$ rpki-client -vvf rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/E9237B16683211EDA8B5DD35C4F9AE02.roa File: E9237B16683211EDA8B5DD35C4F9AE02.roa (raw, json) Hash identifier: eiXq5hj+93LDEcdIzHe8VpVUOBrXzS5zyHif5pHkKOU= Subject key identifier: A6:C4:02:B5:CF:EB:8F:3A:DB:6C:2A:4B:82:9C:E8:81:37:F8:85:B2 Certificate issuer: /CN=A91C751F/serialNumber=497A69983409AD70C217564071CCF5BE34C51BC7 Certificate serial: 03CB Authority key identifier: 49:7A:69:98:34:09:AD:70:C2:17:56:40:71:CC:F5:BE:34:C5:1B:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SXppmDQJrXDCF1ZAccz1vjTFG8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/E9237B16683211EDA8B5DD35C4F9AE02.roa Signing time: Sat 13 Jul 2024 04:35:55 +0000 ROA not before: Sat 13 Jul 2024 04:35:55 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149042 IP address blocks: 103.177.80.0/23 maxlen: 23 2400:38e0::/48 maxlen: 48 2400:38e0:1::/48 maxlen: 48 2400:38e0:100::/40 maxlen: 40 2400:38e0:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/SXppmDQJrXDCF1ZAccz1vjTFG8c.crl rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/SXppmDQJrXDCF1ZAccz1vjTFG8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SXppmDQJrXDCF1ZAccz1vjTFG8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 971 (0x3cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C751F/serialNumber=497A69983409AD70C217564071CCF5BE34C51BC7 Validity Not Before: Jul 13 04:35:55 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6692042a-d755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:fc:1c:d5:34:c3:95:06:d1:ba:e4:3a:75: ba:3e:f4:05:0f:d6:63:62:c5:62:8e:3a:34:dd:13: b7:e5:f8:53:72:ae:66:f3:e9:bc:36:a0:24:d0:b5: 12:6c:0e:32:81:1e:26:af:d2:38:78:ce:0e:82:d4: 31:dd:5d:21:d1:b0:e6:09:d4:c5:43:bf:bb:1c:da: a6:d6:8c:18:9c:5f:74:1a:4c:60:e6:5d:f4:da:af: bf:ab:37:b8:45:64:5b:48:b0:7f:ef:35:57:37:6c: b4:6a:a7:ff:14:1c:57:6c:9e:ee:51:af:8e:a9:70: f7:ff:78:b4:f6:cd:0b:3c:20:6c:fd:d8:b0:81:ae: c0:5b:d9:d0:3d:ba:56:9d:ee:e0:27:a9:37:0c:26: cc:87:be:d8:b9:d2:29:84:cd:3e:3c:1a:49:78:12: 10:74:79:95:15:6d:1a:65:7f:78:10:f1:cc:12:6c: 5c:1e:37:3f:88:45:c1:ba:04:cc:b4:f6:70:e6:ce: 6a:68:06:26:ce:25:41:7f:aa:95:56:5a:3f:66:99: 0b:ff:90:19:d4:9c:11:42:47:56:c6:63:89:23:8b: 4e:ac:98:fe:44:2b:5a:f5:eb:9d:d1:bd:7e:6c:ea: 23:17:40:bf:bf:82:e9:ce:53:a0:ae:99:81:84:92: 3a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C4:02:B5:CF:EB:8F:3A:DB:6C:2A:4B:82:9C:E8:81:37:F8:85:B2 X509v3 Authority Key Identifier: keyid:49:7A:69:98:34:09:AD:70:C2:17:56:40:71:CC:F5:BE:34:C5:1B:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/SXppmDQJrXDCF1ZAccz1vjTFG8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SXppmDQJrXDCF1ZAccz1vjTFG8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/E9237B16683211EDA8B5DD35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.80.0/23 