$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/EF31E31847CE11EEB588375DC4F9AE02.roa File: EF31E31847CE11EEB588375DC4F9AE02.roa (raw, json) Hash identifier: D2jnJ061deT1FgcnPcnAa54o8jUyuQQ7FJDAZ8ZL8D4= Subject key identifier: 20:79:46:71:8F:0A:2B:1A:0E:56:D1:84:4C:2B:78:C0:03:B7:A0:55 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 95 Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/EF31E31847CE11EEB588375DC4F9AE02.roa Signing time: Wed 05 Jun 2024 07:37:08 +0000 ROA not before: Wed 05 Jun 2024 07:37:08 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136744 IP address blocks: 43.230.12.0/22 maxlen: 24 103.248.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Jun 5 07:37:08 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666015a4-5e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:05:57:fd:95:12:2c:13:e7:3d:6a:4d:82:49: 27:22:87:10:a4:43:57:f7:2c:be:19:50:f7:a5:37: d9:5f:4d:dc:b6:12:cb:28:f3:f9:5c:85:c1:cd:d5: c9:66:f6:88:2d:37:8d:ed:30:0c:5f:5b:60:9b:ee: 8b:c7:04:48:dc:81:72:1e:65:91:29:09:9b:fa:a5: ec:fa:2e:49:ab:07:ea:42:c1:6b:ba:55:7d:4f:4b: e2:f8:5a:be:82:f6:e6:a9:cf:53:6b:f5:e6:fb:25: 66:3a:fa:a2:72:e7:2d:ef:d0:45:12:e4:9c:31:2d: 72:67:8c:7c:38:f5:30:f3:a8:01:bc:3a:1a:d7:16: 3d:40:83:77:53:f5:3f:0d:8a:de:9d:75:29:35:0b: 02:40:49:99:e7:91:d6:05:ed:21:db:ab:04:f8:e5: a0:68:1d:3c:b0:e1:21:9c:8d:48:e5:f8:c9:47:9d: 12:3c:a2:bf:e7:69:46:7e:c3:36:3d:c8:92:65:14: 3a:00:b4:10:5c:79:47:b9:13:79:cd:7d:7f:ee:4f: 57:b1:90:8a:e4:26:00:a2:ca:2c:35:d4:4e:ea:f1: 61:88:7e:e9:eb:28:d6:3c:e9:2e:57:d7:28:97:76: 09:ba:6a:cd:f8:84:53:b2:51:24:dc:f2:80:f9:2e: eb:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:79:46:71:8F:0A:2B:1A:0E:56:D1:84:4C:2B:78:C0:03:B7:A0:55 X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/EF31E31847CE11EEB588375DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.12.0/22 103.248.252.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:4c:e1:96:38:d2:e7:73:4f:77:dd:85:6b:8e:78:3f:ba:c4: c1:4f:c6:57:9d:a6:08:92:35:6e:da:cb:31:0e:51:6f:ae:10: e9:dc:52:aa:fc:20:cd:0b:c2:da:3e:0f:1e:29:dc:e8:e6:d0: 12:55:93:27:a8:22:42:cb:b7:a3:67:43:ad:d5:72:92:45:51: f8:1e:9c:2b:15:6c:98:18:c8:a4:4c:66:f0:e2:a6:35:ab:a7: eb:b9:b9:9b:0e:97:14:95:78:b4:fc:2d:1f:95:ce:82:20:17: 56:17:7b:b9:ed:d4:82:26:e0:22:6d:77:e5:1c:ca:04:b5:b5: c1:6d:56:25:85:58:84:55:02:a0:a6:b2:50:1e:12:e0:d1:fd: 42:21:5a:b3:12:ae:fd:f9:60:d9:47:45:75:ac:c3:56:ad:dd: e2:6a:61:b9:26:5e:58:aa:d4:8a:a0:17:1a:84:ea:03:66:96: 00:1e:47:a9:81:c5:b3:f2:ce:da:fe:49:c1:3d:0f:6c:d3:ec: da:25:fc:06:1d:3e:49:fe:a2:38:86:b5:7b:7e:ed:8d:fa:19: 9a:bd:2b:04:03:6e:66:bb:eb:9f:09:f3:31:29:60:04:90:04: f1:59:e7:12:e8:4d:a7:8d:27:ca:6f:6a:35:d4:24:28:bb:b5: 40:e0:3c:08 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjQwNjA1MDczNzA4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYwMTVhNC01ZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wVX/ZUSLBPnPWpNgkknIocQpENX9yy+GVD3pTfZX03cthLLKPP5XIXBzdXJ ZvaILTeN7TAMX1tgm+6LxwRI3IFyHmWRKQmb+qXs+i5JqwfqQsFrulV9T0vi+Fq+ gvbmqc9Ta/Xm+yVmOvqicuct79BFEuScMS1yZ4x8OPUw86gBvDoa1xY9QIN3U/U/ DYrenXUpNQsCQEmZ55HWBe0h26sE+OWgaB08sOEhnI1I5fjJR50SPKK/52lGfsM2 PciSZRQ6ALQQXHlHuRN5zX1/7k9XsZCK5CYAososNdRO6vFhiH7p6yjWPOkuV9co l3YJumrN+IRTslEk3PKA+S7rGwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCB5RnGP CisaDlbRhEwreMADt6BVMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE0ODUvNjJBOTI4NjY0N0NFMTFFRTg2QzIzODVDQzRGOUFFMDIvRUYzMUUzMTg0 N0NFMTFFRUI1ODgzNzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr5gwDBAJn+PwwDQYJKoZIhvcNAQELBQADggEBAH1M4ZY4 0udzT3fdhWuOeD+6xMFPxledpgiSNW7ayzEOUW+uEOncUqr8IM0Lwto+Dx4p3Ojm 0BJVkyeoIkLLt6NnQ63VcpJFUfgenCsVbJgYyKRMZvDipjWrp+u5uZsOlxSVeLT8 LR+VzoIgF1YXe7nt1IIm4CJtd+UcygS1tcFtViWFWIRVAqCmslAeEuDR/UIhWrMS rv35YNlHRXWsw1at3eJqYbkmXliq1IqgFxqE6gNmlgAeR6mBxbPyztr+ScE9D2zT 7Nol/AYdPkn+ojiGtXt+7Y36GZq9KwQDbma7658J8zEpYASQBPFZ5xLoTaeNJ8pv ajXUJCi7tUDgPAg= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:06 2024 by rpki-client on console-fra.rpki-client.org