$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/EF44A44E51EB11EABC11800DC4F9AE02.roa File: EF44A44E51EB11EABC11800DC4F9AE02.roa (raw, json) Hash identifier: 0pOyw8LF7RGBw1qxoeNfF21Qn2Gqg0oqE4beQcmEP58= Subject key identifier: B7:1F:FA:7D:DC:85:8B:6F:2E:63:14:51:57:C1:B7:99:6F:CD:A4:36 Certificate issuer: /CN=A91FD378/serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Certificate serial: 09CE Authority key identifier: 99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/EF44A44E51EB11EABC11800DC4F9AE02.roa Signing time: Wed 31 Jan 2024 20:48:37 +0000 ROA not before: Wed 31 Jan 2024 20:48:37 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133192 IP address blocks: 103.255.24.0/24 maxlen: 24 103.255.25.0/24 maxlen: 24 103.255.26.0/24 maxlen: 24 103.255.27.0/24 maxlen: 24 163.47.164.0/24 maxlen: 24 163.47.165.0/24 maxlen: 24 163.47.166.0/24 maxlen: 24 163.47.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2510 (0x9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD378/serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Validity Not Before: Jan 31 20:48:37 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bab225-d999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f2:61:42:5f:ff:f5:44:f1:95:e3:49:6e:f6: 50:9a:f4:62:a6:fe:7c:83:0e:2f:53:2d:c1:cd:e0: 5e:19:d2:ba:cd:f7:b6:02:48:eb:fd:cc:68:dc:f4: c0:58:fa:8c:a8:9d:58:d7:ef:78:88:5d:cf:c8:a6: ea:0a:7a:dc:f8:07:a3:be:50:52:0f:be:bb:15:ce: cc:73:ca:92:b1:5c:e0:eb:98:b6:c3:bc:ed:d7:20: 47:8a:1b:96:6a:89:13:32:c3:b1:dc:7d:eb:de:46: 4e:0e:ce:2b:b6:73:53:c1:93:38:79:72:48:6b:d6: c5:b0:eb:76:88:f4:0f:19:93:4e:b0:9c:2b:cb:dd: 71:8c:c1:1a:b2:de:0e:29:03:83:61:1b:e1:d0:8b: b2:b8:ed:28:32:94:cf:5b:d3:f8:3e:30:91:66:95: 12:5c:cd:1e:9d:98:90:1e:7f:cc:82:56:f3:c6:65: 69:02:77:36:ef:d7:d7:bc:9e:92:be:87:88:2a:14: 62:2c:60:83:00:a3:4e:3d:9a:f5:92:35:fe:51:ee: 78:74:82:d2:47:92:f5:db:31:ae:3e:61:86:a6:74: cb:a0:8f:e2:d6:0c:88:21:b1:46:0c:09:31:7f:c5: e0:e5:7f:cc:68:4d:f9:21:0d:9e:af:89:02:30:10: e9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1F:FA:7D:DC:85:8B:6F:2E:63:14:51:57:C1:B7:99:6F:CD:A4:36 X509v3 Authority Key Identifier: keyid:99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/EF44A44E51EB11EABC11800DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.24.0/22 163.47.164.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:1b:52:fc:0b:c0:1a:a5:32:ac:65:df:c8:85:09:6c:83:45: 8b:40:11:2a:d1:6a:af:4f:77:ac:0e:3b:8f:dc:b5:04:66:0a: 6e:f8:a5:d3:44:01:d0:e9:25:a9:17:13:8c:c2:32:68:b0:2e: bf:c3:7a:a6:64:0f:bc:33:c1:27:79:a1:7c:1d:c6:4e:08:94: fd:f0:ef:45:b9:e7:04:46:9e:6d:c2:e7:7a:56:aa:3b:6a:99: ab:f1:46:f7:8e:be:df:99:ae:3f:30:5f:ee:69:17:6c:fe:54: bd:94:35:85:49:9b:42:83:4b:71:6c:ea:e4:a1:f8:ac:7b:32: 61:63:b3:33:41:3e:37:86:54:a3:f3:0b:50:7b:3b:b0:5b:a8: b0:3a:3e:90:22:4f:06:5c:1c:d4:69:6f:56:d9:d1:53:61:77: f3:eb:b1:da:7f:86:9a:a5:cd:85:f5:e5:9f:9d:3e:79:4a:02: a2:ee:7e:30:56:6d:08:f0:bd:1c:ce:5c:1f:0f:a8:29:91:38: d6:05:c2:e4:40:25:18:fd:6f:22:94:51:01:70:4d:69:68:0d: ce:59:c6:45:71:6a:c7:6f:52:a7:90:09:66:5c:76:33:ba:32: 75:7c:d0:17:4a:03:10:d9:3f:99:38:52:be:f7:7e:9d:04:63: 2b:fe:4c:43 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzNzgxMTAvBgNVBAUTKDk5QkUwODVEMUM2OTZDQkMyMUI2NzhGOTE4OEVDQ0U1 REJDREQ0Q0EwHhcNMjQwMTMxMjA0ODM3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhYjIyNS1kOTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPJhQl//9UTxleNJbvZQmvRipv58gw4vUy3BzeBeGdK6zfe2Akjr/cxo3PTA WPqMqJ1Y1+94iF3PyKbqCnrc+AejvlBSD767Fc7Mc8qSsVzg65i2w7zt1yBHihuW aokTMsOx3H3r3kZODs4rtnNTwZM4eXJIa9bFsOt2iPQPGZNOsJwry91xjMEast4O KQODYRvh0IuyuO0oMpTPW9P4PjCRZpUSXM0enZiQHn/MglbzxmVpAnc279fXvJ6S voeIKhRiLGCDAKNOPZr1kjX+Ue54dILSR5L12zGuPmGGpnTLoI/i1gyIIbFGDAkx f8Xg5X/MaE35IQ2er4kCMBDpxQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLcf+n3c hYtvLmMUUVfBt5lvzaQ2MB8GA1UdIwQYMBaAFJm+CF0caWy8IbZ4+RiOzOXbzdTK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM3OC82MzJGQThDRTUx RUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJMd2h0bmo1R0k3TTVkdk4x TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21iNElYUnhwYkx3aHRuajVHSTdNNWR2TjFNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQzNzgvNjMyRkE4Q0U1MUVBMTFFQUI2QTVDRDg2QzRGOUFFMDIvRUY0NEE0NEU1 MUVCMTFFQUJDMTE4MDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn/xgDBAKjL6QwDQYJKoZIhvcNAQELBQADggEBAAwbUvwL wBqlMqxl38iFCWyDRYtAESrRaq9Pd6wOO4/ctQRmCm74pdNEAdDpJakXE4zCMmiw Lr/DeqZkD7wzwSd5oXwdxk4IlP3w70W55wRGnm3C53pWqjtqmavxRveOvt+Zrj8w X+5pF2z+VL2UNYVJm0KDS3Fs6uSh+Kx7MmFjszNBPjeGVKPzC1B7O7BbqLA6PpAi TwZcHNRpb1bZ0VNhd/Prsdp/hpqlzYX15Z+dPnlKAqLufjBWbQjwvRzOXB8PqCmR ONYFwuRAJRj9byKUUQFwTWloDc5ZxkVxasdvUqeQCWZcdjO6MnV80BdKAxDZP5k4 Ur73fp0EYyv+TEM= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org