$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa File: E940EF3464B611EA9B743415C4F9AE02.roa (raw, json) Hash identifier: v3sjoQSpuFWRMhTWonBiueiIp4Y61jfzrKe4k2e0JcM= Subject key identifier: E7:D5:87:1D:EA:5F:91:90:5B:52:9F:E3:3B:55:ED:E6:25:C0:C8:17 Certificate issuer: /CN=A91CDE0E/serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2 Certificate serial: 15EE Authority key identifier: 73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa Signing time: Tue 20 Aug 2024 21:12:37 +0000 ROA not before: Tue 20 Aug 2024 21:12:37 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 4647 IP address blocks: 103.246.28.0/22 maxlen: 24 203.30.140.0/24 maxlen: 24 2404:fc80::/32 maxlen: 36 2404:fc80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.crl rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:42:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5614 (0x15ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDE0E/serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2 Validity Not Before: Aug 20 21:12:37 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c506c5-758e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6d:16:53:2d:fe:12:00:65:2f:6d:3f:04:76: fa:fc:a0:bb:33:d2:e6:61:39:0d:24:3a:2b:3d:80: 2f:fe:90:31:0a:a2:8b:96:cb:a7:d5:94:07:df:85: 33:1a:9f:58:e4:6d:92:b5:a0:26:6c:26:5c:d4:69: 9e:fc:b6:c8:f5:d7:84:ab:87:eb:86:8d:b4:f6:6d: 02:b7:3e:43:3d:da:ff:e4:f3:62:c7:f2:2c:d9:fe: bc:f6:fa:2d:60:c8:7f:13:8b:62:bd:e0:b6:b5:5a: b5:ee:6d:20:16:9f:50:ef:5c:bd:ad:b7:93:b8:a0: e5:f2:26:e7:c1:c7:06:fa:f0:5d:5a:43:b7:1b:56: 55:47:f9:77:e8:fc:a9:8b:38:2d:3d:58:ff:13:bc: 15:5c:62:5c:8f:79:b7:bc:09:78:b9:49:79:8f:bf: 98:d8:78:d0:15:cf:1b:65:a0:60:d4:42:cb:5c:7b: c5:0f:81:e2:d8:6e:5e:a5:34:58:28:9a:c7:7f:b4: 0a:7c:61:80:81:21:1d:bc:65:bb:24:0f:6b:a0:e6: e5:5c:c3:fd:8f:df:4c:e7:ee:c9:92:9f:a0:04:22: a6:59:14:ea:5d:d9:8f:61:f3:15:a8:a9:0b:f3:9f: 90:11:98:b4:f8:3c:23:ba:93:2f:38:b6:a0:5f:ba: eb:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D5:87:1D:EA:5F:91:90:5B:52:9F:E3:3B:55:ED:E6:25:C0:C8:17 X509v3 Authority Key Identifier: keyid:73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.28.0/22 203.30.140.0/24 IPv6: 2404:fc80::/32 Signature Algorithm: sha256WithRSAEncryption 1a:77:36:d2:7b:1f:ad:a9:a0:48:cd:b6:9e:12:60:f0:8c:3d: 07:7c:9e:ff:15:30:1e:9a:ed:96:41:f3:96:35:93:c5:d3:f5: 9c:72:87:43:81:ad:a6:f4:fe:7b:bb:aa:42:e7:02:f7:8d:70: cf:b6:e3:e1:72:29:af:26:fa:7a:95:51:2b:dd:09:93:66:96: ab:b4:8d:39:b5:f6:71:30:c4:8f:5a:05:1d:33:d2:16:4a:30: 17:3f:97:05:57:54:be:62:78:28:ce:61:b0:3c:43:72:e8:a7: d8:4f:c3:ea:1e:0f:09:ca:6e:9e:2c:e4:a2:07:1b:d5:ba:2e: f6:3a:e4:fb:64:bc:28:fc:db:35:bf:d7:4d:55:7d:96:7f:e7: 98:02:e9:12:c9:9b:38:9a:9f:da:5f:0f:fd:1d:70:3b:60:ef: 52:22:41:0f:17:76:d3:80:f4:90:4d:1a:8d:4e:e7:45:a9:5d: 07:3c:6e:0e:30:25:cd:76:b9:0c:d4:be:22:61:4a:b3:50:d0: f8:16:ee:a8:ff:a8:e9:bc:0a:d2:0e:f5:2d:4c:bc:b1:aa:61: 15:d7:55:b6:13:72:bc:42:90:2a:a2:23:bd:e8:3f:fd:af:43: ec:54:b4:9b:43:8a:b6:0b:6c:c7:0b:40:76:56:35:bc:3b:26: de:e8:b1:f7 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFMEUxMTAvBgNVBAUTKDczMTE0MUFGMEE3OTNBQTMxNkVGN0RERDJGMUIwNUY4 OTFDNTY2QjIwHhcNMjQwODIwMjExMjM3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1MDZjNS03NThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW0WUy3+EgBlL20/BHb6/KC7M9LmYTkNJDorPYAv/pAxCqKLlsun1ZQH34Uz Gp9Y5G2StaAmbCZc1Gme/LbI9deEq4frho209m0Ctz5DPdr/5PNix/Is2f689vot YMh/E4tiveC2tVq17m0gFp9Q71y9rbeTuKDl8ibnwccG+vBdWkO3G1ZVR/l36Pyp izgtPVj/E7wVXGJcj3m3vAl4uUl5j7+Y2HjQFc8bZaBg1ELLXHvFD4Hi2G5epTRY KJrHf7QKfGGAgSEdvGW7JA9roOblXMP9j99M5+7Jkp+gBCKmWRTqXdmPYfMVqKkL 85+QEZi0+DwjupMvOLagX7rrswIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOfVhx3q X5GQW1Kf4ztV7eYlwMgXMB8GA1UdIwQYMBaAFHMRQa8KeTqjFu993S8bBfiRxWay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREUwRS82RTFFN0RFNDA1 N0MxMUU4ODJGRThFMjhDNEY5QUUwMi9jeEZCcndwNU9xTVc3MzNkTHhzRi1KSEZa ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4RkJyd3A1T3FNVzczM2RMeHNGLUpIRlpySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RFMEUvNkUxRTdERTQwNTdDMTFFODgyRkU4RTI4QzRGOUFFMDIvRTk0MEVGMzQ2 NEI2MTFFQTlCNzQzNDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn9hwDBADLHowwDQQCAAIwBwMFACQE/IAwDQYJKoZIhvcN AQELBQADggEBABp3NtJ7H62poEjNtp4SYPCMPQd8nv8VMB6a7ZZB85Y1k8XT9Zxy h0OBrab0/nu7qkLnAveNcM+24+FyKa8m+nqVUSvdCZNmlqu0jTm19nEwxI9aBR0z 0hZKMBc/lwVXVL5ieCjOYbA8Q3Lop9hPw+oeDwnKbp4s5KIHG9W6LvY65PtkvCj8 2zW/101VfZZ/55gC6RLJmzian9pfD/0dcDtg71IiQQ8XdtOA9JBNGo1O50WpXQc8 bg4wJc12uQzUviJhSrNQ0PgW7qj/qOm8CtIO9S1MvLGqYRXXVbYTcrxCkCqiI73o P/2vQ+xUtJtDirYLbMcLQHZWNbw7Jt7osfc= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:07 2024 by rpki-client on console-ams.rpki-client.org