$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/EE8E0F3AA26711ECAFB48B53C4F9AE02.roa File: EE8E0F3AA26711ECAFB48B53C4F9AE02.roa (raw, json) Hash identifier: NnnNLEWpWPericjuDg20RRiVNXIgwa2AKc/h1zt1NQE= Subject key identifier: 9C:3A:E8:D1:D4:BA:7D:F5:5E:02:B1:6E:3E:C4:E5:C1:39:52:8D:0A Certificate issuer: /CN=A91AEB80/serialNumber=6F23F27F090BEF4531802072E1DACF210D9D423C Certificate serial: 0302 Authority key identifier: 6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/EE8E0F3AA26711ECAFB48B53C4F9AE02.roa Signing time: Wed 27 Dec 2023 02:34:17 +0000 ROA not before: Wed 27 Dec 2023 02:34:17 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.180.108.0/24 maxlen: 24 103.180.109.0/24 maxlen: 24 2001:df0:59c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.crl rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 770 (0x302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEB80/serialNumber=6F23F27F090BEF4531802072E1DACF210D9D423C Validity Not Before: Dec 27 02:34:17 2023 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=658b8d29-12fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4e:70:8a:54:45:62:95:05:f2:e4:40:3e:bc: 30:46:8c:31:a0:73:91:f7:e5:20:0e:75:55:06:cc: 65:96:c0:f4:ba:f2:2b:61:e2:75:ed:f4:85:e1:6a: 29:14:c9:ad:1c:4d:b2:fa:b2:28:cf:3e:1b:70:1e: f9:fe:28:05:23:31:80:0b:b5:1e:f1:18:9c:c4:eb: c0:83:a1:f4:cc:c5:75:af:83:18:13:61:bf:5b:22: bd:5c:01:3d:bb:39:98:94:0a:0f:c0:64:9f:87:59: 09:30:cd:da:56:35:2e:09:ef:02:cf:19:59:b1:d6: 64:e6:a7:39:a1:9b:e4:ff:ce:f7:d5:67:61:77:53: f3:58:24:1a:f1:d8:31:fb:18:ed:49:38:e1:98:01: 33:cc:c3:4f:b9:37:6a:1e:cd:1a:c8:55:c7:9b:0f: b7:34:e2:67:c7:c5:c0:4b:c0:d9:d2:d0:79:7f:75: 06:89:c4:55:02:a1:90:77:96:c3:dd:65:0d:b9:10: 0b:cc:86:00:67:ff:3e:e6:ab:b1:6a:79:66:68:06: bb:45:fd:9f:fb:2b:ff:f6:30:15:ea:2d:c5:1c:2c: 22:07:4f:a1:ba:f1:46:cb:ed:ac:61:bd:b9:fc:ff: 55:24:d1:8f:dd:80:98:46:23:81:07:fb:78:d7:67: fb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:3A:E8:D1:D4:BA:7D:F5:5E:02:B1:6E:3E:C4:E5:C1:39:52:8D:0A X509v3 Authority Key Identifier: keyid:6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/EE8E0F3AA26711ECAFB48B53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.108.0/23 IPv6: 2001:df0:59c0::/48 Signature Algorithm: sha256WithRSAEncryption 68:22:e6:a0:6b:d1:59:87:c8:f5:87:b9:e9:48:98:4e:0e:78: ae:05:ee:4d:0b:5a:6b:d9:65:11:c9:3a:97:04:7c:2c:dc:ef: 80:29:ce:84:e3:ec:fd:e4:da:00:3b:af:69:99:5f:8a:4e:f0: 77:5c:47:30:6b:aa:57:fc:42:d1:a5:d7:4b:e3:b3:72:94:97: 59:6a:b4:15:94:1c:92:92:89:60:04:a4:35:e8:0f:7d:d0:1a: 46:11:de:0c:43:b3:dd:51:c4:d3:e8:7a:59:20:e8:28:c3:aa: 93:a5:fb:ab:e4:4a:f1:08:7a:6b:6b:4c:62:1f:2a:a2:17:27: a3:7b:21:3c:3f:90:b1:f2:7f:db:e7:37:b4:77:52:81:67:e5: 85:48:56:22:72:94:2c:0e:48:13:4e:27:01:0e:44:d4:77:6b: 9c:57:51:cb:60:e8:ba:17:40:1f:b4:16:44:cc:5a:c9:f1:12: 9c:57:63:29:e9:74:7e:51:bd:11:0f:9f:cb:a2:23:83:08:a1: b2:c7:4b:5b:2f:e4:fe:b4:b9:20:64:d8:a5:af:74:ff:57:26: 63:4c:d8:1a:5e:d6:16:45:34:41:82:f0:7f:a5:20:71:53:d8: f2:1b:37:0d:2e:ec:78:09:b4:0c:d0:af:c9:8c:98:a6:02:0c: 5e:ef:52:06 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVCODAxMTAvBgNVBAUTKDZGMjNGMjdGMDkwQkVGNDUzMTgwMjA3MkUxREFDRjIx MEQ5RDQyM0MwHhcNMjMxMjI3MDIzNDE3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThiOGQyOS0xMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk5wilRFYpUF8uRAPrwwRowxoHOR9+UgDnVVBsxllsD0uvIrYeJ17fSF4Wop FMmtHE2y+rIozz4bcB75/igFIzGAC7Ue8RicxOvAg6H0zMV1r4MYE2G/WyK9XAE9 uzmYlAoPwGSfh1kJMM3aVjUuCe8CzxlZsdZk5qc5oZvk/8731Wdhd1PzWCQa8dgx +xjtSTjhmAEzzMNPuTdqHs0ayFXHmw+3NOJnx8XAS8DZ0tB5f3UGicRVAqGQd5bD 3WUNuRALzIYAZ/8+5quxanlmaAa7Rf2f+yv/9jAV6i3FHCwiB0+huvFGy+2sYb25 /P9VJNGP3YCYRiOBB/t412f7LwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJw66NHU un31XgKxbj7E5cE5Uo0KMB8GA1UdIwQYMBaAFG8j8n8JC+9FMYAgcuHazyENnUI8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUI4MC83NzYyRkM1QTdF NkMxMUVDODczRDY3ODNDNEY5QUUwMi9ieVB5ZndrTDcwVXhnQ0J5NGRyUElRMmRR ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5UHlmd2tMNzBVeGdDQnk0ZHJQSVEyZFFqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVCODAvNzc2MkZDNUE3RTZDMTFFQzg3M0Q2NzgzQzRGOUFFMDIvRUU4RTBGM0FB MjY3MTFFQ0FGQjQ4QjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntGwwDwQCAAIwCQMHACABDfBZwDANBgkqhkiG9w0BAQsF AAOCAQEAaCLmoGvRWYfI9Ye56UiYTg54rgXuTQtaa9llEck6lwR8LNzvgCnOhOPs /eTaADuvaZlfik7wd1xHMGuqV/xC0aXXS+OzcpSXWWq0FZQckpKJYASkNegPfdAa RhHeDEOz3VHE0+h6WSDoKMOqk6X7q+RK8Qh6a2tMYh8qohcno3shPD+QsfJ/2+c3 tHdSgWflhUhWInKULA5IE04nAQ5E1HdrnFdRy2DouhdAH7QWRMxayfESnFdjKel0 flG9EQ+fy6IjgwihssdLWy/k/rS5IGTYpa90/1cmY0zYGl7WFkU0QYLwf6UgcVPY 8hs3DS7seAm0DNCvyYyYpgIMXu9SBg== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:24 2024 by rpki-client on console-ams.rpki-client.org