$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa File: CE3C7EF66FEB11EB91967864C4F9AE02.roa (raw, json) Hash identifier: rns6y4xnalGROKJT2q8Fjb3eMxdlbdFZdL9Xn8yjrx4= Subject key identifier: BE:39:C7:44:65:00:87:6B:67:EA:9A:D1:AF:FB:FB:06:6D:E5:45:F7 Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0BB7 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa Signing time: Fri 14 Jun 2024 18:51:22 +0000 ROA not before: Fri 14 Jun 2024 18:51:22 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 18053 IP address blocks: 103.137.24.0/22 maxlen: 22 118.107.128.0/20 maxlen: 20 2404:8300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:19:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2999 (0xbb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Jun 14 18:51:22 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=666c912a-2d1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5b:78:b7:52:1d:97:a2:4b:3f:9a:12:63:21: 23:67:94:b8:df:aa:f9:e8:6d:6e:2c:d4:54:78:d7: 09:20:b5:2c:4d:ff:40:26:8d:e5:0c:4e:c1:1d:f2: 58:85:30:c8:75:05:4b:ef:ad:42:a7:e6:1d:a6:c2: e4:9d:53:e8:36:60:82:3e:7b:0f:ec:ee:7a:46:7b: 25:17:bf:bb:dc:c4:7b:d5:6c:f4:22:3d:de:a8:eb: 68:96:da:58:c4:ad:83:98:4c:df:ec:b6:cf:e1:75: 89:89:20:0d:56:2e:00:3d:62:a5:e9:c6:dd:5d:67: f6:41:d0:78:d0:91:9d:7a:fd:05:48:30:38:ce:e4: b5:20:c8:04:00:51:3e:a1:c0:c2:61:3f:e1:42:42: ae:b6:b5:d1:31:f6:e2:72:c1:ef:25:39:16:ea:f2: 25:11:59:1f:69:e1:c9:43:ee:b2:8f:b6:e1:49:ec: 21:33:c7:72:5e:79:a1:f4:d3:be:97:e0:d0:4e:b7: 9b:bf:64:02:ed:ab:53:d7:c7:b6:36:5e:79:7f:da: 5b:b5:53:b9:51:11:2f:74:33:cb:b2:46:0d:ab:b0: b3:96:06:ea:46:73:51:97:c1:28:a9:e4:ea:8a:69: 2c:96:48:c4:61:9b:be:b8:c3:6c:ce:6e:5d:d5:d9: fb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:39:C7:44:65:00:87:6B:67:EA:9A:D1:AF:FB:FB:06:6D:E5:45:F7 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.24.0/22 118.107.128.0/20 IPv6: 2404:8300::/32 Signature Algorithm: sha256WithRSAEncryption 65:0a:44:27:e7:46:33:bc:ad:0b:e1:70:7f:07:24:8e:2d:57: f8:53:91:e5:5a:4a:73:06:b5:81:72:a7:aa:f2:65:68:c6:07: a6:8e:7c:75:95:c4:c8:7d:b8:7c:54:ac:e8:db:de:3f:79:d6: c0:6b:ed:78:0b:1e:35:34:03:f0:45:f3:c9:4f:d3:67:51:76: 93:71:81:e1:ab:a2:bd:5b:57:f0:ed:7e:ee:ef:ca:2d:25:51: 40:c1:a8:d3:5f:be:e7:93:81:e9:59:41:a9:45:18:e5:36:cc: 1f:a0:23:76:85:de:b5:f3:c6:b5:66:da:78:ed:3e:e5:61:a0: f3:15:ac:67:d5:60:66:02:2a:74:68:1e:e5:0b:c3:06:0f:6a: db:a9:ba:68:19:84:cc:c6:c7:d3:77:de:68:03:98:d1:f3:76: 07:2b:e2:0f:0b:5d:8e:73:7a:21:09:36:9c:ab:15:3d:01:e6: 91:35:49:c4:4c:8f:d9:73:f1:65:19:ce:3a:6a:6d:5b:92:49: 0a:8b:27:a4:22:f3:90:8f:f4:89:f4:06:b3:b7:77:85:2b:45: 8d:e9:c7:d6:45:ee:e5:42:0d:94:b8:ab:a6:0c:2b:5d:28:bc: a7:59:41:51:b5:05:58:2e:34:6c:58:39:5d:28:6b:78:b0:00: 3e:92:2f:9e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjQwNjE0MTg1MTIyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZjOTEyYS0yZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1t4t1Idl6JLP5oSYyEjZ5S436r56G1uLNRUeNcJILUsTf9AJo3lDE7BHfJY hTDIdQVL761Cp+YdpsLknVPoNmCCPnsP7O56RnslF7+73MR71Wz0Ij3eqOtoltpY xK2DmEzf7LbP4XWJiSANVi4APWKl6cbdXWf2QdB40JGdev0FSDA4zuS1IMgEAFE+ ocDCYT/hQkKutrXRMfbicsHvJTkW6vIlEVkfaeHJQ+6yj7bhSewhM8dyXnmh9NO+ l+DQTrebv2QC7atT18e2Nl55f9pbtVO5UREvdDPLskYNq7CzlgbqRnNRl8EoqeTq imkslkjEYZu+uMNszm5d1dn7VwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFL45x0Rl AIdrZ+qa0a/7+wZt5UX3MB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBBRjAvRTM3NjI5NTAwRkZGMTFFOTg4MTVBRTIyQzRGOUFFMDIvQ0UzQzdFRjY2 RkVCMTFFQjkxOTY3ODY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJniRgDBAR2a4AwDQQCAAIwBwMFACQEgwAwDQYJKoZIhvcN AQELBQADggEBAGUKRCfnRjO8rQvhcH8HJI4tV/hTkeVaSnMGtYFyp6ryZWjGB6aO fHWVxMh9uHxUrOjb3j951sBr7XgLHjU0A/BF88lP02dRdpNxgeGror1bV/Dtfu7v yi0lUUDBqNNfvueTgelZQalFGOU2zB+gI3aF3rXzxrVm2njtPuVhoPMVrGfVYGYC KnRoHuULwwYPatupumgZhMzGx9N33mgDmNHzdgcr4g8LXY5zeiEJNpyrFT0B5pE1 ScRMj9lz8WUZzjpqbVuSSQqLJ6Qi85CP9In0BrO3d4UrRY3px9ZF7uVCDZS4q6YM K10ovKdZQVG1BVguNGxYOV0oa3iwAD6SL54= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org