$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/36945EC2232711EBA0F14F17C4F9AE02.roa File: 36945EC2232711EBA0F14F17C4F9AE02.roa (raw, json) Hash identifier: Gzcr6RaAc7WjlspRH4slQcyVh4i/nmyVkR/RXd4O0KM= Subject key identifier: DE:3E:C8:DF:01:91:22:22:DA:CF:88:85:33:91:0A:DA:07:74:27:54 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 082E Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/36945EC2232711EBA0F14F17C4F9AE02.roa Signing time: Tue 20 Aug 2024 21:29:32 +0000 ROA not before: Tue 20 Aug 2024 21:29:32 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137969 IP address blocks: 103.152.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2094 (0x82e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Aug 20 21:29:32 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c50abc-978f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cc:62:fe:e1:c9:c9:d0:0e:00:91:6f:bb:a9: 07:4c:bd:ea:8d:7c:83:45:db:7d:33:44:95:a4:38: 58:26:b4:f1:09:a5:b7:4a:56:26:b5:e0:8d:de:21: ff:d4:6c:9f:e9:69:4f:13:7a:b7:ca:7f:d1:56:c7: 1d:a1:a5:ae:74:83:07:25:f9:6e:ae:e8:59:68:7d: 9c:70:f6:aa:5d:18:78:de:d7:f7:6d:f9:f5:b1:1b: 09:77:01:ed:6e:88:d6:25:49:d8:c4:84:74:f2:f1: 9a:53:bc:23:95:39:52:7b:79:94:78:0b:e7:2c:aa: 21:a2:5b:30:3e:4b:b6:04:df:64:47:d3:16:fe:37: c8:9c:19:40:44:56:b8:7e:48:44:80:da:e4:4a:0c: c6:87:06:5e:54:0d:a7:6b:5e:f4:ef:62:ea:d7:78: 3a:74:8c:67:f8:f2:14:b2:ae:0b:9e:f5:22:19:0b: a3:86:f5:b3:a3:9c:12:7c:2e:4d:51:7e:bc:26:e8: e5:9f:0b:f3:80:51:62:1e:b4:06:23:52:9f:58:10: dd:22:5f:63:1b:21:d3:69:d2:aa:c6:c5:c7:84:b3: f3:2b:e7:18:88:9e:a0:1c:c3:bf:2b:64:4d:bd:40: 9b:60:bf:f0:25:a1:96:b9:5b:74:32:2e:ae:07:64: dc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3E:C8:DF:01:91:22:22:DA:CF:88:85:33:91:0A:DA:07:74:27:54 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/36945EC2232711EBA0F14F17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.170.0/23 Signature Algorithm: sha256WithRSAEncryption 13:93:f5:3a:2b:76:a6:28:90:79:47:f4:ed:b0:a8:14:0e:9d: 2a:ca:ea:74:15:09:7c:df:22:7c:d5:c6:38:ce:d8:c1:d5:ee: 04:97:95:68:4a:11:6d:5d:f9:ba:fb:10:47:88:cb:4b:8b:f0: 45:b4:57:51:58:fd:93:7d:1d:54:36:d4:a4:cd:5a:a0:a5:ee: 74:9b:f9:73:40:8c:40:45:4b:6a:0f:a7:1b:f5:14:82:f3:d9: a1:d2:70:25:95:70:08:68:c0:d9:d2:de:1f:47:a3:a4:60:2a: 19:42:aa:8b:32:98:0f:4c:9a:d3:e0:a2:d9:11:c8:01:e5:b1: 70:47:a8:ac:53:30:16:72:2f:bb:59:36:b5:4a:a3:7d:b0:67: 08:ec:33:e9:c8:28:41:23:de:48:09:dc:35:ff:25:38:bd:8d: 58:37:b6:b4:2e:32:d8:0f:e7:1d:4d:29:42:c9:cd:44:ef:03: 02:93:e1:19:86:9f:92:e8:89:15:4b:3f:1b:19:d8:28:1a:cf: a3:4b:e0:aa:a5:04:4e:4e:64:9a:0e:67:08:0f:81:15:dd:13: 03:57:03:51:05:97:b1:22:2f:09:e7:ff:9b:76:84:72:df:56: 06:ec:33:c4:65:2d:f1:af:d7:dc:04:d9:4b:b1:7a:68:75:a4: af:19:19:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjQwODIwMjEyOTMyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1MGFiYy05NzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsxi/uHJydAOAJFvu6kHTL3qjXyDRdt9M0SVpDhYJrTxCaW3SlYmteCN3iH/ 1Gyf6WlPE3q3yn/RVscdoaWudIMHJfluruhZaH2ccPaqXRh43tf3bfn1sRsJdwHt bojWJUnYxIR08vGaU7wjlTlSe3mUeAvnLKoholswPku2BN9kR9MW/jfInBlARFa4 fkhEgNrkSgzGhwZeVA2na17072Lq13g6dIxn+PIUsq4LnvUiGQujhvWzo5wSfC5N UX68JujlnwvzgFFiHrQGI1KfWBDdIl9jGyHTadKqxsXHhLPzK+cYiJ6gHMO/K2RN vUCbYL/wJaGWuVt0Mi6uB2Tc2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN4+yN8B kSIi2s+IhTORCtoHdCdUMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJGRDkvNEFFODA0MUVCOUQ3MTFFQTlDRjUxRTVGQzRGOUFFMDIvMzY5NDVFQzIy MzI3MTFFQkEwRjE0RjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmKowDQYJKoZIhvcNAQELBQADggEBABOT9TordqYokHlH 9O2wqBQOnSrK6nQVCXzfInzVxjjO2MHV7gSXlWhKEW1d+br7EEeIy0uL8EW0V1FY /ZN9HVQ21KTNWqCl7nSb+XNAjEBFS2oPpxv1FILz2aHScCWVcAhowNnS3h9Ho6Rg KhlCqosymA9MmtPgotkRyAHlsXBHqKxTMBZyL7tZNrVKo32wZwjsM+nIKEEj3kgJ 3DX/JTi9jVg3trQuMtgP5x1NKULJzUTvAwKT4RmGn5LoiRVLPxsZ2Cgaz6NL4Kql BE5OZJoOZwgPgRXdEwNXA1EFl7EiLwnn/5t2hHLfVgbsM8RlLfGv19wE2Uuxemh1 pK8ZGWM= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org