$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5868/065AC22CF3FE11E99B695F19C4F9AE02/E098C4B6F3FE11E9BB4E931AC4F9AE02.roa File: E098C4B6F3FE11E9BB4E931AC4F9AE02.roa (raw, json) Hash identifier: naIqp1qIgirHYTXhnEIrxV9EWzLYh1BLi6TO8qJtCas= Subject key identifier: AC:CA:41:53:71:25:57:E1:C5:55:5C:0A:3E:7E:24:28:54:D6:66:AE Certificate issuer: /CN=A91F5868/serialNumber=2551900708A03140795BA1BA9B1DDAFCF417C93F Certificate serial: 0BB0 Authority key identifier: 25:51:90:07:08:A0:31:40:79:5B:A1:BA:9B:1D:DA:FC:F4:17:C9:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVGQBwigMUB5W6G6mx3a_PQXyT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5868/065AC22CF3FE11E99B695F19C4F9AE02/E098C4B6F3FE11E9BB4E931AC4F9AE02.roa Signing time: Tue 20 Feb 2024 18:57:13 +0000 ROA not before: Tue 20 Feb 2024 18:57:13 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58715 IP address blocks: 103.105.84.0/22 maxlen: 24 2402:2cc0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5868/065AC22CF3FE11E99B695F19C4F9AE02/JVGQBwigMUB5W6G6mx3a_PQXyT8.crl rsync://rpki.apnic.net/member_repository/A91F5868/065AC22CF3FE11E99B695F19C4F9AE02/JVGQBwigMUB5W6G6mx3a_PQXyT8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVGQBwigMUB5W6G6mx3a_PQXyT8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2992 (0xbb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5868/serialNumber=2551900708A03140795BA1BA9B1DDAFCF417C93F Validity Not Before: Feb 20 18:57:13 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d4f609-6c22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5f:56:0b:b8:47:46:ae:9a:be:b6:ea:74:6a: 6c:d6:4e:cc:80:4c:c6:54:f8:b3:0e:61:73:aa:22: 33:f9:a1:9d:49:03:5d:2c:8c:79:65:b4:34:5d:26: b2:fc:1c:98:81:56:a8:7f:bc:64:b9:e1:df:67:79: b1:5f:67:64:66:b7:dd:e9:a7:42:0a:cb:36:7d:88: fb:f8:2e:cb:05:9e:34:8c:44:30:e5:a9:92:b0:4c: e8:1f:41:c4:b5:4c:11:fc:7f:cd:87:18:77:97:26: b5:b3:19:05:8f:f6:a0:35:2a:c1:76:15:20:cd:8e: 1c:56:a9:db:fa:37:f9:91:d5:76:0f:5f:6e:b8:b3: 90:3a:2e:04:72:84:45:34:ab:3b:41:de:73:02:58: d8:07:d6:f8:b3:dd:64:49:5a:ce:46:99:8c:64:66: cc:03:5b:3c:8d:05:08:0c:68:72:f4:d4:95:fb:c3: 05:16:e9:40:0b:0e:35:cf:3a:24:20:7f:45:46:b0: 8b:37:51:a9:08:d7:c0:95:d6:7c:50:15:80:3a:1d: 10:61:bd:c2:38:11:b8:08:14:7a:9b:bc:35:0e:88: 83:4e:7d:79:9e:4b:cc:bf:4c:73:23:3e:58:1c:b5: ad:90:fa:85:28:0e:08:bc:5b:e2:8b:41:51:a4:75: e0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CA:41:53:71:25:57:E1:C5:55:5C:0A:3E:7E:24:28:54:D6:66:AE X509v3 Authority Key Identifier: