$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/CD87789870C411EF9CC65F6BC4F9AE02.roa File: CD87789870C411EF9CC65F6BC4F9AE02.roa (raw, json) Hash identifier: dbtcJLtzT6V+yayTkuWqCnDE+61V8KM++d0m6Znwkyw= Subject key identifier: 9E:89:DD:01:AA:A6:5D:DD:69:31:68:17:A0:1F:F7:C9:3E:D1:3C:ED Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0AA3 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/CD87789870C411EF9CC65F6BC4F9AE02.roa Signing time: Thu 12 Sep 2024 05:06:44 +0000 ROA not before: Thu 12 Sep 2024 05:06:44 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 17408 IP address blocks: 43.239.104.0/24 maxlen: 24 43.239.105.0/24 maxlen: 24 43.239.106.0/24 maxlen: 24 103.23.128.0/22 maxlen: 22 103.244.220.0/24 maxlen: 24 103.244.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Sep 12 05:06:44 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e276e3-a828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d3:6d:f7:b8:e1:10:67:1c:95:8d:f3:86:a3: 94:ab:26:03:f7:10:bb:86:f0:11:3e:54:a0:9d:b2: e3:cf:be:5d:87:98:b3:dc:96:53:8b:50:90:33:fb: 77:c0:8c:bc:92:cc:d2:4b:2b:24:57:7d:7e:2c:1c: 5e:be:10:64:51:84:de:95:ad:79:06:bf:88:bb:10: 0f:74:12:35:34:86:72:ae:e0:0a:66:8b:ae:1f:5a: 58:9c:4d:1b:d7:67:bc:7d:46:ed:78:19:0a:32:24: ef:98:db:f8:87:38:29:b9:a9:7e:7d:76:b2:e3:52: bc:0a:15:eb:9d:1e:5b:dd:58:4c:20:8d:fb:51:11: 12:34:07:91:13:35:1d:23:8f:62:43:e8:87:69:2f: 6d:71:b7:2b:81:17:66:c7:83:e8:78:cf:9e:7f:53: ca:93:cf:9a:af:c7:a0:2e:99:58:cf:a9:7b:f7:cd: ce:f8:19:55:9a:ba:5b:13:61:4d:86:04:5c:6b:4d: 09:d0:b3:84:9d:ef:92:2d:12:67:3a:0f:94:37:aa: 15:e2:4b:29:b7:17:3f:0c:90:a9:b7:ff:fd:7d:fa: 81:4d:40:96:4e:70:37:9d:6a:11:25:44:f4:56:da: eb:56:81:bc:6d:21:33:84:ec:86:c3:46:c5:b6:c1: f5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:89:DD:01:AA:A6:5D:DD:69:31:68:17:A0:1F:F7:C9:3E:D1:3C:ED X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/CD87789870C411EF9CC65F6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.104.0-43.239.106.255 103.23.128.0/22 103.244.220.0/24 103.244.222.0/24 Signature Algorithm: sha256WithRSAEncryption 08:57:2c:2f:12:ba:23:4f:e4:3f:78:6e:20:30:1a:f0:40:2d: 33:51:26:1d:7d:72:55:af:25:5f:1f:fb:cb:6d:ff:a5:37:f1: de:95:6d:e0:3f:e0:c7:de:46:b3:8d:36:f2:58:60:49:af:d8: 67:99:88:a4:be:89:49:17:c4:35:3a:18:8c:f7:5a:1a:cd:05: fe:45:76:cb:ed:03:5e:06:ae:47:65:92:2c:ef:5d:83:db:a7: 84:9b:69:31:ce:b0:d6:f3:08:0f:55:34:3a:19:e8:d0:2c:56: 08:77:e6:75:e4:72:d9:57:a4:c1:20:f7:52:1a:cb:c6:b5:5d: a7:d0:47:68:aa:56:a5:9f:65:56:59:98:f7:ba:f1:12:58:a5: c6:c2:aa:03:54:91:93:ff:1a:c3:32:ad:6f:e0:b2:ca:00:e1: c6:93:b0:c5:77:d0:e5:14:2b:82:01:e8:46:20:63:5d:c9:31: 0f:39:8f:a0:af:f3:51:9c:b0:9d:52:f9:65:9c:73:e7:29:4b: dc:07:ec:7b:62:f0:c2:a7:c4:4a:45:88:fd:55:ec:19:cf:25: 46:ef:c0:c7:2c:e7:9c:fa:2f:68:87:5f:49:0f:0d:42:7f:eb: eb:f1:ab:d1:00:dc:92:1f:27:a1:47:88:53:8b:4f:b0:da:3b: 00:29:90:31 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjQwOTEyMDUwNjQ0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUyNzZlMy1hODI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dNt97jhEGcclY3zhqOUqyYD9xC7hvARPlSgnbLjz75dh5iz3JZTi1CQM/t3 wIy8kszSSyskV31+LBxevhBkUYTela15Br+IuxAPdBI1NIZyruAKZouuH1pYnE0b 12e8fUbteBkKMiTvmNv4hzgpual+fXay41K8ChXrnR5b3VhMII37URESNAeREzUd I49iQ+iHaS9tcbcrgRdmx4PoeM+ef1PKk8+ar8egLplYz6l7983O+BlVmrpbE2FN hgRca00J0LOEne+SLRJnOg+UN6oV4ksptxc/DJCpt//9ffqBTUCWTnA3nWoRJUT0 VtrrVoG8bSEzhOyGw0bFtsH1rwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFJ6J3QGq pl3daTFoF6Af98k+0TztMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvQ0Q4Nzc4OTg3 MEM0MTFFRjlDQzY1RjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCAwDAMEAyvvaAMEACvvagMEAmcXgAMEAGf03AMEAGf03jANBgkq hkiG9w0BAQsFAAOCAQEACFcsLxK6I0/kP3huIDAa8EAtM1EmHX1yVa8lXx/7y23/ pTfx3pVt4D/gx95Gs4028lhgSa/YZ5mIpL6JSRfENToYjPdaGs0F/kV2y+0DXgau R2WSLO9dg9unhJtpMc6w1vMID1U0Ohno0CxWCHfmdeRy2VekwSD3UhrLxrVdp9BH aKpWpZ9lVlmY97rxElilxsKqA1SRk/8awzKtb+CyygDhxpOwxXfQ5RQrggHoRiBj XckxDzmPoK/zUZywnVL5ZZxz5ylL3Afse2LwwqfESkWI/VXsGc8lRu/AxyznnPov aIdfSQ8NQn/r6/Gr0QDckh8noUeIU4tPsNo7ACmQMQ== -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:27 2024 by rpki-client on console-fra.rpki-client.org