$ rpki-client -vvf rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/591DB9860C1F11EF9FC57C84C4F9AE02.roa File: 591DB9860C1F11EF9FC57C84C4F9AE02.roa (raw, json) Hash identifier: Mt6rGzthO8WTlFAp3AinA3u2IBg3l/1WYKbU2wtD9ng= Subject key identifier: 93:89:44:F4:60:38:00:97:9B:FB:7A:E2:46:0E:68:12:C1:30:3E:32 Certificate issuer: /CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Certificate serial: 15 Authority key identifier: 8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/591DB9860C1F11EF9FC57C84C4F9AE02.roa Signing time: Tue 07 May 2024 07:30:47 +0000 ROA not before: Tue 07 May 2024 07:30:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 9304 IP address blocks: 103.215.40.0/22 maxlen: 24 144.48.216.0/22 maxlen: 24 223.255.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 05:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Validity Not Before: May 7 07:30:47 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6639d8a7-ac60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:84:7e:b5:c1:07:89:6e:fe:b1:d5:68:40:b0: 11:21:cd:b2:e6:b5:39:d4:35:ee:8d:43:22:df:51: 68:9f:3b:3e:be:01:54:0d:4b:49:77:74:31:95:45: f9:93:c6:c2:b5:25:7c:32:19:78:32:35:99:ce:c9: ad:bc:9a:74:cd:9b:e0:13:53:58:f8:5d:2e:19:4a: d7:4c:31:76:45:ca:af:ab:35:82:18:13:0d:20:93: f7:68:96:98:0f:66:2e:7e:a0:12:34:ad:eb:94:25: 0e:6e:bc:3a:0d:98:48:74:bf:41:12:d9:b1:d9:9d: c0:e4:61:17:84:ce:55:ff:30:d0:bc:0e:19:99:c0: 42:6f:9b:76:55:c0:7b:7f:63:9c:3c:4e:24:8a:6b: 22:0c:23:08:aa:a5:81:6e:76:e4:2f:ab:1a:18:ff: 4b:45:8c:b8:8c:cf:34:61:f8:20:0b:a2:b3:0d:32: a0:23:e5:5c:da:58:1d:43:1c:ca:26:05:fe:8b:80: f2:f6:39:c2:f6:ab:bc:f5:15:c4:f2:e7:21:a0:c9: d9:16:49:51:64:6b:59:33:bd:20:36:34:3b:48:fb: ff:68:8f:a4:e8:25:1f:77:15:29:3d:a0:f4:9c:28: 0c:d5:13:aa:03:8b:40:2c:6d:ae:04:6b:7b:dd:e3: e6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:89:44:F4:60:38:00:97:9B:FB:7A:E2:46:0E:68:12:C1:30:3E:32 X509v3 Authority Key Identifier: keyid:8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/591DB9860C1F11EF9FC57C84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.40.0/22 144.48.216.0/22 223.255.240.0/22 Signature Algorithm: sha256WithRSAEncryption 29:46:7b:91:70:d4:73:9f:a3:cc:47:78:01:35:3b:c7:7e:fe: c7:c3:99:5a:60:91:d2:7d:26:52:c9:d3:44:71:3a:58:69:80: 7b:28:3f:73:e2:4f:ed:fc:bb:3e:aa:ad:fa:90:05:9b:48:3b: 33:f7:d5:56:78:75:c7:11:85:ee:cd:24:15:d0:b6:e1:f9:e2: b2:f3:87:73:3c:46:c4:d0:35:84:2d:bc:19:28:b3:b1:8e:1e: af:ab:e7:86:b7:2d:f3:bb:45:fd:22:49:3c:66:79:f3:44:bc: 50:e3:ba:ea:98:72:6c:bd:39:25:78:cc:2b:8e:a2:d8:97:02: 91:78:ab:bf:d9:65:7a:9d:50:2a:b3:d6:be:0e:5c:1d:16:e3: 60:bf:69:d3:39:ba:03:2c:06:0b:12:3f:75:b0:64:17:85:27: 70:7b:6b:af:0b:7e:68:d3:2d:83:15:9a:a1:f3:4c:94:9f:5e: f2:e4:25:19:5e:cb:c3:2d:27:99:3b:68:a0:51:db:8a:ad:70: ce:fe:c3:3d:6f:d0:3b:06:cc:37:8b:f8:f8:66:c4:13:6e:1c: 34:e8:d1:8b:4a:c4:13:09:4f:d0:17:f2:05:10:81:66:3b:cc: c8:1b:47:0c:e0:8a:de:a7:bd:7b:5a:95:11:fd:52:2d:48:5f: a8:2b:83:94 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDZGNjExMC8GA1UEBRMoOERFODJFRkY2MjM0RDc5QjdBNjVGQTYwQTA1MzAwN0RB ODI4MUZDQzAeFw0yNDA1MDcwNzMwNDdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzlkOGE3LWFjNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZhH61wQeJbv6x1WhAsBEhzbLmtTnUNe6NQyLfUWifOz6+AVQNS0l3dDGVRfmT xsK1JXwyGXgyNZnOya28mnTNm+ATU1j4XS4ZStdMMXZFyq+rNYIYEw0gk/dolpgP Zi5+oBI0reuUJQ5uvDoNmEh0v0ES2bHZncDkYReEzlX/MNC8DhmZwEJvm3ZVwHt/ Y5w8TiSKayIMIwiqpYFuduQvqxoY/0tFjLiMzzRh+CALorMNMqAj5VzaWB1DHMom Bf6LgPL2OcL2q7z1FcTy5yGgydkWSVFka1kzvSA2NDtI+/9oj6ToJR93FSk9oPSc KAzVE6oDi0Asba4Ea3vd4+ZnAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUk4lE9GA4 AJeb+3riRg5oEsEwPjIwHwYDVR0jBBgwFoAUjegu/2I015t6ZfpgoFMAfagoH8ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0NkY2L0Y0QTFCMkQ4MEMx ODExRUY5RkY3MDE0MUM0RjlBRTAyL2plZ3VfMkkwMTV0NlpmcGdvRk1BZmFnb0g4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamVndV8ySTAxNXQ2WmZwZ29GTUFmYWdvSDh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDZGNi9GNEExQjJEODBDMTgxMUVGOUZGNzAxNDFDNEY5QUUwMi81OTFEQjk4NjBD MUYxMUVGOUZDNTdDODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmfXKAMEApAw2AMEAt//8DANBgkqhkiG9w0BAQsFAAOCAQEA KUZ7kXDUc5+jzEd4ATU7x37+x8OZWmCR0n0mUsnTRHE6WGmAeyg/c+JP7fy7Pqqt +pAFm0g7M/fVVnh1xxGF7s0kFdC24fnisvOHczxGxNA1hC28GSizsY4er6vnhrct 87tF/SJJPGZ580S8UOO66phybL05JXjMK46i2JcCkXirv9llep1QKrPWvg5cHRbj YL9p0zm6AywGCxI/dbBkF4UncHtrrwt+aNMtgxWaofNMlJ9e8uQlGV7Lwy0nmTto oFHbiq1wzv7DPW/QOwbMN4v4+GbEE24cNOjRi0rEEwlP0BfyBRCBZjvMyBtHDOCK 3qe9e1qVEf1SLUhfqCuDlA== -----END CERTIFICATE-----Generated at Thu Oct 17 08:05:48 2024 by rpki-client on console-ams.rpki-client.org