keyid:25:51:90:07:08:A0:31:40:79:5B:A1:BA:9B:1D:DA:FC:F4:17:C9:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5868/065AC22CF3FE11E99B695F19C4F9AE02/JVGQBwigMUB5W6G6mx3a_PQXyT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVGQBwigMUB5W6G6mx3a_PQXyT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5868/065AC22CF3FE11E99B695F19C4F9AE02/E098C4B6F3FE11E9BB4E931AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.84.0/22 IPv6: 2402:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 11:27:97:06:ab:a9:a5:6d:78:9a:96:cf:d7:b9:29:c2:6a:15: 90:3c:82:09:38:d0:10:6f:5d:63:38:17:87:bd:e3:cf:55:d9: 48:f5:5c:da:03:8b:95:eb:c8:7d:33:12:19:3a:0f:b2:98:2f: b9:79:0f:48:7c:6b:34:0e:1a:a0:ae:35:53:65:a4:0c:29:a9: 14:af:66:b1:b4:ac:06:6f:f4:c7:b3:f0:bd:4b:47:90:2b:9b: 3f:4c:a6:14:3e:31:9d:ff:ec:50:f0:03:ba:f3:60:24:64:a3: 76:ff:4f:10:ea:04:af:b0:15:1f:73:80:0b:d8:e7:26:1e:4c: 22:ea:db:5d:8a:a8:a8:cd:39:3e:89:82:88:8b:13:cf:e5:37: 8d:4b:2a:ac:99:26:83:0c:a4:38:10:3b:9d:79:6a:4d:9e:e0: a5:19:48:ac:9a:f2:9e:36:5c:aa:c1:ba:89:a2:af:9c:0e:24: c1:cf:77:84:c2:74:a4:9a:f4:60:11:d9:76:62:c1:db:60:02: 75:23:f2:90:10:bc:d5:cc:22:37:77:77:b8:a3:9a:de:6f:74: 0b:c1:e0:cf:89:7a:e0:bd:de:5a:c2:ac:7c:a6:dc:0b:62:c8: 18:b1:17:5a:93:14:b8:fd:89:e1:65:3c:43:08:3a:e4:21:b9: 44:31:f9:36 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4NjgxMTAvBgNVBAUTKDI1NTE5MDA3MDhBMDMxNDA3OTVCQTFCQTlCMUREQUZD RjQxN0M5M0YwHhcNMjQwMjIwMTg1NzEzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZjYwOS02YzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtl9WC7hHRq6avrbqdGps1k7MgEzGVPizDmFzqiIz+aGdSQNdLIx5ZbQ0XSay /ByYgVaof7xkueHfZ3mxX2dkZrfd6adCCss2fYj7+C7LBZ40jEQw5amSsEzoH0HE tUwR/H/Nhxh3lya1sxkFj/agNSrBdhUgzY4cVqnb+jf5kdV2D19uuLOQOi4EcoRF NKs7Qd5zAljYB9b4s91kSVrORpmMZGbMA1s8jQUIDGhy9NSV+8MFFulACw41zzok IH9FRrCLN1GpCNfAldZ8UBWAOh0QYb3COBG4CBR6m7w1DoiDTn15nkvMv0xzIz5Y HLWtkPqFKA4IvFvii0FRpHXgbQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKzKQVNx JVfhxVVcCj5+JChU1mauMB8GA1UdIwQYMBaAFCVRkAcIoDFAeVuhupsd2vz0F8k/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTg2OC8wNjVBQzIyQ0Yz RkUxMUU5OUI2OTVGMTlDNEY5QUUwMi9KVkdRQndpZ01VQjVXNkc2bXgzYV9QUVh5 VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pWR1FCd2lnTVVCNVc2RzZteDNhX1BRWHlUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4NjgvMDY1QUMyMkNGM0ZFMTFFOTlCNjk1RjE5QzRGOUFFMDIvRTA5OEM0QjZG M0ZFMTFFOUJCNEU5MzFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnaVQwDQQCAAIwBwMFACQCLMAwDQYJKoZIhvcNAQELBQAD ggEBABEnlwarqaVteJqWz9e5KcJqFZA8ggk40BBvXWM4F4e9489V2Uj1XNoDi5Xr yH0zEhk6D7KYL7l5D0h8azQOGqCuNVNlpAwpqRSvZrG0rAZv9Mez8L1LR5Armz9M phQ+MZ3/7FDwA7rzYCRko3b/TxDqBK+wFR9zgAvY5yYeTCLq212KqKjNOT6JgoiL E8/lN41LKqyZJoMMpDgQO515ak2e4KUZSKya8p42XKrBuomir5wOJMHPd4TCdKSa 9GAR2XZiwdtgAnUj8pAQvNXMIjd3d7ijmt5vdAvB4M+JeuC93lrCrHym3AtiyBix F1qTFLj9ieFlPEMIOuQhuUQx+TY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org