$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/0E1EAB66961011ECA540626AC4F9AE02.roa File: 0E1EAB66961011ECA540626AC4F9AE02.roa (raw, json) Hash identifier: TzVnkqN0tq39UUa2lfdZqlKLVdLg+S4NlfoqQ2G24uU= Subject key identifier: D0:60:FF:C1:85:A6:03:2D:92:26:6D:2B:5F:8A:F1:E3:48:70:96:0D Certificate issuer: /CN=A91E2A61/serialNumber=2B517C6B79E3CEB0389D41ABC5ECE2107FEC53FB Certificate serial: 0342 Authority key identifier: 2B:51:7C:6B:79:E3:CE:B0:38:9D:41:AB:C5:EC:E2:10:7F:EC:53:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/0E1EAB66961011ECA540626AC4F9AE02.roa Signing time: Thu 17 Oct 2024 01:14:29 +0000 ROA not before: Thu 17 Oct 2024 01:14:29 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133199 IP address blocks: 43.255.28.0/24 maxlen: 24 43.255.29.0/24 maxlen: 24 43.255.30.0/24 maxlen: 24 43.255.31.0/24 maxlen: 24 103.74.192.0/24 maxlen: 24 103.74.193.0/24 maxlen: 24 103.74.194.0/24 maxlen: 24 103.74.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.crl rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 834 (0x342) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2A61/serialNumber=2B517C6B79E3CEB0389D41ABC5ECE2107FEC53FB Validity Not Before: Oct 17 01:14:29 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671064f5-5c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d0:98:ef:18:73:f8:77:5d:89:f1:fa:21:c4: 29:24:47:a6:3b:50:9c:27:ae:76:04:fe:79:5e:14: b2:7f:84:60:f3:5d:a5:c1:aa:7c:f5:23:53:e7:e9: f3:46:ed:50:6d:8c:c4:55:c7:bc:e7:59:7a:d1:0e: 4f:e1:fb:c1:6b:17:24:5d:92:20:cd:ed:b5:b6:0b: f4:07:c2:02:ee:57:a1:9f:68:c5:5d:0c:0f:01:ab: 62:6e:e9:72:f6:05:2f:e5:5f:5e:50:31:d0:a6:dd: a1:59:fb:52:55:bd:5f:32:a5:05:89:6f:5e:8d:82: a3:3a:64:c1:95:aa:5c:d2:3d:61:1b:b5:0b:3b:04: 00:fb:77:4b:0b:e6:fa:d1:d8:5b:3c:d0:36:77:58: 63:fc:af:7a:b7:24:11:f3:d7:39:fb:1b:01:71:1a: 8f:46:ac:a9:70:ab:96:17:b4:db:40:c2:9c:95:0d: e5:2a:33:d4:c8:a9:51:03:3b:30:57:19:b4:99:0f: 16:d2:89:06:cf:58:4a:13:54:b6:63:01:5f:05:2d: 3b:94:57:06:ca:24:10:72:65:6d:7d:f3:7b:02:67: 58:87:ea:04:a2:a5:ea:e4:f9:3f:89:35:6d:d4:47: ab:06:69:df:d8:7b:fb:dc:5b:79:ca:10:e6:ec:98: 7f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:60:FF:C1:85:A6:03:2D:92:26:6D:2B:5F:8A:F1:E3:48:70:96:0D X509v3 Authority Key Identifier: keyid:2B:51:7C:6B:79:E3:CE:B0:38:9D:41:AB:C5:EC:E2:10:7F:EC:53:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/0E1EAB66961011ECA540626AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.28.0/22 103.74.192.