:14:ec:de:00:44:57:0b:6c: 4f:b5:87:df:31:84:fa:84:9d:63:6c:3c:a3:51:a7:f1:a0:b1: 02:b1:f9:49:83:0b:35:5a:d3:31:c0:00:28:52:ac:93:7c:be: 01:56:f5:10:4e:d2:00:c6:e9:c6:ad:4a:54:fb:82:1b:a1:23: 60:66:50:3f:ec:c3:ab:db:cc:86:62:33:86:49:8a:be:13:a9: d2:87:c8:d8:94:2f:97:aa:48:b5:5c:d3:a6:a9:7c:10:52:f2: 09:ae:ef:fc:ae:f0:87:91:37:13:6b:30:cb:23:a0:ac:55:81: e1:ee:bc:46:86:36:d6:15:e3:71:11:1f:5c:dc:3e:6b:a5:f9: a2:2a:c9:9b:92:29:06:1f:48:de:a2:a3:ef:92:c4:d0:39:48: 4b:28:f5:e9:a5:9e:11:db:5e:68:81:ca:ab:70:6d:50:88:01: 84:a7:78:c3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJEMjUxMTAvBgNVBAUTKDdGRkM3QzU1Q0E0ODVDMzc2QTYxRUZFQzBFNTM3NzY1 M0EwNEMzQkQwHhcNMjQxMTAzMDIxNTUwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ZGNkNi1jNDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kzPONjU1wVMM4pMdelWt4NTjFLrF0PkPrj8ypshrCtl+hmCO8c3Z6+whq8k sDdVGlj6AulL0w1JC0fDXDmAiC+IUWuM9U0/qN+LgAf/9wRS15Lp0Co57J92OA5J 3EmwmxdPAIu/FsqdnQDXcg04GrlZne6rRnmbDLwFkbwrPM+gpCbxlr2b2LWN/JD4 8bZHygt/pAQOFIa4IZQE6P6c71Ze0NIadJvNkwFSm/fi7BhF48LAP4bsMeOBJhi+ 2k72vz+eBAPQVhckXR+wdpuvk4dpVPC2GC9EsR6MQy26CQ52/dHqSW5MSoRP58tU WC4WsS/SOVlOV4IZlsiQ09ItBQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPzsoEab uDgoCP8wG1/bl0xKbn2PMB8GA1UdIwQYMBaAFH/8fFXKSFw3amHv7A5Td2U6BMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkQyNS81MjdERDI1QTRF QUMxMUVEQjRGNzFFMzhDNEY5QUUwMi9mX3g4VmNwSVhEZHFZZV9zRGxOM1pUb0V3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeDhWY3BJWERkcVllX3NEbE4zWlRvRXc3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJEMjUvNTI3REQyNUE0RUFDMTFFREI0RjcxRTM4QzRGOUFFMDIvRTdGQzZBMUE0 RUFFMTFFREJGMEQ4MjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnW8EDBADKfMoDBALLFtAwDQYJKoZIhvcNAQELBQADggEB ACWKNBiR+Py/K0F71bq0k7idTaCDzlUCPcRB+Dl1Hp4UmzsvIr6oSSWgi0wBG+q0 ufOvHjDqDTtuwCAkWKKmFoPJJ8JpPrz5mtT0gi/R4b9+gycU7N4ARFcLbE+1h98x hPqEnWNsPKNRp/GgsQKx+UmDCzVa0zHAAChSrJN8vgFW9RBO0gDG6catSlT7ghuh I2BmUD/sw6vbzIZiM4ZJir4TqdKHyNiUL5eqSLVc06apfBBS8gmu7/yu8IeRNxNr MMsjoKxVgeHuvEaGNtYV43ERH1zcPmul+aIqyZuSKQYfSN6io++SxNA5SEso9eml nhHbXmiByqtwbVCIAYSneMM= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org