$ rpki-client -vvf rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/E7EFEDC07C1F11EB95B6492DC4F9AE02.roa File: E7EFEDC07C1F11EB95B6492DC4F9AE02.roa (raw, json) Hash identifier: +kbsXm5swwHeJIXcmXc1zh9OpA/DbMfp8kfFaVsAFRM= Subject key identifier: 6B:04:12:7B:70:C8:3C:0A:EC:1A:96:86:F7:44:47:51:9B:99:32:BE Certificate issuer: /CN=A91C744F/serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Certificate serial: 0630 Authority key identifier: 28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/E7EFEDC07C1F11EB95B6492DC4F9AE02.roa Signing time: Thu 24 Aug 2023 22:40:10 +0000 ROA not before: Thu 24 Aug 2023 22:40:10 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138179 IP address blocks: 103.129.120.0/22 maxlen: 24 114.141.112.0/21 maxlen: 24 192.171.104.0/21 maxlen: 24 2403:7cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C744F/serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Validity Not Before: Aug 24 22:40:10 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64e7dc4a-c24c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1c:19:d8:7f:5c:ea:7c:f5:38:b1:96:0f:39: 6e:19:12:03:56:f1:2d:c3:d8:33:51:66:5d:b7:70: ef:2b:4f:25:b7:50:68:23:93:bf:fa:20:66:77:2a: f6:fb:85:2e:c0:ab:f5:e7:92:34:e3:51:e6:e0:ac: 50:cd:c4:a3:39:8c:8c:42:ff:9a:2b:17:31:5b:0f: a3:6d:e9:5d:ab:f0:6d:34:b2:5b:96:fc:cb:2c:d8: 6c:57:3d:e0:67:68:35:19:2c:5f:34:08:20:d8:19: 6b:3d:b4:8e:87:9d:83:13:69:ee:b2:0f:73:c0:c1: 72:53:de:3a:90:08:46:09:2f:01:a2:fd:9a:7b:1c: 30:74:ec:42:86:fb:b6:42:61:8a:80:32:1e:39:93: e1:a3:b4:85:e4:83:d1:7c:3d:6c:2f:4a:1c:d9:74: 54:73:cd:9d:9a:44:ae:93:85:3e:60:30:7e:23:37: 91:36:70:02:cb:58:f8:72:d3:0e:c5:d4:24:64:cb: 9f:24:3d:7f:4b:51:ff:3b:e1:87:b0:20:0c:41:07: 3f:5a:3c:e6:f0:be:f0:d8:b3:84:79:13:96:c3:7b: e1:a2:a2:2d:3b:b1:57:46:ff:f3:b6:3a:4c:af:e6: e9:6a:95:c2:13:42:76:6f:b0:53:8f:c8:ab:7f:01: de:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:04:12:7B:70:C8:3C:0A:EC:1A:96:86:F7:44:47:51:9B:99:32:BE X509v3 Authority Key Identifier: keyid:28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/E7EFEDC07C1F11EB95B6492DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.120.0/22 114.141.112.0/21 192.171.104.0/21 IPv6: 2403:7cc0::/32 Signature Algorithm: sha256WithRSAEncryption 60:51:b1:7c:80:e5:14:60:57:a4:e5:d0:be:f5:ca:7f:1f:31: f7:47:c0:c7:9d:45:bd:41:de:de:98:02:8e:ee:8f:46:be:8b: e5:6d:a1:1f:e4:6d:23:f9:1a:08:3b:60:d7:e0:28:2a:a9:0e: e0:70:fa:fa:74:6d:66:e7:1f:85:a0:dd:38:95:d5:71:23:6a: 27:ca:e3:43:05:b4:c4:04:16:75:f6:05:38:d1:d9:0b:55:f8: b2:fc:dd:ee:6b:6d:cf:49:52:31:ca:2b:39:2d:99:4f:2a:7c: 34:cd:8f:1f:73:18:7e:88:20:11:da:b6:a2:28:3b:1d:4c:db: ac:f8:e1:e5:97:f2:ec:69:7a:bc:87:d1:80:5c:d5:6f:45:09: 6d:97:85:a6:0d:4f:68:cb:f9:7b:0d:b6:a2:18:89:7b:6d:b7: 3b:ae:8a:7e:15:ee:8f:06:99:9a:39:c1:09:b1:0f:86:4b:aa: a3:46:16:54:74:dc:6f:40:1f:aa:02:f2:b0:8e:e2:bb:54:6f: 9d:6a:fb:71:b6:ef:69:91:bc:c8:fc:e8:24:8c:ff:75:44:9f: b3:7d:00:46:88:4c:9b:75:c3:8e:89:c1:7c:28:19:a1:ba:50: c9:60:17:b9:1a:5b:f8:49:9c:88:16:14:d1:d5:5e:42:ca:ad: 8a:46:35:7a -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0NEYxMTAvBgNVBAUTKDI4OUVCMjNGMjhDOUNGMjNGQTVCOTE4QTY1MENCODQy ODA1MDMwN0IwHhcNMjMwODI0MjI0MDEwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU3ZGM0YS1jMjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhwZ2H9c6nz1OLGWDzluGRIDVvEtw9gzUWZdt3DvK08lt1BoI5O/+iBmdyr2 +4UuwKv155I041Hm4KxQzcSjOYyMQv+aKxcxWw+jbeldq/BtNLJblvzLLNhsVz3g Z2g1GSxfNAgg2BlrPbSOh52DE2nusg9zwMFyU946kAhGCS8Bov2aexwwdOxChvu2 QmGKgDIeOZPho7SF5IPRfD1sL0oc2XRUc82dmkSuk4U+YDB+IzeRNnACy1j4ctMO xdQkZMufJD1/S1H/O+GHsCAMQQc/Wjzm8L7w2LOEeROWw3vhoqItO7FXRv/ztjpM r+bpapXCE0J2b7BTj8irfwHetwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFGsEEntw yDwK7BqWhvdER1GbmTK+MB8GA1UdIwQYMBaAFCiesj8oyc8j+luRimUMuEKAUDB7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzQ0Ri9CN0Y5Mzg1RTIy QjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5UDZXNUdLWlF5NFFvQlFN SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKNnlQeWpKenlQNlc1R0taUXk0UW9CUU1Icy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc0NEYvQjdGOTM4NUUyMkI3MTFFQjhDMzcwMzNDQzRGOUFFMDIvRTdFRkVEQzA3 QzFGMTFFQjk1QjY0OTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJngXgDBANyjXADBAPAq2gwDQQCAAIwBwMFACQDfMAwDQYJ KoZIhvcNAQELBQADggEBAGBRsXyA5RRgV6Tl0L71yn8fMfdHwMedRb1B3t6YAo7u j0a+i+VtoR/kbSP5Ggg7YNfgKCqpDuBw+vp0bWbnH4Wg3TiV1XEjaifK40MFtMQE FnX2BTjR2QtV+LL83e5rbc9JUjHKKzktmU8qfDTNjx9zGH6IIBHatqIoOx1M26z4 4eWX8uxperyH0YBc1W9FCW2XhaYNT2jL+XsNtqIYiXtttzuuin4V7o8GmZo5wQmx D4ZLqqNGFlR03G9AH6oC8rCO4rtUb51q+3G272mRvMj86CSM/3VEn7N9AEaITJt1 w46JwXwoGaG6UMlgF7kaW/hJnIgWFNHVXkLKrYpGNXo= -----END CERTIFICATE-----Generated at Fri May 17 00:19:45 2024 by rpki-client on console-ams.rpki-client.org