$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa File: E54E5FF6632311ED8D313442C4F9AE02.roa (raw, json) Hash identifier: rpD6lVHx031UbGaINM8AknhCr7BLzz54zr0nC85gcOw= Subject key identifier: 8C:E2:A1:29:34:67:4D:91:8E:94:A5:1D:2F:71:5D:77:A9:25:79:C1 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 24D0 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa Signing time: Wed 06 Sep 2023 16:02:18 +0000 ROA not before: Wed 06 Sep 2023 16:02:18 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 9230 IP address blocks: 103.129.244.0/22 maxlen: 24 122.144.8.0/21 maxlen: 24 182.163.96.0/19 maxlen: 24 202.84.32.0/20 maxlen: 24 2402:c000::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9424 (0x24d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Sep 6 16:02:18 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f8a289-03c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e5:b5:3d:14:12:41:3e:8c:d5:27:0d:e8:25: d8:6e:cd:4c:ed:1c:63:f8:75:43:93:72:d8:95:ee: 24:1a:a5:ae:41:1f:88:f5:32:2a:23:15:af:a0:f6: 6d:4b:d2:89:1c:2b:1b:9a:19:53:ce:f4:a3:27:10: 08:e7:50:74:da:85:da:a0:e6:4e:c7:3c:86:5a:5a: e8:b6:85:83:32:f4:5b:f8:fa:d0:b1:49:a1:70:90: 03:f7:9c:59:bd:53:58:dd:c5:c3:6f:19:3d:4a:77: 6a:8f:29:74:4f:ce:1a:60:fa:ae:88:25:96:f4:57: 28:68:e8:4c:b7:c5:99:0b:45:cb:55:67:d7:f1:43: db:bd:9d:7a:fe:82:54:cf:6f:d5:6e:78:09:27:44: 13:44:9a:6f:f7:6e:2b:61:5a:eb:bc:ed:27:6b:a2: d3:d1:5a:4b:a2:ba:92:b9:05:0e:ad:9b:87:52:cb: bd:9c:6c:24:fb:2c:7d:31:a2:b1:0d:3d:d9:07:01: dd:02:10:07:8a:a0:2a:6a:1d:81:03:bf:8d:49:fb: 9b:51:92:f6:ee:dc:82:4e:f9:a5:fc:fb:25:0d:e5: 7d:63:18:41:23:fa:a7:c1:c9:43:3b:08:5e:c3:8f: cb:a8:e6:05:df:53:34:31:de:11:91:e4:ca:9f:35: 1d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E2:A1:29:34:67:4D:91:8E:94:A5:1D:2F:71:5D:77:A9:25:79:C1 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.244.0/22 122.144.8.0/21 182.163.96.0/19 202.84.32.0/20 IPv6: 2402:c000::/32 Signature Algorithm: sha256WithRSAEncryption 21:7c:4a:97:e3:cb:cd:3b:63:f2:1f:ac:f3:be:a2:86:12:35: 27:00:9a:78:4a:26:ff:40:da:40:03:3d:6b:e3:bc:22:62:e1: 9c:ae:0f:c3:a4:50:2d:3a:aa:55:19:df:eb:f7:8b:7e:ca:0f: e3:a4:d6:22:cf:f1:85:d6:34:fa:85:70:1f:5c:50:b0:21:f4: 3a:b8:b9:45:12:cd:b2:75:6c:2c:48:d0:2e:91:5c:b4:d2:f3: de:00:87:d0:bc:ef:24:64:18:a9:c4:7b:9b:7c:33:71:05:2f: 95:9e:a0:b8:d0:ff:8f:e2:50:7e:75:08:94:f3:0b:db:ff:55: 96:86:c4:d6:6d:50:45:17:41:9d:17:e0:bf:b9:a0:b4:7d:38: 91:82:d7:ca:ad:f9:f5:f9:30:df:fc:ab:71:0b:b9:a2:a9:c7: d7:20:2b:e5:e7:e1:56:0c:2f:8f:e4:63:de:b6:6a:22:59:e0: 9b:ce:9f:01:7f:ca:95:90:26:b6:a3:5d:93:e8:11:7d:ff:cf: 20:b5:a1:65:6b:67:58:8a:df:3d:4f:3c:be:c5:ba:0a:5e:bf: 90:f5:b5:e2:e0:df:72:4a:46:51:80:be:fc:a7:c8:8e:1e:f0: eb:51:4f:64:28:c9:c4:ad:79:3f:4b:08:71:bb:05:10:19:7d: dc:28:79:fb -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICJNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjMwOTA2MTYwMjE4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY4YTI4OS0wM2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+W1PRQSQT6M1ScN6CXYbs1M7Rxj+HVDk3LYle4kGqWuQR+I9TIqIxWvoPZt S9KJHCsbmhlTzvSjJxAI51B02oXaoOZOxzyGWlrotoWDMvRb+PrQsUmhcJAD95xZ vVNY3cXDbxk9Sndqjyl0T84aYPquiCWW9FcoaOhMt8WZC0XLVWfX8UPbvZ16/oJU z2/VbngJJ0QTRJpv924rYVrrvO0na6LT0VpLorqSuQUOrZuHUsu9nGwk+yx9MaKx DT3ZBwHdAhAHiqAqah2BA7+NSfubUZL27tyCTvml/PslDeV9YxhBI/qnwclDOwhe w4/LqOYF31M0Md4RkeTKnzUdZwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFIzioSk0 Z02RjpSlHS9xXXepJXnBMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMDIvNEVBNDhFODRGQkE5MTFFNEE4QjM0QzIzQzRGOUFFMDIvRTU0RTVGRjY2 MzIzMTFFRDhEMzEzNDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJngfQDBAN6kAgDBAW2o2ADBATKVCAwDQQCAAIwBwMFACQC wAAwDQYJKoZIhvcNAQELBQADggEBACF8Spfjy807Y/IfrPO+ooYSNScAmnhKJv9A 2kADPWvjvCJi4ZyuD8OkUC06qlUZ3+v3i37KD+Ok1iLP8YXWNPqFcB9cULAh9Dq4 uUUSzbJ1bCxI0C6RXLTS894Ah9C87yRkGKnEe5t8M3EFL5WeoLjQ/4/iUH51CJTz C9v/VZaGxNZtUEUXQZ0X4L+5oLR9OJGC18qt+fX5MN/8q3ELuaKpx9cgK+Xn4VYM L4/kY962aiJZ4JvOnwF/ypWQJrajXZPoEX3/zyC1oWVrZ1iK3z1PPL7Fugpev5D1 teLg33JKRlGAvvynyI4e8OtRT2QoycSteT9LCHG7BRAZfdwoefs= -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org