$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa File: E352E0A2896F11E7BBF2923CC4F9AE02.roa (raw, json) Hash identifier: C6sGcNivAhM8b7+hs2R4TWPNfdN5sOXAahaAosnvUZ8= Subject key identifier: D7:20:4C:1C:CD:2F:7E:EE:BD:A6:80:BC:76:08:54:3D:31:EC:9A:6B Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1EE0 Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa Signing time: Tue 30 Jul 2024 16:33:25 +0000 ROA not before: Tue 30 Jul 2024 16:33:25 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38719 IP address blocks: 103.68.164.0/22 maxlen: 22 103.68.164.0/24 maxlen: 24 103.68.165.0/24 maxlen: 24 103.68.166.0/24 maxlen: 24 103.68.167.0/24 maxlen: 24 2400:8240::/32 maxlen: 32 2400:8240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7904 (0x1ee0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Jul 30 16:33:25 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a915d5-8d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:3e:9a:6f:88:89:50:9c:fd:fe:1a:3d:b6:0e: 8c:ae:b3:a3:a2:d9:b2:0f:f6:b4:92:11:23:57:63: 4a:83:6f:52:21:d3:59:c4:2f:2f:41:1f:db:f8:ce: c5:54:fa:9d:60:dc:d0:60:52:02:f5:5f:c6:c9:d5: c9:b2:44:c2:bf:82:5a:9a:21:c0:41:b7:70:bc:40: 79:65:22:18:21:3d:da:f6:6b:25:04:21:57:ba:d5: 4d:34:75:14:b7:7e:11:c9:45:2c:1d:f2:8b:8f:6e: 7b:79:39:e0:a8:99:69:62:68:bf:56:e8:0f:d6:2d: 94:b6:ca:9d:99:1f:f9:c2:b0:ee:19:e7:99:26:8e: bd:f5:cb:6b:f7:e8:72:ef:2b:69:af:d1:0a:91:33: 5e:3c:ed:05:3a:c3:ce:c1:95:8f:cc:b1:04:82:9a: 12:98:d9:9f:3e:43:9f:58:f4:78:6e:f7:77:c2:10: a1:aa:f4:45:5b:3c:94:00:54:90:08:66:4e:29:fc: 53:99:7b:85:39:fd:8a:41:30:ac:fb:7f:13:6b:7d: cf:9d:ed:18:23:0f:5c:b4:2f:d2:19:2b:cf:f4:c4: dc:33:04:42:36:c3:9b:65:d8:a5:54:ca:6e:b5:20: 4b:5f:f3:e9:b2:5d:03:03:72:5f:3b:1f:22:2e:a2: 3e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:20:4C:1C:CD:2F:7E:EE:BD:A6:80:BC:76:08:54:3D:31:EC:9A:6B X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.164.0/22 IPv6: 2400:8240::/32 Signature Algorithm: sha256WithRSAEncryption 3f:42:fd:91:4d:0c:3f:aa:a8:98:87:c1:d4:db:99:28:cc:69: c9:e6:cf:e4:a9:05:02:8a:ce:34:78:ed:93:2e:87:88:64:fe: 53:fa:7b:8b:1c:be:0a:3c:da:c7:2e:0e:87:5e:dd:50:1b:7c: fd:f0:37:6a:0f:c4:b8:21:72:74:3c:e5:63:1a:4e:ff:eb:a0: 56:61:a4:b2:7b:95:e1:92:d0:39:44:88:68:b5:43:2f:cb:15: c0:aa:4e:55:a9:5e:0c:4c:23:4d:4d:2d:a5:66:92:2f:e6:a0: 71:0e:f7:1b:43:dd:40:21:82:18:a1:e1:e7:c0:a1:f2:36:4d: 62:81:a5:52:5e:bc:f8:f2:6c:17:24:52:c0:2f:2c:08:8f:36: a2:ab:aa:64:6d:1a:ef:5a:d0:00:34:60:9c:cd:83:92:86:c1: 73:53:ce:7b:2b:d5:1b:b4:d9:0b:05:15:f7:e0:6c:ac:6f:42: c2:03:15:d7:c1:8a:1b:c2:53:f5:63:fe:32:21:4a:6a:24:9a: b7:d4:6c:18:95:f9:ea:2c:84:ba:c9:f3:6f:9d:9e:01:60:68: 5d:f7:8a:6f:c9:fe:2f:48:df:f2:9f:cc:eb:df:af:7f:eb:d1: 45:d7:41:07:97:a5:9d:37:f7:dd:b2:c8:64:b0:28:14:2e:ee: 62:e1:91:72 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICHuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjQwNzMwMTYzMzI1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MTVkNS04ZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4j6ab4iJUJz9/ho9tg6MrrOjotmyD/a0khEjV2NKg29SIdNZxC8vQR/b+M7F VPqdYNzQYFIC9V/GydXJskTCv4JamiHAQbdwvEB5ZSIYIT3a9mslBCFXutVNNHUU t34RyUUsHfKLj257eTngqJlpYmi/VugP1i2UtsqdmR/5wrDuGeeZJo699ctr9+hy 7ytpr9EKkTNePO0FOsPOwZWPzLEEgpoSmNmfPkOfWPR4bvd3whChqvRFWzyUAFSQ CGZOKfxTmXuFOf2KQTCs+38Ta33Pne0YIw9ctC/SGSvP9MTcMwRCNsObZdilVMpu tSBLX/Ppsl0DA3JfOx8iLqI+lwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNcgTBzN L37uvaaAvHYIVD0x7JprMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI0MEIvNUI3MzZEOTI0MzMzMTFFNjk1OUE3ODE1QzRGOUFFMDIvRTM1MkUwQTI4 OTZGMTFFN0JCRjI5MjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnRKQwDQQCAAIwBwMFACQAgkAwDQYJKoZIhvcNAQELBQAD ggEBAD9C/ZFNDD+qqJiHwdTbmSjMacnmz+SpBQKKzjR47ZMuh4hk/lP6e4scvgo8 2scuDode3VAbfP3wN2oPxLghcnQ85WMaTv/roFZhpLJ7leGS0DlEiGi1Qy/LFcCq TlWpXgxMI01NLaVmki/moHEO9xtD3UAhghih4efAofI2TWKBpVJevPjybBckUsAv LAiPNqKrqmRtGu9a0AA0YJzNg5KGwXNTznsr1Ru02QsFFffgbKxvQsIDFdfBihvC U/Vj/jIhSmokmrfUbBiV+eoshLrJ82+dngFgaF33im/J/i9I3/KfzOvfr3/r0UXX QQeXpZ03992yyGSwKBQu7mLhkXI= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org