$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/E7B472CE2DC811EEBADF8E61C4F9AE02.roa File: E7B472CE2DC811EEBADF8E61C4F9AE02.roa (raw, json) Hash identifier: 54qHC7QVMBwoC0O3cMcEci4Yy+Xl8hxRZfIa8v1MHj8= Subject key identifier: 36:57:C6:5F:29:E3:E8:0B:18:89:29:DF:45:12:4D:7D:BA:CF:9B:6E Certificate issuer: /CN=A91D5320/serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Certificate serial: EB Authority key identifier: B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/E7B472CE2DC811EEBADF8E61C4F9AE02.roa Signing time: Sat 05 Oct 2024 04:37:48 +0000 ROA not before: Sat 05 Oct 2024 04:37:48 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150285 IP address blocks: 103.38.8.0/24 maxlen: 24 103.250.76.0/24 maxlen: 24 2400:e160::/32 maxlen: 32 2400:e160::/36 maxlen: 36 2400:e160:1000::/36 maxlen: 36 2400:e160:2000::/36 maxlen: 36 2400:e160:3000::/36 maxlen: 36 2400:e160:4000::/36 maxlen: 36 2400:e160:5000::/36 maxlen: 36 2400:e160:6000::/36 maxlen: 36 2400:e160:7000::/36 maxlen: 36 2400:e160:8000::/36 maxlen: 36 2400:e160:9000::/36 maxlen: 36 2400:e160:a000::/36 maxlen: 36 2400:e160:b000::/36 maxlen: 36 2400:e160:c000::/36 maxlen: 36 2400:e160:d000::/36 maxlen: 36 2400:e160:e000::/36 maxlen: 36 2400:e160:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5320/serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Validity Not Before: Oct 5 04:37:48 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6700c29b-acb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:08:1a:2c:2a:45:32:08:56:6b:df:03:ab:dc: 39:82:ed:ce:f2:e7:dc:c9:ca:88:35:0b:c8:2f:98: 40:45:6f:2e:af:70:2a:dc:48:b4:03:42:82:37:4b: 3e:47:4d:e2:48:ef:1f:97:39:71:8e:1c:8f:ef:37: e1:32:51:ea:f8:04:59:6d:38:3b:a6:38:fd:94:5d: 74:4d:5e:d9:20:b4:ac:ac:53:f7:7e:09:81:70:14: 01:d3:4d:fb:42:f2:09:7a:9b:8f:f9:96:78:5e:39: b2:be:37:b3:61:2d:d8:86:99:97:bf:4d:02:8b:5b: 21:a9:ca:09:30:9a:6d:dd:86:18:a5:d3:a2:53:3b: 25:4c:88:ab:39:59:53:d5:d6:06:7d:00:6f:09:29: ac:6f:42:fa:f1:70:29:59:81:d3:ca:90:b4:e0:e0: 57:0d:f5:b7:72:1a:d1:3a:5b:d8:73:fb:21:a1:e6: c0:78:8b:5c:fa:ee:75:52:4b:e3:b9:6d:4a:75:90: 3b:e0:e8:c7:49:67:78:28:a9:6a:e0:d1:41:17:70: de:f8:a8:5d:b5:b1:93:e9:dd:5b:f7:56:ed:06:c2: 65:d0:1f:9c:c0:55:bf:55:ff:ae:ca:9c:a1:b8:f9: 12:ad:32:ac:0e:14:b3:95:4a:8f:01:79:19:1a:47: a2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:57:C6:5F:29:E3:E8:0B:18:89:29:DF:45:12:4D:7D:BA:CF:9B:6E X509v3 Authority Key Identifier: keyid:B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/E7B472CE2DC811EEBADF8E61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.8.0/24 