$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa File: 61663178F88311EDB1DF555DC4F9AE02.roa (raw, json) Hash identifier: iep28suRW/c0ax5q9e+iJu91N/wkgI13TxsSrAe4FK4= Subject key identifier: C0:45:F1:92:9D:74:4C:11:22:93:7B:50:05:90:74:36:46:44:B0:BF Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: EC Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa Signing time: Thu 20 Jun 2024 04:48:20 +0000 ROA not before: Thu 20 Jun 2024 04:48:20 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 56309 IP address blocks: 43.229.148.0/22 maxlen: 24 103.13.28.0/22 maxlen: 24 103.99.11.0/24 maxlen: 24 103.107.52.0/22 maxlen: 24 103.117.148.0/22 maxlen: 24 117.18.124.0/22 maxlen: 24 199.21.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: Jun 20 04:48:20 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6673b494-d050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d1:c3:f6:f0:f8:b2:84:25:a6:8d:dc:58:10: 93:16:27:82:84:ab:e0:fc:2f:8a:dc:37:cb:f5:b8: a2:bf:36:9e:f3:59:00:fd:7d:0e:f5:bf:c0:77:4d: ab:f3:3a:fd:c2:dc:66:59:ab:f4:03:d7:b8:1a:a2: 88:56:ec:ba:5b:4b:81:a4:e7:b7:63:2f:5e:76:fd: 4b:1e:20:b8:f3:5f:3d:45:d8:09:fd:80:03:59:96: d1:b7:24:ea:be:39:5e:50:be:30:83:3e:8a:e4:37: ba:ec:20:bc:2a:53:2d:be:e8:17:e4:6e:f3:35:11: 10:72:d2:b0:67:15:48:c6:8d:b3:5c:cc:9e:25:c1: 53:04:f4:99:9f:50:9a:22:fd:2f:1a:ec:f3:80:ba: c3:83:2a:4f:56:c1:6b:a1:06:b0:39:6e:81:42:69: 5a:86:7e:f0:0f:71:6f:76:78:f5:b3:9e:8c:44:b8: 57:ca:58:12:fd:3b:79:84:f2:1a:2d:6e:f1:a0:49: 33:02:7a:de:28:75:04:cb:b0:ae:26:01:79:c9:1a: 32:e2:51:22:34:9e:08:89:4f:73:28:6f:e9:43:ed: ec:d3:6a:89:77:77:d2:68:c3:60:b2:9d:72:7d:bf: 81:22:be:e5:a8:da:20:7d:f1:20:67:e6:00:2c:79: 70:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:45:F1:92:9D:74:4C:11:22:93:7B:50:05:90:74:36:46:44:B0:BF X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.148.0/22 103.13.28.0/22 103.99.11.0/24 103.107.52.0/22 103.117.148.0/22 117.18.124.0/22 199.21.172.0/22 Signature Algorithm: sha256WithRSAEncryption 31:f7:cc:43:92:e2:1e:29:cf:51:3c:f3:a1:cf:ac:23:86:45: 8f:32:33:d1:8f:c3:2a:a7:f0:ac:7b:fe:49:2f:66:38:74:99: 7e:16:55:c2:a8:fc:d2:d7:22:64:c1:ae:29:48:62:c7:74:34: f7:98:10:d0:bc:a3:00:12:94:b8:39:ab:33:4a:0e:af:18:8e: 89:c5:9f:6b:fa:9c:89:5b:89:ad:72:c0:98:87:e7:79:57:e9: 65:e8:c2:6b:0d:3d:da:d0:46:e3:f6:51:6f:12:ef:a5:59:30: 9c:7d:03:15:a7:49:e3:cf:b0:d0:3d:84:ba:5e:c3:24:64:5b: 3c:6d:22:3b:ea:9b:10:b3:ed:ac:92:34:9a:04:56:4d:88:0d: 9a:e3:37:14:4c:ef:81:23:26:a3:49:76:7d:22:6d:55:4d:34: fd:b4:26:c7:3d:45:6e:06:25:d2:f6:30:4d:9f:3c:8d:a5:0c: d7:84:57:1f:c8:2c:76:23:c7:32:55:88:0d:01:3f:50:4b:f2: eb:15:ce:54:d8:f1:1c:a7:cc:23:79:6a:d1:b0:ae:40:c5:cd: a5:44:70:93:d9:62:40:48:60:7e:58:1a:b8:1d:a0:fa:d7:53: 04:34:c3:c1:a5:20:a9:13:20:1b:53:49:38:6b:94:27:03:94: 72:70:83:bc -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjQwNjIwMDQ0ODIwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjczYjQ5NC1kMDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldHD9vD4soQlpo3cWBCTFieChKvg/C+K3DfL9biivzae81kA/X0O9b/Ad02r 8zr9wtxmWav0A9e4GqKIVuy6W0uBpOe3Yy9edv1LHiC48189RdgJ/YADWZbRtyTq vjleUL4wgz6K5De67CC8KlMtvugX5G7zNREQctKwZxVIxo2zXMyeJcFTBPSZn1Ca Iv0vGuzzgLrDgypPVsFroQawOW6BQmlahn7wD3Fvdnj1s56MRLhXylgS/Tt5hPIa LW7xoEkzAnreKHUEy7CuJgF5yRoy4lEiNJ4IiU9zKG/pQ+3s02qJd3fSaMNgsp1y fb+BIr7lqNogffEgZ+YALHlwxwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFMBF8ZKd dEwRIpN7UAWQdDZGRLC/MB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBOEUvNjFCQUQ4RTBGODdFMTFFRDkwRDg0NDVDQzRGOUFFMDIvNjE2NjMxNzhG ODgzMTFFREIxREY1NTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBAIr5ZQDBAJnDRwDBABnYwsDBAJnazQDBAJndZQDBAJ1EnwD BALHFawwDQYJKoZIhvcNAQELBQADggEBADH3zEOS4h4pz1E886HPrCOGRY8yM9GP wyqn8Kx7/kkvZjh0mX4WVcKo/NLXImTBrilIYsd0NPeYENC8owASlLg5qzNKDq8Y jonFn2v6nIlbia1ywJiH53lX6WXowmsNPdrQRuP2UW8S76VZMJx9AxWnSePPsNA9 hLpewyRkWzxtIjvqmxCz7aySNJoEVk2IDZrjNxRM74EjJqNJdn0ibVVNNP20Jsc9 RW4GJdL2ME2fPI2lDNeEVx/ILHYjxzJViA0BP1BL8usVzlTY8RynzCN5atGwrkDF zaVEcJPZYkBIYH5YGrgdoPrXUwQ0w8GlIKkTIBtTSThrlCcDlHJwg7w= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:17 2024 by rpki-client on console-ams.rpki-client.org