$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5D001D76932811E8BC93865BC4F9AE02.roa File: 5D001D76932811E8BC93865BC4F9AE02.roa (raw, json) Hash identifier: xOTr/5KGUUM34JKJY1lwfTVBRDQmjApqpEKH2Iu8g7I= Subject key identifier: E3:C9:B7:8C:A2:44:8B:AA:D2:79:CE:53:C9:64:D7:05:5E:14:1A:85 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 352F Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5D001D76932811E8BC93865BC4F9AE02.roa Signing time: Mon 16 Sep 2024 14:51:12 +0000 ROA not before: Mon 16 Sep 2024 14:51:12 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45887 IP address blocks: 103.68.121.0/24 maxlen: 24 103.68.122.0/24 maxlen: 24 103.68.123.0/24 maxlen: 24 103.206.30.0/23 maxlen: 23 103.230.71.0/24 maxlen: 24 117.121.240.0/24 maxlen: 24 117.121.241.0/24 maxlen: 24 117.121.242.0/24 maxlen: 24 182.54.232.0/24 maxlen: 24 2403:cc00:8000::/36 maxlen: 36 2403:cc00:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13615 (0x352f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 16 14:51:12 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e845e0-1511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:94:37:87:c8:0a:5b:d1:39:8e:d6:b0:4d:15: 8a:d2:7a:66:ff:e5:eb:b4:9c:d0:2f:7e:42:c2:57: f4:ac:86:02:48:15:c6:93:12:7f:e0:35:d0:81:d2: bc:a3:95:9f:7a:19:60:dc:0c:78:c6:6b:43:1d:3b: eb:1b:71:3a:59:75:aa:5a:db:6e:19:e0:d7:05:61: b3:72:de:08:6d:2f:fa:f5:8d:c1:eb:d0:c7:cc:0d: 7f:43:25:cd:39:71:31:5a:0d:21:94:be:73:e4:a3: 40:00:b8:e3:21:4a:0d:2c:15:fb:b3:0d:2f:48:a0: 07:39:77:0a:33:d3:03:a5:7a:b3:6f:82:3f:1a:b4: 48:00:5d:31:72:77:97:a7:bf:53:1f:f2:89:5d:46: ef:6b:27:d1:08:f6:bd:eb:75:a7:51:af:12:44:77: 1a:83:da:7b:60:99:a2:11:e7:de:13:0e:27:41:fe: 53:8f:1b:96:b2:5d:a4:ee:cb:41:04:e3:6d:1f:a4: 1b:a8:6d:15:8e:dc:94:83:25:2f:c3:58:2c:a6:ba: 27:55:5d:88:c1:f4:f0:5d:69:15:03:68:1e:3d:38: 1d:65:2e:25:06:d8:20:9a:9b:bc:02:89:b5:cf:1d: 24:b7:71:8b:cb:03:ec:16:f4:d9:b7:e6:e6:17:0c: 1f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C9:B7:8C:A2:44:8B:AA:D2:79:CE:53:C9:64:D7:05:5E:14:1A:85 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5D001D76932811E8BC93865BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.121.0-103.68.123.255 103.206.30.0/23 103.230.71.0/24 117.121.240.0-117.121.242.255 182.54.232.0/24 IPv6: 2403:cc00:8000::/36 2403:cc00:a000::/36 Signature Algorithm: sha256WithRSAEncryption 60:17:57:57:71:86:ea:0a:1a:f0:ff:fe:a3:d5:19:fb:de:ea: a4:be:76:65:f8:34:b8:e0:56:23:b0:5d:6b:0c:b9:6b:bc:2e: f0:e1:5d:ac:e8:be:4c:0e:b0:19:63:27:43:7c:7b:a8:94:f1: 59:83:e5:73:ee:a5:58:5a:40:54:40:3d:bc:c0:a4:e5:fc:62: c4:ea:e0:af:e0:83:80:5b:64:fd:1e:80:a4:63:d8:59:a3:69: 5b:24:00:9e:85:f0:3b:68:d7:35:87:4c:11:e3:b3:b7:d4:15: ff:a7:f9:c8:ec:ed:fe:5a:d7:00:f2:ca:f1:2d:a1:68:d3:15: 65:d2:72:e1:30:f5:6b:46:2b:02:ce:17:f3:dd:c2:c8:69:d3: 3f:61:70:20:f6:c0:3a:0f:d8:d6:b3:a8:f0:50:45:7c:5f:de: 1f:d6:8a:26:0d:ca:1c:aa:be:7a:ef:f9:8e:f7:32:cd:44:8f: 64:5b:0f:4d:13:bb:87:6d:42:0a:3f:b3:df:c1:fa:a1:3b:18: a6:df:97:0c:e3:57:59:bb:dc:70:66:42:87:ba:6f:61:91:a8: 71:04:0f:d8:d9:75:41:ef:cc:df:2e:89:2b:43:ff:68:5d:c3: 78:a8:d9:3e:5a:02:86:b5:3f:0c:32:9d:01:36:2c:4f:eb:91: 4b:d0:75:aa -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgICNS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjQwOTE2MTQ1MTEyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NDVlMC0xNTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJQ3h8gKW9E5jtawTRWK0npm/+XrtJzQL35Cwlf0rIYCSBXGkxJ/4DXQgdK8 o5Wfehlg3Ax4xmtDHTvrG3E6WXWqWttuGeDXBWGzct4IbS/69Y3B69DHzA1/QyXN OXExWg0hlL5z5KNAALjjIUoNLBX7sw0vSKAHOXcKM9MDpXqzb4I/GrRIAF0xcneX p79TH/KJXUbvayfRCPa963WnUa8SRHcag9p7YJmiEefeEw4nQf5TjxuWsl2k7stB BONtH6QbqG0VjtyUgyUvw1gspronVV2IwfTwXWkVA2gePTgdZS4lBtggmpu8Aom1 zx0kt3GLywPsFvTZt+bmFwwfnwIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFOPJt4yi RIuq0nnOU8lk1wVeFBqFMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvNUQwMDFENzY5 MzI4MTFFOEJDOTM4NjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXwYIKwYBBQUHAQcBAf8E UDBOMDQEAgABMC4wDAMEAGdEeQMEAmdEeAMEAWfOHgMEAGfmRzAMAwQEdXnwAwQA dXnyAwQAtjboMBYEAgACMBADBgQkA8wAgAMGBCQDzACgMA0GCSqGSIb3DQEBCwUA A4IBAQBgF1dXcYbqChrw//6j1Rn73uqkvnZl+DS44FYjsF1rDLlrvC7w4V2s6L5M DrAZYydDfHuolPFZg+Vz7qVYWkBUQD28wKTl/GLE6uCv4IOAW2T9HoCkY9hZo2lb JACehfA7aNc1h0wR47O31BX/p/nI7O3+WtcA8srxLaFo0xVl0nLhMPVrRisCzhfz 3cLIadM/YXAg9sA6D9jWs6jwUEV8X94f1oomDcocqr567/mO9zLNRI9kWw9NE7uH bUIKP7PfwfqhOxim35cM41dZu9xwZkKHum9hkahxBA/Y2XVB78zfLokrQ/9oXcN4 qNk+WgKGtT8MMp0BNixP65FL0HWq -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:19 2024 by rpki-client on console-ams.rpki-client.org