$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E879EE7C144111EFB247B936C4F9AE02.roa File: E879EE7C144111EFB247B936C4F9AE02.roa (raw, json) Hash identifier: Nnl8ucK8FDoUA5nCBqcQCvpc5QhfbsbpzOgAMibYz6w= Subject key identifier: 71:37:27:1C:CA:61:10:68:18:40:B5:EA:D7:59:95:53:C6:07:96:12 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 023A Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E879EE7C144111EFB247B936C4F9AE02.roa Signing time: Thu 05 Sep 2024 04:18:17 +0000 ROA not before: Thu 05 Sep 2024 04:18:17 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134450 IP address blocks: 45.125.246.0/24 maxlen: 24 103.239.213.0/24 maxlen: 24 103.241.52.0/22 maxlen: 22 202.94.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 5 04:18:17 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d93109-c891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:32:b5:5a:cf:8a:55:9e:e9:d9:b2:e1:fe:71: 1e:0c:7f:e1:cf:ba:e4:be:1d:b3:1d:7b:6e:d9:5c: d7:b7:82:7c:37:c0:10:5f:cb:53:c0:d4:ac:e7:84: 61:f7:35:09:8a:d5:f9:c5:26:00:e7:7b:90:c0:4c: 38:8b:78:7d:0f:b8:c7:8b:93:8e:93:74:f9:db:71: 6c:32:21:64:b0:89:e1:dc:dc:a7:35:a5:1b:e4:a3: 6f:64:5f:2b:a1:1f:f3:95:a1:76:54:d1:6d:e8:2b: 47:73:d9:f8:76:54:31:f8:f3:c6:d9:52:1e:a4:30: 96:25:76:72:85:00:a0:1b:ff:46:81:48:cf:08:2f: 48:26:29:cf:86:55:7b:ae:e6:34:06:22:47:6b:d1: cc:88:be:db:f3:c7:65:c9:f0:e8:bd:2f:cc:f0:25: 33:c2:25:9e:e2:04:d0:e9:60:3b:47:6a:f8:f3:0b: e5:09:96:da:8a:45:75:6c:cb:a6:a0:0e:20:76:a4: d5:8a:bb:fd:e4:08:5a:64:77:a4:ca:b2:38:fe:1f: a7:0b:d5:89:ff:91:98:29:3b:bb:d7:fc:e3:df:09: 37:0f:e4:60:f1:9a:f1:e1:7b:74:7a:d7:10:20:1a: ab:34:0e:c2:a8:45:67:e4:82:61:6f:eb:01:8f:98: 56:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:37:27:1C:CA:61:10:68:18:40:B5:EA:D7:59:95:53:C6:07:96:12 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E879EE7C144111EFB247B936C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.246.0/24 103.239.213.0/24 103.241.52.0/22 202.94.174.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:2c:95:28:01:61:c7:50:23:47:23:fd:78:a8:2d:42:9b:5a: 1d:89:0c:cc:79:0e:6d:4a:a2:22:c6:3d:e0:ad:68:3a:71:f5: c6:ba:5c:d7:d3:94:a2:c2:b0:67:f9:18:26:88:b1:4c:df:9c: b3:a1:f7:73:dd:f9:15:b6:f5:d5:36:a7:a8:87:22:f0:db:97: a2:cf:11:c9:65:5c:2e:2a:69:b0:c2:a9:77:bd:16:ad:b0:ab: 29:75:6c:18:d2:a8:9f:9e:26:7f:68:d0:7f:55:5d:4d:bb:f7: f9:ef:0b:b4:31:9c:51:09:eb:f8:84:ab:97:6c:4a:fc:6a:98: 91:e8:0c:53:07:a1:cb:0b:71:5c:9d:6f:a9:c8:9c:35:b9:e2: e2:0f:cd:91:47:af:d8:9d:28:82:76:63:8c:6e:cb:43:23:a2: 37:5f:52:6b:b6:11:b9:6f:31:2f:11:32:b4:47:32:aa:10:88: ac:00:59:f6:bd:99:c9:c3:fb:39:8b:22:63:db:e8:23:e4:38: 48:b1:95:f9:7a:e2:70:23:43:43:29:43:bd:6c:c7:39:69:3e: 4a:20:84:de:90:15:13:0d:e0:b4:51:c4:f4:0e:8f:1e:6c:d4: b5:e4:d1:ee:dd:46:57:ec:89:cf:5b:c6:df:08:70:16:3d:e2: 77:b6:2b:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwOTA1MDQxODE3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MzEwOS1jODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjK1Ws+KVZ7p2bLh/nEeDH/hz7rkvh2zHXtu2VzXt4J8N8AQX8tTwNSs54Rh 9zUJitX5xSYA53uQwEw4i3h9D7jHi5OOk3T523FsMiFksInh3NynNaUb5KNvZF8r oR/zlaF2VNFt6CtHc9n4dlQx+PPG2VIepDCWJXZyhQCgG/9GgUjPCC9IJinPhlV7 ruY0BiJHa9HMiL7b88dlyfDovS/M8CUzwiWe4gTQ6WA7R2r48wvlCZbaikV1bMum oA4gdqTVirv95AhaZHekyrI4/h+nC9WJ/5GYKTu71/zj3wk3D+Rg8Zrx4Xt0etcQ IBqrNA7CqEVn5IJhb+sBj5hWVwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFHE3JxzK YRBoGEC16tdZlVPGB5YSMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRTg3OUVFN0Mx NDQxMTFFRkIyNDdCOTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAtffYDBABn79UDBAJn8TQDBADKXq4wDQYJKoZIhvcNAQEL BQADggEBABoslSgBYcdQI0cj/XioLUKbWh2JDMx5Dm1KoiLGPeCtaDpx9ca6XNfT lKLCsGf5GCaIsUzfnLOh93Pd+RW29dU2p6iHIvDbl6LPEcllXC4qabDCqXe9Fq2w qyl1bBjSqJ+eJn9o0H9VXU279/nvC7QxnFEJ6/iEq5dsSvxqmJHoDFMHocsLcVyd b6nInDW54uIPzZFHr9idKIJ2Y4xuy0MjojdfUmu2EblvMS8RMrRHMqoQiKwAWfa9 mcnD+zmLImPb6CPkOEixlfl64nAjQ0MpQ71sxzlpPkoghN6QFRMN4LRRxPQOjx5s 1LXk0e7dRlfsic9bxt8IcBY94ne2K10= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:50 2024 by rpki-client on console-ams.rpki-client.org