$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/717FA770604811EDB338B84DC4F9AE02.roa File: 717FA770604811EDB338B84DC4F9AE02.roa (raw, json) Hash identifier: 2tZ4h2GPxtQNcv8jA5c9a3Jw7XsP+8OAzijf8yoVYIY= Subject key identifier: CD:F3:00:80:A2:83:B3:95:BB:07:D8:66:3B:16:D5:17:16:B4:60:4C Certificate issuer: /CN=A91DEBE3/serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Certificate serial: 0C41 Authority key identifier: DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/717FA770604811EDB338B84DC4F9AE02.roa Signing time: Wed 30 Oct 2024 06:12:35 +0000 ROA not before: Wed 30 Oct 2024 06:12:35 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141452 IP address blocks: 103.214.80.0/24 maxlen: 24 103.214.81.0/24 maxlen: 24 103.214.83.0/24 maxlen: 24 144.48.84.0/24 maxlen: 24 144.48.85.0/24 maxlen: 24 144.48.86.0/24 maxlen: 24 144.48.87.0/24 maxlen: 24 2404:d580::/32 maxlen: 32 2404:d580::/48 maxlen: 48 2404:d580:1::/48 maxlen: 48 2404:d580:2::/48 maxlen: 48 2404:d580:3::/48 maxlen: 48 2404:d580:4::/48 maxlen: 48 2404:d580:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3137 (0xc41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEBE3/serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Validity Not Before: Oct 30 06:12:35 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6721ce53-5e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e5:66:79:a1:85:16:d4:1b:88:14:d1:e0:19: 9b:4f:78:12:93:e0:61:b6:a7:ad:d6:39:d6:7b:5e: 5a:80:38:77:a2:7b:3c:86:a5:63:9f:bc:cb:45:62: e1:9d:88:1d:33:18:12:0b:95:f6:97:ec:ac:ad:c3: d6:71:6b:e0:96:2f:e5:56:ab:b4:23:88:68:e0:f6: 04:f0:0c:3e:62:14:c4:37:39:51:8e:bb:95:3b:49: bc:26:6a:d2:ab:80:04:28:3a:25:51:3b:67:ea:6f: 74:0e:bd:46:1f:b1:ef:a2:18:06:9f:f1:6c:af:3b: de:82:08:75:91:c6:4a:43:03:84:33:d6:17:e4:fe: 73:25:48:2c:50:bf:95:fc:a5:50:5c:4e:be:0b:73: e5:1d:59:9b:75:ea:c9:88:e9:8b:c5:97:c7:4a:aa: 4e:b1:19:38:76:43:a5:97:08:79:4c:d9:d8:e9:02: 6d:57:03:63:fe:54:86:fa:f0:07:f8:8c:8b:34:84: 9b:9c:49:ea:04:19:c2:43:8e:a3:b1:73:f6:7b:3f: 70:2a:67:df:78:be:8c:66:f4:64:5a:b5:a7:01:98: 32:34:3c:ec:39:27:d8:80:a5:fd:77:71:c0:74:b6: 47:40:07:e8:54:63:c3:d4:d3:f2:7d:71:06:c4:71: a1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F3:00:80:A2:83:B3:95:BB:07:D8:66:3B:16:D5:17:16:B4:60:4C X509v3 Authority Key Identifier: keyid:DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/717FA770604811EDB338B84DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.80.0/23 103.214.83.0/24 144.48.84.0/22 IPv6: 2404:d580::/32 Signature