$ rpki-client -vvf rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/E7EFEDC07C1F11EB95B6492DC4F9AE02.roa File: E7EFEDC07C1F11EB95B6492DC4F9AE02.roa (raw, json) Hash identifier: PfwMudypLXBG0l/8zURzPSjDmL/lqt08xsdYYn3A5t8= Subject key identifier: A0:B0:D8:D1:DB:6C:AE:28:BE:1D:EE:62:DC:4C:81:28:01:4B:AD:43 Certificate issuer: /CN=A91C744F/serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Certificate serial: 06EF Authority key identifier: 28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/E7EFEDC07C1F11EB95B6492DC4F9AE02.roa Signing time: Mon 26 Aug 2024 22:50:49 +0000 ROA not before: Mon 26 Aug 2024 22:50:49 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138179 IP address blocks: 103.129.120.0/22 maxlen: 24 114.141.112.0/21 maxlen: 24 192.171.104.0/21 maxlen: 24 2403:7cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1775 (0x6ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C744F/serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Validity Not Before: Aug 26 22:50:49 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66cd06c9-ca46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b9:fb:90:db:a3:99:af:1b:2f:4b:68:09:a7: a2:98:c5:96:eb:7d:d5:bc:ac:ac:39:4e:1a:b6:77: 6a:ee:8e:9b:ea:d5:41:b0:12:67:1b:dc:85:3d:81: a3:8c:48:5c:d0:6e:33:b8:4a:84:09:7b:c6:7c:b3: 78:95:1c:15:79:04:f3:36:8d:55:23:71:02:2e:4f: 9e:04:12:eb:80:4f:0e:60:92:9e:00:cd:41:0b:5f: cf:f9:d4:ff:9e:5a:ee:80:1d:ad:38:8b:f8:5f:cd: 7e:42:2d:05:09:95:be:25:10:4c:f7:9e:85:b9:89: fb:1a:15:d9:11:c9:4b:38:ce:74:82:b2:29:3f:5b: 7c:23:9a:3a:0d:04:82:4c:e2:6e:a3:69:dc:b7:84: 19:08:d0:b6:8b:3d:7c:52:05:72:29:87:49:2c:41: df:c4:d1:ff:8a:d5:af:5f:7a:c1:ac:4d:ea:f8:a0: 86:7c:e5:76:a0:91:19:f0:64:1c:31:42:7b:71:66: 54:0a:cf:cf:8d:e6:dd:f7:d0:69:1f:e2:80:e5:f6: f6:87:8d:86:ab:ce:ba:4b:c1:a2:8a:db:cb:18:da: f8:f5:e1:ba:de:84:e1:49:2b:7f:7f:56:c9:32:49: 1b:c8:ba:b7:57:22:4e:95:f5:6e:fe:d5:fa:3a:a6: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B0:D8:D1:DB:6C:AE:28:BE:1D:EE:62:DC:4C:81:28:01:4B:AD:43 X509v3 Authority Key Identifier: keyid:28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/E7EFEDC07C1F11EB95B6492DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.120.0/22 114.141.112.0/21 192.171.104.0/21 IPv6: 2403:7cc0::/32 Signature Algorithm: sha256WithRSAEncryption 32:a5:19:bf:9a:05:a0:fb:a5:d0:fd:77:a9:57:f8:0e:f6:cc: 81:38:a0:ba:b0:ed:84:b8:8c:d0:20:5e:de:c4:d3:9f:3c:19: da:4e:0e:a4:89:dc:22:56:d7:21:f2:d0:d4:f0:1e:13:f9:3b: 9e:51:f1:a5:0d:c0:3c:03:2f:d8:2b:8b:f7:49:99:7c:4e:a0: 93:63:b2:03:1b:29:23:a3:25:09:24:c3:e8:13:e2:48:a1:26: c9:fc:e8:d3:f6:70:05:74:56:28:56:d8:6e:83:61:77:b7:c0: e3:33:76:00:dc:a1:6d:e6:90:30:1b:7f:95:7f:be:60:25:c3: 86:67:16:1d:af:6b:ad:f8:f4:b9:37:a6:bb:0d:15:f7:8f:c2: 54:d5:b9:c2:aa:30:2a:32:3e:62:e8:b2:56:b2:89:f8:60:b3: b2:18:ff:f2:0a:40:1b:22:37:e0:d5:cf:d8:a9:0d:8e:c4:e9: 97:de:fe:60:ea:37:a2:36:30:ae:74:cb:71:ca:eb:b2:10:ca: 65:11:49:70:f2:de:93:08:e8:9e:2e:0f:d5:6e:f1:4a:0b:91: a1:64:0f:e8:50:a7:4d:9e:ec:b3:4f:30:d8:a4:85:38:6a:de: 6c:96:89:ee:ff:33:ac:c4:cf:1d:9b:c8:f6:ee:5e:7a:2c:ad: 16:3f:72:42 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0NEYxMTAvBgNVBAUTKDI4OUVCMjNGMjhDOUNGMjNGQTVCOTE4QTY1MENCODQy ODA1MDMwN0IwHhcNMjQwODI2MjI1MDQ5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNkMDZjOS1jYTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLn7kNujma8bL0toCaeimMWW633VvKysOU4atndq7o6b6tVBsBJnG9yFPYGj jEhc0G4zuEqECXvGfLN4lRwVeQTzNo1VI3ECLk+eBBLrgE8OYJKeAM1BC1/P+dT/ nlrugB2tOIv4X81+Qi0FCZW+JRBM956FuYn7GhXZEclLOM50grIpP1t8I5o6DQSC TOJuo2nct4QZCNC2iz18UgVyKYdJLEHfxNH/itWvX3rBrE3q+KCGfOV2oJEZ8GQc MUJ7cWZUCs/Pjebd99BpH+KA5fb2h42Gq866S8GiitvLGNr49eG63oThSSt/f1bJ MkkbyLq3VyJOlfVu/tX6OqZqEQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFKCw2NHb bK4ovh3uYtxMgSgBS61DMB8GA1UdIwQYMBaAFCiesj8oyc8j+luRimUMuEKAUDB7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzQ0Ri9CN0Y5Mzg1RTIy QjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5UDZXNUdLWlF5NFFvQlFN SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKNnlQeWpKenlQNlc1R0taUXk0UW9CUU1Icy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc0NEYvQjdGOTM4NUUyMkI3MTFFQjhDMzcwMzNDQzRGOUFFMDIvRTdFRkVEQzA3 QzFGMTFFQjk1QjY0OTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJngXgDBANyjXADBAPAq2gwDQQCAAIwBwMFACQDfMAwDQYJ KoZIhvcNAQELBQADggEBADKlGb+aBaD7pdD9d6lX+A72zIE4oLqw7YS4jNAgXt7E 0588GdpODqSJ3CJW1yHy0NTwHhP5O55R8aUNwDwDL9gri/dJmXxOoJNjsgMbKSOj JQkkw+gT4kihJsn86NP2cAV0VihW2G6DYXe3wOMzdgDcoW3mkDAbf5V/vmAlw4Zn Fh2va6349Lk3prsNFfePwlTVucKqMCoyPmLoslayifhgs7IY//IKQBsiN+DVz9ip DY7E6Zfe/mDqN6I2MK50y3HK67IQymURSXDy3pMI6J4uD9Vu8UoLkaFkD+hQp02e 7LNPMNikhThq3myWie7/M6zEzx2byPbuXnosrRY/ckI= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org