103.250.76.0/24 IPv6: 2400:e160::/32 Signature Algorithm: sha256WithRSAEncryption 40:4c:67:f6:25:d1:df:05:8a:a0:26:7a:32:69:d4:55:c5:bb: 69:08:be:26:cf:3c:59:a8:2f:44:ba:79:bf:2b:16:c5:e1:49: e1:2f:14:6d:05:83:66:0a:47:5e:ce:b4:07:8c:a3:ee:12:1d: c3:9c:8c:d5:be:87:35:b8:bb:d8:72:71:27:fe:d9:84:7a:be: c6:59:eb:54:3e:03:4f:3c:b9:8e:a3:20:ae:45:1b:9e:df:cd: 24:18:52:f1:dd:97:f4:d3:b1:34:fa:a7:a9:2f:73:8b:5e:9e: 65:79:7b:68:bc:ff:94:89:52:27:77:25:21:af:10:30:db:bc: 63:f2:f0:8b:95:96:06:ee:3f:57:2b:ac:36:21:95:d8:6a:ab: 06:9c:34:ab:d0:7b:25:94:4a:fc:a6:4f:c3:8e:b7:d4:01:ef: 93:ad:ee:84:55:02:f2:82:2c:79:9e:4f:92:04:81:97:eb:0c: b0:e8:f9:0b:1f:37:3f:1f:39:1b:ec:df:a7:52:56:d7:9f:2b: 2d:ea:2f:ef:f6:ed:98:44:ab:06:e2:03:8b:ef:76:e6:74:71: 6c:63:ec:e9:19:3d:a0:58:9e:af:e5:5b:37:27:78:85:37:fa: e8:82:ef:5e:30:40:73:18:34:ea:75:de:eb:da:4a:96:50:06: 25:70:fa:6a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzMjAxMTAvBgNVBAUTKEIxOTFBRTIwNjgxNDZGOUM3MzlCRUE2Q0Q1OUU3OTJD NEY4OTdCNzYwHhcNMjQxMDA1MDQzNzQ4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYzI5Yi1hY2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAgaLCpFMghWa98Dq9w5gu3O8ufcycqINQvIL5hARW8ur3Aq3Ei0A0KCN0s+ R03iSO8flzlxjhyP7zfhMlHq+ARZbTg7pjj9lF10TV7ZILSsrFP3fgmBcBQB0037 QvIJepuP+ZZ4XjmyvjezYS3YhpmXv00Ci1shqcoJMJpt3YYYpdOiUzslTIirOVlT 1dYGfQBvCSmsb0L68XApWYHTypC04OBXDfW3chrROlvYc/shoebAeItc+u51Ukvj uW1KdZA74OjHSWd4KKlq4NFBF3De+KhdtbGT6d1b91btBsJl0B+cwFW/Vf+uypyh uPkSrTKsDhSzlUqPAXkZGkeisQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDZXxl8p 4+gLGIkp30USTX26z5tuMB8GA1UdIwQYMBaAFLGRriBoFG+cc5vqbNWeeSxPiXt2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTMyMC83OENDRkU0RTJE QzgxMUVFOTM3MEQzNDhDNEY5QUUwMi9zWkd1SUdnVWI1eHptLXBzMVo1NUxFLUpl M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NaR3VJR2dVYjV4em0tcHMxWjU1TEUtSmUzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUzMjAvNzhDQ0ZFNEUyREM4MTFFRTkzNzBEMzQ4QzRGOUFFMDIvRTdCNDcyQ0Uy REM4MTFFRUJBREY4RTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnJggDBABn+kwwDQQCAAIwBwMFACQA4WAwDQYJKoZIhvcN AQELBQADggEBAEBMZ/Yl0d8FiqAmejJp1FXFu2kIvibPPFmoL0S6eb8rFsXhSeEv FG0Fg2YKR17OtAeMo+4SHcOcjNW+hzW4u9hycSf+2YR6vsZZ61Q+A088uY6jIK5F G57fzSQYUvHdl/TTsTT6p6kvc4tenmV5e2i8/5SJUid3JSGvEDDbvGPy8IuVlgbu P1crrDYhldhqqwacNKvQeyWUSvymT8OOt9QB75Ot7oRVAvKCLHmeT5IEgZfrDLDo +QsfNz8fORvs36dSVtefKy3qL+/27ZhEqwbiA4vvduZ0cWxj7OkZPaBYnq/lWzcn eIU3+uiC714wQHMYNOp13uvaSpZQBiVw+mo= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:24 2024 by rpki-client on console-ams.rpki-client.org