$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/871196D48AC111EA81A2626EC4F9AE02.roa File: 871196D48AC111EA81A2626EC4F9AE02.roa (raw, json) Hash identifier: gwjKYQeTL4cfYZv8Hb9wQqedjbGjTZZwvDDtg8aizJo= Subject key identifier: 18:77:99:73:84:F1:4F:A5:23:87:CC:AE:3A:A3:6B:BF:4C:52:97:A2 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0AA6 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/871196D48AC111EA81A2626EC4F9AE02.roa Signing time: Thu 12 Sep 2024 05:07:41 +0000 ROA not before: Thu 12 Sep 2024 05:07:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 15412 IP address blocks: 45.124.204.0/22 maxlen: 22 103.249.185.0/24 maxlen: 24 103.249.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2726 (0xaa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Sep 12 05:07:41 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e2771d-7bf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1a:6d:84:c7:2e:41:68:53:a6:15:e3:a3:f1: ab:53:a5:46:aa:ec:db:90:99:15:c1:99:40:a5:5f: 94:01:7f:64:51:43:6c:67:96:43:78:ff:6c:58:50: 9a:40:78:e5:12:00:54:d6:be:65:4d:30:13:7e:65: 5d:97:8e:a0:7f:ab:16:16:b5:e1:be:45:de:14:ff: 73:a3:f3:cd:5d:2e:cc:cd:2c:9f:4c:86:2a:11:0a: 9a:25:57:eb:6b:56:91:d1:33:21:63:6e:4d:b4:41: d6:78:1f:ae:2d:3d:11:0d:e4:ed:23:89:c5:48:65: e5:e8:64:3e:36:88:ec:dd:69:e7:b2:e4:bd:91:e3: 6e:00:87:e0:ed:b0:05:b2:5e:64:19:37:35:cb:ef: 93:b5:7a:d2:ca:d3:d9:40:0b:bb:94:22:99:cf:cc: 96:bf:ff:2e:25:69:15:79:43:79:7c:30:83:74:d4: 69:0f:9e:ea:8e:c8:b3:67:17:f6:dd:a0:5f:f5:f5: 49:38:8f:ce:ae:59:4e:e4:ee:dd:2a:73:cd:0a:19: 26:a4:a0:54:bf:f4:18:87:34:84:6a:1f:8d:a8:bf: cb:92:1c:a1:f1:52:51:5a:8c:77:ac:4c:9d:ea:a1: f9:c8:74:3a:fc:52:92:f9:da:9a:d3:9a:69:50:11: 7c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:77:99:73:84:F1:4F:A5:23:87:CC:AE:3A:A3:6B:BF:4C:52:97:A2 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/871196D48AC111EA81A2626EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.204.0/22 103.249.185.0/24 103.249.187.0/24 Signature Algorithm: sha256WithRSAEncryption 37:64:40:90:7a:a3:be:1e:56:1e:26:7b:d7:2f:2f:35:89:a1: 85:78:7b:30:3a:17:8b:91:dd:43:6f:5b:72:31:46:e9:37:5d: fc:21:dc:b9:ba:ef:f1:ef:0e:55:62:55:62:27:9f:62:e4:87: 16:64:5a:db:a2:f8:e9:1b:c7:fd:a8:07:22:7e:4c:58:03:95: 27:c9:e1:3f:2d:10:c9:e4:1a:b9:e5:54:50:24:a8:dc:3f:29: a8:ad:28:9a:a6:50:d6:c0:d9:d3:05:87:c3:08:ad:43:51:05: b1:16:5c:ef:05:8f:b4:8e:b0:22:82:50:c6:bc:16:32:15:b7: af:f7:4f:72:84:55:19:af:d6:cf:a3:05:99:58:31:45:95:64: 23:03:ef:f5:6e:e5:79:df:14:2e:57:b7:08:ba:53:29:ea:b9: 2a:0f:bd:0a:6d:40:29:62:56:d3:e8:88:e4:75:ec:95:4b:cb: 76:15:17:2e:c3:33:d8:ef:66:a1:d0:70:bd:a0:7b:b4:de:7f: 62:70:0a:ef:14:0f:1f:f2:de:63:8b:6b:3e:c3:da:8a:30:b4: 4a:d6:30:b8:c8:4b:2a:7f:6e:3c:cd:8f:a7:e1:55:b6:1f:09: 4d:76:69:90:45:70:8a:e5:9d:e1:30:17:db:24:47:e1:b8:1a: 56:ec:ea:19 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjQwOTEyMDUwNzQxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUyNzcxZC03YmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxpthMcuQWhTphXjo/GrU6VGquzbkJkVwZlApV+UAX9kUUNsZ5ZDeP9sWFCa QHjlEgBU1r5lTTATfmVdl46gf6sWFrXhvkXeFP9zo/PNXS7MzSyfTIYqEQqaJVfr a1aR0TMhY25NtEHWeB+uLT0RDeTtI4nFSGXl6GQ+Nojs3WnnsuS9keNuAIfg7bAF sl5kGTc1y++TtXrSytPZQAu7lCKZz8yWv/8uJWkVeUN5fDCDdNRpD57qjsizZxf2 3aBf9fVJOI/OrllO5O7dKnPNChkmpKBUv/QYhzSEah+NqL/Lkhyh8VJRWox3rEyd 6qH5yHQ6/FKS+dqa05ppUBF8jQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBh3mXOE 8U+lI4fMrjqja79MUpeiMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvODcxMTk2RDQ4 QUMxMTFFQTgxQTI2MjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAItfMwDBABn+bkDBABn+bswDQYJKoZIhvcNAQELBQADggEB ADdkQJB6o74eVh4me9cvLzWJoYV4ezA6F4uR3UNvW3IxRuk3Xfwh3Lm67/HvDlVi VWInn2LkhxZkWtui+Okbx/2oByJ+TFgDlSfJ4T8tEMnkGrnlVFAkqNw/KaitKJqm UNbA2dMFh8MIrUNRBbEWXO8Fj7SOsCKCUMa8FjIVt6/3T3KEVRmv1s+jBZlYMUWV ZCMD7/Vu5XnfFC5Xtwi6UynquSoPvQptQCliVtPoiOR17JVLy3YVFy7DM9jvZqHQ cL2ge7Tef2JwCu8UDx/y3mOLaz7D2oowtErWMLjISyp/bjzNj6fhVbYfCU12aZBF cIrlneEwF9skR+G4Glbs6hk= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org