$ rpki-client -vvf rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/76C782CC836811E9B8830935C4F9AE02.roa File: 76C782CC836811E9B8830935C4F9AE02.roa (raw, json) Hash identifier: sT/GhXTSPljF4t58cpLt7F+5462yLVttNuz/yiGJfxY= Subject key identifier: FF:9E:58:83:A7:0D:02:D7:72:13:F6:C3:97:2E:DD:F0:44:28:BD:DD Certificate issuer: /CN=A91D58EC/serialNumber=731E27E12FB3DB0B6CCC0B20F186809BA08D0915 Certificate serial: 0E94 Authority key identifier: 73:1E:27:E1:2F:B3:DB:0B:6C:CC:0B:20:F1:86:80:9B:A0:8D:09:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/76C782CC836811E9B8830935C4F9AE02.roa Signing time: Tue 26 Nov 2024 05:46:38 +0000 ROA not before: Tue 26 Nov 2024 05:46:38 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 64073 IP address blocks: 14.102.98.0/23 maxlen: 24 103.139.184.0/23 maxlen: 24 103.250.88.0/22 maxlen: 24 163.47.128.0/22 maxlen: 24 202.179.140.0/22 maxlen: 24 2407:8b00::/32 maxlen: 32 2407:8b00::/36 maxlen: 36 2407:8b00:1::/48 maxlen: 48 2407:8b00:1000::/36 maxlen: 36 2407:8b00:1160::/43 maxlen: 43 2407:8b00:1162::/48 maxlen: 48 2407:8b00:2000::/36 maxlen: 36 2407:8b00:3000::/36 maxlen: 36 2407:8b00:9000::/36 maxlen: 36 2407:8b00:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.crl rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 05:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3732 (0xe94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D58EC/serialNumber=731E27E12FB3DB0B6CCC0B20F186809BA08D0915 Validity Not Before: Nov 26 05:46:38 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=674560be-ff83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8e:e5:4f:b8:3b:3b:c6:0c:d7:71:be:6f:f8: 77:33:b1:e1:4a:e2:62:55:2f:d7:07:e2:21:eb:e6: 41:fd:8c:82:80:91:99:0c:9b:ea:c1:c2:8b:d6:2c: f7:88:39:63:83:81:8a:fb:36:d1:7f:6f:99:62:f5: df:78:0a:7f:c2:f7:60:fe:05:30:cc:33:0d:58:d3: 01:46:9c:45:57:c1:3e:ee:09:89:12:bb:b7:b5:12: 35:59:b9:c0:d5:02:0c:6a:f3:dd:46:ca:a4:d6:8e: bb:7f:44:75:64:55:e3:e9:68:c2:b9:f5:1d:8e:9b: aa:35:49:12:54:fd:8b:56:90:79:fd:1e:f8:9f:5b: 55:96:fb:74:45:f3:f5:98:68:4e:0e:56:80:22:39: 57:eb:56:9a:13:90:a8:af:b2:55:d8:a4:17:c9:c9: 6d:60:70:e3:b4:ff:3c:05:19:bf:c0:b2:2e:6a:fa: 71:80:65:6b:bd:ee:61:86:53:85:9c:b7:b2:7b:54: 0c:c0:4c:d3:07:73:20:19:9b:c2:15:14:4d:85:63: 8c:38:37:aa:83:16:a2:0b:19:41:3b:9a:62:3a:1f: 8f:01:08:f0:a9:2f:5e:fd:c7:83:c8:86:20:5a:fb: 79:8d:67:be:7b:a0:1f:38:b0:53:99:eb:80:c2:9d: 87:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:9E:58:83:A7:0D:02:D7:72:13:F6:C3:97:2E:DD:F0:44:28:BD:DD X509v3 Authority Key Identifier: keyid:73:1E:27:E1:2F:B3:DB:0B:6C:CC:0B:20:F1:86:80:9B:A0:8D:09:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/76C782CC836811E9B8830935C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.102.98.0/23 