$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa File: E54E5FF6632311ED8D313442C4F9AE02.roa (raw, json) Hash identifier: +bflLncVpUKisFQ3ZZUQI/J0k3+BOK9UN6bLx8p1G6o= Subject key identifier: 82:0A:42:95:4B:13:A0:70:E5:2F:F3:DF:F4:7E:C2:7C:91:02:B5:ED Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 258D Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa Signing time: Mon 02 Sep 2024 16:12:39 +0000 ROA not before: Mon 02 Sep 2024 16:12:39 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9230 IP address blocks: 103.129.244.0/22 maxlen: 24 122.144.8.0/21 maxlen: 24 182.163.96.0/19 maxlen: 24 202.84.32.0/20 maxlen: 24 2402:c000::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9613 (0x258d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Sep 2 16:12:39 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d5e3f7-b417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:cf:01:31:29:5c:5a:72:71:6a:9e:3f:cb: e4:a5:99:77:03:de:47:42:66:52:37:08:ed:db:95: d2:ee:1f:fb:7e:d7:5c:a7:c8:77:b3:9c:93:c2:3c: fd:b5:ba:0c:e7:82:cf:c2:76:d4:46:cf:5e:54:d0: ab:d2:c5:2d:a9:7d:00:61:e7:2e:02:d2:01:2a:83: d1:07:51:88:ee:d1:4b:7e:49:a9:c3:a3:3c:16:d1: a4:1e:7a:d3:41:a8:6c:4f:e1:fc:f1:b7:7d:17:3f: 6e:37:97:97:82:33:f7:12:10:90:9d:82:c3:44:27: a1:35:ed:d6:60:7b:20:fe:46:2c:c5:d4:cf:08:b6: d4:cf:97:7d:37:87:1c:12:86:4f:b0:83:9a:38:a9: 6c:28:b9:a9:d7:15:61:c1:11:58:39:d9:a9:68:9d: a3:5e:55:4b:b7:3a:e2:f0:2c:84:b6:9b:ff:b2:63: e3:51:3d:4b:93:cc:bc:c8:83:4f:2a:25:7e:5f:90: f6:56:ef:9d:25:5a:b0:50:9f:7c:3f:4a:9f:56:d9: a5:24:75:4c:47:46:73:6e:53:60:eb:ea:f3:c6:95: a0:b0:d4:40:c5:a9:48:40:3e:4e:6b:14:bb:7d:ba: 94:44:5d:23:6d:52:92:0d:cb:a8:96:ad:ef:41:4e: 25:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:0A:42:95:4B:13:A0:70:E5:2F:F3:DF:F4:7E:C2:7C:91:02:B5:ED X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.244.0/22 122.144.8.0/21 182.163.96.0/19 202.84.32.0/20 IPv6: 2402:c000::/32 Signature Algorithm: sha256WithRSAEncryption 98:91:52:e8:bf:36:04:96:93:23:88:35:4f:cd:69:63:a1:cb: 72:5e:61:96:3b:73:c7:3b:fc:6c:20:ca:7f:43:0a:f9:bb:80: 38:d4:bd:40:7d:2d:42:d2:fd:2e:35:96:f5:e4:85:60:62:ea: 2a:e3:b1:f4:ca:ce:29:87:5f:bf:08:f2:fd:98:64:c0:be:3d: f0:3d:17:a5:c1:36:87:86:41:c8:ba:12:b4:05:65:50:7d:f0: 0e:e4:4f:15:ce:d7:79:95:f9:ef:89:e0:57:6a:12:e1:07:f2: 52:17:a2:b0:96:fd:75:93:15:35:cc:9f:05:31:24:b1:6d:a8: 54:74:4f:94:c3:10:1d:d5:32:52:93:21:4b:16:03:b2:09:79: 6d:03:79:ef:22:47:5d:21:cc:f4:6e:57:2e:4f:b3:b4:88:29: b0:8a:80:c8:06:f1:11:b8:68:74:8a:38:51:9b:70:de:66:f8: e3:17:17:b7:3a:57:88:4d:da:ae:1e:cb:6e:54:bb:51:28:09: 70:95:08:c9:7f:e3:af:a2:c9:1e:aa:a9:65:55:65:39:8d:ef: dc:52:b7:22:53:40:a1:9e:4d:af:77:e9:ac:85:2e:78:80:1d: fb:97:e7:4b:6e:c3:0d:f9:97:43:83:77:dd:35:c2:62:8c:dd: 35:c9:1f:0b -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICJY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjQwOTAyMTYxMjM5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1ZTNmNy1iNDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxK/PATEpXFpycWqeP8vkpZl3A95HQmZSNwjt25XS7h/7ftdcp8h3s5yTwjz9 tboM54LPwnbURs9eVNCr0sUtqX0AYecuAtIBKoPRB1GI7tFLfkmpw6M8FtGkHnrT QahsT+H88bd9Fz9uN5eXgjP3EhCQnYLDRCehNe3WYHsg/kYsxdTPCLbUz5d9N4cc EoZPsIOaOKlsKLmp1xVhwRFYOdmpaJ2jXlVLtzri8CyEtpv/smPjUT1Lk8y8yINP KiV+X5D2Vu+dJVqwUJ98P0qfVtmlJHVMR0ZzblNg6+rzxpWgsNRAxalIQD5OaxS7 fbqURF0jbVKSDcuolq3vQU4lTwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFIIKQpVL E6Bw5S/z3/R+wnyRArXtMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMDIvNEVBNDhFODRGQkE5MTFFNEE4QjM0QzIzQzRGOUFFMDIvRTU0RTVGRjY2 MzIzMTFFRDhEMzEzNDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJngfQDBAN6kAgDBAW2o2ADBATKVCAwDQQCAAIwBwMFACQC wAAwDQYJKoZIhvcNAQELBQADggEBAJiRUui/NgSWkyOINU/NaWOhy3JeYZY7c8c7 /Gwgyn9DCvm7gDjUvUB9LULS/S41lvXkhWBi6irjsfTKzimHX78I8v2YZMC+PfA9 F6XBNoeGQci6ErQFZVB98A7kTxXO13mV+e+J4FdqEuEH8lIXorCW/XWTFTXMnwUx JLFtqFR0T5TDEB3VMlKTIUsWA7IJeW0Dee8iR10hzPRuVy5Ps7SIKbCKgMgG8RG4 aHSKOFGbcN5m+OMXF7c6V4hN2q4ey25Uu1EoCXCVCMl/46+iyR6qqWVVZTmN79xS tyJTQKGeTa936ayFLniAHfuX50tuww35l0ODd901wmKM3TXJHws= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org