$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E9472C0C144111EFB247B936C4F9AE02.roa File: E9472C0C144111EFB247B936C4F9AE02.roa (raw, json) Hash identifier: N0KBLQQTClragGr+9bu35ZUu4kGJkkAnGU9aBHh57q0= Subject key identifier: E2:D5:F2:1C:0B:3B:BA:09:4B:C3:43:A1:8A:1E:BC:CD:01:A9:B0:7E Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 01E1 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E9472C0C144111EFB247B936C4F9AE02.roa Signing time: Fri 17 May 2024 11:37:59 +0000 ROA not before: Fri 17 May 2024 11:37:59 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 203020 IP address blocks: 45.125.245.0/24 maxlen: 24 103.3.224.0/22 maxlen: 22 103.66.178.0/23 maxlen: 23 103.77.255.0/24 maxlen: 24 103.85.228.0/22 maxlen: 22 103.104.128.0/23 maxlen: 24 103.221.232.0/24 maxlen: 24 103.221.234.0/24 maxlen: 24 103.221.235.0/24 maxlen: 24 103.228.132.0/24 maxlen: 24 103.241.52.0/22 maxlen: 22 103.252.108.0/24 maxlen: 24 103.252.111.0/24 maxlen: 24 202.94.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: May 17 11:37:59 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=66474197-7944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7b:53:2e:37:c6:af:3a:cc:40:f3:16:a6:74: 67:79:52:8e:d8:42:e3:0f:b2:6f:50:e2:74:7e:35: f8:27:10:62:34:bf:90:0a:47:5c:00:28:71:f6:bf: 5d:03:4d:9c:ca:a8:a3:30:99:41:50:24:b4:9f:7c: ca:a6:97:13:ab:ca:51:c0:8e:24:d2:ee:4b:5c:0b: 14:e1:d2:47:a8:52:8d:bf:aa:50:a6:f6:2a:a4:6e: e6:4d:04:5d:36:58:45:e7:1f:4a:8d:9a:73:c9:e1: 81:0b:1a:24:b0:10:e6:c0:e3:49:91:0f:33:c2:47: b6:d3:ca:1d:b3:2e:2d:9b:c6:6f:d6:46:0c:09:bc: 71:92:77:27:6b:23:41:8a:7f:92:06:5b:29:68:1b: ea:7f:4e:d5:c9:fd:42:80:fd:9b:b2:34:d0:65:2a: 45:6d:f3:0b:04:c5:af:e6:5c:64:da:5f:62:68:2f: 6a:af:b8:56:91:54:46:25:a4:dc:49:33:df:e8:43: 7a:9e:8c:23:d4:16:b2:a8:70:e9:a4:54:86:36:03: 8c:0b:81:e5:73:fb:26:d9:5e:d6:97:69:7f:fc:57: 2d:e9:17:cf:f8:8f:3d:bd:9e:4d:2e:38:dd:85:e1: 00:3a:97:58:24:ca:3b:03:7e:9c:17:a6:83:84:3a: e7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D5:F2:1C:0B:3B:BA:09:4B:C3:43:A1:8A:1E:BC:CD:01:A9:B0:7E X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E9472C0C144111EFB247B936C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.245.0/24 103.3.224.0/22 103.66.178.0/23 103.77.255.0/24 103.85.228.0/22 103.104.128.0/23 103.221.232.0/24 103.221.234.0/23 