$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/94C13908C4AF11EDBCC55111C4F9AE02.roa File: 94C13908C4AF11EDBCC55111C4F9AE02.roa (raw, json) Hash identifier: bL7WlFADw3cMus0TM2SD+wI5B/pCkUnpQijrEhDa4U0= Subject key identifier: 3F:72:63:EE:FF:AB:84:97:12:E0:DD:6B:B1:52:1A:FA:FD:3C:97:39 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 0240 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/94C13908C4AF11EDBCC55111C4F9AE02.roa Signing time: Thu 05 Sep 2024 04:18:22 +0000 ROA not before: Thu 05 Sep 2024 04:18:22 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 39486 IP address blocks: 43.228.237.0/24 maxlen: 24 103.109.244.0/24 maxlen: 24 103.192.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 5 04:18:22 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9310e-d11e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:94:f7:7f:6a:58:50:84:82:80:6a:5f:55:a0: be:1c:c2:35:44:1a:54:b8:1d:fd:36:4e:71:97:3a: 5b:51:d9:76:04:df:4d:6b:29:cf:a8:6c:95:c3:26: 16:37:b7:61:a2:3a:71:00:40:df:95:2e:9f:89:ef: a0:dc:3c:21:0b:ff:43:1d:c1:ce:d4:84:4a:1e:f1: 69:81:08:b1:f9:5b:de:8a:0a:7b:e1:28:68:67:b2: 73:64:01:58:ab:2b:da:52:f7:a4:8a:68:7e:b0:bf: aa:bc:5f:da:76:c0:dd:e4:e3:de:78:6e:66:5e:ae: 50:8a:89:bb:67:a4:f9:7c:3a:38:51:6c:2b:d6:4f: 2e:59:c0:9e:08:be:ed:00:f3:6d:5c:36:3a:7e:55: 65:26:3b:f8:e4:c6:86:a6:b0:27:a0:82:e8:92:7e: 9b:10:47:21:62:b1:98:5d:1e:00:ae:f3:ae:be:ed: d8:ca:88:a3:12:de:c9:9d:a1:be:ca:09:54:f5:f9: 3c:35:94:a4:a2:9e:ab:15:a5:4e:10:c9:2a:0b:84: 76:33:93:67:5b:06:85:fb:a3:ff:ba:1b:7b:e5:1d: 6c:7b:f5:d6:65:d6:78:7c:51:39:8b:c9:af:2f:ac: 33:1c:f5:fb:e5:f0:47:59:89:fa:e7:30:de:3a:6f: 1f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:72:63:EE:FF:AB:84:97:12:E0:DD:6B:B1:52:1A:FA:FD:3C:97:39 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/94C13908C4AF11EDBCC55111C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.237.0/24 103.109.244.0/24 103.192.205.0/24 Signature Algorithm: sha256WithRSAEncryption 63:be:21:c1:98:4b:55:e0:43:89:6e:0b:18:40:76:e2:a2:33: a3:6a:3f:ca:a3:24:67:54:95:24:7b:34:77:65:9e:77:ba:cb: 34:69:68:0c:5a:a4:cf:40:4b:ae:55:fd:80:95:e0:44:25:34: 92:f4:f0:e8:e1:6f:af:e5:42:ec:96:c3:19:0a:82:6b:9e:40: 3d:01:04:42:1a:09:b5:7a:ff:5f:3f:67:3d:7e:99:84:9b:67: 22:99:71:23:68:1b:3d:9f:22:ec:2e:57:5f:a1:4e:f7:5e:0e: f5:11:ee:0a:4e:33:8e:d6:02:19:0e:a6:43:43:48:8e:6f:66: 7b:e4:92:60:01:64:c4:61:0c:cb:9d:57:3c:a2:4d:98:3f:ad: 6e:aa:f2:52:3d:97:f2:e5:75:ce:e6:e2:c7:a6:96:be:5e:6c: d8:de:ec:15:ca:c6:44:f5:82:80:ab:2e:7f:7a:c0:1a:ab:d1: 71:7f:db:00:2e:e6:52:17:e1:f6:5d:da:99:95:55:0c:dd:0e: 87:69:96:b8:49:2d:1b:f8:6c:41:6b:6f:51:92:5d:09:8d:db: 2e:8e:3f:87:48:1a:5b:20:f7:73:6d:64:b5:8f:c7:11:f0:56: bf:e5:6b:cc:2d:0c:91:7f:25:d9:4a:ea:84:47:a0:6d:b5:26: d2:e2:01:cf -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwOTA1MDQxODIyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MzEwZS1kMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZT3f2pYUISCgGpfVaC+HMI1RBpUuB39Nk5xlzpbUdl2BN9NaynPqGyVwyYW N7dhojpxAEDflS6fie+g3DwhC/9DHcHO1IRKHvFpgQix+Vveigp74ShoZ7JzZAFY qyvaUvekimh+sL+qvF/adsDd5OPeeG5mXq5Qiom7Z6T5fDo4UWwr1k8uWcCeCL7t APNtXDY6flVlJjv45MaGprAnoILokn6bEEchYrGYXR4ArvOuvu3YyoijEt7JnaG+ yglU9fk8NZSkop6rFaVOEMkqC4R2M5NnWwaF+6P/uht75R1se/XWZdZ4fFE5i8mv L6wzHPX75fBHWYn65zDeOm8fOwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFD9yY+7/ q4SXEuDda7FSGvr9PJc5MB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvOTRDMTM5MDhD NEFGMTFFREJDQzU1MTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr5O0DBABnbfQDBABnwM0wDQYJKoZIhvcNAQELBQADggEB AGO+IcGYS1XgQ4luCxhAduKiM6NqP8qjJGdUlSR7NHdlnne6yzRpaAxapM9AS65V /YCV4EQlNJL08Ojhb6/lQuyWwxkKgmueQD0BBEIaCbV6/18/Zz1+mYSbZyKZcSNo Gz2fIuwuV1+hTvdeDvUR7gpOM47WAhkOpkNDSI5vZnvkkmABZMRhDMudVzyiTZg/ rW6q8lI9l/Lldc7m4semlr5ebNje7BXKxkT1goCrLn96wBqr0XF/2wAu5lIX4fZd 2pmVVQzdDodplrhJLRv4bEFrb1GSXQmN2y6OP4dIGlsg93NtZLWPxxHwVr/la8wt DJF/JdlK6oRHoG21JtLiAc8= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:03 2024 by rpki-client on console-fra.rpki-client.org