$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EF7/C46FD7741B8F11E7AC4C7229C4F9AE02/E24736EC9D9011EC89314083C4F9AE02.roa File: E24736EC9D9011EC89314083C4F9AE02.roa (raw, json) Hash identifier: 13yVhNq9KrhMgUZK+k9hGYKSmoru8+e6upUXZaaeQeI= Subject key identifier: 73:93:D7:C5:A9:90:5D:70:1A:A0:78:DC:AD:26:19:EC:D3:C1:9D:BE Certificate issuer: /CN=A91E4EF7/serialNumber=AAB524E595A530E12C13AA211C2EF26B69DD9C9B Certificate serial: 19EA Authority key identifier: AA:B5:24:E5:95:A5:30:E1:2C:13:AA:21:1C:2E:F2:6B:69:DD:9C:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrUk5ZWlMOEsE6ohHC7ya2ndnJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EF7/C46FD7741B8F11E7AC4C7229C4F9AE02/E24736EC9D9011EC89314083C4F9AE02.roa Signing time: Mon 02 Oct 2023 16:53:33 +0000 ROA not before: Mon 02 Oct 2023 16:53:33 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133326 IP address blocks: 103.38.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EF7/C46FD7741B8F11E7AC4C7229C4F9AE02/qrUk5ZWlMOEsE6ohHC7ya2ndnJs.crl rsync://rpki.apnic.net/member_repository/A91E4EF7/C46FD7741B8F11E7AC4C7229C4F9AE02/qrUk5ZWlMOEsE6ohHC7ya2ndnJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrUk5ZWlMOEsE6ohHC7ya2ndnJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6634 (0x19ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EF7/serialNumber=AAB524E595A530E12C13AA211C2EF26B69DD9C9B Validity Not Before: Oct 2 16:53:33 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651af58c-b32c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b3:0c:74:52:e5:f7:ab:37:f9:1c:a0:b7:fb: e2:3b:ea:b4:a0:0c:17:ff:80:1e:0a:91:f9:0c:bf: cf:91:43:04:85:bf:77:e5:e7:d4:cc:00:08:3d:25: c3:a4:d8:1a:a0:7d:9e:92:71:b9:4f:48:d8:aa:3f: fd:b0:5e:c2:1c:ab:db:da:0a:b3:a2:5b:c8:93:48: 1e:53:63:21:b2:42:3d:0a:dd:e1:72:35:3c:1f:80: cf:29:75:89:6e:34:41:d9:27:84:2b:09:52:47:22: d3:d1:3c:26:ab:50:53:a9:a4:bf:a8:36:b6:ca:72: 36:56:07:f5:20:57:31:26:f5:07:85:57:65:24:8e: b0:51:99:a1:2d:4c:55:d1:a3:8e:aa:6d:f7:3c:d7: 40:66:09:23:3a:07:e1:9e:af:b6:1a:d5:bb:7c:51: a1:70:83:c0:b8:5b:f0:03:6e:51:de:61:81:9e:d8: 2b:65:0b:a1:43:b4:6d:f7:8f:6b:d6:5e:6e:43:c1: 18:27:56:b3:4a:90:f0:fb:29:ed:c5:4f:54:a0:17: 3d:c0:02:da:e4:ab:11:4c:3d:7a:99:dc:49:b6:74: c2:57:8b:75:62:07:16:90:6e:ad:f5:3a:a6:33:24: 9a:bb:03:c0:0a:56:29:a0:5f:07:4b:6d:c6:d2:3d: 91:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:93:D7:C5:A9:90:5D:70:1A:A0:78:DC:AD:26:19:EC:D3:C1:9D:BE X509v3 Authority Key Identifier: keyid:AA:B5:24:E5:95:A5:30:E1:2C:13:AA:21:1C:2E:F2:6B:69:DD:9C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EF7/C46FD7741B8F11E7AC4C7229C4F9AE02/qrUk5ZWlMOEsE6ohHC7ya2ndnJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrUk5ZWlMOEsE6ohHC7ya2ndnJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EF7/C46FD7741B8F11E7AC4C7229C4F9AE02/E24736EC9D9011EC89314083C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.120.0/22 Signature Algorithm: sha256WithRSAEncryption a4:52:29:b8:98:54:01:1a:61:bb:fb:8a:53:66:d7:6d:6b:b6: 89:dc:d4:14:80:38:5d:10:06:8b:f4:3e:06:00:fb:69:c2:f8: 55:20:05:b7:69:94:9f:96:e3:b2:54:d4:86:a1:bb:bf:4b:dc: 04:1e:e7:69:57:be:f4:70:73:82:ae:af:fa:6d:6a:0d:30:52: e8:71:df:39:94:3f:59:2f:a0:6f:3e:e7:ff:b5:1d:5b:57:52: 94:7c:d2:65:f3:dc:4a:87:43:10:46:2a:0f:f4:ea:2a:01:8b: 5f:f9:22:d3:27:d9:f0:9d:3c:93:fd:82:d1:bc:7d:7e:d0:78: 8b:2e:1b:74:26:0e:ac:8f:b8:32:fa:1c:1c:46:a8:06:97:37: 1c:9c:01:26:22:a3:41:3e:98:4f:06:78:b2:1f:bf:14:37:ab: 56:ad:1b:8b:f2:b2:fd:19:79:5c:16:44:7d:45:3f:23:7f:4f: 25:cd:4a:20:0f:61:f2:79:73:73:59:16:4b:dd:83:2b:2b:6c: f4:4e:a3:bf:93:e7:ce:b5:91:8e:69:7b:4f:6d:74:43:df:03: bd:36:2c:58:e7:a9:4e:7d:d6:a8:ce:71:ac:a4:f6:31:10:df: 30:fc:69:a1:cf:a1:60:d8:4b:8c:e1:d4:11:59:af:a3:af:d0: c9:a0:da:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRjcxMTAvBgNVBAUTKEFBQjUyNEU1OTVBNTMwRTEyQzEzQUEyMTFDMkVGMjZC NjlERDlDOUIwHhcNMjMxMDAyMTY1MzMzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZjU4Yy1iMzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrMMdFLl96s3+Rygt/viO+q0oAwX/4AeCpH5DL/PkUMEhb935efUzAAIPSXD pNgaoH2eknG5T0jYqj/9sF7CHKvb2gqzolvIk0geU2MhskI9Ct3hcjU8H4DPKXWJ bjRB2SeEKwlSRyLT0Twmq1BTqaS/qDa2ynI2Vgf1IFcxJvUHhVdlJI6wUZmhLUxV 0aOOqm33PNdAZgkjOgfhnq+2GtW7fFGhcIPAuFvwA25R3mGBntgrZQuhQ7Rt949r 1l5uQ8EYJ1azSpDw+yntxU9UoBc9wALa5KsRTD16mdxJtnTCV4t1YgcWkG6t9Tqm MySauwPAClYpoF8HS23G0j2R6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHOT18Wp kF1wGqB43K0mGezTwZ2+MB8GA1UdIwQYMBaAFKq1JOWVpTDhLBOqIRwu8mtp3Zyb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVGNy9DNDZGRDc3NDFC OEYxMUU3QUM0QzcyMjlDNEY5QUUwMi9xclVrNVpXbE1PRXNFNm9oSEM3eWEybmRu SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyVWs1WldsTU9Fc0U2b2hIQzd5YTJuZG5Kcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFRjcvQzQ2RkQ3NzQxQjhGMTFFN0FDNEM3MjI5QzRGOUFFMDIvRTI0NzM2RUM5 RDkwMTFFQzg5MzE0MDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnJngwDQYJKoZIhvcNAQELBQADggEBAKRSKbiYVAEaYbv7 ilNm121rtonc1BSAOF0QBov0PgYA+2nC+FUgBbdplJ+W47JU1Iahu79L3AQe52lX vvRwc4Kur/ptag0wUuhx3zmUP1kvoG8+5/+1HVtXUpR80mXz3EqHQxBGKg/06ioB i1/5ItMn2fCdPJP9gtG8fX7QeIsuG3QmDqyPuDL6HBxGqAaXNxycASYio0E+mE8G eLIfvxQ3q1atG4vysv0ZeVwWRH1FPyN/TyXNSiAPYfJ5c3NZFkvdgysrbPROo7+T 5861kY5pe09tdEPfA702LFjnqU591qjOcayk9jEQ3zD8aaHPoWDYS4zh1BFZr6Ov 0Mmg2kA= -----END CERTIFICATE-----Generated at Fri May 31 20:34:18 2024 by rpki-client on console-ams.rpki-client.org