103.228.132.0/24 103.241.52.0/22 103.252.108.0/24 103.252.111.0/24 202.94.174.0/24 Signature Algorithm: sha256WithRSAEncryption 78:d8:60:28:c7:d5:bd:6e:a3:ff:42:4d:4d:0b:34:4d:a2:c9: 1d:e7:40:fd:6b:87:c8:e0:1f:b3:f7:7e:fa:51:19:2e:99:6e: 37:24:54:42:85:13:81:c1:75:73:3b:cc:a4:14:df:6e:27:24: b1:c1:f9:9a:6d:1a:5e:d2:b3:d7:27:c6:44:9d:d5:31:d8:b7: 8d:0c:9a:aa:4b:c7:ab:ea:a2:69:c8:b7:04:18:30:03:08:64: 5f:da:fb:da:a1:9d:2d:e0:3b:f3:43:88:3c:c3:93:04:ed:d0: 2d:5c:1d:9d:b8:66:2f:6a:ba:f3:22:36:46:1b:d7:e0:25:2f: 6e:a4:cc:30:30:e7:ae:03:87:16:5a:41:2d:65:d0:f9:2c:af: 4a:55:e2:9c:5b:fd:c2:62:86:4e:a9:7e:1d:25:00:83:1a:f6: 51:31:7d:50:05:da:00:77:ab:aa:a6:5f:0c:8d:ab:c0:fb:ef: e1:5b:01:eb:f5:9f:db:6b:0b:ad:a7:19:7a:f1:20:d4:62:be: 14:08:66:e8:c0:bc:ef:aa:ae:f2:39:e2:bb:bb:1b:de:8d:b0: d6:3b:72:12:73:bc:d0:63:23:3a:7c:74:9f:14:59:e0:91:4a: 70:37:29:80:aa:ab:87:30:e7:a3:ff:b8:fa:3e:0f:21:a6:47: f9:e0:9f:40 -----BEGIN CERTIFICATE----- MIIFuTCCBKGgAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwNTE3MTEzNzU5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ3NDE5Ny03OTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHtTLjfGrzrMQPMWpnRneVKO2ELjD7JvUOJ0fjX4JxBiNL+QCkdcAChx9r9d A02cyqijMJlBUCS0n3zKppcTq8pRwI4k0u5LXAsU4dJHqFKNv6pQpvYqpG7mTQRd NlhF5x9KjZpzyeGBCxoksBDmwONJkQ8zwke208odsy4tm8Zv1kYMCbxxkncnayNB in+SBlspaBvqf07Vyf1CgP2bsjTQZSpFbfMLBMWv5lxk2l9iaC9qr7hWkVRGJaTc STPf6EN6nowj1BayqHDppFSGNgOMC4Hlc/sm2V7Wl2l//Fct6RfP+I89vZ5NLjjd heEAOpdYJMo7A36cF6aDhDrnAQIDAQABo4IC3TCCAtkwHQYDVR0OBBYEFOLV8hwL O7oJS8NDoYoevM0BqbB+MB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRTk0NzJDMEMx NDQxMTFFRkIyNDdCOTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZwYIKwYBBQUHAQcBAf8E WDBWMFQEAgABME4DBAAtffUDBAJnA+ADBAFnQrIDBABnTf8DBAJnVeQDBAFnaIAD BABn3egDBAFn3eoDBABn5IQDBAJn8TQDBABn/GwDBABn/G8DBADKXq4wDQYJKoZI hvcNAQELBQADggEBAHjYYCjH1b1uo/9CTU0LNE2iyR3nQP1rh8jgH7P3fvpRGS6Z bjckVEKFE4HBdXM7zKQU324nJLHB+ZptGl7Ss9cnxkSd1THYt40MmqpLx6vqomnI twQYMAMIZF/a+9qhnS3gO/NDiDzDkwTt0C1cHZ24Zi9quvMiNkYb1+AlL26kzDAw 564DhxZaQS1l0Pksr0pV4pxb/cJihk6pfh0lAIMa9lExfVAF2gB3q6qmXwyNq8D7 7+FbAev1n9trC62nGXrxINRivhQIZujAvO+qrvI54ru7G96NsNY7chJzvNBjIzp8 dJ8UWeCRSnA3KYCqq4cw56P/uPo+DyGmR/ngn0A= -----END CERTIFICATE-----Generated at Sat Jun 1 08:16:02 2024 by rpki-client on console-ams.rpki-client.org