$ rpki-client -vvf rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/EF2F0372C9F211E986C3B486C4F9AE02.roa File: EF2F0372C9F211E986C3B486C4F9AE02.roa (raw, json) Hash identifier: k9wr3qZcJ76UlwuVZn3FECVmsL3FOhLSrWOZD7INceU= Subject key identifier: F7:AE:42:93:7F:DB:1C:1A:E3:FD:88:24:C4:43:34:C6:19:07:57:58 Certificate issuer: /CN=A9134AD7/serialNumber=9C039CE49B5779FDB84DE3B698F676E844236679 Certificate serial: 1D43 Authority key identifier: 9C:03:9C:E4:9B:57:79:FD:B8:4D:E3:B6:98:F6:76:E8:44:23:66:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAOc5JtXef24TeO2mPZ26EQjZnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/EF2F0372C9F211E986C3B486C4F9AE02.roa Signing time: Mon 10 Jun 2024 16:56:27 +0000 ROA not before: Mon 10 Jun 2024 16:56:27 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 63989 IP address blocks: 103.58.148.0/24 maxlen: 24 103.58.149.0/24 maxlen: 24 103.58.150.0/24 maxlen: 24 103.58.151.0/24 maxlen: 24 202.9.89.0/24 maxlen: 24 202.9.90.0/24 maxlen: 24 202.94.166.0/24 maxlen: 24 2402:6880:1000::/48 maxlen: 48 2402:6880:2000::/48 maxlen: 48 2402:6880:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/nAOc5JtXef24TeO2mPZ26EQjZnk.crl rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/nAOc5JtXef24TeO2mPZ26EQjZnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAOc5JtXef24TeO2mPZ26EQjZnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7491 (0x1d43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134AD7/serialNumber=9C039CE49B5779FDB84DE3B698F676E844236679 Validity Not Before: Jun 10 16:56:27 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6667303b-b84e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f0:5f:c1:1c:5c:70:9c:66:56:e4:6e:be:40: bb:23:03:96:81:ff:dd:41:7e:68:57:12:f4:28:0c: 6b:35:8e:d3:54:d1:cf:37:d2:62:de:bb:02:b9:04: 73:ba:16:e6:be:2c:32:a1:4b:b8:4f:7f:fd:58:88: d5:88:5e:4c:98:70:38:8f:b2:0a:39:d3:56:0c:11: ba:eb:44:5f:06:9c:40:3b:73:02:85:49:0c:1e:32: 7a:f0:11:18:22:e3:45:17:b4:66:19:86:40:d6:25: 75:b8:db:b5:2f:61:7e:31:46:d4:bb:c8:f7:bb:df: 15:a8:d1:07:64:46:84:22:78:57:29:8d:39:16:07: b8:e3:ac:bf:c9:cf:a8:8e:41:cb:e1:f9:6f:24:e0: a8:ac:1b:6c:46:05:a7:7b:46:0c:bb:56:9f:31:56: 05:d2:e9:4e:2e:45:57:4c:8d:b5:c1:ed:f5:e8:a9: 4e:1b:f3:db:49:3c:5e:5c:e3:26:cc:c9:bf:e8:f9: e7:15:4d:49:c6:1b:29:5e:5f:99:e2:1f:03:e9:5c: 5b:1c:26:25:58:54:de:33:cf:4d:0b:0b:49:25:35: 45:0c:25:46:8a:93:78:e5:8f:4f:80:4a:9c:fe:6e: 4a:29:92:4d:79:c1:cf:88:7c:b3:eb:4b:e3:3f:39: 6b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:AE:42:93:7F:DB:1C:1A:E3:FD:88:24:C4:43:34:C6:19:07:57:58 X509v3 Authority Key Identifier: keyid:9C:03:9C:E4:9B:57:79:FD:B8:4D:E3:B6:98:F6:76:E8:44:23:66:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/nAOc5JtXef24TeO2mPZ26EQjZnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAOc5JtXef24TeO2mPZ26EQjZnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/EF2F0372C9F211E986C3B486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.148.0/22 