$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/E7C7DBF8A0E411EF98A7340EC4F9AE02.roa File: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (raw, json) Hash identifier: pj9zFotWrwFIMY7z2MN0YoTNhTDJRj2Cmy9L8TSwoAw= Subject key identifier: 3A:08:CF:14:90:BB:B4:57:AE:2C:7F:02:93:EA:D1:E1:82:AC:A7:DA Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: 2E Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/E7C7DBF8A0E411EF98A7340EC4F9AE02.roa Signing time: Tue 12 Nov 2024 10:57:27 +0000 ROA not before: Tue 12 Nov 2024 10:57:27 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38200 IP address blocks: 103.125.252.0/24 maxlen: 24 103.125.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: Nov 12 10:57:27 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=67333497-e2a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:fc:70:90:e6:0a:35:10:9b:cc:f7:e3:9b:31: fa:5f:c8:b8:4f:6e:b0:6b:86:71:c7:6d:c6:14:e0: 78:35:1a:3d:8d:f9:66:13:4d:15:23:34:8e:67:ff: 5c:55:c9:dd:ae:4a:42:77:7e:88:f9:6c:3f:ec:4a: 54:24:c0:76:9f:dc:28:8b:fa:64:69:c9:1a:e6:16: f5:a3:05:24:0f:75:8a:71:52:95:1c:75:e0:f2:bf: 84:a1:18:3f:d8:cc:ab:ea:2d:a0:0a:07:3a:30:aa: ac:ee:a6:77:80:4f:c4:d8:25:26:2b:a9:83:48:01: 7f:1c:ec:7e:c8:cd:72:40:ca:f9:23:a5:65:b9:f7: 71:5f:44:6d:de:10:2f:1c:46:04:5e:3c:c6:91:48: bd:c9:53:53:a3:a4:bf:5c:2a:ae:3e:17:d6:85:af: e2:9b:a8:fc:49:67:f1:72:92:81:f7:4a:15:92:ba: 97:a4:f2:51:0a:71:b6:77:1a:82:6f:cc:e0:fc:9a: e6:0d:37:04:fc:ac:4f:9c:ba:ce:72:5c:4b:2d:b8: d9:d0:67:6f:41:06:e7:ac:ca:9d:00:7c:3b:07:54: 53:bb:eb:70:c0:d5:51:b3:b9:39:b1:b2:3b:67:ad: 16:6d:35:d0:b8:49:9c:58:1f:c9:64:6b:1a:c4:82: 4b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:08:CF:14:90:BB:B4:57:AE:2C:7F:02:93:EA:D1:E1:82:AC:A7:DA X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/E7C7DBF8A0E411EF98A7340EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.252.0/23 Signature Algorithm: sha256WithRSAEncryption a5:30:a3:14:08:f7:d7:12:81:bd:bd:c0:97:b2:cd:d2:61:01: 80:48:cc:4a:d0:aa:74:7a:7e:56:0c:d3:f3:19:b3:18:6b:7c: 21:1e:d8:1a:35:f1:2d:11:89:8a:b7:b1:86:d3:4e:4e:2c:46: fd:9a:b5:2b:4b:32:40:07:b0:1c:79:11:a4:dc:dd:6c:56:84: d2:7d:27:16:1b:aa:39:01:09:e8:eb:cc:4e:ce:a3:20:98:ee: 83:36:63:87:96:9f:68:77:54:17:a8:ef:ee:45:88:e8:ab:60: 87:74:9d:ca:1e:d0:16:b0:cb:ab:5a:8d:e9:66:8f:01:06:6c: 11:59:2e:16:63:3e:f1:b4:df:18:e6:30:0f:06:d7:7f:3d:25: 6f:ce:8e:7e:b0:66:ce:3c:e6:9e:4c:2e:dd:ea:52:35:24:74: 13:bc:11:b3:1c:4b:15:4b:de:38:a9:22:4d:5e:77:26:ae:66: 6e:ec:f4:34:e9:d6:72:d7:37:1b:20:95:ce:67:81:c2:02:87: eb:b1:4d:37:5c:07:64:9d:45:df:a8:67:ab:4a:df:f8:a8:73: 12:07:b8:e7:1a:4d:db:f5:3c:2a:f2:f0:f4:04:a9:dc:59:79: 3f:21:22:be:e7:20:a6:7c:cf:ed:ca:5f:ff:c6:76:57:b0:4f: 95:d2:e6:0e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGOTExMC8GA1UEBRMoOTQ1OTRBQUVDNkVENjZBNjgwQTE1QkZFQjVDREE1Nzgy RDRDMkQ4ODAeFw0yNDExMTIxMDU3MjdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzMzNDk3LWUyYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDr/HCQ5go1EJvM9+ObMfpfyLhPbrBrhnHHbcYU4Hg1Gj2N+WYTTRUjNI5n/1xV yd2uSkJ3foj5bD/sSlQkwHaf3CiL+mRpyRrmFvWjBSQPdYpxUpUcdeDyv4ShGD/Y zKvqLaAKBzowqqzupneAT8TYJSYrqYNIAX8c7H7IzXJAyvkjpWW593FfRG3eEC8c RgRePMaRSL3JU1OjpL9cKq4+F9aFr+KbqPxJZ/FykoH3ShWSupek8lEKcbZ3GoJv zOD8muYNNwT8rE+cus5yXEstuNnQZ29BBuesyp0AfDsHVFO763DA1VGzuTmxsjtn rRZtNdC4SZxYH8lkaxrEgktlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOgjPFJC7 tFeuLH8Ck+rR4YKsp9owHwYDVR0jBBgwFoAUlFlKrsbtZqaAoVv+tc2leC1MLYgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUY5LzgwNEQ2QkYwNjA1 MjExRUZCMjg2RkQyMEM0RjlBRTAyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEZsS3JzYnRacWFBb1Z2LXRjMmxlQzFNTFlnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGOS84MDRENkJGMDYwNTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9FN0M3REJGOEEw RTQxMUVGOThBNzM0MEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWd9/DANBgkqhkiG9w0BAQsFAAOCAQEApTCjFAj31xKBvb3A l7LN0mEBgEjMStCqdHp+VgzT8xmzGGt8IR7YGjXxLRGJirexhtNOTixG/Zq1K0sy QAewHHkRpNzdbFaE0n0nFhuqOQEJ6OvMTs6jIJjugzZjh5afaHdUF6jv7kWI6Ktg h3Sdyh7QFrDLq1qN6WaPAQZsEVkuFmM+8bTfGOYwDwbXfz0lb86OfrBmzjzmnkwu 3epSNSR0E7wRsxxLFUveOKkiTV53Jq5mbuz0NOnWctc3GyCVzmeBwgKH67FNN1wH ZJ1F36hnq0rf+KhzEge45xpN2/U8KvLw9ASp3Fl5PyEivucgpnzP7cpf/8Z2V7BP ldLmDg== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org