$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/064042F259F511EDB22E3F2BC4F9AE02.roa File: 064042F259F511EDB22E3F2BC4F9AE02.roa (raw, json) Hash identifier: JoMqVSrjZm4JfXMaz6xrPhG5LHTOXjmhXw4j9hZGE8w= Subject key identifier: D4:F8:96:D8:E6:09:58:5D:B5:4C:5C:45:76:FF:41:5D:55:0C:5D:AF Certificate issuer: /CN=A91C1FA7/serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Certificate serial: 0187 Authority key identifier: FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/064042F259F511EDB22E3F2BC4F9AE02.roa Signing time: Thu 21 Nov 2024 02:16:13 +0000 ROA not before: Thu 21 Nov 2024 02:16:13 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150393 IP address blocks: 103.29.182.0/24 maxlen: 24 103.29.183.0/24 maxlen: 24 2001:df1:7840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FA7/serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Validity Not Before: Nov 21 02:16:13 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673e97ec-d0d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:74:99:57:fb:c6:63:9f:42:c5:34:d0:ca:7c: 09:ba:27:d3:95:75:76:6d:0d:e5:ca:ef:e1:1a:62: b7:d3:2c:1b:b6:6f:e8:8e:c8:7a:58:f3:34:36:be: 73:fa:d2:a4:ba:1b:2c:fc:b6:c4:b2:69:b4:13:73: e3:20:4f:55:77:e1:b0:a8:81:b9:ec:02:e0:37:31: 54:8d:6c:6b:05:0a:ba:dc:2e:25:f1:2b:85:cb:3a: 13:2c:b8:ed:f1:c3:a0:37:43:40:ca:9a:1f:53:44: 4a:99:e5:cb:a3:57:9c:94:8f:f3:4a:90:b4:b0:3d: b0:7b:5c:1a:c9:1d:0d:18:74:72:ef:2f:87:74:aa: 95:08:f2:23:18:84:02:4b:38:01:62:d1:da:6e:b6: c5:70:01:bc:c8:d6:af:1e:6c:d5:f9:ab:e8:6d:4f: 3b:5c:2e:5c:13:d9:14:5c:7c:4a:d4:6d:bb:08:bf: 85:11:eb:5e:11:ef:22:34:87:6d:78:92:a4:2f:2c: bf:85:f7:93:2c:58:7b:70:00:af:7f:18:8a:aa:68: c9:63:c3:8c:dc:af:58:13:0b:70:11:c9:9b:af:7d: ee:6b:74:eb:63:63:f2:18:90:a0:3e:5d:99:15:43: 56:92:38:e7:0e:db:47:e8:f6:8b:7b:3a:1e:fd:08: 7f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:F8:96:D8:E6:09:58:5D:B5:4C:5C:45:76:FF:41:5D:55:0C:5D:AF X509v3 Authority Key Identifier: keyid:FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/064042F259F511EDB22E3F2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.182.0/23 IPv6: 2001:df1:7840::/48 Signature Algorithm: sha256WithRSAEncryption b5:cc:94:d0:bb:f4:34:c0:d2:14:ca:b3:6c:21:fe:a5:36:c3: 20:e7:08:3a:39:78:e4:b1:f9:c6:28:9e:9d:fb:f1:bd:bb:5c: 1d:6f:e5:f1:87:68:52:43:15:de:54:7f:00:68:18:f2:86:1d: 3b:52:e2:0f:77:cf:48:90:99:dd:32:5d:e3:28:5b:2e:e3:f0: b6:3f:1e:cf:9a:f5:b3:c2:a5:dd:f0:56:64:d3:7d:a5:60:5a: 28:f4:be:79:ef:64:44:75:2a:a5:7e:87:4a:93:03:35:b1:1b: 6b:43:28:3a:60:27:9d:55:24:af:17:ee:d2:2f:a1:d0:e6:70: c4:f6:a2:28:1d:36:ab:15:97:88:7b:90:10:e8:df:01:3b:44: 8e:b1:06:ef:2e:0d:7d:8a:68:19:7d:27:cf:1b:c3:b3:39:6d: 1b:ba:c8:cc:f9:58:39:11:61:45:0d:e5:b4:77:c3:4b:72:43: 93:02:93:82:65:41:bb:24:4a:02:fe:88:97:3a:d3:d5:c5:ed: e5:55:6c:66:59:ff:b0:9c:eb:86:68:75:51:24:0d:dd:6f:fb: 81:88:a3:28:58:b3:d9:ba:0c:f7:77:ad:15:97:8e:bf:84:ae: 52:64:39:3c:cf:64:c3:26:cd:c5:9c:66:1f:c2:77:20:44:d0: a7:4c:ed:58 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQTcxMTAvBgNVBAUTKEZGNUQxMzJCQzY2QUFBMkJCQ0Y2NUMzRTVGRTg5QTBD MzcxRDhCM0EwHhcNMjQxMTIxMDIxNjEzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlOTdlYy1kMGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HSZV/vGY59CxTTQynwJuifTlXV2bQ3lyu/hGmK30ywbtm/ojsh6WPM0Nr5z +tKkuhss/LbEsmm0E3PjIE9Vd+GwqIG57ALgNzFUjWxrBQq63C4l8SuFyzoTLLjt 8cOgN0NAypofU0RKmeXLo1eclI/zSpC0sD2we1wayR0NGHRy7y+HdKqVCPIjGIQC SzgBYtHabrbFcAG8yNavHmzV+avobU87XC5cE9kUXHxK1G27CL+FEeteEe8iNIdt eJKkLyy/hfeTLFh7cACvfxiKqmjJY8OM3K9YEwtwEcmbr33ua3TrY2PyGJCgPl2Z FUNWkjjnDttH6PaLezoe/Qh/JwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNT4ltjm CVhdtUxcRXb/QV1VDF2vMB8GA1UdIwQYMBaAFP9dEyvGaqorvPZcPl/omgw3HYs6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZBNy8yRDk5MUNEMDU5 OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFpdTg5bHctWC1pYUREY2Rp em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18xMFRLOFpxcWl1ODlsdy1YLWlhRERjZGl6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFGQTcvMkQ5OTFDRDA1OTlGMTFFREI5NjdBRTM5QzRGOUFFMDIvMDY0MDQyRjI1 OUY1MTFFREIyMkUzRjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnHbYwDwQCAAIwCQMHACABDfF4QDANBgkqhkiG9w0BAQsF AAOCAQEAtcyU0Lv0NMDSFMqzbCH+pTbDIOcIOjl45LH5xiienfvxvbtcHW/l8Ydo UkMV3lR/AGgY8oYdO1LiD3fPSJCZ3TJd4yhbLuPwtj8ez5r1s8Kl3fBWZNN9pWBa KPS+ee9kRHUqpX6HSpMDNbEba0MoOmAnnVUkrxfu0i+h0OZwxPaiKB02qxWXiHuQ EOjfATtEjrEG7y4NfYpoGX0nzxvDszltG7rIzPlYORFhRQ3ltHfDS3JDkwKTgmVB uyRKAv6IlzrT1cXt5VVsZln/sJzrhmh1USQN3W/7gYijKFiz2boM93etFZeOv4Su UmQ5PM9kwybNxZxmH8J3IETQp0ztWA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org