$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa File: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (raw, json) Hash identifier: w1S5i8RewS2rjDZSg79CuOA56SQ9xMoigT0YWpdrK/0= Subject key identifier: 22:FE:18:B0:0D:37:6C:E0:51:DE:9C:3E:16:43:42:76:84:A0:DC:40 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 0238 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa Signing time: Thu 05 Sep 2024 04:18:15 +0000 ROA not before: Thu 05 Sep 2024 04:18:15 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132335 IP address blocks: 45.252.190.0/24 maxlen: 24 103.205.140.0/24 maxlen: 24 103.205.141.0/24 maxlen: 24 103.205.142.0/24 maxlen: 24 103.205.143.0/24 maxlen: 24 103.217.220.0/24 maxlen: 24 103.217.221.0/24 maxlen: 24 103.217.222.0/24 maxlen: 24 103.217.223.0/24 maxlen: 24 103.247.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 5 04:18:15 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d93107-f4a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:63:06:36:9e:0b:4a:76:be:ec:94:59:8b:5f: f1:77:53:bc:50:49:96:a1:84:f7:8c:79:ba:c4:de: e1:b1:75:23:b8:b7:9c:32:67:49:da:61:41:88:ad: 68:b0:65:b8:d9:12:e3:b4:b6:35:11:fd:c0:32:e7: c2:02:3c:3e:8f:e4:53:c9:c4:ce:0a:af:c9:45:79: 5f:90:10:27:90:96:67:6f:9f:1c:d4:b4:d0:8d:27: 21:b4:02:12:ac:4d:15:89:79:46:9c:27:44:d2:4c: b4:8b:e2:d2:d1:4e:a0:6c:58:df:20:a2:0b:4d:51: cf:60:b1:07:4b:52:f8:0f:59:9b:56:59:8f:6d:b8: 2f:e3:0f:f3:23:bd:03:28:8a:9f:83:97:ad:77:6d: 67:0b:43:50:9b:da:c1:ce:ef:f0:69:c6:a4:65:4d: 5e:f7:ba:56:36:e1:9f:78:eb:01:91:65:06:06:23: 45:94:f9:66:da:0a:17:0c:55:18:07:74:40:1f:c2: ad:49:72:49:61:d6:17:d1:3b:7c:f8:51:c0:97:c5: 5f:8c:1c:15:4b:e9:21:c6:92:e4:07:7f:8e:8d:2e: 00:89:70:bb:d7:da:e2:cc:b5:2f:a6:ce:74:fe:d3: 87:c2:a7:71:ac:fd:37:55:8a:bc:59:a8:1f:d0:26: 9e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FE:18:B0:0D:37:6C:E0:51:DE:9C:3E:16:43:42:76:84:A0:DC:40 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.252.190.0/24 103.205.140.0/22 103.217.220.0/22 103.247.19.0/24 Signature Algorithm: sha256WithRSAEncryption 18:66:59:84:fd:6d:49:49:cf:dc:54:25:c1:e0:a8:20:45:8b: 90:e9:4a:44:94:6d:19:37:d5:9a:47:44:86:9b:d2:d5:8b:6c: d1:7c:d7:ed:2d:de:93:a9:e5:ff:4e:92:b3:42:ca:08:7c:e7: 9d:f7:c0:8d:fb:46:33:ce:99:33:ae:ce:ce:86:21:e0:39:8c: 3b:69:36:47:5b:f1:be:19:47:a1:34:26:36:2c:35:85:49:de: 6e:ba:0d:19:e7:86:a3:f6:16:57:3b:cd:2c:b4:3a:18:bc:55: ca:d7:8e:53:33:2c:a3:db:82:a0:ab:5d:37:7f:b8:91:db:01: 3e:a9:63:88:43:50:73:c2:80:5d:19:3b:73:74:39:f4:3c:2c: 5c:42:8b:d1:37:5f:ab:d5:e3:fb:60:a7:58:c7:83:34:d1:c3: 5f:b7:2c:f3:37:ce:48:3a:20:de:26:4d:61:38:e7:d9:57:84: bf:57:ae:8b:0c:7a:a3:ab:47:2f:77:3e:66:18:98:75:35:09: 43:52:51:89:56:45:c8:a1:bd:df:2d:96:4b:27:63:f5:0c:19: 50:38:06:23:08:e7:5f:96:db:4b:be:46:8a:88:d8:e8:4d:6f: 09:66:a5:54:8b:00:c5:5e:2b:e4:2e:5b:ea:f7:3a:26:b9:01: fc:b5:3d:b2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwOTA1MDQxODE1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MzEwNy1mNGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GMGNp4LSna+7JRZi1/xd1O8UEmWoYT3jHm6xN7hsXUjuLecMmdJ2mFBiK1o sGW42RLjtLY1Ef3AMufCAjw+j+RTycTOCq/JRXlfkBAnkJZnb58c1LTQjSchtAIS rE0ViXlGnCdE0ky0i+LS0U6gbFjfIKILTVHPYLEHS1L4D1mbVlmPbbgv4w/zI70D KIqfg5etd21nC0NQm9rBzu/wacakZU1e97pWNuGfeOsBkWUGBiNFlPlm2goXDFUY B3RAH8KtSXJJYdYX0Tt8+FHAl8VfjBwVS+khxpLkB3+OjS4AiXC719rizLUvps50 /tOHwqdxrP03VYq8Wagf0CaeQwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFCL+GLAN N2zgUd6cPhZDQnaEoNxAMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvOTA2NDdGMkVB MTRBMTFFRDhGRkJBNjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAt/L4DBAJnzYwDBAJn2dwDBABn9xMwDQYJKoZIhvcNAQEL BQADggEBABhmWYT9bUlJz9xUJcHgqCBFi5DpSkSUbRk31ZpHRIab0tWLbNF81+0t 3pOp5f9OkrNCygh85533wI37RjPOmTOuzs6GIeA5jDtpNkdb8b4ZR6E0JjYsNYVJ 3m66DRnnhqP2Flc7zSy0Ohi8VcrXjlMzLKPbgqCrXTd/uJHbAT6pY4hDUHPCgF0Z O3N0OfQ8LFxCi9E3X6vV4/tgp1jHgzTRw1+3LPM3zkg6IN4mTWE459lXhL9XrosM eqOrRy93PmYYmHU1CUNSUYlWRcihvd8tlksnY/UMGVA4BiMI51+W20u+RoqI2OhN bwlmpVSLAMVeK+QuW+r3Oia5Afy1PbI= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:03 2024 by rpki-client on console-fra.rpki-client.org