$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/10DAE05EB04811EABB4AEF61C4F9AE02.roa File: 10DAE05EB04811EABB4AEF61C4F9AE02.roa (raw, json) Hash identifier: +b4JTzk5rUoiBhLUxnA3EW+SFsT+j/Ycd9v6oicmMdQ= Subject key identifier: 22:01:1A:3A:DF:E4:EB:61:20:3C:E0:43:4D:33:5D:46:8C:C4:66:2A Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 348B Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/10DAE05EB04811EABB4AEF61C4F9AE02.roa Signing time: Wed 04 Sep 2024 14:50:31 +0000 ROA not before: Wed 04 Sep 2024 14:50:31 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38040 IP address blocks: 45.64.77.0/24 maxlen: 24 103.21.24.0/24 maxlen: 24 103.21.25.0/24 maxlen: 24 103.21.26.0/24 maxlen: 24 103.21.27.0/24 maxlen: 24 180.180.248.0/24 maxlen: 24 180.180.249.0/24 maxlen: 24 180.180.251.0/24 maxlen: 24 180.180.252.0/24 maxlen: 24 180.180.253.0/24 maxlen: 24 180.180.254.0/24 maxlen: 24 180.180.255.0/24 maxlen: 24 203.113.63.0/24 maxlen: 24 203.190.250.0/24 maxlen: 24 203.190.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13451 (0x348b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Sep 4 14:50:31 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d873b7-f028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:46:d5:48:3f:bf:a8:56:a7:2a:fc:62:ff:50: 68:c8:0c:89:19:62:d2:5b:5d:d1:d4:fa:c8:e3:99: 66:5d:27:33:45:bb:75:be:39:88:f3:73:90:41:6d: 7d:d3:d7:4e:98:7f:b0:c2:7b:a4:65:89:16:b8:5d: 92:17:5c:ed:d0:15:e5:29:30:75:d4:bd:18:07:5b: d1:4b:64:3c:9b:9f:b0:a3:93:6b:e4:be:84:60:1c: c4:97:66:f9:ac:3e:4c:f2:c0:f8:3f:11:f5:7f:8b: 9d:e8:e0:e9:88:8c:c6:1c:aa:2d:a9:6c:dc:b0:96: c8:0a:76:58:81:0d:bd:27:0b:f0:87:39:e5:6c:0e: 19:41:aa:29:1d:51:f4:24:4b:2d:ec:e8:8c:2c:ac: d6:d2:d6:a6:2d:7a:b3:41:8d:32:c1:46:d0:a4:bf: 81:e0:95:60:a9:d0:a4:8f:a0:6b:08:63:63:93:a9: 87:dc:e9:1e:50:2f:cf:c1:cd:db:52:b0:93:28:9b: 3d:8d:cd:d5:c6:3a:20:0f:31:f4:ee:47:33:e0:37: b3:15:9d:d9:7c:6a:4d:73:5f:b1:87:68:27:d1:c4: c3:62:27:af:c1:26:af:aa:66:17:41:e1:d1:7c:2b: 80:00:bc:5f:44:ff:13:d0:aa:b6:1d:fa:9c:29:ed: 31:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:01:1A:3A:DF:E4:EB:61:20:3C:E0:43:4D:33:5D:46:8C:C4:66:2A X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/10DAE05EB04811EABB4AEF61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.77.0/24 103.21.24.0/22 180.180.248.0/23 180.180.251.0-180.180.255.255 203.113.63.0/24 203.190.250.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:e7:f9:b2:07:8d:93:23:d6:c4:88:6e:af:a3:c6:86:81:6e: 46:cb:a0:c9:f1:a4:47:f0:e3:dc:22:f2:2c:0f:42:36:f0:9f: aa:a1:2a:e1:f2:a8:21:5f:68:51:92:ad:5b:bf:2f:cf:dd:e1: 98:27:6e:0b:73:65:d3:33:ff:9b:fa:67:40:19:25:9e:b0:16: cb:c2:e5:eb:64:79:cc:c9:5d:3e:c3:5f:a9:e1:49:cb:73:52: 07:da:5f:c7:92:26:9f:b5:cc:d0:91:a6:dd:a4:89:ae:8f:21: d9:05:ef:1f:c8:96:43:7a:0c:67:57:71:7e:86:d3:e1:33:b6: 64:bc:25:63:ef:ea:67:9e:88:16:c8:17:bc:04:3a:46:00:32: 94:8d:00:5c:47:17:60:b3:4b:91:1c:8a:d3:9c:be:b4:91:f6: 78:2f:4b:4d:05:55:ca:87:74:f6:e6:ba:1f:3f:84:e3:fd:a7: 0f:5e:25:fe:da:50:66:1e:04:d7:c6:09:b9:55:72:ad:d7:6b: b5:ee:e4:17:f7:03:25:a3:24:30:7a:e5:bf:be:92:98:a2:0a: f0:88:ec:da:8c:ea:cb:8e:0d:a8:b6:57:ee:28:ff:2e:c0:1d: 9b:8f:a3:49:04:f9:fb:8a:a4:db:21:81:c4:e5:d2:d8:90:7f: 89:cb:fe:58 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICNIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjQwOTA0MTQ1MDMxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4NzNiNy1mMDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEbVSD+/qFanKvxi/1BoyAyJGWLSW13R1PrI45lmXSczRbt1vjmI83OQQW19 09dOmH+wwnukZYkWuF2SF1zt0BXlKTB11L0YB1vRS2Q8m5+wo5Nr5L6EYBzEl2b5 rD5M8sD4PxH1f4ud6ODpiIzGHKotqWzcsJbICnZYgQ29JwvwhznlbA4ZQaopHVH0 JEst7OiMLKzW0tamLXqzQY0ywUbQpL+B4JVgqdCkj6BrCGNjk6mH3OkeUC/Pwc3b UrCTKJs9jc3VxjogDzH07kcz4DezFZ3ZfGpNc1+xh2gn0cTDYievwSavqmYXQeHR fCuAALxfRP8T0Kq2HfqcKe0xvwIDAQABo4ICujCCArYwHQYDVR0OBBYEFCIBGjrf 5OthIDzgQ00zXUaMxGYqMB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvMTBEQUUwNUVC MDQ4MTFFQUJCNEFFRjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMDEEAgABMCsDBAAtQE0DBAJnFRgDBAG0tPgwCwMEALS0+wMDALS0AwQAy3E/ AwQBy776MA0GCSqGSIb3DQEBCwUAA4IBAQAu5/myB42TI9bEiG6vo8aGgW5Gy6DJ 8aRH8OPcIvIsD0I28J+qoSrh8qghX2hRkq1bvy/P3eGYJ24Lc2XTM/+b+mdAGSWe sBbLwuXrZHnMyV0+w1+p4UnLc1IH2l/HkiaftczQkabdpImujyHZBe8fyJZDegxn V3F+htPhM7ZkvCVj7+pnnogWyBe8BDpGADKUjQBcRxdgs0uRHIrTnL60kfZ4L0tN BVXKh3T25rofP4Tj/acPXiX+2lBmHgTXxgm5VXKt12u17uQX9wMloyQweuW/vpKY ogrwiOzajOrLjg2otlfuKP8uwB2bj6NJBPn7iqTbIYHE5dLYkH+Jy/5Y -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:21 2024 by rpki-client on console-ams.rpki-client.org