$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/32DFCCDCEB8011EAAB806163C4F9AE02.roa File: 32DFCCDCEB8011EAAB806163C4F9AE02.roa (raw, json) Hash identifier: d8SyVppxPlIuR4fpNFIkYTURn6Yx4CMf1TSPHGG+TtY= Subject key identifier: 92:F7:DB:90:C1:77:AF:C6:FE:88:AF:5E:F7:78:D5:4A:4C:4B:DE:2A Certificate issuer: /CN=A91EEEB8/serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Certificate serial: 343C Authority key identifier: E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/32DFCCDCEB8011EAAB806163C4F9AE02.roa Signing time: Fri 04 Oct 2024 15:21:18 +0000 ROA not before: Fri 04 Oct 2024 15:21:18 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133418 IP address blocks: 103.136.123.0/24 maxlen: 24 2404:8e80:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13372 (0x343c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEEB8 Validity Not Before: Oct 4 15:21:18 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670007ee-1040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:50:a2:49:6f:1f:25:9d:bf:75:1f:0e:59:2c: 88:80:20:73:1f:78:9d:fd:d3:19:c0:da:17:c8:38: 51:d9:dc:49:f2:4a:d9:d4:aa:2c:f9:fe:e1:57:46: 5d:f9:8b:10:f2:65:b4:d2:cd:e8:7d:9a:ce:29:b3: 97:b3:09:28:41:a8:97:d3:80:36:3f:fa:45:7e:9d: a9:87:bb:2a:61:a1:fd:53:b9:a2:9e:a9:4b:9b:bd: 83:a2:51:4a:06:17:31:42:0c:c1:92:68:25:81:3e: 00:9e:ed:29:5d:3f:bc:c2:c2:b3:73:3c:20:70:3d: 59:88:8b:d2:fe:ad:9e:4a:f3:17:79:2e:7b:a2:f1: d9:f5:f7:b6:35:56:c7:1d:80:4c:dc:85:2d:79:e2: d7:ba:e6:df:6d:e9:fc:57:5a:6d:cd:6f:6a:c6:37: ee:b9:5d:5c:40:f5:ed:ea:a7:8d:19:6b:29:f3:df: f5:75:4c:16:4d:c4:24:41:bb:98:9e:40:04:80:16: 00:74:a4:68:89:f6:c6:57:3b:06:2c:4d:fe:37:e3: 81:63:5c:48:48:e9:a5:66:89:3a:b1:86:de:da:77: f1:9d:23:a2:39:e7:0d:26:57:91:ff:f0:0d:82:b1: 5e:be:04:1f:ee:94:ce:81:41:99:ba:13:32:c0:36: 86:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F7:DB:90:C1:77:AF:C6:FE:88:AF:5E:F7:78:D5:4A:4C:4B:DE:2A X509v3 Authority Key Identifier: keyid:E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/32DFCCDCEB8011EAAB806163C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.123.0/24 IPv6: 2404:8e80:4::/48 Signature Algorithm: sha256WithRSAEncryption 74:ea:ba:14:63:2e:6e:3f:10:7c:93:f8:36:1a:82:49:ce:93: 0d:ae:10:b2:70:42:7e:0a:a3:70:84:cd:ee:14:ff:f5:21:04: d0:bd:ec:4d:16:46:9c:f1:1d:45:d6:75:5a:6f:09:c4:7b:99: 14:e3:6b:60:d1:a9:96:25:c3:9b:cd:a4:57:52:f8:c0:4d:bf: 31:7b:74:1c:10:2c:d5:b6:73:64:d7:6f:2d:ce:3e:28:bc:92: a7:c8:f3:72:ab:79:49:d4:1d:81:11:49:38:f2:b8:cf:ff:bb: 02:f7:9b:de:e7:f6:2e:57:a7:ce:01:05:ca:40:81:ee:98:51: f4:e9:4d:e2:cd:a0:6a:fd:e9:ec:f1:c0:97:9c:cd:76:6b:0f: a6:30:15:56:2e:fe:67:c2:02:87:f3:bb:33:03:ae:53:fa:7a: 18:97:85:50:38:8a:fe:2d:a1:42:f1:00:1b:e5:5b:94:28:8d: 2e:37:8c:f9:1f:ac:d0:dc:ad:10:b7:46:80:51:c6:09:f7:ef: 28:1c:c7:61:fa:85:30:f6:3b:49:32:3a:20:43:8e:79:8c:e2: 9b:2d:9c:25:e5:ef:ca:4a:2b:47:73:69:33:c7:66:9e:d3:46: 02:2d:c6:8b:16:82:e5:85:11:98:8d:40:da:bb:16:c4:cd:63: 2f:51:74:0c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFQjgxMTAvBgNVBAUTKEU2MjJDODExNEYzRjI0QUE2QTgwN0M4MTQxRTM5NjRC NTUxQkI5MzAwHhcNMjQxMDA0MTUyMTE4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwMDdlZS0xMDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVCiSW8fJZ2/dR8OWSyIgCBzH3id/dMZwNoXyDhR2dxJ8krZ1Kos+f7hV0Zd +YsQ8mW00s3ofZrOKbOXswkoQaiX04A2P/pFfp2ph7sqYaH9U7minqlLm72DolFK BhcxQgzBkmglgT4Anu0pXT+8wsKzczwgcD1ZiIvS/q2eSvMXeS57ovHZ9fe2NVbH HYBM3IUteeLXuubfben8V1ptzW9qxjfuuV1cQPXt6qeNGWsp89/1dUwWTcQkQbuY nkAEgBYAdKRoifbGVzsGLE3+N+OBY1xISOmlZok6sYbe2nfxnSOiOecNJleR//AN grFevgQf7pTOgUGZuhMywDaGvwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJL325DB d6/G/oivXvd41UpMS94qMB8GA1UdIwQYMBaAFOYiyBFPPySqaoB8gUHjlktVG7kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUVCOC84RTBGMkNCNjFE QTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pLcHFnSHlCUWVPV1MxVWJ1 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpTElFVThfSktwcWdIeUJRZU9XUzFVYnVUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVFQjgvOEUwRjJDQjYxREExMTFFMkI5MDZCQzkzMDhCMDJDRDIvMzJERkNDRENF QjgwMTFFQUFCODA2MTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABniHswDwQCAAIwCQMHACQEjoAABDANBgkqhkiG9w0BAQsF AAOCAQEAdOq6FGMubj8QfJP4NhqCSc6TDa4QsnBCfgqjcITN7hT/9SEE0L3sTRZG nPEdRdZ1Wm8JxHuZFONrYNGpliXDm82kV1L4wE2/MXt0HBAs1bZzZNdvLc4+KLyS p8jzcqt5SdQdgRFJOPK4z/+7Aveb3uf2LlenzgEFykCB7phR9OlN4s2gav3p7PHA l5zNdmsPpjAVVi7+Z8ICh/O7MwOuU/p6GJeFUDiK/i2hQvEAG+VblCiNLjeM+R+s 0NytELdGgFHGCffvKBzHYfqFMPY7STI6IEOOeYzimy2cJeXvykorR3NpM8dmntNG Ai3GixaC5YURmI1A2rsWxM1jL1F0DA== -----END CERTIFICATE-----Generated at Mon Feb 17 07:56:14 2025 by rpki-client