$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/1EEB10267CFB11EBA8C7B009C4F9AE02.roa File: 1EEB10267CFB11EBA8C7B009C4F9AE02.roa (raw, json) Hash identifier: O77zp6ks0TqxaDAkJp4Lm1+BoJkZNosQNYkw2uGOZ3I= Subject key identifier: 78:D7:37:72:75:8A:CA:8A:8F:3E:42:CD:5F:D6:CF:47:B2:9A:46:A2 Certificate issuer: /CN=A91F5CE4/serialNumber=9B202F95851EFC4B64CE3B409C6C604B35B498D8 Certificate serial: 0935 Authority key identifier: 9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/1EEB10267CFB11EBA8C7B009C4F9AE02.roa Signing time: Tue 10 Sep 2024 21:29:33 +0000 ROA not before: Tue 10 Sep 2024 21:29:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 3170 IP address blocks: 103.141.24.0/23 maxlen: 24 2001:df0:e780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.crl rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2357 (0x935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5CE4/serialNumber=9B202F95851EFC4B64CE3B409C6C604B35B498D8 Validity Not Before: Sep 10 21:29:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e0ba3d-2ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d4:68:98:48:38:15:97:4b:b1:b2:22:32:3b: a5:bc:50:e3:c3:fd:44:bc:61:8c:3f:d0:19:a0:66: b0:ea:3f:cd:f7:31:0f:e7:d9:8a:7d:36:0d:f9:db: bf:a1:03:47:14:ef:7b:13:1d:3b:8d:dc:b9:c6:3e: f6:6e:71:37:c6:dd:ff:c4:6c:4b:90:b3:c7:78:64: 72:84:bb:25:95:c4:ee:66:4e:58:93:ef:80:02:d6: 8a:8b:2e:c9:f5:04:02:90:10:0f:7a:cd:df:a8:b3: e4:1a:e8:63:54:ee:eb:d5:ca:06:82:5a:2c:96:c3: 51:84:0e:4d:e1:70:93:24:ad:c6:38:1c:d0:77:4d: 05:89:9f:95:a0:e7:03:9b:ef:fa:5e:f5:d7:54:c8: 8a:8a:ff:76:bb:49:43:9b:09:5f:6e:76:a7:b9:b9: 0e:f5:9b:92:6f:ce:e5:58:09:bc:a6:59:e1:57:59: 31:7f:53:1d:e7:1f:75:ac:82:a5:ed:66:99:55:04: af:89:d5:c2:8f:84:fa:a3:c9:f2:7e:75:6d:e3:5e: 88:a8:93:f8:ff:91:1b:b3:89:38:ef:a6:08:00:96: f3:72:5c:5c:47:4f:90:f4:bb:3a:3e:a4:35:e7:3b: 6c:4b:3b:0a:0e:14:c6:fd:25:6a:71:9c:73:57:e9: d3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D7:37:72:75:8A:CA:8A:8F:3E:42:CD:5F:D6:CF:47:B2:9A:46:A2 X509v3 Authority Key Identifier: keyid:9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/1EEB10267CFB11EBA8C7B009C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.24.0/23 IPv6: 2001:df0:e780::/48 Signature Algorithm: sha256WithRSAEncryption 35:95:9f:4f:7b:8a:6a:5b:31:80:e1:19:36:61:9b:87:d1:b1: 74:70:93:c5:b2:7b:61:41:09:6b:55:0a:13:fd:94:70:0a:2d: ed:a0:95:91:2b:6d:b4:26:ce:5d:16:92:fd:39:57:ff:5f:8f: 65:4e:39:7d:55:3e:70:95:cd:c6:f3:ad:c3:bd:a8:79:78:82: 73:3d:20:fd:5b:8f:4c:b8:e8:71:71:35:ce:7b:59:e6:96:bd: 0c:a7:30:82:e4:97:28:64:b6:c2:20:96:cd:38:f1:43:7e:68: e0:a9:22:c0:87:41:9c:9b:9b:3b:73:aa:78:28:8d:f3:bb:49: 2b:27:d7:7e:3f:8f:c1:5a:fa:75:19:95:1e:f7:dd:d0:f0:8d: 00:fc:0c:2b:38:3c:2f:06:95:b2:09:1d:c4:da:f1:ae:9c:0b: 69:b3:fb:42:19:23:0b:3d:88:54:ce:32:36:20:a6:4e:cf:1e: fa:59:e6:4a:d0:93:f1:05:b9:93:e3:89:3f:32:25:fa:48:e5: 27:5b:5f:05:67:77:09:a4:f1:27:78:89:de:93:72:d6:54:d8: 11:07:11:04:2d:6f:9f:4b:8c:d7:b7:50:60:3e:a6:59:09:6c: cc:d3:eb:58:31:33:b7:9a:f5:14:36:86:9e:80:03:bc:1c:ea: 5e:06:6f:91 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDRTQxMTAvBgNVBAUTKDlCMjAyRjk1ODUxRUZDNEI2NENFM0I0MDlDNkM2MDRC MzVCNDk4RDgwHhcNMjQwOTEwMjEyOTMzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwYmEzZC0yY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdRomEg4FZdLsbIiMjulvFDjw/1EvGGMP9AZoGaw6j/N9zEP59mKfTYN+du/ oQNHFO97Ex07jdy5xj72bnE3xt3/xGxLkLPHeGRyhLsllcTuZk5Yk++AAtaKiy7J 9QQCkBAPes3fqLPkGuhjVO7r1coGgloslsNRhA5N4XCTJK3GOBzQd00FiZ+VoOcD m+/6XvXXVMiKiv92u0lDmwlfbnanubkO9ZuSb87lWAm8plnhV1kxf1Md5x91rIKl 7WaZVQSvidXCj4T6o8nyfnVt416IqJP4/5Ebs4k476YIAJbzclxcR0+Q9Ls6PqQ1 5ztsSzsKDhTG/SVqcZxzV+nTXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHjXN3J1 isqKjz5CzV/Wz0eymkaiMB8GA1UdIwQYMBaAFJsgL5WFHvxLZM47QJxsYEs1tJjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUNFNC8zRUZGMUE5QTg2 MzYxMUVBQUU2QjExNDJDNEY5QUUwMi9teUF2bFlVZV9FdGt6anRBbkd4Z1N6VzBt TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL215QXZsWVVlX0V0a3pqdEFuR3hnU3pXMG1OZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjVDRTQvM0VGRjFBOUE4NjM2MTFFQUFFNkIxMTQyQzRGOUFFMDIvMUVFQjEwMjY3 Q0ZCMTFFQkE4QzdCMDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjRgwDwQCAAIwCQMHACABDfDngDANBgkqhkiG9w0BAQsF AAOCAQEANZWfT3uKalsxgOEZNmGbh9GxdHCTxbJ7YUEJa1UKE/2UcAot7aCVkStt tCbOXRaS/TlX/1+PZU45fVU+cJXNxvOtw72oeXiCcz0g/VuPTLjocXE1zntZ5pa9 DKcwguSXKGS2wiCWzTjxQ35o4KkiwIdBnJubO3OqeCiN87tJKyfXfj+PwVr6dRmV Hvfd0PCNAPwMKzg8LwaVsgkdxNrxrpwLabP7QhkjCz2IVM4yNiCmTs8e+lnmStCT 8QW5k+OJPzIl+kjlJ1tfBWd3CaTxJ3iJ3pNy1lTYEQcRBC1vn0uM17dQYD6mWQls zNPrWDEzt5r1FDaGnoADvBzqXgZvkQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org