$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa File: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (raw, json) Hash identifier: zRXwtVciA3XUq61vGPC3fC7y/rZPmZqFfk9/8k9uEj4= Subject key identifier: 29:BB:54:C1:F4:96:F1:56:2F:58:6E:93:BC:A7:42:E3:D2:E1:5E:EF Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 05F2 Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa Signing time: Fri 18 Oct 2024 23:12:54 +0000 ROA not before: Fri 18 Oct 2024 23:12:54 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139592 IP address blocks: 103.142.32.0/24 maxlen: 24 103.164.6.0/24 maxlen: 24 2400:e5a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: Oct 18 23:12:54 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6712eb76-9156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bc:d4:6f:20:d9:8f:7a:24:47:7d:ef:14:30: 32:c8:5a:1a:b5:4d:76:97:80:29:31:35:02:51:dd: 77:57:11:ce:3a:a9:57:6e:6c:04:7e:78:8e:1d:74: 35:95:90:f2:07:40:e6:2a:6f:f7:5b:16:fe:c7:ee: 30:a3:50:69:44:15:fc:62:33:fb:5e:8e:65:87:1e: 4a:21:f1:66:f3:b3:35:5c:c5:bc:85:6c:6a:59:c3: 6c:a3:15:5b:f4:d1:2e:fa:a8:a0:3d:6e:81:f5:81: 9d:77:97:62:73:71:c3:ff:fb:f4:e7:1a:9a:e6:fb: 7e:0e:0b:4a:ce:6e:a5:2a:ca:b5:1f:9d:c9:24:04: 8f:dc:64:b1:d5:fd:3c:d1:da:b7:af:33:35:3e:d3: 3a:a7:6d:1a:41:51:55:ab:14:50:0d:09:e1:3f:ba: 58:b3:3a:9d:7d:fb:17:14:f0:54:af:de:e2:bf:c0: 4f:9b:98:26:be:80:79:f5:5f:59:55:fe:f9:ee:09: 81:c6:f7:5d:51:cf:e8:02:2e:0c:f2:ee:61:fa:75: 54:e5:cc:e6:a3:6d:56:b8:2a:69:86:ce:ab:47:c3: c6:c5:5b:0e:03:fd:71:c0:c2:c3:c6:01:7d:c0:b8: 08:e0:09:e7:cd:4b:18:f4:ce:8c:e9:1c:c3:eb:d8: 06:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BB:54:C1:F4:96:F1:56:2F:58:6E:93:BC:A7:42:E3:D2:E1:5E:EF X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.32.0/24 103.164.6.0/24 IPv6: 2400:e5a0::/32 Signature Algorithm: sha256WithRSAEncryption 92:70:7a:27:32:ed:be:ab:66:57:42:18:64:18:5f:ae:05:2e: ee:b4:a1:b0:5e:67:97:c8:0c:27:c1:fe:d1:a7:5a:ce:e0:ca: 3c:1c:95:e8:6a:5b:69:fa:e1:23:da:20:eb:85:c3:af:ef:39: 62:28:8b:dc:6e:ed:3a:bc:09:d2:ca:0a:48:83:d6:c7:18:30: bb:55:6b:96:74:0d:b9:b9:da:b2:73:26:e7:80:6c:dc:c5:f7: 5e:aa:25:82:1e:6c:dc:56:ff:de:86:45:72:0a:7b:6b:00:27: d6:3d:20:1c:ae:a3:67:87:6a:ea:10:b2:08:ee:e9:6c:0c:52: d0:46:9d:bf:3a:97:81:be:b7:83:d6:a0:92:16:dc:8f:6f:45: d9:93:a5:c0:11:e2:0f:61:42:50:b0:0a:88:09:c1:a8:be:61: b0:3e:8f:80:bc:a5:10:f2:a0:9a:ed:fa:21:61:75:d2:eb:33: bb:e5:52:71:8d:53:e2:1e:9e:0f:65:a9:75:02:d2:04:4c:07: c9:f1:99:4b:c5:f5:dc:26:e0:2c:52:7e:41:c8:1e:9a:cd:75: 0e:04:8c:e0:d0:c8:f6:56:69:57:aa:a1:4c:12:12:92:93:78: 88:82:de:16:ec:c2:13:4c:d9:07:2b:f0:9d:40:c0:bc:0b:bc: 77:b3:93:fa -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjQxMDE4MjMxMjU0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEyZWI3Ni05MTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7zUbyDZj3okR33vFDAyyFoatU12l4ApMTUCUd13VxHOOqlXbmwEfniOHXQ1 lZDyB0DmKm/3Wxb+x+4wo1BpRBX8YjP7Xo5lhx5KIfFm87M1XMW8hWxqWcNsoxVb 9NEu+qigPW6B9YGdd5dic3HD//v05xqa5vt+DgtKzm6lKsq1H53JJASP3GSx1f08 0dq3rzM1PtM6p20aQVFVqxRQDQnhP7pYszqdffsXFPBUr97iv8BPm5gmvoB59V9Z Vf757gmBxvddUc/oAi4M8u5h+nVU5czmo21WuCpphs6rR8PGxVsOA/1xwMLDxgF9 wLgI4AnnzUsY9M6M6RzD69gGXwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCm7VMH0 lvFWL1huk7ynQuPS4V7vMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdCRDQvNEU4N0E0NkE4NkIxMTFFQkI4QkUyMTdDQzRGOUFFMDIvODFFM0Y0QUNC QkRBMTFFRDhGREI0RTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnjiADBABnpAYwDQQCAAIwBwMFACQA5aAwDQYJKoZIhvcN AQELBQADggEBAJJweicy7b6rZldCGGQYX64FLu60obBeZ5fIDCfB/tGnWs7gyjwc lehqW2n64SPaIOuFw6/vOWIoi9xu7Tq8CdLKCkiD1scYMLtVa5Z0Dbm52rJzJueA bNzF916qJYIebNxW/96GRXIKe2sAJ9Y9IByuo2eHauoQsgju6WwMUtBGnb86l4G+ t4PWoJIW3I9vRdmTpcAR4g9hQlCwCogJwai+YbA+j4C8pRDyoJrt+iFhddLrM7vl UnGNU+Ieng9lqXUC0gRMB8nxmUvF9dwm4CxSfkHIHprNdQ4EjODQyPZWaVeqoUwS EpKTeIiC3hbswhNM2Qcr8J1AwLwLvHezk/o= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:52 2024 by rpki-client on console-ams.rpki-client.org