$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/E7021416B54B11EE86895416C4F9AE02.roa File: E7021416B54B11EE86895416C4F9AE02.roa (raw, json) Hash identifier: vzHahXAFIekcStIbFKvBTMDftL9nSsfmNUK1qbKIERQ= Subject key identifier: 7F:11:5B:A9:D3:F3:5D:84:95:76:E2:E3:A1:A9:EB:4D:AA:64:30:79 Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Certificate serial: B7 Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/E7021416B54B11EE86895416C4F9AE02.roa Signing time: Wed 23 Oct 2024 05:09:19 +0000 ROA not before: Wed 23 Oct 2024 05:09:19 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151984 IP address blocks: 103.252.120.0/23 maxlen: 23 103.252.120.0/24 maxlen: 24 103.252.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Validity Not Before: Oct 23 05:09:19 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671884ff-d3e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:71:23:46:13:7c:f9:9a:e6:30:8d:88:55:e4: ca:80:c8:d3:df:1a:9b:52:26:36:7b:b0:98:54:74: 61:7d:0a:39:07:07:22:60:ec:35:72:56:81:7e:4d: ab:57:9f:c2:88:80:cd:4b:9f:ff:0a:8c:7f:ee:c3: 4d:bc:e9:55:23:c1:00:29:63:e8:e9:7e:ba:76:3f: 95:0e:a1:bb:1c:47:31:03:3f:c5:e3:32:16:50:e6: 0a:b1:5f:24:e0:06:81:9d:64:59:8a:b4:8b:01:93: 0f:4c:5a:43:d2:5d:b9:e2:00:27:94:15:a6:0a:3a: 5d:f8:bd:c7:10:4c:0b:18:6f:b7:fe:c1:81:89:43: 10:bf:3c:97:01:88:26:59:6c:66:1b:1d:91:13:41: 55:3e:20:ed:09:81:49:08:8c:c4:02:4f:f6:cc:a0: 3f:1f:4b:09:e6:df:6e:ec:76:e1:38:79:16:61:4b: df:ab:ed:f5:76:d4:82:19:31:75:87:63:e4:da:77: 47:ac:3b:bf:4f:95:90:ab:6c:6e:35:91:7d:c0:cb: 63:df:60:83:b2:ef:e5:94:1f:72:2d:5d:6e:4b:17: 59:08:ae:d4:30:f2:af:33:9b:3a:9f:ca:df:e5:bc: 97:42:d6:16:61:16:a2:23:66:0d:e2:c7:ed:5c:55: 2c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:11:5B:A9:D3:F3:5D:84:95:76:E2:E3:A1:A9:EB:4D:AA:64:30:79 X509v3 Authority Key Identifier: keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/E7021416B54B11EE86895416C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.120.0/23 Signature Algorithm: sha256WithRSAEncryption 54:42:52:51:53:dd:2f:7b:03:a0:13:f1:16:98:04:98:8c:1e: 08:e3:94:0c:81:5e:53:a0:32:38:f5:ae:d9:0f:aa:a5:25:11: 35:d7:c8:0b:8a:8c:2a:99:79:c1:ef:58:75:48:7c:6d:ad:d3: e4:ef:31:f8:70:73:bf:57:f9:24:d9:10:cc:83:bc:4a:19:cd: ac:7d:a1:25:4f:e6:f2:5f:4e:36:04:74:e0:93:4d:e2:a3:a2: 75:9e:eb:62:46:30:75:ac:5e:1f:b8:39:59:55:ce:07:0f:19: 0c:59:27:49:ab:51:df:e7:8a:e2:df:a5:39:d9:6b:df:5e:42: 0c:f7:d8:29:42:90:5b:07:ac:df:3a:41:bb:a4:6f:75:3a:08: ac:f4:2e:26:37:e1:9c:4b:eb:4b:24:b4:96:a0:ca:7d:11:33: 65:91:03:94:b1:59:91:3a:59:d8:a9:17:61:94:2b:d4:36:ca: 0c:2f:cf:e7:e0:ae:a7:63:56:96:80:8a:b7:10:44:5f:55:d8: ae:17:5d:84:12:c0:7c:e0:b1:d6:fb:1a:9e:bd:dd:ad:2d:2c: 9e:3d:22:fc:d9:84:74:af:55:db:22:8e:a5:d5:30:95:13:9b: e3:96:25:75:6c:d3:a7:8c:2d:69:7a:a7:f8:83:a0:be:9e:76: ad:56:2f:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjIxMTAvBgNVBAUTKDdDRDk1OEEwMDdGNEYwRTU2RTRBOEQyNDU3NjY4ODYy MkJBQjcyMjEwHhcNMjQxMDIzMDUwOTE5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4ODRmZi1kM2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXEjRhN8+ZrmMI2IVeTKgMjT3xqbUiY2e7CYVHRhfQo5BwciYOw1claBfk2r V5/CiIDNS5//Cox/7sNNvOlVI8EAKWPo6X66dj+VDqG7HEcxAz/F4zIWUOYKsV8k 4AaBnWRZirSLAZMPTFpD0l254gAnlBWmCjpd+L3HEEwLGG+3/sGBiUMQvzyXAYgm WWxmGx2RE0FVPiDtCYFJCIzEAk/2zKA/H0sJ5t9u7HbhOHkWYUvfq+31dtSCGTF1 h2Pk2ndHrDu/T5WQq2xuNZF9wMtj32CDsu/llB9yLV1uSxdZCK7UMPKvM5s6n8rf 5byXQtYWYRaiI2YN4sftXFUs9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFH8RW6nT 812ElXbi46Gp602qZDB5MB8GA1UdIwQYMBaAFHzZWKAH9PDlbkqNJFdmiGIrq3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGMi81NzMyQzgzODg0 NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhPVnVTbzBrVjJhSVlpdXJj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZObFlvQWYwOE9WdVNvMGtWMmFJWWl1cmNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThBRjIvNTczMkM4Mzg4NDRDMTFFRUIxRjJDQTI5QzRGOUFFMDIvRTcwMjE0MTZC NTRCMTFFRTg2ODk1NDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn/HgwDQYJKoZIhvcNAQELBQADggEBAFRCUlFT3S97A6AT 8RaYBJiMHgjjlAyBXlOgMjj1rtkPqqUlETXXyAuKjCqZecHvWHVIfG2t0+TvMfhw c79X+STZEMyDvEoZzax9oSVP5vJfTjYEdOCTTeKjonWe62JGMHWsXh+4OVlVzgcP GQxZJ0mrUd/niuLfpTnZa99eQgz32ClCkFsHrN86Qbukb3U6CKz0LiY34ZxL60sk tJagyn0RM2WRA5SxWZE6WdipF2GUK9Q2ygwvz+fgrqdjVpaAircQRF9V2K4XXYQS wHzgsdb7Gp693a0tLJ49IvzZhHSvVdsijqXVMJUTm+OWJXVs06eMLWl6p/iDoL6e dq1WL24= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org