$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/E0125116A69711ED9DFF0870C4F9AE02.roa File: E0125116A69711ED9DFF0870C4F9AE02.roa (raw, json) Hash identifier: q2rBEqaURe/ixmWRWqwz9eCnhP42JYm6UQ48hKuY/rg= Subject key identifier: CA:1F:37:85:26:45:AA:0D:FF:D3:46:48:DB:47:C1:9B:D3:5D:28:AC Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 06D2 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/E0125116A69711ED9DFF0870C4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:46 +0000 ROA not before: Mon 14 Oct 2024 22:52:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 55561 IP address blocks: 43.243.60.0/22 maxlen: 24 103.38.164.0/22 maxlen: 24 202.180.99.0/24 maxlen: 24 202.180.101.0/24 maxlen: 24 202.180.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 14 22:52:46 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0be-dc31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:49:ef:8f:6a:a4:15:14:15:b6:16:c9:f1:cb: 33:6e:72:d2:db:87:a7:eb:dc:22:f1:a3:81:19:24: 4f:a6:c0:cb:f5:4f:eb:3d:e9:2a:72:a0:28:17:0f: 4b:10:f3:ab:f6:37:5d:60:a6:2b:a5:f9:95:cb:38: 25:1b:58:18:e2:0f:90:3b:91:52:e0:26:5f:36:aa: f8:7d:94:70:ce:9a:39:1d:b8:7d:60:62:4d:6d:e8: ca:16:f1:4c:90:a5:c0:b0:65:7b:b2:38:3c:0e:02: 5c:2a:44:89:1c:ee:a3:50:3a:ba:8e:a0:d5:17:9a: ab:6e:d7:77:24:ee:ae:58:dc:85:3e:97:44:c0:46: fa:a7:44:b7:9a:37:dd:0c:20:7f:c1:84:97:b5:82: 88:7b:8b:1c:7c:a5:5e:ae:4e:b1:3f:b8:87:a7:41: 6e:19:de:fe:f0:4f:dd:56:54:64:56:1e:5a:f1:4e: c5:ad:fb:fd:cc:ec:df:1b:e6:b6:20:c9:e9:1a:6e: af:24:c6:95:92:e0:da:3c:ae:c9:9d:a0:ae:21:15: ae:b5:f0:83:71:f6:6b:02:76:f1:7c:2b:85:b4:ae: 6c:e5:d5:54:6e:46:3f:f1:79:8b:a3:47:ae:50:35: b3:dc:4f:5e:4c:75:ef:a1:71:70:e9:96:f7:57:85: c5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:1F:37:85:26:45:AA:0D:FF:D3:46:48:DB:47:C1:9B:D3:5D:28:AC X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/E0125116A69711ED9DFF0870C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.60.0/22 103.38.164.0/22 202.180.99.0/24 202.180.101.0-202.180.102.255 Signature Algorithm: sha256WithRSAEncryption 84:c2:cb:8a:c3:28:23:17:84:d0:d5:1d:18:a8:25:10:44:8c: e7:2e:88:74:90:e0:96:d1:62:50:e2:35:61:75:62:4e:15:c5: a8:c4:fa:b9:04:97:cb:7b:27:f7:7a:cd:34:43:60:3a:6f:86: 01:01:af:39:28:a8:12:65:d5:04:88:6c:12:c0:c5:c5:d6:3b: d3:24:4a:42:a6:2a:22:2b:c0:bb:ba:df:80:f6:66:98:57:0b: 66:01:e3:7f:d6:8f:18:9c:f8:fd:63:9c:ef:ae:ac:43:6d:ec: de:1f:35:4a:9c:c7:89:3e:8b:60:f0:d7:34:23:69:a5:f8:a1: 45:b0:a5:6b:06:b3:71:78:eb:a0:0f:bc:2a:3b:7e:32:9c:89: ac:52:fb:52:11:fc:a7:a7:a7:25:72:5a:29:c4:a8:65:56:9c: c5:b1:8c:32:ce:66:20:c6:9d:34:3d:1c:e0:b6:ed:8e:6d:92: 2a:2a:f5:49:ed:ec:2c:37:0b:43:f9:94:31:29:cd:8f:84:04: 90:3c:ef:b3:88:e1:b3:a6:c5:49:9c:93:d8:76:a1:ae:f8:25: 55:3f:78:16:29:72:19:a3:20:e9:3b:75:1c:87:d3:1a:13:b3: 3d:1d:67:26:0a:0b:36:a9:ed:80:53:92:83:49:4b:79:68:70: e7:19:83:34 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjQxMDE0MjI1MjQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBiZS1kYzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Unvj2qkFRQVthbJ8cszbnLS24en69wi8aOBGSRPpsDL9U/rPekqcqAoFw9L EPOr9jddYKYrpfmVyzglG1gY4g+QO5FS4CZfNqr4fZRwzpo5Hbh9YGJNbejKFvFM kKXAsGV7sjg8DgJcKkSJHO6jUDq6jqDVF5qrbtd3JO6uWNyFPpdEwEb6p0S3mjfd DCB/wYSXtYKIe4scfKVerk6xP7iHp0FuGd7+8E/dVlRkVh5a8U7Frfv9zOzfG+a2 IMnpGm6vJMaVkuDaPK7JnaCuIRWutfCDcfZrAnbxfCuFtK5s5dVUbkY/8XmLo0eu UDWz3E9eTHXvoXFw6Zb3V4XFHwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFMofN4Um RaoN/9NGSNtHwZvTXSisMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvRTAxMjUxMTZB Njk3MTFFRDlERkYwODcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAIr8zwDBAJnJqQDBADKtGMwDAMEAMq0ZQMEAMq0ZjANBgkq hkiG9w0BAQsFAAOCAQEAhMLLisMoIxeE0NUdGKglEESM5y6IdJDgltFiUOI1YXVi ThXFqMT6uQSXy3sn93rNNENgOm+GAQGvOSioEmXVBIhsEsDFxdY70yRKQqYqIivA u7rfgPZmmFcLZgHjf9aPGJz4/WOc766sQ23s3h81SpzHiT6LYPDXNCNppfihRbCl awazcXjroA+8Kjt+MpyJrFL7UhH8p6enJXJaKcSoZVacxbGMMs5mIMadND0c4Lbt jm2SKir1Se3sLDcLQ/mUMSnNj4QEkDzvs4jhs6bFSZyT2HahrvglVT94FilyGaMg 6Tt1HIfTGhOzPR1nJgoLNqntgFOSg0lLeWhw5xmDNA== -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:44 2024 by rpki-client on console-fra.rpki-client.org