$ rpki-client -vvf rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/591DB9860C1F11EF9FC57C84C4F9AE02.roa File: 591DB9860C1F11EF9FC57C84C4F9AE02.roa (raw, json) Hash identifier: biXO0as9Jxz6iqfKtDJWe3xCLQ4Ga58pXoS+qJsNKSs= Subject key identifier: 11:E7:54:57:86:B2:C8:66:55:C3:0D:AA:07:2F:E6:A5:0B:65:36:5A Certificate issuer: /CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Certificate serial: 7B Authority key identifier: 8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/591DB9860C1F11EF9FC57C84C4F9AE02.roa Signing time: Fri 01 Nov 2024 05:48:36 +0000 ROA not before: Fri 01 Nov 2024 05:48:36 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9304 IP address blocks: 103.215.40.0/22 maxlen: 24 144.48.216.0/22 maxlen: 24 223.255.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Validity Not Before: Nov 1 05:48:36 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67246bb4-6c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b1:80:c1:af:a8:98:0e:ff:f0:df:db:78:b2: e7:83:c6:1f:9f:0c:1c:86:46:87:02:ac:36:83:b9: f5:eb:a6:e2:51:cb:cc:65:8c:61:d8:04:1f:52:eb: d5:f5:16:cc:96:bf:60:6f:f7:bd:98:c3:f9:83:32: 6e:42:11:0e:98:2f:b8:99:d3:4e:cf:ba:af:c0:c1: 48:27:73:ae:b0:e2:bb:72:14:6d:46:bb:ba:4f:5e: fd:ab:a5:cb:10:a7:e0:b8:7b:d2:55:29:77:9b:e1: e2:43:2d:dd:6f:a4:5f:f8:84:56:7c:d4:4c:e2:e8: 8c:1a:62:07:e7:1d:04:4f:89:d0:c1:17:76:b2:9d: e2:f6:71:f4:8f:e5:49:fb:15:ae:7e:1d:46:ad:43: 8d:59:5b:a9:a0:3b:aa:dd:3a:0f:17:18:6e:33:07: a1:2c:cb:82:38:9f:2a:5c:54:e8:1e:a5:00:16:e7: 01:ca:61:2b:85:a9:a6:6b:3c:4f:64:e6:fc:41:43: 9a:12:d5:27:cb:a1:f3:13:19:16:38:e7:d6:13:07: b6:6f:ec:25:86:15:95:71:29:7e:eb:bd:c2:96:14: 91:38:28:ae:16:10:f5:d1:8f:2c:dd:be:00:79:16: fc:37:7d:c4:96:a1:7f:18:4a:c3:9d:d3:11:e4:36: 13:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E7:54:57:86:B2:C8:66:55:C3:0D:AA:07:2F:E6:A5:0B:65:36:5A X509v3 Authority Key Identifier: keyid:8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/591DB9860C1F11EF9FC57C84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.40.0/22 144.48.216.0/22 223.255.240.0/22 Signature Algorithm: sha256WithRSAEncryption 48:6d:c8:40:64:b4:cc:98:9c:d0:e1:f3:2d:d6:21:a5:df:41: 87:fc:4c:f6:e9:e4:41:54:5e:ea:98:8b:4f:9a:ba:61:20:b9: 78:42:99:30:43:e1:c7:d0:36:d7:10:a1:ed:ea:3c:ef:86:f8: ce:9e:8d:7e:31:b1:c2:fd:b8:60:06:79:60:37:d7:05:b2:38: d7:41:85:a2:a6:01:31:17:4a:5c:63:c8:c3:04:ee:55:cf:7a: 7e:d9:5b:d0:67:5a:14:0f:b3:19:fc:a7:42:7c:ac:fb:52:b3: 03:c6:8e:ca:80:16:aa:fd:9f:09:32:ce:49:4c:b1:d2:1e:6b: d8:8d:d4:bb:46:47:7f:1b:65:c7:aa:18:76:ed:5b:46:9b:1f: a3:59:8c:16:99:25:e1:0c:dd:0c:0a:72:1a:2c:86:6d:48:f9: e4:be:9c:b8:31:65:f5:90:35:5d:8b:8f:17:56:33:2c:e3:5d: a6:eb:e8:75:a4:d3:71:de:fb:4d:d2:9f:95:a2:b6:0e:53:3b: 04:61:28:1e:6a:37:98:4f:3f:e2:1e:a7:28:28:29:ce:fe:ea: 8d:68:30:77:76:65:54:67:4c:7f:1f:ff:b6:f5:a1:71:b5:81: e3:c0:fc:20:e9:64:3f:e5:35:b3:86:98:68:cf:f5:b7:ca:45: 25:9e:2c:42 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDZGNjExMC8GA1UEBRMoOERFODJFRkY2MjM0RDc5QjdBNjVGQTYwQTA1MzAwN0RB ODI4MUZDQzAeFw0yNDExMDEwNTQ4MzZaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjQ2YmI0LTZjNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7sYDBr6iYDv/w39t4sueDxh+fDByGRocCrDaDufXrpuJRy8xljGHYBB9S69X1 FsyWv2Bv972Yw/mDMm5CEQ6YL7iZ007Puq/AwUgnc66w4rtyFG1Gu7pPXv2rpcsQ p+C4e9JVKXeb4eJDLd1vpF/4hFZ81Ezi6IwaYgfnHQRPidDBF3ayneL2cfSP5Un7 Fa5+HUatQ41ZW6mgO6rdOg8XGG4zB6Esy4I4nypcVOgepQAW5wHKYSuFqaZrPE9k 5vxBQ5oS1SfLofMTGRY459YTB7Zv7CWGFZVxKX7rvcKWFJE4KK4WEPXRjyzdvgB5 Fvw3fcSWoX8YSsOd0xHkNhMVAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUEedUV4ay yGZVww2qBy/mpQtlNlowHwYDVR0jBBgwFoAUjegu/2I015t6ZfpgoFMAfagoH8ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0NkY2L0Y0QTFCMkQ4MEMx ODExRUY5RkY3MDE0MUM0RjlBRTAyL2plZ3VfMkkwMTV0NlpmcGdvRk1BZmFnb0g4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamVndV8ySTAxNXQ2WmZwZ29GTUFmYWdvSDh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDZGNi9GNEExQjJEODBDMTgxMUVGOUZGNzAxNDFDNEY5QUUwMi81OTFEQjk4NjBD MUYxMUVGOUZDNTdDODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmfXKAMEApAw2AMEAt//8DANBgkqhkiG9w0BAQsFAAOCAQEA SG3IQGS0zJic0OHzLdYhpd9Bh/xM9unkQVRe6piLT5q6YSC5eEKZMEPhx9A21xCh 7eo874b4zp6NfjGxwv24YAZ5YDfXBbI410GFoqYBMRdKXGPIwwTuVc96ftlb0Gda FA+zGfynQnys+1KzA8aOyoAWqv2fCTLOSUyx0h5r2I3Uu0ZHfxtlx6oYdu1bRpsf o1mMFpkl4QzdDApyGiyGbUj55L6cuDFl9ZA1XYuPF1YzLONdpuvodaTTcd77TdKf laK2DlM7BGEoHmo3mE8/4h6nKCgpzv7qjWgwd3ZlVGdMfx//tvWhcbWB48D8IOlk P+U1s4aYaM/1t8pFJZ4sQg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org