$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/684394266FD111EDA007D478C4F9AE02.roa File: 684394266FD111EDA007D478C4F9AE02.roa (raw, json) Hash identifier: le7WDMYQGUbGUboFnuztLKTa+lrFWa0D7ppQ1eaFVFs= Subject key identifier: 97:88:2C:4E:A4:7E:0C:55:EA:C3:F6:98:18:47:9B:E1:A9:10:D2:F3 Certificate issuer: /CN=A91AEB42/serialNumber=56237928548B082F5B13C16EDC3E6A7C2F80FCF1 Certificate serial: 0164 Authority key identifier: 56:23:79:28:54:8B:08:2F:5B:13:C1:6E:DC:3E:6A:7C:2F:80:FC:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/684394266FD111EDA007D478C4F9AE02.roa Signing time: Fri 11 Oct 2024 03:06:45 +0000 ROA not before: Fri 11 Oct 2024 03:06:45 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132839 IP address blocks: 43.241.45.0/24 maxlen: 24 43.241.46.0/24 maxlen: 24 43.251.106.0/24 maxlen: 24 43.251.107.0/24 maxlen: 24 103.37.42.0/24 maxlen: 24 103.37.43.0/24 maxlen: 24 103.42.177.0/24 maxlen: 24 103.42.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.crl rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEB42/serialNumber=56237928548B082F5B13C16EDC3E6A7C2F80FCF1 Validity Not Before: Oct 11 03:06:45 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67089644-df3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e1:34:dd:7c:6a:63:88:9e:28:f2:50:9f:81: 0d:51:a9:8f:32:56:5c:d1:ea:1b:d5:70:06:2b:57: 2f:2a:a7:9d:22:71:28:71:2d:c7:b9:65:12:0f:34: 42:81:d6:9d:24:d2:73:7b:76:44:b6:d4:b9:56:50: db:3f:8c:f9:5c:e6:1c:5a:bc:ab:45:c6:df:00:13: 0a:fe:8f:4b:4b:17:ed:aa:1b:d9:ab:7c:20:99:72: ad:f6:fc:12:68:f3:f2:fa:dc:6b:36:e7:af:12:65: c9:5e:37:4a:e7:0e:5c:a1:3e:4c:61:c8:48:6e:32: 09:95:bc:55:e9:6b:71:eb:8a:d7:bc:1b:bb:af:04: d2:ee:64:4d:1e:15:dc:02:0a:48:7f:d7:3e:a7:f9: 94:1a:d8:2c:ed:49:3a:77:62:bb:53:4a:1e:57:b2: 21:2d:a0:ca:4f:91:1c:e9:91:6a:80:77:98:69:a5: 0b:cb:53:fa:15:2b:dc:f2:19:14:ad:f4:4a:2c:93: 06:a2:e2:fb:65:6d:ac:b4:6b:51:59:90:af:e6:99: a1:88:30:ce:bf:e7:9b:62:35:cb:36:7b:ea:59:4f: 5d:2f:59:6c:6c:de:57:62:c0:a4:78:03:2a:53:5d: 82:4d:a3:41:05:bc:13:08:3a:12:53:03:61:01:8e: e3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:88:2C:4E:A4:7E:0C:55:EA:C3:F6:98:18:47:9B:E1:A9:10:D2:F3 X509v3 Authority Key Identifier: keyid:56:23:79:28:54:8B:08:2F:5B:13:C1:6E:DC:3E:6A:7C:2F:80:FC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/684394266FD111EDA007D478C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.45.0-43.241.46.255 43.251.106.0/23 103.37.42.0/23 103.42.177.0-103.42.178.255 Signature Algorithm: