$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/EDA4BE18EF8711EBAF811557C4F9AE02.roa File: EDA4BE18EF8711EBAF811557C4F9AE02.roa (raw, json) Hash identifier: XzFg7Hp2s0t/ygNB9X7ACgOTOxQW40ffh6L1IDqjhU8= Subject key identifier: 4E:20:A3:35:D5:1C:E5:99:FB:8F:C2:82:C7:92:CA:BF:15:FB:59:57 Certificate issuer: /CN=A91CFCD3/serialNumber=C314FEAD8720BB18E2D9E2249382B8DF75446D8B Certificate serial: 04E2 Authority key identifier: C3:14:FE:AD:87:20:BB:18:E2:D9:E2:24:93:82:B8:DF:75:44:6D:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxT-rYcguxji2eIkk4K433VEbYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/EDA4BE18EF8711EBAF811557C4F9AE02.roa Signing time: Fri 25 Oct 2024 00:14:23 +0000 ROA not before: Fri 25 Oct 2024 00:14:23 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136519 IP address blocks: 103.170.140.0/24 maxlen: 24 103.170.141.0/24 maxlen: 24 2001:df7:1c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/wxT-rYcguxji2eIkk4K433VEbYs.crl rsync://rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/wxT-rYcguxji2eIkk4K433VEbYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxT-rYcguxji2eIkk4K433VEbYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1250 (0x4e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFCD3/serialNumber=C314FEAD8720BB18E2D9E2249382B8DF75446D8B Validity Not Before: Oct 25 00:14:23 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=671ae2df-9fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:12:45:fe:fc:9d:01:0e:ab:bf:2d:38:ed:49: 31:77:8a:a3:f8:7b:b2:25:ca:8f:4a:bf:0a:1e:f3: a6:1e:66:6a:b5:be:b9:f4:b3:f8:05:0c:1a:11:09: 8d:fa:f7:ce:c3:d5:fc:af:37:81:75:7b:b4:19:28: ff:3a:be:49:bd:c7:75:e3:4d:84:26:27:ad:ec:44: 66:27:d2:40:f9:d7:d7:02:1b:44:37:2f:30:2b:bc: 3a:47:66:ab:1d:01:96:a5:4a:b0:f4:99:54:f9:82: 18:7a:42:9d:33:24:22:87:c3:f4:c5:64:8e:a4:9b: 69:dd:7a:40:e9:64:01:8e:35:f1:ea:71:a5:5e:92: 95:18:60:fe:e0:f6:ec:7a:fa:8f:5f:6f:ae:3a:72: 0d:ac:6a:4e:9b:fb:a8:e6:e7:fb:6c:41:fb:e4:c4: eb:25:5b:ab:8f:6e:c2:bd:9f:fe:2b:ba:40:fb:67: 53:13:43:41:9c:9a:f2:cb:62:4d:a6:c8:3e:66:c3: 9d:79:6d:24:e9:c8:a2:ad:26:4f:7f:6b:dc:22:e4: ac:c2:50:42:23:5d:80:59:ca:5b:f1:33:b5:24:17: e2:86:30:f6:64:96:cd:75:63:57:1f:da:1b:0e:e8: 3c:ee:00:5b:cc:e7:fc:b2:ca:54:ae:3c:3b:d3:42: 42:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:20:A3:35:D5:1C:E5:99:FB:8F:C2:82:C7:92:CA:BF:15:FB:59:57 X509v3 Authority Key Identifier: keyid:C3:14:FE:AD:87:20:BB:18:E2:D9:E2:24:93:82:B8:DF:75:44:6D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/wxT-rYcguxji2eIkk4K433VEbYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxT-rYcguxji2eIkk4K433VEbYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFCD3/C4727A10EF8411EB929B0650C4F9AE02/EDA4BE18EF8711EBAF811557C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.140.0/23 