$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/9C7F0AE09C1611EF9AFC831DC4F9AE02.roa File: 9C7F0AE09C1611EF9AFC831DC4F9AE02.roa (raw, json) Hash identifier: eMEGTvOBBsQw6OmOPPB/QHarjZR13JUjFoxPP6bXqB0= Subject key identifier: C1:DE:90:5A:ED:DE:2F:01:A6:92:B6:13:C4:0E:E8:D0:47:38:92:F1 Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Certificate serial: 01C7 Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/9C7F0AE09C1611EF9AFC831DC4F9AE02.roa Signing time: Wed 06 Nov 2024 08:10:40 +0000 ROA not before: Wed 06 Nov 2024 08:10:40 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55154 IP address blocks: 110.44.108.0/24 maxlen: 24 110.44.109.0/24 maxlen: 24 110.44.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Validity Not Before: Nov 6 08:10:40 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=672b2480-f45c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e7:4e:56:84:9e:ad:a8:99:36:8b:90:16:6a: 47:fa:cf:53:26:a8:e4:5a:38:0c:d1:79:2d:f3:ab: ed:88:d3:a7:cd:35:d2:2b:39:47:bf:ad:ab:bf:b6: ec:b3:ef:82:37:4f:e4:ad:4a:cf:e3:46:6e:25:78: 63:bb:a2:36:be:c1:3d:c8:a6:49:fa:d3:03:66:fb: ab:9d:70:38:ba:4f:fc:f6:c4:92:2c:dc:1c:96:79: 0a:d3:00:87:91:e6:ad:00:fd:61:83:4d:7d:58:af: 64:08:e2:e4:91:8e:7d:98:42:e3:37:37:fc:f2:0f: d3:07:5e:45:2a:56:09:ff:16:35:77:19:4f:50:5d: eb:de:a4:27:05:82:ad:44:7e:66:1a:dc:1b:29:d2: 9a:ba:9b:d6:78:9c:da:4e:10:69:b4:21:d0:54:82: 78:21:4e:d8:16:02:6a:87:68:82:de:52:b9:d6:ca: 47:40:29:b9:49:18:c6:df:16:97:05:24:59:9d:74: c5:c8:b5:b5:99:ea:8b:2c:e7:19:28:be:7a:a1:a0: f1:62:01:8b:d1:fe:11:56:5d:5e:0b:84:ff:f7:12: c1:6c:62:9d:80:0c:57:51:95:64:6f:fc:48:5a:12: 49:fc:42:44:38:b1:fe:14:72:ee:62:4a:d1:7a:a0: f3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DE:90:5A:ED:DE:2F:01:A6:92:B6:13:C4:0E:E8:D0:47:38:92:F1 X509v3 Authority Key Identifier: keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/9C7F0AE09C1611EF9AFC831DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.44.108.0-110.44.110.255 Signature Algorithm: sha256WithRSAEncryption 3e:cf:ce:3c:6f:50:7e:c2:53:6a:01:82:25:69:47:a3:78:16: 57:8b:8c:2c:96:a0:41:ee:5c:90:b2:ab:58:fb:7e:ce:7a:1b: df:d0:d0:9c:3b:56:dc:d3:8b:d7:26:fe:1d:1f:22:23:ba:05: 93:28:e0:d3:30:f0:5c:fd:45:a8:89:5b:61:32:f1:b7:29:3b: 65:97:66:cf:36:35:f1:db:0c:6d:bc:e3:20:6e:79:37:6d:d8: c0:0b:4b:e5:f5:40:1a:11:f8:65:e0:76:71:a9:d0:03:b8:87: 07:7f:00:46:95:cc:36:58:b5:0d:78:c1:44:0a:a3:1d:17:d1: b1:c4:59:3f:1d:94:d6:74:cd:c4:46:30:cf:5f:f5:f9:20:9d: 4b:7d:bf:f6:7d:19:cd:9e:19:14:31:5d:60:a1:af:1f:cb:79: 13:1f:c5:f8:fd:92:bd:08:61:76:95:cd:91:68:6a:4f:ed:b8: 90:94:e5:78:5b:bc:70:7c:0e:5e:28:13:a0:25:de:67:61:a6: d1:72:1f:9a:46:01:34:c4:fe:34:3d:b3:9f:1d:ea:e3:c0:df: 99:5e:86:9e:70:94:e2:64:6a:e3:21:67:af:91:b5:9d:b0:94: 62:b4:dc:d6:e8:c2:a0:a2:0a:84:5f:36:45:3b:1f:6a:ff:60: f3:6a:27:a8 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxNUQxMTAvBgNVBAUTKDI1N0E5RTY5MTRENThBNzQ1QjBFRTZBQkU1NDhDREJF MDIwNDg4RDQwHhcNMjQxMTA2MDgxMDQwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiMjQ4MC1mNDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtudOVoSeraiZNouQFmpH+s9TJqjkWjgM0Xkt86vtiNOnzTXSKzlHv62rv7bs s++CN0/krUrP40ZuJXhju6I2vsE9yKZJ+tMDZvurnXA4uk/89sSSLNwclnkK0wCH keatAP1hg019WK9kCOLkkY59mELjNzf88g/TB15FKlYJ/xY1dxlPUF3r3qQnBYKt RH5mGtwbKdKaupvWeJzaThBptCHQVIJ4IU7YFgJqh2iC3lK51spHQCm5SRjG3xaX BSRZnXTFyLW1meqLLOcZKL56oaDxYgGL0f4RVl1eC4T/9xLBbGKdgAxXUZVkb/xI WhJJ/EJEOLH+FHLuYkrReqDzOwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFMHekFrt 3i8BppK2E8QO6NBHOJLxMB8GA1UdIwQYMBaAFCV6nmkU1Yp0Ww7mq+VIzb4CBIjU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDE1RC82QzQ3NDkyMDcz MTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmluUmJEdWFyNVVqTnZnSUVp TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pYcWVhUlRWaW5SYkR1YXI1VWpOdmdJRWlOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAxNUQvNkM0NzQ5MjA3MzEyMTFFREI3MEJDRTMzQzRGOUFFMDIvOUM3RjBBRTA5 QzE2MTFFRjlBRkM4MzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAm4sbAMEAG4sbjANBgkqhkiG9w0BAQsFAAOCAQEAPs/O PG9QfsJTagGCJWlHo3gWV4uMLJagQe5ckLKrWPt+znob39DQnDtW3NOL1yb+HR8i I7oFkyjg0zDwXP1FqIlbYTLxtyk7ZZdmzzY18dsMbbzjIG55N23YwAtL5fVAGhH4 ZeB2canQA7iHB38ARpXMNli1DXjBRAqjHRfRscRZPx2U1nTNxEYwz1/1+SCdS32/ 9n0ZzZ4ZFDFdYKGvH8t5Ex/F+P2SvQhhdpXNkWhqT+24kJTleFu8cHwOXigToCXe Z2Gm0XIfmkYBNMT+ND2znx3q48DfmV6GnnCU4mRq4yFnr5G1nbCUYrTc1ujCoKIK hF82RTsfav9g82onqA== -----END CERTIFICATE-----Generated at Fri Nov 22 09:41:43 2024 by rpki-client on console-ams.rpki-client.org