IPv6: 2400:38e0::/47 2400:38e0:100::-2400:38e0:2ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 61:44:72:ba:65:1e:a2:92:76:4b:04:90:d3:b1:9f:ba:a4:47: 34:7e:7a:8b:a2:32:7a:23:1a:46:53:c7:a8:b0:f0:1f:d5:ff: 0b:a5:e4:66:05:93:6d:13:a1:ce:24:ac:9b:a5:8e:f9:f6:1e: 91:ef:c7:ca:f0:57:8c:2c:a8:b4:ff:2e:65:43:4b:f8:76:1b: 48:46:3a:55:d8:71:e0:09:c4:fc:1b:f7:23:db:84:65:87:c3: a7:65:55:4d:10:80:a5:37:2d:10:5d:fe:4e:d1:de:44:da:f9: 79:84:bd:dd:a1:cb:62:de:4c:66:7a:f7:ce:49:73:06:3a:9f: 29:d1:28:c5:37:31:c5:49:89:08:cf:6a:5a:89:9c:bc:db:63: c9:25:4a:a6:51:ea:89:05:df:5a:26:a2:81:2f:a7:36:55:8e: bf:81:b6:6e:c8:1e:42:41:33:f7:4e:6c:5f:fd:7a:18:a0:1f: 91:6a:4f:30:7d:85:02:c6:a6:8e:88:6c:96:e2:95:38:4a:55: cd:46:35:95:84:c3:32:91:08:b5:3b:ab:15:6b:16:22:eb:9a: 7f:02:0c:2a:ee:68:b8:20:33:4e:2d:f8:09:88:b4:90:0e:60: 3a:97:56:5e:1d:47:61:e5:97:ef:75:55:3b:58:fd:7c:6e:60: 74:b2:77:36 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICA8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc1MUYxMTAvBgNVBAUTKDQ5N0E2OTk4MzQwOUFENzBDMjE3NTY0MDcxQ0NGNUJF MzRDNTFCQzcwHhcNMjQwNzEzMDQzNTU1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkyMDQyYS1kNzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulr8HNU0w5UG0brkOnW6PvQFD9ZjYsVijjo03RO35fhTcq5m8+m8NqAk0LUS bA4ygR4mr9I4eM4OgtQx3V0h0bDmCdTFQ7+7HNqm1owYnF90Gkxg5l302q+/qze4 RWRbSLB/7zVXN2y0aqf/FBxXbJ7uUa+OqXD3/3i09s0LPCBs/diwga7AW9nQPbpW ne7gJ6k3DCbMh77YudIphM0+PBpJeBIQdHmVFW0aZX94EPHMEmxcHjc/iEXBugTM tPZw5s5qaAYmziVBf6qVVlo/ZpkL/5AZ1JwRQkdWxmOJI4tOrJj+RCta9eud0b1+ bOojF0C/v4LpzlOgrpmBhJI6tQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFKbEArXP 648622wqS4Kc6IE3+IWyMB8GA1UdIwQYMBaAFEl6aZg0Ca1wwhdWQHHM9b40xRvH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzUxRi8xODM5ODFEMjUx ODQxMUVDOTYxMjA2NDBDNEY5QUUwMi9TWHBwbURRSnJYRENGMVpBY2N6MXZqVEZH OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NYcHBtRFFKclhEQ0YxWkFjY3oxdmpURkc4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc1MUYvMTgzOTgxRDI1MTg0MTFFQzk2MTIwNjQwQzRGOUFFMDIvRTkyMzdCMTY2 ODMyMTFFREE4QjVERDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMAwEAgABMAYDBAFnsVAwIQQCAAIwGwMHASQAOOAAADAQAwYAJAA44AEDBgAk ADjgAjANBgkqhkiG9w0BAQsFAAOCAQEAYURyumUeopJ2SwSQ07GfuqRHNH56i6Iy eiMaRlPHqLDwH9X/C6XkZgWTbROhziSsm6WO+fYeke/HyvBXjCyotP8uZUNL+HYb SEY6Vdhx4AnE/Bv3I9uEZYfDp2VVTRCApTctEF3+TtHeRNr5eYS93aHLYt5MZnr3 zklzBjqfKdEoxTcxxUmJCM9qWomcvNtjySVKplHqiQXfWiaigS+nNlWOv4G2bsge QkEz905sX/16GKAfkWpPMH2FAsamjohsluKVOEpVzUY1lYTDMpEItTurFWsWIuua fwIMKu5ouCAzTi34CYi0kA5gOpdWXh1HYeWX73VVO1j9fG5gdLJ3Ng== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org