Algorithm: sha256WithRSAEncryption af:bc:08:a5:0b:05:de:13:8d:2f:5c:d6:fd:52:60:6c:72:5e: 6f:cd:f3:a1:22:cb:ed:65:10:93:cf:8c:a3:ed:7d:50:14:b9: 64:30:fb:12:af:60:8f:9e:f3:f5:bb:65:a1:fe:41:1d:5f:95: 26:a8:c0:cb:69:8d:06:2c:6e:ba:d2:8e:52:78:69:07:c4:89: e6:33:1f:28:aa:ee:3d:d6:5f:19:bd:85:2b:f0:26:8e:53:ba: 33:c6:04:f2:a1:82:3f:22:b1:04:90:3c:5e:55:06:1f:de:49: eb:01:f6:74:70:fe:b4:98:b0:f3:4b:ed:c8:25:09:e8:22:be: d2:f9:99:17:bd:02:08:3e:b5:94:95:ca:e2:8f:85:ef:d1:cc: 26:1d:a1:38:ee:dd:99:4a:70:d5:a4:82:24:28:41:ff:20:9c: f1:8c:7a:c8:6a:37:4a:d6:30:63:8f:d7:6f:2d:73:37:12:f9: 00:be:a0:91:90:16:dd:fe:5a:7b:e7:27:cf:66:d6:8b:5c:90: 4a:cb:d0:bf:26:96:49:ee:cb:0c:8a:f7:b6:8a:b1:9a:12:09: 1f:9b:3e:d5:70:90:fc:a6:bb:a7:fd:81:25:c9:fe:fd:67:df: 33:11:08:3f:b2:0c:4c:86:79:62:70:43:d1:42:c6:22:1a:34: e4:79:74:22 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICDEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCRTMxMTAvBgNVBAUTKERFNTA1NDJCRUExMDgyMDFBNzcyQzAwQkM5RjI1MUFE MTdGQTk2Q0QwHhcNMjQxMDMwMDYxMjM1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIxY2U1My01ZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOVmeaGFFtQbiBTR4BmbT3gSk+Bhtqet1jnWe15agDh3ons8hqVjn7zLRWLh nYgdMxgSC5X2l+ysrcPWcWvgli/lVqu0I4ho4PYE8Aw+YhTENzlRjruVO0m8JmrS q4AEKDolUTtn6m90Dr1GH7HvohgGn/Fsrzveggh1kcZKQwOEM9YX5P5zJUgsUL+V /KVQXE6+C3PlHVmbderJiOmLxZfHSqpOsRk4dkOllwh5TNnY6QJtVwNj/lSG+vAH +IyLNISbnEnqBBnCQ46jsXP2ez9wKmffeL6MZvRkWrWnAZgyNDzsOSfYgKX9d3HA dLZHQAfoVGPD1NPyfXEGxHGhSQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFM3zAICi g7OVuwfYZjsW1RcWtGBMMB8GA1UdIwQYMBaAFN5QVCvqEIIBp3LAC8nyUa0X+pbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUJFMy84MEFFMTBDNjA0 NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdnR25jc0FMeWZKUnJSZjZs czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsQlVLLW9RZ2dHbmNzQUx5ZkpSclJmNmxzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCRTMvODBBRTEwQzYwNDUwMTFFQUJBODJDNDE1QzRGOUFFMDIvNzE3RkE3NzA2 MDQ4MTFFREIzMzhCODREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFn1lADBABn1lMDBAKQMFQwDQQCAAIwBwMFACQE1YAwDQYJ KoZIhvcNAQELBQADggEBAK+8CKULBd4TjS9c1v1SYGxyXm/N86Eiy+1lEJPPjKPt fVAUuWQw+xKvYI+e8/W7ZaH+QR1flSaowMtpjQYsbrrSjlJ4aQfEieYzHyiq7j3W Xxm9hSvwJo5TujPGBPKhgj8isQSQPF5VBh/eSesB9nRw/rSYsPNL7cglCegivtL5 mRe9Agg+tZSVyuKPhe/RzCYdoTju3ZlKcNWkgiQoQf8gnPGMeshqN0rWMGOP128t czcS+QC+oJGQFt3+WnvnJ89m1otckErL0L8mlknuywyK97aKsZoSCR+bPtVwkPym u6f9gSXJ/v1n3zMRCD+yDEyGeWJwQ9FCxiIaNOR5dCI= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org