$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa File: 1D2E7286A6B111E997D5EA57C4F9AE02.roa (raw, json) Hash identifier: qsatTV0vWjCabMFshTZDBa4P4hU9immfTIRLePvacAg= Subject key identifier: 68:FC:3F:66:C5:62:94:E0:DD:C5:B8:B8:61:33:33:45:4B:E0:1B:46 Certificate issuer: /CN=A91CEF3E/serialNumber=F896CC4F53C2A67B3046E7AB29033D50F482D488 Certificate serial: 0D77 Authority key identifier: F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa Signing time: Tue 16 Jan 2024 18:36:17 +0000 ROA not before: Tue 16 Jan 2024 18:36:17 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 23881 IP address blocks: 45.121.192.0/24 maxlen: 24 45.121.193.0/24 maxlen: 24 45.121.194.0/24 maxlen: 24 45.121.195.0/24 maxlen: 24 103.15.180.0/24 maxlen: 24 103.15.181.0/24 maxlen: 24 103.15.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:45:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3447 (0xd77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E/serialNumber=F896CC4F53C2A67B3046E7AB29033D50F482D488 Validity Not Before: Jan 16 18:36:17 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a6cca0-5b3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c1:51:9c:72:6f:99:ac:2f:5e:28:f1:e0:1a: 0b:64:68:f2:d2:6e:1f:fe:99:8a:7e:a4:0b:3b:e5: 7d:09:85:e8:0e:de:17:79:cb:37:74:93:ea:43:fb: 29:b6:bd:85:9c:5f:61:a9:d8:de:19:a2:66:fc:1b: 72:32:3e:b7:95:57:3a:e5:8c:b3:8b:8f:5b:f4:29: 18:9a:f7:31:01:0c:2f:68:23:f6:3a:79:44:7e:31: 5b:94:0a:86:ad:9e:77:7f:ad:30:30:f9:80:33:83: 87:a2:62:cc:39:0e:18:36:2e:22:99:fb:d5:cf:ed: 59:90:28:be:30:0c:80:ba:ba:d2:d9:08:68:4c:90: f0:3a:66:f4:b4:c9:b7:98:5e:98:82:8c:1b:92:8d: 1d:af:03:3c:4b:96:4e:64:42:fc:9a:b7:54:76:f7: c8:56:f8:2e:3a:65:de:8b:7e:b3:cd:52:73:20:8b: 59:84:c6:62:e3:01:6f:c6:a7:2c:da:5a:a4:f4:63: bc:68:d2:a1:c9:0f:61:44:d2:c8:ac:a6:8e:a4:73: aa:44:bc:69:39:20:53:1e:04:f0:c7:4c:b7:2d:71: e2:eb:56:81:2a:35:2c:2a:bd:b3:95:0b:22:22:87: 13:e3:22:33:38:15:a0:d8:e1:11:36:3f:74:05:bb: 78:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FC:3F:66:C5:62:94:E0:DD:C5:B8:B8:61:33:33:45:4B:E0:1B:46 X509v3 Authority Key Identifier: keyid:F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.192.0/22 103.15.180.0/23 103.15.183.0/24 Signature Algorithm: sha256WithRSAEncryption 93:ad:ad:f0:cf:de:c4:2d:71:f9:cf:58:5e:33:93:ac:05:d8: 10:24:30:10:d1:2a:3c:8c:83:13:be:e2:9c:03:ee:3e:6c:a1: 41:22:f8:e4:81:79:de:ff:c7:6a:7e:90:82:bf:de:ba:f6:f2: 72:f3:2a:d1:c3:0c:08:03:de:5c:94:fa:0a:09:b0:5a:a7:df: 76:1d:04:f5:23:1a:1e:ea:cd:c3:29:b9:92:ca:70:e4:eb:e4: 6d:3a:ae:98:73:8f:74:62:4b:f9:56:98:1b:4b:5c:c8:09:a8: 48:44:ee:f1:5b:09:a3:62:75:c9:1c:50:b1:bf:25:60:bd:51: 7e:6b:51:18:74:d3:c4:f1:eb:8f:88:62:96:ea:d7:76:5b:90: f1:a9:1c:d1:65:f5:a9:79:1c:e2:40:53:5c:2b:4a:87:a0:fd: 69:96:b1:89:ea:cc:31:f8:54:3d:ae:2d:16:82:8c:c5:5c:1b: f6:f0:c6:58:9b:60:c6:bd:1d:57:a5:45:98:90:aa:13:66:4e: bf:f4:b5:89:67:09:74:bc:8f:64:a9:ac:18:89:d2:ca:74:3d: 46:3a:18:22:07:91:1e:aa:70:82:0e:15:df:59:63:38:62:ce: db:51:e7:f9:83:ee:56:58:9d:3a:e5:32:13:19:d6:f6:5e:1e: 2b:59:ce:d0 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKEY4OTZDQzRGNTNDMkE2N0IzMDQ2RTdBQjI5MDMzRDUw RjQ4MkQ0ODgwHhcNMjQwMTE2MTgzNjE3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE2Y2NhMC01YjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MFRnHJvmawvXijx4BoLZGjy0m4f/pmKfqQLO+V9CYXoDt4Xecs3dJPqQ/sp tr2FnF9hqdjeGaJm/BtyMj63lVc65Yyzi49b9CkYmvcxAQwvaCP2OnlEfjFblAqG rZ53f60wMPmAM4OHomLMOQ4YNi4imfvVz+1ZkCi+MAyAurrS2QhoTJDwOmb0tMm3 mF6Ygowbko0drwM8S5ZOZEL8mrdUdvfIVvguOmXei36zzVJzIItZhMZi4wFvxqcs 2lqk9GO8aNKhyQ9hRNLIrKaOpHOqRLxpOSBTHgTwx0y3LXHi61aBKjUsKr2zlQsi IocT4yIzOBWg2OERNj90Bbt4DQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGj8P2bF YpTg3cW4uGEzM0VL4BtGMB8GA1UdIwQYMBaAFPiWzE9TwqZ7MEbnqykDPVD0gtSI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9EMjU0QjVDNDk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi8tSmJNVDFQQ3Buc3dSdWVyS1FNOVVQU0Mx SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1KYk1UMVBDcG5zd1J1ZXJLUU05VVBTQzFJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VGM0UvRDI1NEI1QzQ5ODdCMTFFOTgzRUNDRjEzQzRGOUFFMDIvMUQyRTcyODZB NkIxMTFFOTk3RDVFQTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAItecADBAFnD7QDBABnD7cwDQYJKoZIhvcNAQELBQADggEB AJOtrfDP3sQtcfnPWF4zk6wF2BAkMBDRKjyMgxO+4pwD7j5soUEi+OSBed7/x2p+ kIK/3rr28nLzKtHDDAgD3lyU+goJsFqn33YdBPUjGh7qzcMpuZLKcOTr5G06rphz j3RiS/lWmBtLXMgJqEhE7vFbCaNidckcULG/JWC9UX5rURh008Tx64+IYpbq13Zb kPGpHNFl9al5HOJAU1wrSoeg/WmWsYnqzDH4VD2uLRaCjMVcG/bwxlibYMa9HVel RZiQqhNmTr/0tYlnCXS8j2SprBiJ0sp0PUY6GCIHkR6qcIIOFd9ZYzhizttR5/mD 7lZYnTrlMhMZ1vZeHitZztA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org