$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/E2FE5F1C5F3911EF9C33492EC4F9AE02.roa File: E2FE5F1C5F3911EF9C33492EC4F9AE02.roa (raw, json) Hash identifier: w7XAoEqzOUn2fN+Z5QNERvhpDDcLRxuYcXrspPvLSME= Subject key identifier: B6:67:80:B5:10:68:B2:C1:48:81:8F:C0:5E:72:74:D9:45:63:22:02 Certificate issuer: /CN=A91BC6A6/serialNumber=A4B87F9DF96A207261B97B4C9E38C83B5C80D66E Certificate serial: 2B Authority key identifier: A4:B8:7F:9D:F9:6A:20:72:61:B9:7B:4C:9E:38:C8:3B:5C:80:D6:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLh_nflqIHJhuXtMnjjIO1yA1m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/E2FE5F1C5F3911EF9C33492EC4F9AE02.roa Signing time: Sun 03 Nov 2024 05:48:47 +0000 ROA not before: Sun 03 Nov 2024 05:48:47 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132808 IP address blocks: 103.74.66.0/23 maxlen: 23 103.133.238.0/23 maxlen: 23 2405:7a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/pLh_nflqIHJhuXtMnjjIO1yA1m4.crl rsync://rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/pLh_nflqIHJhuXtMnjjIO1yA1m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLh_nflqIHJhuXtMnjjIO1yA1m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6A6/serialNumber=A4B87F9DF96A207261B97B4C9E38C83B5C80D66E Validity Not Before: Nov 3 05:48:47 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67270ebf-8b0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:68:a2:a8:49:b4:7a:3e:ad:4b:2d:dc:86:ed: b6:77:55:8d:dd:4a:e2:19:36:25:7c:37:14:99:59: ab:d0:5c:4a:f7:46:aa:b8:6b:71:8e:38:86:18:4b: db:2b:ac:17:29:74:77:fa:4a:b4:eb:0b:3d:64:d5: ac:a9:6f:31:3c:ed:3f:f1:bb:d5:13:dd:18:17:4f: 15:7c:80:e1:be:28:11:5d:d5:7a:56:83:02:cb:80: f1:bd:74:95:7f:20:82:b7:57:32:aa:4e:95:4a:e0: e8:69:b2:0f:d2:6c:d6:b1:d6:91:7d:38:2d:b7:fc: 2e:3f:02:40:f2:6c:b6:38:0d:5f:30:e7:28:74:12: e1:6d:46:0f:ca:fb:c7:8a:03:4d:85:b8:92:89:86: 81:65:30:48:df:2c:9d:32:6f:da:39:c5:6b:28:f5: 59:94:e9:3f:c1:66:e7:5d:d0:c8:fe:c0:ba:72:ab: 88:a5:27:48:e7:01:a4:77:29:2b:07:75:88:3b:65: 58:48:eb:dd:a2:7d:e8:40:a7:94:21:ca:2a:f6:15: b6:d2:6f:92:3b:60:ee:25:b1:66:68:9a:93:fe:04: 5f:fa:71:54:6d:82:c0:a5:df:d8:11:ae:b9:57:3f: 1d:2b:4b:1a:a6:2f:be:cb:23:e6:4c:b0:be:72:57: 79:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:67:80:B5:10:68:B2:C1:48:81:8F:C0:5E:72:74:D9:45:63:22:02 X509v3 Authority Key Identifier: keyid:A4:B8:7F:9D:F9:6A:20:72:61:B9:7B:4C:9E:38:C8:3B:5C:80:D6:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/pLh_nflqIHJhuXtMnjjIO1yA1m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLh_nflqIHJhuXtMnjjIO1yA1m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/E2FE5F1C5F3911EF9C33492EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.74.66.0/23 