103.139.184.0/23 103.250.88.0/22 163.47.128.0/22 202.179.140.0/22 IPv6: 2407:8b00::/32 Signature Algorithm: sha256WithRSAEncryption 98:30:42:00:77:08:61:79:cb:a4:26:9f:41:e0:ce:b1:04:43: 2c:52:48:9c:22:9c:9b:6f:c8:c5:2a:2c:0d:05:58:0d:9f:e3: 1c:b8:1b:93:07:5d:c1:f8:54:79:67:9d:3a:20:1e:60:cb:cd: 8f:dc:f1:10:32:b4:56:e7:fb:67:88:94:bb:60:fb:c1:da:e8: ae:5c:01:0b:30:a0:a3:b0:47:f3:1e:a3:2a:f6:e8:d5:28:8d: b3:17:4d:52:c8:c8:2c:e2:8e:1c:7a:63:c6:e8:e1:f6:a7:e9: 72:65:99:88:65:b0:26:ca:77:70:db:35:79:c9:dc:b3:fb:54: 5c:cd:29:5e:d1:f9:b9:31:53:56:48:e0:b8:8c:4c:6e:e6:bd: b7:6e:5f:4f:1e:9c:55:75:a3:53:b1:4e:c5:51:75:7f:68:38: 9c:1f:8d:18:d7:8c:dc:99:90:d2:ae:cd:ee:b5:d7:6b:73:c0: 4f:3c:2c:3b:fb:ea:58:5a:6f:95:36:93:d1:82:9b:4a:69:42: e7:8e:d0:a2:ba:47:df:97:1b:39:f7:87:57:12:06:26:d5:59: 24:7b:b7:4d:b8:2e:13:b3:28:f8:94:df:88:dd:8c:e6:69:39: ef:ab:66:bb:1a:7b:7e:e0:b3:3d:9b:23:c4:b8:be:6f:98:30: e0:60:f9:18 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICDpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU4RUMxMTAvBgNVBAUTKDczMUUyN0UxMkZCM0RCMEI2Q0NDMEIyMEYxODY4MDlC QTA4RDA5MTUwHhcNMjQxMTI2MDU0NjM4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ1NjBiZS1mZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoY7lT7g7O8YM13G+b/h3M7HhSuJiVS/XB+Ih6+ZB/YyCgJGZDJvqwcKL1iz3 iDljg4GK+zbRf2+ZYvXfeAp/wvdg/gUwzDMNWNMBRpxFV8E+7gmJEru3tRI1WbnA 1QIMavPdRsqk1o67f0R1ZFXj6WjCufUdjpuqNUkSVP2LVpB5/R74n1tVlvt0RfP1 mGhODlaAIjlX61aaE5Cor7JV2KQXycltYHDjtP88BRm/wLIuavpxgGVrve5hhlOF nLeye1QMwEzTB3MgGZvCFRRNhWOMODeqgxaiCxlBO5piOh+PAQjwqS9e/ceDyIYg Wvt5jWe+e6AfOLBTmeuAwp2HIQIDAQABo4ICvDCCArgwHQYDVR0OBBYEFP+eWIOn DQLXchP2w5cu3fBEKL3dMB8GA1UdIwQYMBaAFHMeJ+Evs9sLbMwLIPGGgJugjQkV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENThFQy9BRjUwQTBFODgz NjcxMUU5ODQ0Mzc3MzRDNEY5QUUwMi9jeDRuNFMtejJ3dHN6QXNnOFlhQW02Q05D UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NG40Uy16Mnd0c3pBc2c4WWFBbTZDTkNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU4RUMvQUY1MEEwRTg4MzY3MTFFOTg0NDM3NzM0QzRGOUFFMDIvNzZDNzgyQ0M4 MzY4MTFFOUI4ODMwOTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAEOZmIDBAFni7gDBAJn+lgDBAKjL4ADBALKs4wwDQQCAAIw BwMFACQHiwAwDQYJKoZIhvcNAQELBQADggEBAJgwQgB3CGF5y6Qmn0HgzrEEQyxS SJwinJtvyMUqLA0FWA2f4xy4G5MHXcH4VHlnnTogHmDLzY/c8RAytFbn+2eIlLtg +8Ha6K5cAQswoKOwR/Meoyr26NUojbMXTVLIyCzijhx6Y8bo4fan6XJlmYhlsCbK d3DbNXnJ3LP7VFzNKV7R+bkxU1ZI4LiMTG7mvbduX08enFV1o1OxTsVRdX9oOJwf jRjXjNyZkNKuze6112tzwE88LDv76lhab5U2k9GCm0ppQueO0KK6R9+XGzn3h1cS BibVWSR7t024LhOzKPiU34jdjOZpOe+rZrsae37gsz2bI8S4vm+YMOBg+Rg= -----END CERTIFICATE-----Generated at Tue Nov 26 06:34:12 2024 by rpki-client on console-fra.rpki-client.org