sha256WithRSAEncryption 78:d6:b4:87:8e:bc:4a:4e:e5:d2:10:1d:d2:a9:f2:c9:ef:60: ed:59:c5:e8:c0:7c:43:73:a6:61:f0:d6:00:19:2f:9b:c5:de: d3:1b:16:f6:e3:fb:f7:0f:6a:af:e0:55:15:9f:a1:d6:0a:59: 37:0c:cb:d3:0e:31:68:af:aa:ad:36:48:a7:81:e2:06:4e:5f: a0:d7:3f:0c:a1:f1:16:b2:b8:7c:45:ca:57:dd:8c:0a:91:ee: 08:c6:16:26:74:71:67:8c:46:f8:ae:96:3b:e0:da:44:cf:a1: b4:27:42:10:de:e2:fd:c5:d0:b9:5a:ae:90:5e:32:73:f8:75: 14:f8:80:9a:00:c1:bf:57:76:37:8b:59:3a:e0:07:8f:6c:3d: 98:01:c0:d8:87:9f:7e:12:9d:7b:2a:72:7e:f6:dd:b3:e0:88: d2:fa:f7:15:f3:18:25:76:c4:a3:d9:bd:f8:46:3f:a2:0d:1f: 98:40:cf:1a:00:33:3c:c6:03:98:cf:bf:ee:3c:e0:0a:14:de: 37:f8:f9:93:fa:85:35:cb:97:76:10:6b:62:98:04:aa:15:40: b7:6e:50:79:01:c5:05:07:e2:6a:1a:3a:e0:71:a1:dd:ca:82: 73:25:a0:cb:7b:9b:50:bc:06:8a:c2:74:f0:aa:c1:a9:f6:d1: c6:8f:58:8e -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVCNDIxMTAvBgNVBAUTKDU2MjM3OTI4NTQ4QjA4MkY1QjEzQzE2RURDM0U2QTdD MkY4MEZDRjEwHhcNMjQxMDExMDMwNjQ1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4OTY0NC1kZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6uE03XxqY4ieKPJQn4ENUamPMlZc0eob1XAGK1cvKqedInEocS3HuWUSDzRC gdadJNJze3ZEttS5VlDbP4z5XOYcWryrRcbfABMK/o9LSxftqhvZq3wgmXKt9vwS aPPy+txrNuevEmXJXjdK5w5coT5MYchIbjIJlbxV6Wtx64rXvBu7rwTS7mRNHhXc AgpIf9c+p/mUGtgs7Uk6d2K7U0oeV7IhLaDKT5Ec6ZFqgHeYaaULy1P6FSvc8hkU rfRKLJMGouL7ZW2stGtRWZCv5pmhiDDOv+ebYjXLNnvqWU9dL1lsbN5XYsCkeAMq U12CTaNBBbwTCDoSUwNhAY7juwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFJeILE6k fgxV6sP2mBhHm+GpENLzMB8GA1UdIwQYMBaAFFYjeShUiwgvWxPBbtw+anwvgPzx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUI0Mi8xQUQ5N0I2NDZB NkUxMUVEQkI5OTAzNjNDNEY5QUUwMi9WaU41S0ZTTENDOWJFOEZ1M0Q1cWZDLUFf UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZpTjVLRlNMQ0M5YkU4RnUzRDVxZkMtQV9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVCNDIvMUFEOTdCNjQ2QTZFMTFFREJCOTkwMzYzQzRGOUFFMDIvNjg0Mzk0MjY2 RkQxMTFFREEwMDdENDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgwDAMEACvxLQMEACvxLgMEASv7agMEAWclKjAMAwQAZyqxAwQA ZyqyMA0GCSqGSIb3DQEBCwUAA4IBAQB41rSHjrxKTuXSEB3SqfLJ72DtWcXowHxD c6Zh8NYAGS+bxd7TGxb24/v3D2qv4FUVn6HWClk3DMvTDjFor6qtNkingeIGTl+g 1z8MofEWsrh8RcpX3YwKke4IxhYmdHFnjEb4rpY74NpEz6G0J0IQ3uL9xdC5Wq6Q XjJz+HUU+ICaAMG/V3Y3i1k64AePbD2YAcDYh59+Ep17KnJ+9t2z4IjS+vcV8xgl dsSj2b34Rj+iDR+YQM8aADM8xgOYz7/uPOAKFN43+PmT+oU1y5d2EGtimASqFUC3 blB5AcUFB+JqGjrgcaHdyoJzJaDLe5tQvAaKwnTwqsGp9tHGj1iO -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:50 2024 by rpki-client on console-ams.rpki-client.org