$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D1EE6884F06C11EEA5BAA656C4F9AE02.roa File: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (raw, json) Hash identifier: syWvSLG7GaKla/rfCIba4Fb9KHufM9emZCvug3k1Tm4= Subject key identifier: 78:E2:24:CD:4F:36:1B:93:36:A1:BF:A5:06:55:A0:E6:6F:1C:D4:EF Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 3475 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D1EE6884F06C11EEA5BAA656C4F9AE02.roa Signing time: Sat 04 May 2024 15:20:59 +0000 ROA not before: Sat 04 May 2024 15:20:59 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 38477 IP address blocks: 103.11.124.0/22 maxlen: 24 116.90.128.0/20 maxlen: 20 116.90.128.0/21 maxlen: 21 116.90.128.0/24 maxlen: 24 116.90.129.0/24 maxlen: 24 116.90.130.0/24 maxlen: 24 116.90.133.0/24 maxlen: 24 116.90.134.0/24 maxlen: 24 116.90.136.0/21 maxlen: 21 116.90.136.0/23 maxlen: 23 116.90.138.0/24 maxlen: 24 116.90.139.0/24 maxlen: 24 116.90.140.0/24 maxlen: 24 116.90.142.0/24 maxlen: 24 116.90.143.0/24 maxlen: 24 120.136.62.0/24 maxlen: 24 122.102.108.0/23 maxlen: 23 202.6.116.0/23 maxlen: 23 2401:f000::/32 maxlen: 32 2401:f000::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13429 (0x3475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: May 4 15:20:59 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6636525b-4a5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:53:eb:51:03:d9:ae:05:87:a8:bb:df:e2:60: fc:c9:68:a7:82:f4:ee:97:a8:1a:7f:7d:fb:da:ca: 69:bc:3e:0e:20:c2:d1:77:8c:28:5e:c3:10:8e:ff: 88:79:0e:d8:3c:ea:4b:1c:5f:da:ed:b1:11:2f:fc: 81:48:74:5d:87:9a:a3:61:6a:bd:23:b1:a3:f3:3d: d3:09:51:72:67:d0:26:13:30:f6:b4:8d:f7:e9:07: b9:02:6f:04:e2:2a:85:30:58:ed:48:a8:26:9b:b5: a8:a8:4a:e7:25:12:01:6a:57:ea:a3:42:03:f6:9e: 74:d1:d8:c0:0d:3d:3b:a1:66:23:c8:47:18:61:5f: 77:1d:a4:23:24:3e:cd:a5:a8:47:a3:60:3b:d3:91: cd:88:4b:05:ae:53:0f:e6:21:2b:45:71:6d:36:7f: c8:30:92:8b:3b:d1:51:e3:31:bb:8f:8b:59:47:8c: c0:ab:0e:25:5d:b0:ac:7b:b5:9d:60:30:9d:8b:39: 9a:b1:3b:b5:11:14:68:3f:af:87:16:32:0a:a1:f7: db:fd:20:fe:01:b5:b7:ff:25:a3:26:53:1f:64:7d: a4:e4:02:29:ac:98:68:70:11:16:60:7e:12:95:f9: 8b:e4:ac:45:02:9e:d2:48:9c:26:dc:aa:c9:44:b5: 1c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:E2:24:CD:4F:36:1B:93:36:A1:BF:A5:06:55:A0:E6:6F:1C:D4:EF X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D1EE6884F06C11EEA5BAA656C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.124.0/22 116.90.128.0/20 120.136.62.0/24 122.102.108.0/23 202.6.116.0/23 IPv6: 2401:f000::/32 Signature Algorithm: sha256WithRSAEncryption 67:e1:6d:89:f9:dc:39:28:30:0e:ca:f5:ec:9e:ab:17:ee:13: 84:f8:d9:d2:a8:0e:9f:2b:2d:eb:3f:6c:b0:f2:99:27:cf:de: ae:c9:a5:fe:9f:21:61:ba:ba:30:70:a6:41:99:7e:71:48:4b: 2a:5b:5b:2b:36:7d:7c:fe:b9:fe:31:a5:8c:72:9d:86:05:7f: 36:16:cf:93:d7:0b:ef:5d:9d:f7:31:23:d6:7d:08:25:67:ba: d4:52:ac:ba:8e:a8:80:ad:7a:c5:73:eb:fe:6b:a1:ec:71:5c: ff:60:43:91:91:9e:3d:3f:16:37:32:95:05:f0:2a:bc:77:ff: 99:ba:3a:02:b5:b4:a3:fc:44:ee:d9:22:ce:30:c7:5e:31:90: 07:af:1f:43:6f:c1:6c:d2:ca:c1:ce:d9:62:c2:79:08:58:57: 45:97:4f:da:a6:4e:62:a7:b6:3f:9c:44:88:7b:29:81:e0:b9: 16:f0:bf:10:76:40:e0:fe:a6:2a:45:af:2f:4f:58:72:81:14: 00:0d:5a:3a:a5:6d:0e:98:96:ab:15:03:f2:27:9c:56:38:82: 4a:1e:cc:c2:67:74:d0:0e:1a:97:0a:09:c1:6f:0d:56:a8:60: 7f:68:29:d6:1e:3d:60:c2:d5:6f:5b:77:87:b7:ad:ac:7b:13: f0:a0:b2:d0 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICNHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjQwNTA0MTUyMDU5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2NTI1Yi00YTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlPrUQPZrgWHqLvf4mD8yWingvTul6gaf3372sppvD4OIMLRd4woXsMQjv+I eQ7YPOpLHF/a7bERL/yBSHRdh5qjYWq9I7Gj8z3TCVFyZ9AmEzD2tI336Qe5Am8E 4iqFMFjtSKgmm7WoqErnJRIBalfqo0ID9p500djADT07oWYjyEcYYV93HaQjJD7N pahHo2A705HNiEsFrlMP5iErRXFtNn/IMJKLO9FR4zG7j4tZR4zAqw4lXbCse7Wd YDCdizmasTu1ERRoP6+HFjIKoffb/SD+AbW3/yWjJlMfZH2k5AIprJhocBEWYH4S lfmL5KxFAp7SSJwm3KrJRLUcrwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFHjiJM1P NhuTNqG/pQZVoOZvHNTvMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5NzgvMzIyM0YzNUUxRDk4MTFFMjhBOEMyRTgyMDhCMDJDRDIvRDFFRTY4ODRG MDZDMTFFRUE1QkFBNjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAJnC3wDBAR0WoADBAB4iD4DBAF6ZmwDBAHKBnQwDQQCAAIw BwMFACQB8AAwDQYJKoZIhvcNAQELBQADggEBAGfhbYn53DkoMA7K9eyeqxfuE4T4 2dKoDp8rLes/bLDymSfP3q7Jpf6fIWG6ujBwpkGZfnFISypbWys2fXz+uf4xpYxy nYYFfzYWz5PXC+9dnfcxI9Z9CCVnutRSrLqOqICtesVz6/5roexxXP9gQ5GRnj0/ FjcylQXwKrx3/5m6OgK1tKP8RO7ZIs4wx14xkAevH0NvwWzSysHO2WLCeQhYV0WX T9qmTmKntj+cRIh7KYHguRbwvxB2QOD+pipFry9PWHKBFAANWjqlbQ6YlqsVA/In nFY4gkoezMJndNAOGpcKCcFvDVaoYH9oKdYePWDC1W9bd4e3rax7E/CgstA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org