$ rpki-client -vvf rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/2E22941AB6C811EE925FF152C4F9AE02.roa File: 2E22941AB6C811EE925FF152C4F9AE02.roa (raw, json) Hash identifier: 14VHCJGkmJdQOjqMypvZVncuE0RPSTppb+1/EUDZTsY= Subject key identifier: 23:0A:6A:CF:B6:7E:0D:07:7D:D4:A6:07:7E:A8:2C:A3:5B:9E:C5:BC Certificate issuer: /CN=A91175BA/serialNumber=EA61137C0900906E4748D1E07CC555E6A7CCE100 Certificate serial: 6E Authority key identifier: EA:61:13:7C:09:00:90:6E:47:48:D1:E0:7C:C5:55:E6:A7:CC:E1:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mETfAkAkG5HSNHgfMVV5qfM4QA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/2E22941AB6C811EE925FF152C4F9AE02.roa Signing time: Wed 17 Jul 2024 20:16:10 +0000 ROA not before: Wed 17 Jul 2024 20:16:10 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152320 IP address blocks: 103.85.72.0/24 maxlen: 24 103.85.73.0/24 maxlen: 24 103.85.74.0/24 maxlen: 24 103.85.75.0/24 maxlen: 24 203.175.12.0/22 maxlen: 24 2001:df0:a640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/6mETfAkAkG5HSNHgfMVV5qfM4QA.crl rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/6mETfAkAkG5HSNHgfMVV5qfM4QA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mETfAkAkG5HSNHgfMVV5qfM4QA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 22:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175BA/serialNumber=EA61137C0900906E4748D1E07CC555E6A7CCE100 Validity Not Before: Jul 17 20:16:10 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6698268a-7610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:16:28:8e:25:8c:56:ee:8a:cf:22:36:e5:62: 61:78:64:66:07:ca:4d:82:b7:f5:5f:82:16:ff:80: f1:6f:c8:c6:b3:4e:39:06:e2:52:f7:ea:fc:87:39: 51:16:ac:e0:8e:83:01:4e:bd:2e:4c:ad:01:7f:05: a8:82:99:98:f5:36:13:87:d9:47:0a:d1:fb:18:9f: 87:24:41:3d:7c:8c:f2:99:87:5d:fc:f8:4e:bf:1f: e3:da:a2:13:ea:24:e6:b1:5a:22:3e:cc:93:a8:25: 4a:62:4e:d3:41:13:2f:ef:95:75:44:98:25:85:52: b2:91:9c:2f:63:84:0c:c5:10:35:1b:ac:5e:6f:43: fc:5b:02:e4:b9:0a:87:92:6b:35:d8:0b:73:bb:6d: ae:e3:02:4b:e2:71:3e:3e:cc:66:de:9a:1a:dc:f8: c9:1d:50:c0:80:65:d2:86:07:d7:70:5d:c8:22:c6: 58:55:5e:0f:91:b4:4b:8a:20:c4:70:81:40:5c:de: 29:cb:48:f5:54:7c:ea:eb:78:d9:12:d9:1e:85:e5: df:20:55:89:38:f8:19:3a:ae:31:44:2b:4d:de:8c: fa:57:4d:77:4d:58:f7:02:9c:21:fd:ac:fc:69:d2: 7e:3e:46:5e:8c:e5:79:66:0a:cf:a4:5b:c4:23:ba: 14:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:0A:6A:CF:B6:7E:0D:07:7D:D4:A6:07:7E:A8:2C:A3:5B:9E:C5:BC X509v3 Authority Key Identifier: keyid:EA:61:13:7C:09:00:90:6E:47:48:D1:E0:7C:C5:55:E6:A7:CC:E1:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/6mETfAkAkG5HSNHgfMVV5qfM4QA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mETfAkAkG5HSNHgfMVV5qfM4QA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/2E22941AB6C811EE925FF152C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.72.0/22 