$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa File: E8542DEA6B8811ECAC731B4EC4F9AE02.roa (raw, json) Hash identifier: twjTguHFjC52bR1y22hSkscMHEmjEfUQTig66K8g1Xo= Subject key identifier: AE:27:2E:CE:B0:3F:ED:34:A7:A3:21:A8:39:5B:87:21:73:ED:29:B9 Certificate issuer: /CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Certificate serial: 0572 Authority key identifier: EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa Signing time: Sat 21 Sep 2024 02:14:46 +0000 ROA not before: Sat 21 Sep 2024 02:14:46 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134143 IP address blocks: 45.248.196.0/22 maxlen: 24 103.4.55.0/24 maxlen: 24 103.55.92.0/24 maxlen: 24 103.55.93.0/24 maxlen: 24 103.55.94.0/24 maxlen: 24 103.55.95.0/24 maxlen: 24 103.133.52.0/22 maxlen: 24 103.217.164.0/22 maxlen: 24 2405:e180::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1394 (0x572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Validity Not Before: Sep 21 02:14:46 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66ee2c15-fb44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2e:74:47:2c:e3:a2:6b:b7:e9:08:00:17:f5: 57:a1:d4:8a:ad:88:23:cd:19:77:e2:fa:f3:c2:3a: 84:bb:f7:26:45:59:b0:aa:d7:a6:db:02:83:9a:e4: 67:37:29:42:c6:5c:f9:1f:cd:3d:f3:94:05:b7:a4: 05:fd:20:1f:50:8e:cd:86:67:ef:d0:fc:1d:c9:18: e2:cd:9f:dd:1c:eb:28:95:ff:60:69:94:82:a1:2e: f0:45:48:c1:a2:db:e5:25:39:ed:0a:6f:68:89:fb: 94:4b:15:9a:68:6f:77:3b:3e:99:9e:cf:db:2a:a4: d7:d8:a9:25:19:3f:c6:69:a0:0c:3c:3d:77:49:bf: 6a:5e:80:56:31:4b:41:c8:ac:d3:54:8d:ee:1b:d4: ff:90:ec:fb:33:a3:db:a5:35:09:9b:91:c5:46:ad: 93:b2:aa:29:bc:44:cd:53:85:b1:5d:c6:61:ad:7b: 81:3f:e3:82:14:ad:86:e6:73:8b:ab:51:39:a8:37: 9e:dd:29:33:19:eb:15:ac:61:e5:9a:b8:82:53:67: 8b:78:05:e1:17:e0:83:91:63:61:91:e2:d7:db:59: 47:30:e1:aa:77:97:29:41:54:04:65:53:85:8c:fe: 09:56:bb:a0:1e:2c:bf:f0:2e:de:50:65:67:e5:b9: 85:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:27:2E:CE:B0:3F:ED:34:A7:A3:21:A8:39:5B:87:21:73:ED:29:B9 X509v3 Authority Key Identifier: keyid:EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.196.0/22 103.4.55.0/24 103.55.92.0/22 103.133.52.0/22 103.217.164.0/22 IPv6: 2405:e180::/32 Signature Algorithm: sha256WithRSAEncryption 8b:7c:b7:f6:40:f8:b5:7e:44:29:74:25:4e:7a:f0:1f:bd:3c: 01:0f:cd:28:da:a1:b6:d3:eb:34:56:cb:b9:e6:67:5b:5a:24: 97:e6:68:10:1b:1a:71:9c:2c:f9:c3:17:84:89:77:40:1a:37: 2a:a3:01:e8:dd:d9:4c:b6:1d:03:bb:87:ef:ba:a0:e9:e0:86: 1e:09:87:6f:98:c5:d1:46:1e:fb:2c:0d:d6:49:81:91:8b:40: 9e:ab:2b:17:f3:05:34:26:f6:df:00:68:59:55:09:e0:20:f6: f1:6b:7a:5f:b6:6e:0c:c5:45:31:3b:3b:bc:cc:cb:6a:d7:2e: 48:39:bc:76:87:c7:c4:c9:0c:45:b7:0d:45:fe:ab:db:ad:6c: 1c:1a:75:c2:d3:5a:8d:13:ee:5a:0c:38:53:65:55:2f:b8:f7: 1a:c5:32:a8:3f:31:c7:e1:ba:00:5e:61:e1:28:62:01:ba:d6: 01:c3:ea:a3:05:59:fd:ee:6d:85:3b:7a:8a:9f:ed:95:86:ea: 98:4c:6a:93:c2:47:ac:a8:89:22:6d:c3:c2:5f:06:81:59:59: 5c:aa:72:52:e9:fd:55:8d:21:c0:e5:95:bb:49:62:58:cc:9b: fe:ce:98:e4:97:29:05:af:89:fc:8e:bd:f6:6f:85:83:de:88: 5b:26:c4:21 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc1NzgxMTAvBgNVBAUTKEVDMzZBRjU5NzkwOTFDNkJGQTU4MEVBM0JBMjI1Nzc5 MzU3NTcwRDcwHhcNMjQwOTIxMDIxNDQ2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVlMmMxNS1mYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8C50Ryzjomu36QgAF/VXodSKrYgjzRl34vrzwjqEu/cmRVmwqtem2wKDmuRn NylCxlz5H80985QFt6QF/SAfUI7Nhmfv0PwdyRjizZ/dHOsolf9gaZSCoS7wRUjB otvlJTntCm9oifuUSxWaaG93Oz6Zns/bKqTX2KklGT/GaaAMPD13Sb9qXoBWMUtB yKzTVI3uG9T/kOz7M6PbpTUJm5HFRq2TsqopvETNU4WxXcZhrXuBP+OCFK2G5nOL q1E5qDee3SkzGesVrGHlmriCU2eLeAXhF+CDkWNhkeLX21lHMOGqd5cpQVQEZVOF jP4JVrugHiy/8C7eUGVn5bmFGwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFK4nLs6w P+00p6MhqDlbhyFz7Sm5MB8GA1UdIwQYMBaAFOw2r1l5CRxr+lgOo7oiV3k1dXDX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzU3OC9EM0MwMTkwQ0JC OUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhHdjZXQTZqdWlKWGVUVjFj TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEYXZXWGtKSEd2NldBNmp1aUpYZVRWMWNOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc1NzgvRDNDMDE5MENCQjlEMTFFQjg0RjczQjNBQzRGOUFFMDIvRTg1NDJERUE2 Qjg4MTFFQ0FDNzMxQjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAIt+MQDBABnBDcDBAJnN1wDBAJnhTQDBAJn2aQwDQQCAAIw BwMFACQF4YAwDQYJKoZIhvcNAQELBQADggEBAIt8t/ZA+LV+RCl0JU568B+9PAEP zSjaobbT6zRWy7nmZ1taJJfmaBAbGnGcLPnDF4SJd0AaNyqjAejd2Uy2HQO7h++6 oOnghh4Jh2+YxdFGHvssDdZJgZGLQJ6rKxfzBTQm9t8AaFlVCeAg9vFrel+2bgzF RTE7O7zMy2rXLkg5vHaHx8TJDEW3DUX+q9utbBwadcLTWo0T7loMOFNlVS+49xrF Mqg/McfhugBeYeEoYgG61gHD6qMFWf3ubYU7eoqf7ZWG6phMapPCR6yoiSJtw8Jf BoFZWVyqclLp/VWNIcDllbtJYljMm/7OmOSXKQWvifyOvfZvhYPeiFsmxCE= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:00 2024 by rpki-client on console-ams.rpki-client.org