103.133.238.0/23 IPv6: 2405:7a40::/32 Signature Algorithm: sha256WithRSAEncryption aa:13:01:2d:3a:43:36:d3:06:b9:f7:4c:a1:30:5f:25:73:09: 6d:39:6b:95:2d:25:2d:b3:c4:11:f2:bd:92:a1:b4:c6:da:78: 65:a0:98:74:d3:e2:78:bf:44:39:85:12:b3:46:03:98:31:07: f8:1e:5d:e1:78:9c:48:9c:28:47:35:1a:d0:86:de:29:70:88: 98:46:d2:cf:6a:f6:f7:bd:80:4c:73:ef:3f:d4:71:d8:9b:71: 64:ab:6e:c9:5b:c8:0f:10:e4:88:b3:d6:ae:57:86:9b:18:56: 9f:dd:04:e6:12:98:6a:00:c8:e5:fc:6e:db:f9:0c:ff:e6:1f: 96:ea:e0:0a:97:1c:05:6c:99:f8:93:61:cd:fe:16:1e:7f:38: ef:1b:78:99:b3:43:45:03:44:cd:1a:b3:82:47:04:95:4e:75: ef:d1:0d:f5:f9:62:cd:47:65:15:76:cd:ec:b6:02:ba:4f:3b: 0a:3b:9b:b4:45:8b:90:ec:5c:0d:eb:e5:c3:bb:d9:99:ed:e7: 51:37:a6:82:f4:d7:df:59:37:2a:f6:55:74:af:a9:e1:0d:a3: ca:0f:e9:8d:5b:b7:bf:83:48:91:1c:b9:12:fd:58:ea:56:eb: c3:9f:27:80:78:40:01:90:10:26:9c:ca:4c:cc:cb:3a:68:c0: bc:35:f3:22 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzZBNjExMC8GA1UEBRMoQTRCODdGOURGOTZBMjA3MjYxQjk3QjRDOUUzOEM4M0I1 QzgwRDY2RTAeFw0yNDExMDMwNTQ4NDdaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjcwZWJmLThiMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxaKKoSbR6Pq1LLdyG7bZ3VY3dSuIZNiV8NxSZWavQXEr3Rqq4a3GOOIYYS9sr rBcpdHf6SrTrCz1k1aypbzE87T/xu9UT3RgXTxV8gOG+KBFd1XpWgwLLgPG9dJV/ IIK3VzKqTpVK4Ohpsg/SbNax1pF9OC23/C4/AkDybLY4DV8w5yh0EuFtRg/K+8eK A02FuJKJhoFlMEjfLJ0yb9o5xWso9VmU6T/BZudd0Mj+wLpyq4ilJ0jnAaR3KSsH dYg7ZVhI692ifehAp5Qhyir2FbbSb5I7YO4lsWZompP+BF/6cVRtgsCl39gRrrlX Px0rSxqmL77LI+ZMsL5yV3mZAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUtmeAtRBo ssFIgY/AXnJ02UVjIgIwHwYDVR0jBBgwFoAUpLh/nflqIHJhuXtMnjjIO1yA1m4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDNkE2L0EyQzYyMUEwNUYz OTExRUY4NURDOEUyREM0RjlBRTAyL3BMaF9uZmxxSUhKaHVYdE1uampJTzF5QTFt NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcExoX25mbHFJSEpodVh0TW5qaklPMXlBMW00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzZBNi9BMkM2MjFBMDVGMzkxMUVGODVEQzhFMkRDNEY5QUUwMi9FMkZFNUYxQzVG MzkxMUVGOUMzMzQ5MkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAWdKQgMEAWeF7jANBAIAAjAHAwUAJAV6QDANBgkqhkiG9w0B AQsFAAOCAQEAqhMBLTpDNtMGufdMoTBfJXMJbTlrlS0lLbPEEfK9kqG0xtp4ZaCY dNPieL9EOYUSs0YDmDEH+B5d4XicSJwoRzUa0IbeKXCImEbSz2r2972ATHPvP9Rx 2JtxZKtuyVvIDxDkiLPWrleGmxhWn90E5hKYagDI5fxu2/kM/+YflurgCpccBWyZ +JNhzf4WHn847xt4mbNDRQNEzRqzgkcElU5179EN9flizUdlFXbN7LYCuk87Cjub tEWLkOxcDevlw7vZme3nUTemgvTX31k3KvZVdK+p4Q2jyg/pjVu3v4NIkRy5Ev1Y 6lbrw58ngHhAAZAQJpzKTMzLOmjAvDXzIg== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org