$ rpki-client -vvf rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/DEE5E3C49F0511EC9DA80B77C4F9AE02.roa File: DEE5E3C49F0511EC9DA80B77C4F9AE02.roa (raw, json) Hash identifier: Z6KFl5cF5bVExSjJp72ePfl6f6wUu4zvQN9XMoTQ/QY= Subject key identifier: 45:1B:44:E8:A0:93:5B:45:1B:AB:8A:C7:75:C5:FB:8F:0E:20:FF:E4 Certificate issuer: /CN=A91398A3/serialNumber=775FE5A1F61A7408DFEED47F1447E3464DA50B2A Certificate serial: 0312 Authority key identifier: 77:5F:E5:A1:F6:1A:74:08:DF:EE:D4:7F:14:47:E3:46:4D:A5:0B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/DEE5E3C49F0511EC9DA80B77C4F9AE02.roa Signing time: Sun 31 Dec 2023 02:24:13 +0000 ROA not before: Sun 31 Dec 2023 02:24:13 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136038 IP address blocks: 103.80.132.0/24 maxlen: 24 103.80.133.0/24 maxlen: 24 103.80.134.0/24 maxlen: 24 103.80.135.0/24 maxlen: 24 182.161.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.crl rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 786 (0x312) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398A3/serialNumber=775FE5A1F61A7408DFEED47F1447E3464DA50B2A Validity Not Before: Dec 31 02:24:13 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6590d0cd-a8b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4b:87:ab:42:77:be:d8:46:00:08:9d:57:d2: 00:ff:07:70:57:37:af:d5:f8:5d:8e:84:b2:50:19: 1e:31:4b:77:13:44:84:49:ef:de:e1:98:13:ee:4b: 4f:ca:b1:d0:ef:4b:e0:a1:bd:34:13:b9:47:fe:93: 0a:c2:7a:0b:31:ea:43:af:68:62:5f:67:a7:08:95: b2:01:13:63:6b:dd:b2:35:1c:c1:f9:70:c9:4d:81: 97:ea:4a:d9:cc:53:7e:ac:07:f5:70:ff:73:fd:b1: 7c:a8:aa:57:84:3f:e5:8b:5d:74:30:34:89:60:de: 97:04:d6:75:23:99:30:d7:51:0d:a6:3c:6c:d6:95: a2:9e:9f:97:83:2a:88:a4:ea:a1:5a:21:ea:85:d6: 1c:9c:aa:26:78:3c:7a:a4:60:6b:3c:45:e9:0b:01: b2:c1:0d:a7:fb:12:b4:2f:92:3f:4a:b5:35:2b:cf: 33:b8:7e:e6:6c:69:5e:1b:e5:18:2e:f1:c4:ff:4e: 6e:f1:59:57:ce:e8:d8:ab:37:9f:92:8e:11:1c:43: c0:72:fb:4f:00:87:cb:81:ce:03:2a:07:57:77:8a: 79:e9:ba:1d:75:46:84:4b:7b:46:be:dc:69:89:ed: 06:a3:a8:54:0e:58:b3:a3:a6:d3:dc:17:da:ca:0c: f2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:1B:44:E8:A0:93:5B:45:1B:AB:8A:C7:75:C5:FB:8F:0E:20:FF:E4 X509v3 Authority Key Identifier: keyid:77:5F:E5:A1:F6:1A:74:08:DF:EE:D4:7F:14:47:E3:46:4D:A5:0B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/DEE5E3C49F0511EC9DA80B77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.132.0/22 182.161.66.0/24 Signature Algorithm: