$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/EAC9D46200F911EB8E61B84CC4F9AE02.roa File: EAC9D46200F911EB8E61B84CC4F9AE02.roa (raw, json) Hash identifier: Vn5biCjexx3cjiQ4QgNEGs4i33iiyVoqmR3L4tJPzNU= Subject key identifier: CC:A6:2D:CC:EF:56:99:F2:3F:C8:1B:34:2D:D6:9D:62:70:69:22:17 Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 074A Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/EAC9D46200F911EB8E61B84CC4F9AE02.roa Signing time: Sat 02 Nov 2024 21:11:01 +0000 ROA not before: Sat 02 Nov 2024 21:11:01 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 139643 IP address blocks: 103.143.0.0/24 maxlen: 24 103.143.1.0/24 maxlen: 24 2001:df1:6480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1866 (0x74a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Nov 2 21:11:01 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67269565-033f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:85:8f:7d:4e:3f:68:d2:cb:47:72:59:1f:11: 81:20:39:fc:4c:df:38:0a:d4:0e:00:74:cd:e2:4b: 13:fd:0c:8e:45:c9:f0:e1:14:d3:5d:3e:e5:e4:f6: bb:f4:89:61:e6:59:20:67:08:89:5d:ff:a3:89:d0: cc:18:45:a8:42:12:bb:f3:7d:a3:42:90:fb:13:ea: 18:25:97:0d:0b:77:fa:5d:dc:a6:e7:a2:2c:f5:5b: eb:b0:95:e7:3c:22:b0:4f:92:29:48:ac:1a:68:82: c7:f1:b6:79:02:b2:3e:72:bb:a9:4f:fe:3f:dd:b1: 53:13:64:a1:d7:f1:14:39:81:6a:17:21:68:b1:c1: fc:1a:66:c0:32:17:1b:57:00:09:08:e3:a9:c2:0d: 9d:fe:e8:27:eb:c7:84:c7:28:c4:86:93:ac:8f:ae: 98:4b:96:23:52:62:ad:91:f4:53:fb:bc:2e:11:bc: 88:a5:c2:69:c2:3e:62:e6:9b:d4:f8:53:e6:1b:c4: 77:2f:c9:5a:90:7d:24:f0:7a:af:8e:4f:bf:28:b4: ea:b7:4c:c1:08:b3:92:ea:6d:91:0f:1d:1f:e0:5e: 1f:ac:60:87:f0:37:a5:d3:ba:78:24:02:49:86:11: d5:82:1a:35:4d:a8:e0:d4:6b:71:5d:c9:94:8d:16: 93:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A6:2D:CC:EF:56:99:F2:3F:C8:1B:34:2D:D6:9D:62:70:69:22:17 X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/EAC9D46200F911EB8E61B84CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.0.0/23 IPv6: 2001:df1:6480::/48 Signature Algorithm: sha256WithRSAEncryption b7:cb:98:f1:56:26:4f:30:73:30:f7:61:c5:83:44:97:f0:69: 67:9f:31:21:df:8f:af:97:4c:21:df:6b:2f:3f:2c:6d:cd:c8: 0e:be:84:b1:1c:60:1d:90:51:d9:42:4d:92:2f:90:51:5c:33: f2:6a:c5:fa:de:a5:e8:d4:4a:9b:5a:d3:37:28:d7:4c:de:0a: db:5f:43:4f:2d:14:2b:59:71:58:db:8c:6e:d8:fc:9d:f1:04: 94:b9:7e:56:69:31:d3:20:78:3e:80:a7:17:72:94:6c:26:3b: ce:94:5f:fa:12:4d:89:60:93:db:85:b0:ad:3a:0e:c7:3c:28: ae:b0:33:51:88:4f:09:5d:89:6b:3e:bf:ec:d8:f0:a4:92:e6: 95:e4:ae:7a:31:60:c8:de:b2:3d:12:0e:cb:d3:7c:80:56:69: 33:b8:0f:db:02:67:7b:ed:e4:07:ef:d9:ea:08:bc:13:36:99: 20:b4:32:6c:43:11:83:cd:8a:36:8e:55:6b:df:4b:5e:e3:1c: 3c:44:42:48:f8:27:4a:e0:4d:b0:35:7b:49:20:14:2b:c2:d9: 67:67:3b:51:1a:41:18:1e:aa:2b:bf:db:68:b1:f8:8c:69:05: 99:71:92:74:07:68:ed:5d:70:7d:7e:a5:a4:0b:c5:13:3d:c3: e2:0e:90:c6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjQxMTAyMjExMTAxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2OTU2NS0wMzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4WPfU4/aNLLR3JZHxGBIDn8TN84CtQOAHTN4ksT/QyORcnw4RTTXT7l5Pa7 9Ilh5lkgZwiJXf+jidDMGEWoQhK7832jQpD7E+oYJZcNC3f6Xdym56Is9VvrsJXn PCKwT5IpSKwaaILH8bZ5ArI+crupT/4/3bFTE2Sh1/EUOYFqFyFoscH8GmbAMhcb VwAJCOOpwg2d/ugn68eExyjEhpOsj66YS5YjUmKtkfRT+7wuEbyIpcJpwj5i5pvU +FPmG8R3L8lakH0k8Hqvjk+/KLTqt0zBCLOS6m2RDx0f4F4frGCH8Del07p4JAJJ hhHVgho1Tajg1GtxXcmUjRaTmwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMymLczv VpnyP8gbNC3WnWJwaSIXMB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg4ODEvMDg5REU4NDAwMEY4MTFFQkIyMTdBNDQ5QzRGOUFFMDIvRUFDOUQ0NjIw MEY5MTFFQjhFNjFCODRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjwAwDwQCAAIwCQMHACABDfFkgDANBgkqhkiG9w0BAQsF AAOCAQEAt8uY8VYmTzBzMPdhxYNEl/BpZ58xId+Pr5dMId9rLz8sbc3IDr6EsRxg HZBR2UJNki+QUVwz8mrF+t6l6NRKm1rTNyjXTN4K219DTy0UK1lxWNuMbtj8nfEE lLl+Vmkx0yB4PoCnF3KUbCY7zpRf+hJNiWCT24WwrToOxzworrAzUYhPCV2Jaz6/ 7NjwpJLmleSuejFgyN6yPRIOy9N8gFZpM7gP2wJne+3kB+/Z6gi8EzaZILQybEMR g82KNo5Va99LXuMcPERCSPgnSuBNsDV7SSAUK8LZZ2c7URpBGB6qK7/baLH4jGkF mXGSdAdo7V1wfX6lpAvFEz3D4g6Qxg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:49 2024 by rpki-client on console-ams.rpki-client.org