$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/32E806F8878111EF9723F25DC4F9AE02.roa File: 32E806F8878111EF9723F25DC4F9AE02.roa (raw, json) Hash identifier: L5F1KGoYu5YZs+u9JEEumkpFuC41Zd5SKoGIwNq4vo0= Subject key identifier: 5C:23:0B:05:53:18:67:86:07:B7:CA:FB:8A:42:98:5B:8C:60:95:0B Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 0575 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/32E806F8878111EF9723F25DC4F9AE02.roa Signing time: Fri 11 Oct 2024 03:35:54 +0000 ROA not before: Fri 11 Oct 2024 03:35:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24344 IP address blocks: 110.164.248.0/23 maxlen: 23 110.164.248.0/24 maxlen: 24 110.164.249.0/24 maxlen: 24 2403:6200:7501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Oct 11 03:35:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67089d1a-ad67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:dc:ff:c6:9b:ba:fc:17:bb:78:01:ab:35:75: f8:a2:50:18:51:5a:5e:26:90:9d:f4:4d:82:03:61: 0e:61:e0:ca:bb:86:b5:5b:cb:73:bb:ce:9b:8e:15: f9:ba:2f:e5:04:37:62:a7:16:55:cf:6b:0f:dc:d2: 48:23:64:67:1f:2b:0a:d0:ba:db:ff:47:5b:0a:9b: 04:a4:e7:0a:a4:ad:aa:b1:e0:66:54:de:f0:49:d3: 93:01:57:87:5d:19:67:0d:94:e9:94:98:9f:cc:d5: d4:20:cd:21:0b:32:e0:63:8c:60:e7:c7:26:f6:50: c5:1d:a3:b4:6c:3a:77:e9:2f:19:bc:fc:cd:81:b2: 25:f1:44:12:4a:ff:41:f4:ad:07:ae:d9:3e:1f:f3: 1b:3a:47:f9:a7:7f:78:8f:e2:6d:a1:a0:c5:e3:e5: 8b:5f:5f:6e:21:31:96:0f:b0:42:12:96:e0:04:d5: 77:6b:46:8e:5e:ee:de:6f:f4:ab:b2:9e:f4:6d:c5: 21:b3:6d:a5:73:0d:2d:27:1f:71:d1:c9:1d:70:53: 10:6e:04:07:d6:6f:6e:3c:bd:f4:20:c6:5e:91:47: b2:a2:0b:72:ab:ec:83:91:2e:9f:3d:fd:23:be:e7: 36:61:a3:62:a8:a5:67:43:3a:ef:19:3b:e0:f8:18: 4b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:23:0B:05:53:18:67:86:07:B7:CA:FB:8A:42:98:5B:8C:60:95:0B X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/32E806F8878111EF9723F25DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.164.248.0/23 IPv6: 2403:6200:7501::/48 Signature Algorithm: sha256WithRSAEncryption 75:cf:99:ec:b5:24:35:94:c5:30:ad:31:0a:90:8d:7e:f9:ad: 38:ae:55:6c:ef:eb:4a:39:bf:e7:8e:59:fd:0d:ef:e0:4c:81: 15:c3:3f:97:3a:cd:7e:5f:04:e8:8e:9d:66:73:a5:c6:01:e2: 41:47:61:d8:8b:97:a0:65:fd:85:9b:57:05:86:e5:d3:3c:e1: 3e:37:ff:dd:f1:f5:79:cc:6a:a8:d1:e6:e0:58:93:f1:e4:88: 10:5b:66:4c:6b:a0:b7:ec:d6:a5:25:79:1f:82:30:34:c4:b6: 6e:5c:00:e4:c4:80:53:76:2c:e7:40:22:23:84:a9:d8:01:c1: 48:f9:f6:96:10:4a:a3:d1:89:94:d7:64:56:08:13:b0:f2:90: a6:e7:30:bf:a2:08:e8:b2:db:41:ce:45:b5:c3:24:8c:0d:a6: 97:d6:0f:2e:4c:7c:d4:62:72:09:80:7b:2e:2d:f1:b6:69:20: c9:44:e3:4a:c7:37:e8:70:d0:c1:0c:12:f7:1a:de:9a:b0:1e: 6d:3e:96:5e:d9:8f:7f:de:73:35:15:b9:e0:bf:2d:4f:a3:e9: 68:05:78:28:69:b1:cd:aa:52:70:3a:ed:5e:4e:5f:dd:ce:85: 20:a8:00:27:e9:a8:82:0b:c7:7c:6b:18:84:88:40:fc:4e:ea: 1f:36:7b:30 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjQxMDExMDMzNTU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4OWQxYS1hZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09z/xpu6/Be7eAGrNXX4olAYUVpeJpCd9E2CA2EOYeDKu4a1W8tzu86bjhX5 ui/lBDdipxZVz2sP3NJII2RnHysK0Lrb/0dbCpsEpOcKpK2qseBmVN7wSdOTAVeH XRlnDZTplJifzNXUIM0hCzLgY4xg58cm9lDFHaO0bDp36S8ZvPzNgbIl8UQSSv9B 9K0Hrtk+H/MbOkf5p394j+JtoaDF4+WLX19uITGWD7BCEpbgBNV3a0aOXu7eb/Sr sp70bcUhs22lcw0tJx9x0ckdcFMQbgQH1m9uPL30IMZekUeyogtyq+yDkS6fPf0j vuc2YaNiqKVnQzrvGTvg+BhLIQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFwjCwVT GGeGB7fK+4pCmFuMYJULMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvMzJFODA2Rjg4 NzgxMTFFRjk3MjNGMjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFupPgwDwQCAAIwCQMHACQDYgB1ATANBgkqhkiG9w0BAQsF AAOCAQEAdc+Z7LUkNZTFMK0xCpCNfvmtOK5VbO/rSjm/545Z/Q3v4EyBFcM/lzrN fl8E6I6dZnOlxgHiQUdh2IuXoGX9hZtXBYbl0zzhPjf/3fH1ecxqqNHm4FiT8eSI EFtmTGugt+zWpSV5H4IwNMS2blwA5MSAU3Ys50AiI4Sp2AHBSPn2lhBKo9GJlNdk VggTsPKQpucwv6II6LLbQc5FtcMkjA2ml9YPLkx81GJyCYB7Li3xtmkgyUTjSsc3 6HDQwQwS9xremrAebT6WXtmPf95zNRW54L8tT6PpaAV4KGmxzapScDrtXk5f3c6F IKgAJ+moggvHfGsYhIhA/E7qHzZ7MA== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org