sha256WithRSAEncryption a5:ed:df:f6:e5:4c:d1:d6:98:c8:2b:ff:10:0f:f2:03:38:c3: a1:b7:72:40:1b:d5:0c:b9:a4:09:6b:a1:ae:66:88:a2:4e:20: 06:db:77:45:6d:7a:23:3a:f5:9a:1f:25:78:6e:a2:d9:27:8e: ef:d7:b3:28:88:a8:cf:d3:09:1c:07:d9:53:8a:b3:3f:4c:5e: b7:c9:a0:38:f5:82:ba:ae:50:78:64:05:90:25:49:09:7b:ff: 4a:52:f2:89:2e:81:45:cc:c5:2d:03:1b:9f:d9:90:cc:47:0a: eb:e1:8e:34:80:76:29:b3:01:b5:15:5e:08:ac:87:1d:b4:9a: 7c:59:2e:71:00:ff:a2:fe:be:ec:3e:74:69:25:d9:90:bd:b1: 00:b0:d3:13:24:e9:90:91:b6:bf:c9:be:fe:a2:68:e4:fa:d8: ff:ba:65:26:d3:2b:58:19:33:c1:38:4d:d2:13:e3:16:91:c9: b1:d1:96:db:79:89:54:1e:36:73:41:9d:0c:37:14:5a:d7:f9: 32:20:8d:0f:f8:5a:d0:9b:9a:13:0f:5b:d3:80:b4:f1:ba:bc: e2:38:42:17:b1:e7:6a:02:41:ab:a2:c4:d0:fe:5e:3a:c6:08: 0c:10:93:f1:be:ad:17:d0:5c:ab:53:28:fb:f0:a2:aa:30:1b: b6:0f:bd:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4QTMxMTAvBgNVBAUTKDc3NUZFNUExRjYxQTc0MDhERkVFRDQ3RjE0NDdFMzQ2 NERBNTBCMkEwHhcNMjMxMjMxMDIyNDEzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkwZDBjZC1hOGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0uHq0J3vthGAAidV9IA/wdwVzev1fhdjoSyUBkeMUt3E0SESe/e4ZgT7ktP yrHQ70vgob00E7lH/pMKwnoLMepDr2hiX2enCJWyARNja92yNRzB+XDJTYGX6krZ zFN+rAf1cP9z/bF8qKpXhD/li110MDSJYN6XBNZ1I5kw11ENpjxs1pWinp+XgyqI pOqhWiHqhdYcnKomeDx6pGBrPEXpCwGywQ2n+xK0L5I/SrU1K88zuH7mbGleG+UY LvHE/05u8VlXzujYqzefko4RHEPAcvtPAIfLgc4DKgdXd4p56boddUaES3tGvtxp ie0Go6hUDlizo6bT3BfaygzyGQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEUbROig k1tFG6uKx3XF+48OIP/kMB8GA1UdIwQYMBaAFHdf5aH2GnQI3+7UfxRH40ZNpQsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThBMy9FMjE5QjYxQzcx MTMxMUVDQkMzMDg5MTlDNEY5QUUwMi9kMV9sb2ZZYWRBamY3dFJfRkVmalJrMmxD eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QxX2xvZllhZEFqZjd0Ul9GRWZqUmsybEN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk4QTMvRTIxOUI2MUM3MTEzMTFFQ0JDMzA4OTE5QzRGOUFFMDIvREVFNUUzQzQ5 RjA1MTFFQzlEQTgwQjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUIQDBAC2oUIwDQYJKoZIhvcNAQELBQADggEBAKXt3/bl TNHWmMgr/xAP8gM4w6G3ckAb1Qy5pAlroa5miKJOIAbbd0VteiM69ZofJXhuotkn ju/XsyiIqM/TCRwH2VOKsz9MXrfJoDj1grquUHhkBZAlSQl7/0pS8okugUXMxS0D G5/ZkMxHCuvhjjSAdimzAbUVXgishx20mnxZLnEA/6L+vuw+dGkl2ZC9sQCw0xMk 6ZCRtr/Jvv6iaOT62P+6ZSbTK1gZM8E4TdIT4xaRybHRltt5iVQeNnNBnQw3FFrX +TIgjQ/4WtCbmhMPW9OAtPG6vOI4Qhex52oCQauixND+XjrGCAwQk/G+rRfQXKtT KPvwoqowG7YPvRg= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:57 2024 by rpki-client on console-ams.rpki-client.org