$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/AE929D88823711E782F9A440C4F9AE02.roa File: AE929D88823711E782F9A440C4F9AE02.roa (raw, json) Hash identifier: sKS3rMJ6It6/rpeTWZ/r67AylRsKXL//6e7PLZw6fXA= Subject key identifier: 9B:C1:04:51:49:58:A6:B2:1B:2F:82:0C:50:E0:B1:1C:35:E8:B3:D5 Certificate issuer: /CN=A91DC5E3/serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Certificate serial: 1873 Authority key identifier: 30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/AE929D88823711E782F9A440C4F9AE02.roa Signing time: Fri 26 Jul 2024 17:04:16 +0000 ROA not before: Fri 26 Jul 2024 17:04:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136738 IP address blocks: 103.94.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6259 (0x1873) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5E3/serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Validity Not Before: Jul 26 17:04:16 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a3d710-8bc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:23:c6:a8:18:b2:43:97:a7:9d:87:ff:12:51: 2b:80:0c:5b:fc:e6:a1:b1:29:42:6e:54:fb:59:71: 66:48:28:f4:88:28:a8:f4:e3:34:67:7d:9f:d1:fc: 7c:c7:7a:55:be:0b:82:4d:8f:4f:f4:ed:67:a6:a5: 3c:f3:e7:7e:1e:92:83:52:43:b0:7d:8e:03:c3:2a: e6:a8:5b:91:26:0e:a7:10:73:dc:3d:3e:fc:5c:41: 2c:c9:78:c7:5b:8c:76:e7:1c:2b:cd:d7:60:90:d0: 44:3b:dd:f0:75:36:65:8b:13:96:8b:51:56:64:0f: e5:5f:ed:b3:fb:d8:3b:2a:0a:76:5e:18:d1:3a:57: 4a:0c:cd:a9:2b:b9:f3:61:21:a3:d4:e0:76:10:42: d6:4c:a2:ce:3b:14:1f:70:91:02:94:b4:17:ef:ac: 04:4d:40:0c:27:f6:14:7e:85:92:91:9a:ef:d8:c6: ff:49:07:87:ed:f0:02:a2:3e:97:f2:e5:09:d0:69: 6c:ed:04:23:8c:72:ac:a3:98:c2:a3:02:4e:d8:e1: c7:f9:ae:56:3a:c2:1a:62:ce:67:d1:da:61:f5:70: 00:62:fe:46:3d:5d:dd:56:b4:08:aa:32:8c:aa:f5: 22:bb:ac:dd:b9:6d:5d:26:4d:ba:ab:46:a4:3f:a6: 43:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:C1:04:51:49:58:A6:B2:1B:2F:82:0C:50:E0:B1:1C:35:E8:B3:D5 X509v3 Authority Key Identifier: keyid:30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/AE929D88823711E782F9A440C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.246.0/23 Signature Algorithm: sha256WithRSAEncryption 41:f6:13:d3:d6:c5:8e:44:f7:db:59:fd:c7:6d:2f:05:f2:08: 53:4f:7d:c6:f7:39:87:86:bd:0e:ab:f3:41:f0:42:3b:1e:17: ee:e8:3a:5e:c6:d7:03:b6:fb:a9:e3:c7:92:27:ea:ff:6f:46: da:8f:de:2b:2d:e4:ea:08:2f:97:e3:b1:9c:6d:01:c0:89:16: 0e:f7:5d:cc:63:20:c8:3e:ff:f3:ad:df:87:22:80:e6:5f:a3: 29:fa:31:07:4f:00:4b:a1:d4:92:da:37:a0:18:e2:3d:61:1f: f8:3a:5f:c2:f5:6d:18:4d:75:2b:d2:0e:75:85:50:d5:87:df: 2e:df:15:bf:f9:71:6b:a6:f3:4e:3e:41:37:a1:5b:8a:7e:16: 53:08:cc:cd:64:8f:98:f0:aa:29:89:8d:db:e4:93:1a:f0:dd: b9:39:0a:1f:fb:43:ba:e4:a3:8d:9e:5d:61:62:7e:c2:3d:88: d5:c3:0e:a6:c3:96:63:53:b1:ac:4e:fe:c6:34:fa:62:06:d2: 1f:36:dc:b0:55:e5:d8:4c:28:2f:a5:cf:2f:e7:c8:e1:bb:12: 7c:9b:2b:2b:91:ce:91:b2:26:8b:5d:4d:15:42:03:df:3c:6b: 04:6f:e1:7f:fd:3f:23:33:2f:90:57:f7:1a:ae:f6:a2:6b:85: e7:d7:11:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1RTMxMTAvBgNVBAUTKDMwQzA0MDc2MjlCQjRGOUZDRDgxNTQ4OUEzNzhEQzFB MzUzREFGRUMwHhcNMjQwNzI2MTcwNDE2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzZDcxMC04YmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCPGqBiyQ5ennYf/ElErgAxb/OahsSlCblT7WXFmSCj0iCio9OM0Z32f0fx8 x3pVvguCTY9P9O1npqU88+d+HpKDUkOwfY4DwyrmqFuRJg6nEHPcPT78XEEsyXjH W4x25xwrzddgkNBEO93wdTZlixOWi1FWZA/lX+2z+9g7Kgp2XhjROldKDM2pK7nz YSGj1OB2EELWTKLOOxQfcJEClLQX76wETUAMJ/YUfoWSkZrv2Mb/SQeH7fACoj6X 8uUJ0Gls7QQjjHKso5jCowJO2OHH+a5WOsIaYs5n0dph9XAAYv5GPV3dVrQIqjKM qvUiu6zduW1dJk26q0akP6ZDiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJvBBFFJ WKayGy+CDFDgsRw16LPVMB8GA1UdIwQYMBaAFDDAQHYpu0+fzYFUiaN43Bo1Pa/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVFMy9CNzA5QTVEQTgy MzUxMUU3OERCM0IxMzlDNEY5QUUwMi9NTUJBZGltN1Q1X05nVlNKbzNqY0dqVTly LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01NQkFkaW03VDVfTmdWU0pvM2pjR2pVOXItdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM1RTMvQjcwOUE1REE4MjM1MTFFNzhEQjNCMTM5QzRGOUFFMDIvQUU5MjlEODg4 MjM3MTFFNzgyRjlBNDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnXvYwDQYJKoZIhvcNAQELBQADggEBAEH2E9PWxY5E99tZ /cdtLwXyCFNPfcb3OYeGvQ6r80HwQjseF+7oOl7G1wO2+6njx5In6v9vRtqP3ist 5OoIL5fjsZxtAcCJFg73XcxjIMg+//Ot34cigOZfoyn6MQdPAEuh1JLaN6AY4j1h H/g6X8L1bRhNdSvSDnWFUNWH3y7fFb/5cWum804+QTehW4p+FlMIzM1kj5jwqimJ jdvkkxrw3bk5Ch/7Q7rko42eXWFifsI9iNXDDqbDlmNTsaxO/sY0+mIG0h823LBV 5dhMKC+lzy/nyOG7EnybKyuRzpGyJotdTRVCA988awRv4X/9PyMzL5BX9xqu9qJr hefXEbk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:19 2024 by rpki-client on console-ams.rpki-client.org