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:f6:6a:44:b7:a6:bd:73:d6:98:1e:b5:48:bd:05:82:2f:06: 45:4a:74:6c:c3:49:0d:b2:fb:05:e0:b4:58:4f:fe:77:74:7c: 01:e0:d0:10:1e:c3:93:35:8d:91:bb:4e:af:21:2c:0c:de:9d: 79:05:c3:34:93:51:9d:c4:72:11:e0:4d:da:55:74:d8:56:47: a8:ca:71:f2:32:1b:6e:cc:06:64:ec:b7:01:4c:36:c7:91:94: 95:bd:48:14:bf:84:a7:c3:8d:cd:97:03:71:be:9e:39:be:58: 31:b7:4f:02:ee:46:8e:1b:aa:78:8c:23:f6:63:db:25:dd:1a: 8f:4e:54:f1:5d:d4:70:d2:eb:a4:e9:ff:84:b2:dc:16:bd:ee: 2a:04:d9:43:ce:15:19:14:bd:ff:a1:5e:54:24:a4:83:15:c7: 41:4b:81:d4:3d:14:a9:dc:dc:3b:bd:2d:2c:2d:75:c3:d9:cf: 22:a4:f3:e0:a3:30:15:78:e7:ba:6f:e0:1e:e3:32:d1:6e:03: 74:5a:f1:e7:61:78:0d:63:2c:76:a6:60:ad:6e:9e:76:01:8e: 96:40:a0:a0:fb:e1:a1:41:50:33:96:22:ec:b8:4e:47:a4:d3: 75:ba:7f:49:c1:2a:f7:fb:d3:b0:3e:cd:03:42:27:f0:e2:72: fe:26:0b:95 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBNjExMTAvBgNVBAUTKDJCNTE3QzZCNzlFM0NFQjAzODlENDFBQkM1RUNFMjEw N0ZFQzUzRkIwHhcNMjQxMDE3MDExNDI5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwNjRmNS01YzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNCY7xhz+HddifH6IcQpJEemO1CcJ652BP55XhSyf4Rg812lwap89SNT5+nz Ru1QbYzEVce851l60Q5P4fvBaxckXZIgze21tgv0B8IC7lehn2jFXQwPAatibuly 9gUv5V9eUDHQpt2hWftSVb1fMqUFiW9ejYKjOmTBlapc0j1hG7ULOwQA+3dLC+b6 0dhbPNA2d1hj/K96tyQR89c5+xsBcRqPRqypcKuWF7TbQMKclQ3lKjPUyKlRAzsw Vxm0mQ8W0okGz1hKE1S2YwFfBS07lFcGyiQQcmVtffN7AmdYh+oEoqXq5Pk/iTVt 1EerBmnf2Hv73Ft5yhDm7Jh/ewIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNBg/8GF pgMtkiZtK1+K8eNIcJYNMB8GA1UdIwQYMBaAFCtRfGt5486wOJ1Bq8Xs4hB/7FP7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkE2MS9FREMwOEZFNjk2 MEIxMUVDQkJFNEJFNjRDNEY5QUUwMi9LMUY4YTNuanpyQTRuVUdyeGV6aUVIX3NV X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxRjhhM25qenJBNG5VR3J4ZXppRUhfc1Vfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJBNjEvRURDMDhGRTY5NjBCMTFFQ0JCRTRCRTY0QzRGOUFFMDIvMEUxRUFCNjY5 NjEwMTFFQ0E1NDA2MjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/xwDBAJnSsAwDQYJKoZIhvcNAQELBQADggEBABv2akS3 pr1z1pgetUi9BYIvBkVKdGzDSQ2y+wXgtFhP/nd0fAHg0BAew5M1jZG7Tq8hLAze nXkFwzSTUZ3EchHgTdpVdNhWR6jKcfIyG27MBmTstwFMNseRlJW9SBS/hKfDjc2X A3G+njm+WDG3TwLuRo4bqniMI/Zj2yXdGo9OVPFd1HDS66Tp/4Sy3Ba97ioE2UPO FRkUvf+hXlQkpIMVx0FLgdQ9FKnc3Du9LSwtdcPZzyKk8+CjMBV457pv4B7jMtFu A3Ra8edheA1jLHamYK1unnYBjpZAoKD74aFBUDOWIuy4Tkek03W6f0nBKvf707A+ zQNCJ/Dicv4mC5U= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:06 2024 by rpki-client on console-ams.rpki-client.org