$ rpki-client -vvf rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa File: 3E730FA28E8111EAB2038B6BC4F9AE02.roa (raw, json) Hash identifier: UMM6fgDC2CmksnW0fYtEbCOJ/DJDPMY8i7UgDY+QDvg= Subject key identifier: E5:96:04:42:51:76:38:F1:E2:D0:E2:70:99:8B:E7:71:6E:1B:6B:0D Certificate issuer: /CN=A91293F4/serialNumber=E6A54BAD7D176E4447A9E94F24480327C1B40C9E Certificate serial: 0908 Authority key identifier: E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa Signing time: Thu 26 Sep 2024 20:19:30 +0000 ROA not before: Thu 26 Sep 2024 20:19:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45355 IP address blocks: 45.117.244.0/22 maxlen: 22 103.1.180.0/22 maxlen: 22 202.129.228.0/22 maxlen: 22 2400:6d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2312 (0x908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91293F4/serialNumber=E6A54BAD7D176E4447A9E94F24480327C1B40C9E Validity Not Before: Sep 26 20:19:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f5c1d1-8c6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:72:29:09:4a:78:93:ed:3a:16:6c:ec:cb:e6: 42:b9:1e:dd:d7:cb:c1:41:26:4e:17:21:75:cc:fb: c2:57:ac:31:31:15:39:63:2e:fb:8c:50:60:5c:3b: c5:c7:c8:82:ee:c3:63:70:6a:fc:02:62:8e:b5:1b: e4:e7:61:79:8b:7b:48:1d:9c:b6:8f:4e:f6:36:a8: 62:4c:c9:5c:df:eb:c5:44:5e:df:40:56:77:d3:63: 10:a4:38:70:6f:c9:6e:35:66:1f:0b:af:47:fc:74: 39:c4:8b:47:9d:14:0d:53:ef:4c:27:1e:8e:7c:63: ef:94:13:e4:fa:c9:32:11:67:88:8b:dc:ad:63:99: 40:a0:4c:11:9e:75:74:f7:11:f2:05:f5:2a:e6:29: 7b:ed:cc:c6:62:33:28:85:e8:1e:b7:8b:60:89:19: a6:90:23:c1:08:ac:d5:c3:f3:1c:2e:28:7d:34:50: 22:7a:21:69:f3:16:0f:b7:5d:9d:ab:af:78:f9:c3: af:bb:91:c6:b2:7e:d8:cc:93:ed:01:a5:36:9a:b2: d9:38:74:05:2d:0b:d6:c5:32:2c:89:2d:87:6b:52: d1:e0:e5:dd:33:5b:aa:57:58:cc:0f:9b:04:b3:bc: b7:3e:7b:8a:bb:2a:1f:ed:6a:ce:43:cd:bf:e2:e0: b3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:96:04:42:51:76:38:F1:E2:D0:E2:70:99:8B:E7:71:6E:1B:6B:0D X509v3 Authority Key Identifier: keyid:E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.244.0/22 103.1.180.0/22 202.129.228.0/22 IPv6: 2400:6d00::/32 Signature Algorithm: sha256WithRSAEncryption 80:71:90:b6:26:d6:38:33:89:8e:ba:61:9f:c6:6b:dd:66:77: 30:39:3f:ff:dd:08:ad:6d:5f:6d:d3:c0:33:38:cf:32:e1:36: 8c:25:06:c6:5f:0b:6e:54:7a:a1:11:41:7a:de:9e:b9:d1:d3: ce:fd:8c:a3:1c:20:8b:94:82:a7:6d:20:4a:82:cb:9a:f4:54: 1d:78:a3:d0:a7:99:e6:e4:30:94:9a:18:0d:12:83:25:45:d9: c6:d7:c4:c9:b7:fe:6a:1a:7d:e1:9f:5f:ba:fd:24:a6:fc:3d: f7:54:8b:08:42:7b:0c:9c:73:97:c0:c1:ef:e9:fd:a9:51:1b: a1:03:dd:00:1b:9a:a2:ad:01:dd:33:1f:99:a2:91:69:50:13: 61:f5:67:d4:8a:b2:df:e3:64:8c:e9:4d:0b:f2:05:6e:6d:a3: 67:22:f9:9a:31:dc:3e:0d:c2:64:72:09:c1:88:5e:14:e6:c6: 9b:cb:f6:18:43:45:93:1e:ff:0e:f0:8c:83:d8:fb:88:29:0e: bf:02:87:6a:5c:f8:f7:3a:39:81:09:ca:17:26:e1:41:c5:75: 26:15:5b:88:26:43:67:4a:f5:20:4f:6b:5d:33:9f:a2:d7:5f: 27:e7:bc:57:09:0b:74:97:6f:2e:f1:e5:13:19:60:a0:be:79: a1:ed:e4:43 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkzRjQxMTAvBgNVBAUTKEU2QTU0QkFEN0QxNzZFNDQ0N0E5RTk0RjI0NDgwMzI3 QzFCNDBDOUUwHhcNMjQwOTI2MjAxOTMwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1YzFkMS04YzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3IpCUp4k+06Fmzsy+ZCuR7d18vBQSZOFyF1zPvCV6wxMRU5Yy77jFBgXDvF x8iC7sNjcGr8AmKOtRvk52F5i3tIHZy2j072NqhiTMlc3+vFRF7fQFZ302MQpDhw b8luNWYfC69H/HQ5xItHnRQNU+9MJx6OfGPvlBPk+skyEWeIi9ytY5lAoEwRnnV0 9xHyBfUq5il77czGYjMoheget4tgiRmmkCPBCKzVw/McLih9NFAieiFp8xYPt12d q694+cOvu5HGsn7YzJPtAaU2mrLZOHQFLQvWxTIsiS2Ha1LR4OXdM1uqV1jMD5sE s7y3PnuKuyof7WrOQ82/4uCzcwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFOWWBEJR djjx4tDicJmL53FuG2sNMB8GA1UdIwQYMBaAFOalS619F25ER6npTyRIAyfBtAye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTNGNC8xRjY5NUVFQzhF N0YxMUVBQTk1ODRDNjdDNEY5QUUwMi81cVZMclgwWGJrUkhxZWxQSkVnREo4RzBE SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVxVkxyWDBYYmtSSHFlbFBKRWdESjhHMERKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjkzRjQvMUY2OTVFRUM4RTdGMTFFQUE5NTg0QzY3QzRGOUFFMDIvM0U3MzBGQTI4 RTgxMTFFQUIyMDM4QjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItdfQDBAJnAbQDBALKgeQwDQQCAAIwBwMFACQAbQAwDQYJ KoZIhvcNAQELBQADggEBAIBxkLYm1jgziY66YZ/Ga91mdzA5P//dCK1tX23TwDM4 zzLhNowlBsZfC25UeqERQXrenrnR0879jKMcIIuUgqdtIEqCy5r0VB14o9Cnmebk MJSaGA0SgyVF2cbXxMm3/moafeGfX7r9JKb8PfdUiwhCewycc5fAwe/p/alRG6ED 3QAbmqKtAd0zH5mikWlQE2H1Z9SKst/jZIzpTQvyBW5to2ci+Zox3D4NwmRyCcGI XhTmxpvL9hhDRZMe/w7wjIPY+4gpDr8Ch2pc+Pc6OYEJyhcm4UHFdSYVW4gmQ2dK 9SBPa10zn6LXXyfnvFcJC3SXby7x5RMZYKC+eaHt5EM= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org