$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/E3AAE94243B511EB8DA3F473C4F9AE02.roa File: E3AAE94243B511EB8DA3F473C4F9AE02.roa (raw, json) Hash identifier: ftDRlCPQKF+Ib5B7VJZrq540hqlVUdTm8Q2C4Ih+cM8= Subject key identifier: 96:BB:C3:40:E1:DF:23:C7:0E:C5:57:A1:49:7C:31:6E:31:F2:6C:98 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 074C Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/E3AAE94243B511EB8DA3F473C4F9AE02.roa Signing time: Wed 04 Sep 2024 22:41:25 +0000 ROA not before: Wed 04 Sep 2024 22:41:25 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138655 IP address blocks: 110.93.226.0/24 maxlen: 24 110.93.227.0/24 maxlen: 24 119.63.138.0/24 maxlen: 24 119.63.139.0/24 maxlen: 24 221.132.118.0/24 maxlen: 24 221.132.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Sep 4 22:41:25 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d8e215-c0c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4c:e3:82:ea:34:82:4e:ec:9d:e0:de:df:04: 80:c8:fb:24:ce:d1:76:b5:c9:3f:65:4e:43:98:55: 1b:32:ee:b2:67:f5:76:0e:af:22:0a:a1:60:fb:f2: 85:09:5d:98:43:3f:05:99:56:a6:45:df:54:e0:0d: ef:71:9d:c6:fe:7c:eb:93:a6:8c:b3:6d:69:d9:74: 36:12:33:a5:0b:b1:e1:29:5f:7c:58:e1:4d:67:b0: 57:06:70:ac:75:43:43:a3:e8:f5:df:14:9e:f0:44: e3:18:e6:ed:84:9e:0e:54:f2:19:35:a5:0b:b7:0d: 02:fa:c7:13:77:7a:b5:55:4a:64:7f:07:8c:f1:7d: a6:50:0c:fc:3a:08:81:21:f2:0b:79:9a:ef:88:3f: 55:e0:4d:4e:69:d6:48:13:64:2b:de:0b:65:87:0d: b3:8e:ae:b3:9d:d9:b8:93:55:da:a3:1d:ed:88:80: 20:33:d2:a5:e2:82:f0:9c:99:5d:fd:06:1f:e9:64: 0a:4e:44:80:cb:05:27:ef:a2:f9:93:6e:53:d1:bb: 23:68:7a:ec:8e:4a:40:cf:cc:14:b3:a6:bc:0a:22: 10:47:00:33:7c:23:c6:24:58:6b:80:72:0d:11:b8: f6:c5:3a:09:c8:d7:13:e1:0a:ab:88:6d:c6:78:02: 07:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:BB:C3:40:E1:DF:23:C7:0E:C5:57:A1:49:7C:31:6E:31:F2:6C:98 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/E3AAE94243B511EB8DA3F473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.93.226.0/23 119.63.138.0/23 221.132.118.0/23 Signature Algorithm: sha256WithRSAEncryption 79:ce:10:00:de:7d:d4:03:ac:c3:71:7e:2f:1d:21:3a:11:33: 8b:47:ef:ef:1b:04:2e:57:0d:25:5c:9b:91:cc:37:dc:be:be: 2e:5b:0f:f3:11:2d:97:8c:80:02:ec:95:3a:77:f7:56:f4:b2: 33:05:38:76:85:8d:ac:66:fe:d1:8e:0f:ce:b9:ca:bc:85:93: f5:26:8c:91:32:f9:52:ba:4a:ef:93:c5:73:c7:ec:d0:6e:80: c6:6a:0f:98:50:36:6f:ac:0d:a0:d8:61:e4:43:bc:03:9f:3f: bb:ad:13:40:50:2c:d3:ac:b4:c1:61:4c:af:60:36:d0:c3:fc: 94:d9:5b:e6:ee:4d:6d:dd:59:13:47:5c:fd:21:ca:5e:75:b5: f8:3b:d3:3f:f1:3b:d0:4d:5b:75:dd:cc:da:ef:da:1e:9b:0b: 8d:0b:20:3b:e2:f0:59:6c:2a:a9:f7:bc:b7:2f:8e:38:42:b1: 3b:03:8a:de:92:ff:62:9a:8a:30:72:3f:88:17:ad:25:f3:3f: 4e:82:45:a4:e1:7e:33:08:bc:56:a9:5c:65:42:5b:d4:0d:d3: 44:a2:87:80:56:14:a8:7b:7c:d1:f1:f4:aa:76:74:2f:47:0a: e2:4e:9a:0a:a1:00:1b:9b:dc:86:57:fc:4f:26:38:6b:58:6b: 31:ee:c5:12 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjQwOTA0MjI0MTI1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4ZTIxNS1jMGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkzjguo0gk7sneDe3wSAyPskztF2tck/ZU5DmFUbMu6yZ/V2Dq8iCqFg+/KF CV2YQz8FmVamRd9U4A3vcZ3G/nzrk6aMs21p2XQ2EjOlC7HhKV98WOFNZ7BXBnCs dUNDo+j13xSe8ETjGObthJ4OVPIZNaULtw0C+scTd3q1VUpkfweM8X2mUAz8OgiB IfILeZrviD9V4E1OadZIE2Qr3gtlhw2zjq6zndm4k1Xaox3tiIAgM9Kl4oLwnJld /QYf6WQKTkSAywUn76L5k25T0bsjaHrsjkpAz8wUs6a8CiIQRwAzfCPGJFhrgHIN Ebj2xToJyNcT4QqriG3GeAIHAwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJa7w0Dh 3yPHDsVXoUl8MW4x8myYMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIyMEIvQkE3MUI2NDgxMjAzMTFFQkJBQTE5NDE0QzRGOUFFMDIvRTNBQUU5NDI0 M0I1MTFFQjhEQTNGNDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFuXeIDBAF3P4oDBAHdhHYwDQYJKoZIhvcNAQELBQADggEB AHnOEADefdQDrMNxfi8dIToRM4tH7+8bBC5XDSVcm5HMN9y+vi5bD/MRLZeMgALs lTp391b0sjMFOHaFjaxm/tGOD865yryFk/UmjJEy+VK6Su+TxXPH7NBugMZqD5hQ Nm+sDaDYYeRDvAOfP7utE0BQLNOstMFhTK9gNtDD/JTZW+buTW3dWRNHXP0hyl51 tfg70z/xO9BNW3XdzNrv2h6bC40LIDvi8FlsKqn3vLcvjjhCsTsDit6S/2KaijBy P4gXrSXzP06CRaThfjMIvFapXGVCW9QN00Sih4BWFKh7fNHx9Kp2dC9HCuJOmgqh ABub3IZX/E8mOGtYazHuxRI= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org