$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/EB8C9B546EE911ED8F07B022C4F9AE02.roa File: EB8C9B546EE911ED8F07B022C4F9AE02.roa (raw, json) Hash identifier: q95Nnc69ywewB1KRViDRqgU8dhWu4ixX7gxtbwYMk2c= Subject key identifier: 19:E3:E1:9B:16:EF:CC:F2:9C:B8:78:6C:18:F4:3E:43:CE:42:05:C6 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: E1 Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/EB8C9B546EE911ED8F07B022C4F9AE02.roa Signing time: Thu 01 Feb 2024 05:36:26 +0000 ROA not before: Thu 01 Feb 2024 05:36:26 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 63919 IP address blocks: 103.44.24.0/24 maxlen: 24 103.44.25.0/24 maxlen: 24 103.67.177.0/24 maxlen: 24 103.204.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Feb 1 05:36:26 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bb2dda-33a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a3:db:87:3e:88:bb:b8:df:2a:80:d1:8d:2b: 2e:d2:ab:44:17:41:df:93:f7:86:63:7a:9b:77:27: 06:2f:e9:0a:56:81:2c:2c:b3:29:98:09:83:2c:1d: 11:7f:bf:9f:b3:70:6a:98:86:23:b7:ba:5c:64:20: f6:c2:eb:cc:6f:89:a1:f2:31:a0:04:e9:02:3f:6c: 37:f8:7f:f5:b1:62:7b:92:c3:ea:e3:f7:a1:31:4d: 48:d0:da:09:b8:69:16:f7:3c:6b:02:c2:0e:d1:02: 69:a6:9e:59:c3:7a:d8:0b:f8:f0:a9:a5:5f:d8:aa: 71:2b:49:59:9d:2a:90:90:d0:ce:de:a2:c0:f9:fa: 87:a5:57:7e:88:29:1b:35:d6:21:fb:72:d5:22:82: c0:1f:75:f0:c5:53:1d:0a:f0:83:8a:fd:fa:22:28: 3b:99:64:a8:f1:08:98:b4:ed:92:4d:dd:f2:fa:07: 8d:04:d2:1c:a6:1b:6e:08:bd:0b:36:a1:3d:d9:d5: 90:c3:3b:66:cf:9e:e9:4d:03:0b:93:22:b2:67:29: 12:17:93:34:d3:03:05:8b:f4:ce:fd:23:7e:cb:7a: 61:c3:a3:4c:23:ab:2b:03:86:ce:da:d7:6b:65:c0: 11:f8:1a:0b:0b:8e:15:6f:12:1e:ba:92:1e:ea:bd: cf:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E3:E1:9B:16:EF:CC:F2:9C:B8:78:6C:18:F4:3E:43:CE:42:05:C6 X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/EB8C9B546EE911ED8F07B022C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.24.0/23 103.67.177.0/24 103.204.219.0/24 Signature Algorithm: sha256WithRSAEncryption 50:8b:7e:7f:2e:46:8f:d3:15:01:10:50:25:bf:f2:4e:b0:ef: d6:a4:ef:a5:95:ca:ce:f7:54:41:4e:c5:bf:c1:9f:8a:3b:d3: 05:e1:52:08:f5:0e:7e:6b:bb:60:be:04:f9:b5:cc:9f:1f:20: 1f:9e:50:96:de:4a:e2:73:39:51:c3:85:47:62:ff:53:e5:12: 00:76:4b:73:32:37:e9:9a:1d:de:5b:83:cc:cf:95:66:22:30: 1f:0b:b0:8d:28:11:ac:ab:e4:c3:96:84:e4:8a:d4:8c:5a:75: 68:b1:32:1f:c9:f0:79:b7:15:4c:49:17:ec:b7:84:59:f1:0e: b2:9c:b4:c8:2e:48:69:3b:a5:86:5e:8e:8c:39:4a:6f:e2:de: 0f:64:5b:73:69:76:70:be:e6:b3:05:fc:cf:b8:5a:97:e3:fd: aa:d1:54:d6:42:36:83:08:b9:9f:5f:d5:f3:26:58:f2:7c:88: b1:96:3d:1e:c2:6d:f6:62:f9:f2:5e:f9:2e:48:f0:27:72:b9: 67:e4:6e:8e:71:d9:05:c7:7a:15:40:85:64:c4:e1:64:8a:f9: 70:46:f1:7f:5e:99:af:6d:34:1a:16:ce:a6:55:ba:d2:da:f3: 6f:a5:82:bc:cd:60:c5:bc:6a:eb:61:62:ad:86:41:6b:1f:16: 09:21:a3:b4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjQwMjAxMDUzNjI2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiMmRkYS0zM2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaPbhz6Iu7jfKoDRjSsu0qtEF0Hfk/eGY3qbdycGL+kKVoEsLLMpmAmDLB0R f7+fs3BqmIYjt7pcZCD2wuvMb4mh8jGgBOkCP2w3+H/1sWJ7ksPq4/ehMU1I0NoJ uGkW9zxrAsIO0QJppp5Zw3rYC/jwqaVf2KpxK0lZnSqQkNDO3qLA+fqHpVd+iCkb NdYh+3LVIoLAH3XwxVMdCvCDiv36Iig7mWSo8QiYtO2STd3y+geNBNIcphtuCL0L NqE92dWQwztmz57pTQMLkyKyZykSF5M00wMFi/TO/SN+y3phw6NMI6srA4bO2tdr ZcAR+BoLC44VbxIeupIe6r3PjQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBnj4ZsW 78zynLh4bBj0PkPOQgXGMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM2QkQvMjJDNjIxQTg2RUU1MTFFREI5QzQ1Mzg1QzRGOUFFMDIvRUI4QzlCNTQ2 RUU5MTFFRDhGMDdCMDIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnLBgDBABnQ7EDBABnzNswDQYJKoZIhvcNAQELBQADggEB AFCLfn8uRo/TFQEQUCW/8k6w79ak76WVys73VEFOxb/Bn4o70wXhUgj1Dn5ru2C+ BPm1zJ8fIB+eUJbeSuJzOVHDhUdi/1PlEgB2S3MyN+maHd5bg8zPlWYiMB8LsI0o Eayr5MOWhOSK1IxadWixMh/J8Hm3FUxJF+y3hFnxDrKctMguSGk7pYZejow5Sm/i 3g9kW3NpdnC+5rMF/M+4Wpfj/arRVNZCNoMIuZ9f1fMmWPJ8iLGWPR7CbfZi+fJe +S5I8CdyuWfkbo5x2QXHehVAhWTE4WSK+XBG8X9ema9tNBoWzqZVutLa82+lgrzN YMW8authYq2GQWsfFgkho7Q= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org