$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/57C356780DB811EA829EA10AC4F9AE02.roa File: 57C356780DB811EA829EA10AC4F9AE02.roa (raw, json) Hash identifier: s8EIYXtXI8uY7GgczRq4Oj5SZ99ynO9vngWP2sUKcWo= Subject key identifier: 90:3C:27:4B:F9:4A:37:63:D9:9D:75:64:51:2F:F5:F3:E3:B9:A3:19 Certificate issuer: /CN=A91BD000/serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Certificate serial: 0B63 Authority key identifier: 40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/57C356780DB811EA829EA10AC4F9AE02.roa Signing time: Thu 30 May 2024 20:34:40 +0000 ROA not before: Thu 30 May 2024 20:34:40 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 58912 IP address blocks: 45.124.12.0/22 maxlen: 24 103.25.80.0/22 maxlen: 24 2407:9ac0::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2915 (0xb63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD000/serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Validity Not Before: May 30 20:34:40 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658e2df-db5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c1:a5:c2:66:4c:fb:1a:c3:de:ae:c4:f3:6b: 00:a2:f3:c9:a8:c3:7b:9c:6e:9f:ab:6d:cf:e8:90: e5:8a:50:bb:50:43:20:fa:14:00:db:66:95:e9:03: 6a:97:d7:2b:5a:73:b5:da:81:00:87:af:b0:47:9c: f1:f4:3f:ed:4a:28:fe:60:fd:81:a4:06:13:0e:e7: 8f:fa:f5:60:9a:8d:f6:64:61:5a:9e:9f:66:bc:10: 6b:2f:ab:85:5d:08:27:08:5b:1f:f6:67:85:50:6f: 3a:61:d9:fe:2d:6e:cf:64:9f:c9:45:f2:2c:e4:cc: d6:f9:79:c7:24:44:48:f6:09:62:c5:f0:50:3e:d2: e1:4d:ae:db:5b:7a:a6:30:24:55:10:02:e4:4c:94: 80:f7:a3:ac:df:5c:bd:f0:f9:bd:7d:3e:cf:7e:c9: ff:01:d1:fb:d5:e4:b1:81:09:17:b0:e3:17:58:9d: bf:c1:c4:a5:1b:35:a3:82:55:0a:38:3a:16:4d:a3: 5b:e7:65:44:6c:e5:f0:98:fd:d4:e9:43:c4:e2:3b: 00:9e:26:38:2b:7d:42:92:ff:cc:d3:6d:f1:ad:b9: 6f:6a:92:25:6a:f7:ee:df:3f:9a:dd:1e:51:67:5b: c1:00:b9:db:3e:b6:8e:6e:ca:e8:0d:21:88:bc:38: e0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:3C:27:4B:F9:4A:37:63:D9:9D:75:64:51:2F:F5:F3:E3:B9:A3:19 X509v3 Authority Key Identifier: keyid:40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/57C356780DB811EA829EA10AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.12.0/22 103.25.80.0/22 IPv6: 2407:9ac0::/32 Signature Algorithm: sha256WithRSAEncryption 3a:22:2e:c8:37:70:ed:a3:2a:61:af:3b:a3:60:ac:25:3b:f2: b9:5b:e6:7f:08:b7:ea:2c:17:a4:28:46:3a:41:9e:78:4c:56: ad:bc:4b:ce:f8:3e:f8:98:21:76:19:c9:a4:06:88:d5:b9:a8: d9:c9:ef:82:59:7e:70:fa:89:1b:d1:90:76:f9:54:1e:d9:b4: cb:bb:6b:9d:0f:ac:63:55:59:94:5f:17:e2:63:d1:cc:d2:9e: 93:fb:5e:66:fa:05:3a:f1:12:0b:bf:de:bb:b7:d1:9f:d7:dd: ad:1a:88:be:8b:e5:df:ae:d0:56:3e:93:d1:78:df:57:97:56: b9:87:48:6a:00:3c:e5:7b:27:3a:34:44:a2:47:6c:43:16:5e: 19:a8:dc:62:0b:20:d3:c1:1f:12:4a:c9:25:e1:d2:c7:a4:3e: 98:22:82:9d:ed:3a:fa:77:44:c5:90:08:40:ad:8c:05:fc:4c: 2d:a0:24:c7:67:28:b7:af:8f:ef:d0:07:ad:01:69:cd:99:90: 4f:43:2d:c0:21:5a:4a:1c:b0:84:44:4b:3d:19:7d:a4:32:ab: cb:7c:09:41:d9:4d:b4:28:a1:63:8b:01:e0:af:c2:3e:b7:ad: a1:0b:81:c0:ba:09:16:3c:6b:02:fc:3d:28:bd:a8:57:d3:19: cd:8e:6a:6d -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQwMDAxMTAvBgNVBAUTKDQwRTk2Q0FFQjE5RDQxRTBEQUQ2NTJGNDM1QUQwOEU3 QUU4MDlFRjkwHhcNMjQwNTMwMjAzNDQwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4ZTJkZi1kYjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMGlwmZM+xrD3q7E82sAovPJqMN7nG6fq23P6JDlilC7UEMg+hQA22aV6QNq l9crWnO12oEAh6+wR5zx9D/tSij+YP2BpAYTDueP+vVgmo32ZGFanp9mvBBrL6uF XQgnCFsf9meFUG86Ydn+LW7PZJ/JRfIs5MzW+XnHJERI9glixfBQPtLhTa7bW3qm MCRVEALkTJSA96Os31y98Pm9fT7Pfsn/AdH71eSxgQkXsOMXWJ2/wcSlGzWjglUK ODoWTaNb52VEbOXwmP3U6UPE4jsAniY4K31Ckv/M023xrblvapIlavfu3z+a3R5R Z1vBALnbPraObsroDSGIvDjg3QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJA8J0v5 Sjdj2Z11ZFEv9fPjuaMZMB8GA1UdIwQYMBaAFEDpbK6xnUHg2tZS9DWtCOeugJ75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDAwMC9FNjYwMkVEMjBE QjQxMUVBQkE1QzFEN0ZDNEY5QUUwMi9RT2xzcnJHZFFlRGExbEwwTmEwSTU2NkFu dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPbHNyckdkUWVEYTFsTDBOYTBJNTY2QW52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQwMDAvRTY2MDJFRDIwREI0MTFFQUJBNUMxRDdGQzRGOUFFMDIvNTdDMzU2Nzgw REI4MTFFQTgyOUVBMTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItfAwDBAJnGVAwDQQCAAIwBwMFACQHmsAwDQYJKoZIhvcN AQELBQADggEBADoiLsg3cO2jKmGvO6NgrCU78rlb5n8It+osF6QoRjpBnnhMVq28 S874PviYIXYZyaQGiNW5qNnJ74JZfnD6iRvRkHb5VB7ZtMu7a50PrGNVWZRfF+Jj 0czSnpP7Xmb6BTrxEgu/3ru30Z/X3a0aiL6L5d+u0FY+k9F431eXVrmHSGoAPOV7 Jzo0RKJHbEMWXhmo3GILINPBHxJKySXh0sekPpgigp3tOvp3RMWQCECtjAX8TC2g JMdnKLevj+/QB60Bac2ZkE9DLcAhWkocsIRESz0ZfaQyq8t8CUHZTbQooWOLAeCv wj63raELgcC6CRY8awL8PSi9qFfTGc2Oam0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org