$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/AB292A3C96B011EF8A9EC651C4F9AE02.roa File: AB292A3C96B011EF8A9EC651C4F9AE02.roa (raw, json) Hash identifier: eUzKOnzodRDzVFKWz6xcp7yYmMqJ1ARfEQqiiBmISOA= Subject key identifier: 4E:8D:E7:16:7C:E0:80:63:2C:BF:4A:F5:E6:96:3A:CF:5B:6B:25:88 Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 0114 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/AB292A3C96B011EF8A9EC651C4F9AE02.roa Signing time: Wed 30 Oct 2024 11:18:20 +0000 ROA not before: Wed 30 Oct 2024 11:18:20 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149994 IP address blocks: 103.179.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Oct 30 11:18:20 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=672215fc-c800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a8:1e:a1:f8:88:e3:f2:64:54:8b:e4:be:fe: 60:65:f0:58:77:c4:39:6b:7e:d0:99:d6:e7:0d:ce: bc:28:59:c9:ff:5c:27:27:1c:76:67:51:ab:8a:30: 91:db:9b:eb:71:31:a0:cf:c9:fa:44:74:a3:e9:af: f2:a9:fd:9d:f0:9f:b9:06:d4:58:73:f1:05:fa:e6: 5a:04:94:ff:2a:0e:cd:d2:45:79:6f:02:11:4d:6f: f7:ca:dc:cb:d3:28:d9:ea:70:f9:48:02:cb:72:1c: 6e:84:5d:03:b5:41:ce:1b:64:9f:b8:b7:47:7d:f7: 5d:e6:c5:ab:55:08:8f:fb:73:13:6e:33:47:a8:70: 9d:54:ee:3a:ca:e2:3e:c1:89:aa:9c:b9:4c:bf:c2: 10:44:da:51:1c:5e:73:df:2b:75:cf:45:2d:95:0e: 43:b5:48:41:03:93:4c:52:d2:19:46:1b:c1:f4:9d: 3c:7c:27:38:20:66:be:4f:6a:57:67:c7:aa:b5:f6: a4:93:8a:49:6a:d5:f1:e2:a7:59:ef:4a:4b:3f:ee: 53:9a:97:63:ff:5f:39:ef:57:46:78:d9:96:ed:19: a5:11:48:86:cb:0a:cb:46:10:f1:47:6a:d5:52:97: 87:6d:1d:78:8e:65:14:ac:24:d2:f0:13:d5:f6:52: 1c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8D:E7:16:7C:E0:80:63:2C:BF:4A:F5:E6:96:3A:CF:5B:6B:25:88 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/AB292A3C96B011EF8A9EC651C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.126.0/24 Signature Algorithm: sha256WithRSAEncryption 19:ef:27:2b:a2:de:fa:ed:33:24:33:2e:e3:20:04:9c:e7:d1: 7c:a4:70:a0:07:c6:ec:13:4a:78:2b:38:39:6a:74:8a:72:c6: 2b:1b:3a:fd:24:07:3c:51:0e:0a:22:f0:f1:52:08:68:16:ad: 8c:ed:89:a5:f9:f1:f2:28:ee:ff:1b:39:d5:64:81:c6:1e:0e: 4d:5c:97:79:79:d5:da:a0:7f:9f:b2:88:0f:4d:74:dc:4f:d3: 04:67:9d:1a:af:76:d3:fa:e2:f7:00:34:34:80:cf:f3:ae:48: f2:7d:fd:90:61:fc:a9:dd:37:8f:53:dc:e7:20:5e:48:7c:22: 4a:39:86:16:5b:7a:d1:e5:07:6d:fd:01:ae:6e:d8:ca:e2:22: bc:0c:d0:4e:47:38:7d:88:b7:51:dd:2f:9b:04:d5:8b:89:1a: 75:85:70:51:cf:56:37:a4:e7:3b:d3:36:12:7e:bf:eb:80:37: b7:78:f2:a2:93:64:73:e5:01:3d:3d:a7:f4:27:71:b3:7d:17: 9f:98:ae:c5:2d:43:21:0c:90:47:c3:1e:da:60:25:71:38:7c: 1d:3b:6b:ac:18:0d:7e:fc:8b:e0:cc:4f:d2:f3:db:ab:47:e8: 88:b5:7a:5d:29:6f:f1:6f:20:f9:64:61:7b:80:6c:bd:41:90: fc:c5:60:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjQxMDMwMTExODIwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIyMTVmYy1jODAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KgeofiI4/JkVIvkvv5gZfBYd8Q5a37QmdbnDc68KFnJ/1wnJxx2Z1GrijCR 25vrcTGgz8n6RHSj6a/yqf2d8J+5BtRYc/EF+uZaBJT/Kg7N0kV5bwIRTW/3ytzL 0yjZ6nD5SALLchxuhF0DtUHOG2SfuLdHffdd5sWrVQiP+3MTbjNHqHCdVO46yuI+ wYmqnLlMv8IQRNpRHF5z3yt1z0UtlQ5DtUhBA5NMUtIZRhvB9J08fCc4IGa+T2pX Z8eqtfakk4pJatXx4qdZ70pLP+5Tmpdj/18571dGeNmW7RmlEUiGywrLRhDxR2rV UpeHbR14jmUUrCTS8BPV9lIcpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE6N5xZ8 4IBjLL9K9eaWOs9bayWIMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFCNjQvOUI0NEVCNzQ4RjI5MTFFQ0I2QTY5OTZDQzRGOUFFMDIvQUIyOTJBM0M5 NkIwMTFFRjhBOUVDNjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABns34wDQYJKoZIhvcNAQELBQADggEBABnvJyui3vrtMyQz LuMgBJzn0XykcKAHxuwTSngrODlqdIpyxisbOv0kBzxRDgoi8PFSCGgWrYztiaX5 8fIo7v8bOdVkgcYeDk1cl3l51dqgf5+yiA9NdNxP0wRnnRqvdtP64vcANDSAz/Ou SPJ9/ZBh/KndN49T3OcgXkh8Iko5hhZbetHlB239Aa5u2MriIrwM0E5HOH2It1Hd L5sE1YuJGnWFcFHPVjek5zvTNhJ+v+uAN7d48qKTZHPlAT09p/QncbN9F5+YrsUt QyEMkEfDHtpgJXE4fB07a6wYDX78i+DMT9Lz26tH6Ii1el0pb/FvIPlkYXuAbL1B kPzFYNU= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:06 2024 by rpki-client on console-ams.rpki-client.org