$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/EBC23D9A041E11ECA959B779C4F9AE02.roa File: EBC23D9A041E11ECA959B779C4F9AE02.roa (raw, json) Hash identifier: CE+jGBv1hmvPpnjcj/lZMkYxYBXBElFQLbmvrCZoU3o= Subject key identifier: 7C:11:86:36:20:B2:4D:54:F0:93:27:82:83:AD:7C:A4:D4:42:EE:A3 Certificate issuer: /CN=A91B43F4/serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Certificate serial: 2432 Authority key identifier: 0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/EBC23D9A041E11ECA959B779C4F9AE02.roa Signing time: Mon 30 Sep 2024 15:53:16 +0000 ROA not before: Mon 30 Sep 2024 15:53:16 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 49544 IP address blocks: 43.239.136.0/22 maxlen: 23 103.194.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9266 (0x2432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43F4/serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Validity Not Before: Sep 30 15:53:16 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fac96b-40a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:27:b3:6f:8d:30:33:7e:9a:1d:81:b2:7b:2c: 42:ca:b1:31:dc:1e:7a:9a:8b:70:f3:bc:c3:d1:94: ac:81:a9:66:c3:c7:91:e4:7b:bd:23:f6:08:73:6d: 16:0a:3e:fc:92:81:7a:b5:0b:0a:01:44:8a:f8:44: 93:e2:e1:f5:32:68:f3:1b:ff:f5:e1:70:93:93:f6: 37:f0:e1:0c:34:24:7f:54:a6:51:e3:e7:28:c3:bd: 4f:14:1f:69:3d:44:63:be:12:87:09:29:51:7c:26: 71:f2:f3:62:c7:69:e3:39:f2:fc:12:d7:11:d8:06: 96:4a:46:1d:cb:49:29:a5:06:f7:eb:e9:c6:65:66: 52:c1:d1:bd:1f:c4:2f:cd:7c:e2:d4:e7:a4:ef:73: 43:42:50:75:81:55:8d:22:0d:e5:95:dc:02:7c:91: da:a9:01:c4:3b:73:91:76:d4:ba:3d:f0:47:f3:eb: f9:6d:a7:8c:ad:65:16:f1:21:45:09:a6:f9:59:03: 2a:8b:22:d9:ce:76:e4:a5:00:4a:90:5e:ff:a3:a4: d7:fc:e7:36:ca:2a:2a:37:1d:3e:9d:82:e0:fd:69: b9:72:53:88:b6:11:84:82:13:9a:7a:61:f2:df:07: b8:4d:3d:9a:8c:06:01:04:d0:97:09:d2:e2:bb:6d: a4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:11:86:36:20:B2:4D:54:F0:93:27:82:83:AD:7C:A4:D4:42:EE:A3 X509v3 Authority Key Identifier: keyid:0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/EBC23D9A041E11ECA959B779C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.136.0/22 103.194.164.0/22 Signature Algorithm: sha256WithRSAEncryption 94:e1:81:54:a4:99:3c:d6:54:09:f2:18:64:7f:fe:bc:86:75: 28:5a:32:e8:74:c6:fa:27:03:f6:d2:08:cc:d2:f4:39:b0:7c: 22:8e:05:5c:a5:3c:bb:8e:78:8c:c6:d6:db:40:5c:16:ce:ce: d9:b4:ba:25:e0:09:51:20:27:25:aa:44:77:26:95:2e:99:99: 24:f1:ba:9b:2d:e0:2f:9c:81:43:7b:49:2f:6a:e7:30:96:b2: ac:f4:58:76:c5:79:81:63:d0:71:7e:8c:97:47:d0:3d:34:2b: ef:bc:32:13:bc:3f:8d:dc:83:a5:43:18:51:a9:c0:1a:7d:cb: f8:56:d2:e1:68:c3:3a:01:33:0d:cf:dd:76:de:6c:ed:5c:ec: 7f:0f:79:bf:1a:a2:a7:15:cb:66:a1:99:69:49:7e:c1:37:0a: e2:1b:a6:ae:1a:52:fd:15:23:78:ef:88:ae:2d:11:02:4d:f6: 22:81:52:0e:e8:b7:19:07:86:60:b1:c4:27:26:68:82:c3:a6: a4:f9:c7:d0:1d:24:c5:5e:89:4c:2c:95:7d:f8:99:35:2a:02: e7:4e:22:8e:eb:1c:8d:a1:ee:09:8b:8d:23:7d:c9:9f:df:1f: 14:08:05:bb:49:47:7d:d1:11:f8:5d:a4:ad:f1:f5:a5:7b:15: 22:44:ac:15 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRjQxMTAvBgNVBAUTKDBCNjNFNjNBNUZBM0IyRTNDQ0I5OTMwRThGNkM4Q0VD QzI0NThCNDUwHhcNMjQwOTMwMTU1MzE2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhYzk2Yi00MGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryezb40wM36aHYGyeyxCyrEx3B56motw87zD0ZSsgalmw8eR5Hu9I/YIc20W Cj78koF6tQsKAUSK+EST4uH1MmjzG//14XCTk/Y38OEMNCR/VKZR4+cow71PFB9p PURjvhKHCSlRfCZx8vNix2njOfL8EtcR2AaWSkYdy0kppQb36+nGZWZSwdG9H8Qv zXzi1Oek73NDQlB1gVWNIg3lldwCfJHaqQHEO3ORdtS6PfBH8+v5baeMrWUW8SFF Cab5WQMqiyLZznbkpQBKkF7/o6TX/Oc2yioqNx0+nYLg/Wm5clOIthGEghOaemHy 3we4TT2ajAYBBNCXCdLiu22kwQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHwRhjYg sk1U8JMngoOtfKTUQu6jMB8GA1UdIwQYMBaAFAtj5jpfo7LjzLmTDo9sjOzCRYtF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNGNC8xN0FDMkE3MDQx OUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1UE11Wk1PajJ5TTdNSkZp MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyUG1PbC1qc3VQTXVaTU9qMnlNN01KRmkwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzRjQvMTdBQzJBNzA0MTlDMTFFNTgzNUZEMTgzQzRGOUFFMDIvRUJDMjNEOUEw NDFFMTFFQ0E5NTlCNzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr74gDBAJnwqQwDQYJKoZIhvcNAQELBQADggEBAJThgVSk mTzWVAnyGGR//ryGdShaMuh0xvonA/bSCMzS9DmwfCKOBVylPLuOeIzG1ttAXBbO ztm0uiXgCVEgJyWqRHcmlS6ZmSTxupst4C+cgUN7SS9q5zCWsqz0WHbFeYFj0HF+ jJdH0D00K++8MhO8P43cg6VDGFGpwBp9y/hW0uFowzoBMw3P3XbebO1c7H8Peb8a oqcVy2ahmWlJfsE3CuIbpq4aUv0VI3jviK4tEQJN9iKBUg7otxkHhmCxxCcmaILD pqT5x9AdJMVeiUwslX34mTUqAudOIo7rHI2h7gmLjSN9yZ/fHxQIBbtJR33REfhd pK3x9aV7FSJErBU= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:55 2024 by rpki-client on console-ams.rpki-client.org