202.9.89.0-202.9.90.255 202.94.166.0/24 IPv6: 2402:6880:1000::/48 2402:6880:2000::/48 2402:6880:3000::/48 Signature Algorithm: sha256WithRSAEncryption ca:e1:52:78:23:63:70:eb:46:42:49:40:8b:10:7c:4a:47:05: be:6c:98:6d:df:78:13:c0:3c:45:07:50:49:67:a2:71:0b:bf: db:25:31:a9:86:6c:2e:4b:a6:6f:e2:f4:13:26:2b:0a:15:f5: ed:48:26:7f:d3:ce:53:12:d4:46:cf:23:2d:d0:96:64:77:41: 46:1f:6b:7b:55:d0:4e:4f:cf:11:81:26:d9:bf:a3:6a:2a:55: c8:66:89:bc:ac:19:2a:a6:5f:72:fc:0a:13:03:4d:4f:1c:0b: 1b:1e:91:1c:ef:4d:6d:4e:c3:60:03:e0:d2:09:5b:cf:65:11: a2:2e:98:63:6b:71:c5:d6:28:50:dd:84:7b:a1:04:e3:05:66: 44:6e:d5:24:6c:1d:47:e1:8c:71:65:2f:7b:fe:b9:a7:59:89: 77:e5:c4:43:f1:86:0e:92:11:53:42:23:6c:85:98:ef:87:89: 4d:f2:a1:f8:28:44:99:e3:4e:76:58:02:1d:c6:8e:c0:87:f1: cf:de:4c:20:d5:2f:3a:46:2a:f2:d8:4f:c6:5c:74:ad:22:80: 87:db:49:46:4f:6f:db:48:ec:b1:55:c1:72:14:2f:2d:cc:87: 83:0b:d6:23:9d:4b:1b:4f:a6:fa:79:48:05:cc:d1:02:73:34: 2f:9d:37:0e -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICHUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRBRDcxMTAvBgNVBAUTKDlDMDM5Q0U0OUI1Nzc5RkRCODRERTNCNjk4RjY3NkU4 NDQyMzY2NzkwHhcNMjQwNjEwMTY1NjI3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY3MzAzYi1iODRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPBfwRxccJxmVuRuvkC7IwOWgf/dQX5oVxL0KAxrNY7TVNHPN9Ji3rsCuQRz uhbmviwyoUu4T3/9WIjViF5MmHA4j7IKOdNWDBG660RfBpxAO3MChUkMHjJ68BEY IuNFF7RmGYZA1iV1uNu1L2F+MUbUu8j3u98VqNEHZEaEInhXKY05Fge446y/yc+o jkHL4flvJOCorBtsRgWne0YMu1afMVYF0ulOLkVXTI21we316KlOG/PbSTxeXOMm zMm/6PnnFU1JxhspXl+Z4h8D6VxbHCYlWFTeM89NCwtJJTVFDCVGipN45Y9PgEqc /m5KKZJNecHPiHyz60vjPzlrPQIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFPeuQpN/ 2xwa4/2IJMRDNMYZB1dYMB8GA1UdIwQYMBaAFJwDnOSbV3n9uE3jtpj2duhEI2Z5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEFENy9FMzdFQzhFNjhG NEUxMUU2OEVFN0NFNkVDNEY5QUUwMi9uQU9jNUp0WGVmMjRUZU8ybVBaMjZFUWpa bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BT2M1SnRYZWYyNFRlTzJtUFoyNkVRalpuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzRBRDcvRTM3RUM4RTY4RjRFMTFFNjhFRTdDRTZFQzRGOUFFMDIvRUYyRjAzNzJD OUYyMTFFOTg2QzNCNDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMCAEAgABMBoDBAJnOpQwDAMEAMoJWQMEAMoJWgMEAMpepjAhBAIAAjAbAwcA JAJogBAAAwcAJAJogCAAAwcAJAJogDAAMA0GCSqGSIb3DQEBCwUAA4IBAQDK4VJ4 I2Nw60ZCSUCLEHxKRwW+bJht33gTwDxFB1BJZ6JxC7/bJTGphmwuS6Zv4vQTJisK FfXtSCZ/085TEtRGzyMt0JZkd0FGH2t7VdBOT88RgSbZv6NqKlXIZom8rBkqpl9y /AoTA01PHAsbHpEc701tTsNgA+DSCVvPZRGiLphja3HF1ihQ3YR7oQTjBWZEbtUk bB1H4YxxZS97/rmnWYl35cRD8YYOkhFTQiNshZjvh4lN8qH4KESZ4052WAIdxo7A h/HP3kwg1S86Riry2E/GXHStIoCH20lGT2/bSOyxVcFyFC8tzIeDC9YjnUsbT6b6 eUgFzNECczQvnTcO -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:59 2024 by rpki-client on console-ams.rpki-client.org