IPv6: 2001:df7:1c80::/48 Signature Algorithm: sha256WithRSAEncryption 90:ae:25:b8:4f:7f:15:37:8f:a0:d4:25:96:54:99:8c:2d:11: d7:c6:6f:30:f8:15:1e:37:77:c1:90:ea:dc:55:66:ae:17:46: 9e:46:7a:80:cb:6a:82:fc:e8:9a:ee:ee:c0:72:c8:73:15:49: a8:0c:60:9d:35:13:2f:5f:a4:d8:15:73:0a:61:fb:c7:44:bc: 7f:2a:9d:c8:af:5e:af:da:15:c8:e4:44:2d:30:cd:71:9d:01: 21:36:fb:16:25:99:5d:38:66:c3:9d:4b:24:84:2f:33:6e:21: 77:d0:e2:3f:97:93:df:98:8a:4b:f9:ed:d4:12:fa:4b:1b:5c: a3:06:00:57:04:df:e4:d8:01:7c:e5:37:90:5c:58:21:32:87: b7:49:d0:1a:98:9b:80:16:9a:20:83:45:06:a9:4f:a7:dd:c6: c2:92:a7:20:19:0c:ff:a7:1b:7a:b6:3f:0d:b7:b0:44:50:49: 26:8a:5b:83:b3:36:5d:81:02:cd:4a:08:73:83:1e:5b:4d:68: 74:e1:a4:f7:63:ec:30:47:0b:aa:d7:69:37:63:05:a3:ad:10: b7:6d:10:6e:07:23:d6:d1:ca:d6:0c:14:cc:d5:b3:b4:f5:d1: d7:98:c4:d0:c4:fc:17:05:80:a7:ee:04:6d:d3:08:e4:44:f1: 44:fb:8b:da -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZDRDMxMTAvBgNVBAUTKEMzMTRGRUFEODcyMEJCMThFMkQ5RTIyNDkzODJCOERG NzU0NDZEOEIwHhcNMjQxMDI1MDAxNDIzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZTJkZi05ZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BJF/vydAQ6rvy047Ukxd4qj+HuyJcqPSr8KHvOmHmZqtb659LP4BQwaEQmN +vfOw9X8rzeBdXu0GSj/Or5Jvcd1402EJiet7ERmJ9JA+dfXAhtENy8wK7w6R2ar HQGWpUqw9JlU+YIYekKdMyQih8P0xWSOpJtp3XpA6WQBjjXx6nGlXpKVGGD+4Pbs evqPX2+uOnINrGpOm/uo5uf7bEH75MTrJVurj27CvZ/+K7pA+2dTE0NBnJryy2JN psg+ZsOdeW0k6ciirSZPf2vcIuSswlBCI12AWcpb8TO1JBfihjD2ZJbNdWNXH9ob Dug87gBbzOf8sspUrjw700JCTQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFE4gozXV HOWZ+4/CgseSyr8V+1lXMB8GA1UdIwQYMBaAFMMU/q2HILsY4tniJJOCuN91RG2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkNEMy9DNDcyN0ExMEVG ODQxMUVCOTI5QjA2NTBDNEY5QUUwMi93eFQtclljZ3V4amkyZUlrazRLNDMzVkVi WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d4VC1yWWNndXhqaTJlSWtrNEs0MzNWRWJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZDRDMvQzQ3MjdBMTBFRjg0MTFFQjkyOUIwNjUwQzRGOUFFMDIvRURBNEJFMThF Rjg3MTFFQkFGODExNTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqowwDwQCAAIwCQMHACABDfccgDANBgkqhkiG9w0BAQsF AAOCAQEAkK4luE9/FTePoNQlllSZjC0R18ZvMPgVHjd3wZDq3FVmrhdGnkZ6gMtq gvzomu7uwHLIcxVJqAxgnTUTL1+k2BVzCmH7x0S8fyqdyK9er9oVyORELTDNcZ0B ITb7FiWZXThmw51LJIQvM24hd9DiP5eT35iKS/nt1BL6SxtcowYAVwTf5NgBfOU3 kFxYITKHt0nQGpibgBaaIINFBqlPp93GwpKnIBkM/6cberY/DbewRFBJJopbg7M2 XYECzUoIc4MeW01odOGk92PsMEcLqtdpN2MFo60Qt20Qbgcj1tHK1gwUzNWztPXR 15jE0MT8FwWAp+4EbdMI5ETxRPuL2g== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org