203.175.12.0/22 IPv6: 2001:df0:a640::/48 Signature Algorithm: sha256WithRSAEncryption 0a:17:af:3c:e2:1a:2c:0c:ad:48:12:96:85:ea:74:09:94:bd: 72:6f:fb:a4:cc:c9:07:9c:44:60:8d:26:2f:e5:55:10:23:d7: 67:a2:d6:6b:08:77:6b:1f:39:3a:df:69:90:59:6e:bf:50:6a: 5f:3c:91:c0:10:27:b6:74:02:05:ce:21:f4:89:aa:4e:ee:91: 06:8d:1b:3f:b8:fd:c7:a7:ff:5f:e1:75:52:f9:74:67:77:e7: ce:5e:b4:59:1f:70:91:7a:2b:59:e9:06:73:fb:17:30:cd:f0: fb:e0:34:21:da:98:a8:49:f6:98:d1:a6:1c:65:28:7b:3a:a9: 53:d5:3e:a4:6a:60:43:57:dc:5b:c3:10:ec:7f:51:af:d8:ec: 91:e3:05:b2:1b:44:76:a4:b6:c0:81:6a:62:be:2c:6b:98:4e: c4:08:fc:d7:3e:8c:57:14:f6:3e:8d:94:7f:ec:7d:fd:63:0d: 3e:27:09:ad:ae:79:9c:77:f3:13:31:29:1d:63:d0:4e:a3:0d: 53:81:90:84:17:fd:b1:c4:de:f9:59:71:57:ac:07:50:80:a3: 96:70:ad:e1:cf:7b:dc:23:73:5e:be:ed:01:a9:06:27:28:ec: d3:ee:3c:c4:74:ed:36:32:2d:05:ec:ef:f1:37:61:8c:c3:59: 56:23:63:78 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzVCQTExMC8GA1UEBRMoRUE2MTEzN0MwOTAwOTA2RTQ3NDhEMUUwN0NDNTU1RTZB N0NDRTEwMDAeFw0yNDA3MTcyMDE2MTBaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTgyNjhhLTc2MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2FiiOJYxW7orPIjblYmF4ZGYHyk2Ct/Vfghb/gPFvyMazTjkG4lL36vyHOVEW rOCOgwFOvS5MrQF/BaiCmZj1NhOH2UcK0fsYn4ckQT18jPKZh138+E6/H+PaohPq JOaxWiI+zJOoJUpiTtNBEy/vlXVEmCWFUrKRnC9jhAzFEDUbrF5vQ/xbAuS5CoeS azXYC3O7ba7jAkvicT4+zGbemhrc+MkdUMCAZdKGB9dwXcgixlhVXg+RtEuKIMRw gUBc3inLSPVUfOrreNkS2R6F5d8gVYk4+Bk6rjFEK03ejPpXTXdNWPcCnCH9rPxp 0n4+Rl6M5XlmCs+kW8QjuhRVAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUIwpqz7Z+ DQd91KYHfqgso1uexbwwHwYDVR0jBBgwFoAU6mETfAkAkG5HSNHgfMVV5qfM4QAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NUJBLzE2QzREMkI4Qzg0 RDExRUI5OTEzRDMyREM0RjlBRTAyLzZtRVRmQWtBa0c1SFNOSGdmTVZWNXFmTTRR QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNm1FVGZBa0FrRzVIU05IZ2ZNVlY1cWZNNFFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVCQS8xNkM0RDJCOEM4NEQxMUVCOTkxM0QzMkRDNEY5QUUwMi8yRTIyOTQxQUI2 QzgxMUVFOTI1RkYxNTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAmdVSAMEAsuvDDAPBAIAAjAJAwcAIAEN8KZAMA0GCSqGSIb3 DQEBCwUAA4IBAQAKF6884hosDK1IEpaF6nQJlL1yb/ukzMkHnERgjSYv5VUQI9dn otZrCHdrHzk632mQWW6/UGpfPJHAECe2dAIFziH0iapO7pEGjRs/uP3Hp/9f4XVS +XRnd+fOXrRZH3CReitZ6QZz+xcwzfD74DQh2pioSfaY0aYcZSh7OqlT1T6kamBD V9xbwxDsf1Gv2OyR4wWyG0R2pLbAgWpivixrmE7ECPzXPoxXFPY+jZR/7H39Yw0+ Jwmtrnmcd/MTMSkdY9BOow1TgZCEF/2xxN75WXFXrAdQgKOWcK3hz3vcI3Nevu0B qQYnKOzT7jzEdO02Mi0F7O/xN2GMw1lWI2N4 -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:22 2024 by rpki-client on console-ams.rpki-client.org