$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/E2DF828CF20211ECBCC9B986C4F9AE02.roa File: E2DF828CF20211ECBCC9B986C4F9AE02.roa (raw, json) Hash identifier: tfUuxZjAK76Q4T6Ge0ulThHXULE82KNLMMQeccievfc= Subject key identifier: 6A:92:7D:20:A4:45:42:BE:A8:5D:32:9F:5C:DD:3D:0C:71:2F:22:C4 Certificate issuer: /CN=A91F6AE0/serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Certificate serial: 0230 Authority key identifier: E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/E2DF828CF20211ECBCC9B986C4F9AE02.roa Signing time: Fri 09 Aug 2024 02:53:37 +0000 ROA not before: Fri 09 Aug 2024 02:53:37 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 149983 IP address blocks: 103.189.246.0/23 maxlen: 23 103.189.246.0/24 maxlen: 24 103.189.247.0/24 maxlen: 24 2001:df0:dfc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6AE0/serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Validity Not Before: Aug 9 02:53:37 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b584b1-7487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2f:1b:80:8d:5f:b4:59:2a:4a:94:1c:d2:2b: a1:5d:ae:c0:03:b9:de:61:e2:6e:16:39:a4:3f:33: ac:88:38:a7:92:7b:b3:d5:96:fe:98:e5:24:17:c3: f8:be:e3:5b:76:a5:56:54:38:b2:7f:52:a1:e7:d5: 58:8b:f0:be:d2:34:f5:8b:d0:7f:35:5d:cf:65:57: 53:42:6c:88:29:ee:d9:03:8a:d9:99:3b:77:43:07: f9:4d:9b:31:94:b4:f2:fc:54:e3:d5:8f:a5:db:a8: 1e:b3:f0:fa:3f:2d:84:44:d6:c7:71:d8:23:45:fa: 83:19:34:8d:f8:74:ac:73:96:99:db:dc:f3:c3:a6: 17:fc:f6:0b:76:23:78:91:41:23:00:6e:42:97:c3: e4:73:2c:98:2d:67:2f:0a:99:82:fb:93:ab:51:4f: 3e:e9:d6:d0:25:77:25:cc:70:66:40:68:79:9b:b5: 2a:d7:54:fa:03:1d:59:a3:1c:4b:02:85:e0:a9:dc: 1b:c6:f9:d8:54:00:5c:6e:3d:b0:b3:d6:97:07:0f: a2:6c:f8:c6:dc:a4:e0:91:c4:e2:9e:81:e1:e1:54: 31:85:54:c2:d1:4a:04:21:6a:a1:11:4b:ca:24:f5: a4:d6:cb:64:62:a9:ff:69:cf:7a:77:2f:4c:bf:45: b9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:92:7D:20:A4:45:42:BE:A8:5D:32:9F:5C:DD:3D:0C:71:2F:22:C4 X509v3 Authority Key Identifier: keyid:E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/E2DF828CF20211ECBCC9B986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.246.0/23 IPv6: 2001:df0:dfc0::/48 Signature Algorithm: sha256WithRSAEncryption 85:b0:51:03:bf:b2:f0:72:74:ce:e6:f9:b6:41:41:46:15:8a: 7d:28:08:19:82:ef:a9:3a:b7:86:3d:b9:51:f6:23:e2:26:dc: 61:9e:df:9f:57:9e:56:63:ee:3b:48:3d:aa:4c:f1:83:3c:e1: bf:b8:a6:66:20:67:a3:fe:2e:01:0a:5d:13:6c:b8:ac:23:ee: a8:50:a1:c0:41:9d:46:ba:de:04:fa:83:c6:7c:c9:5f:d4:a1: 18:d3:0b:6a:23:4d:5b:91:ea:fa:02:95:d5:b0:b6:2a:df:d8: ed:8d:85:57:90:7a:46:a4:d1:f2:66:4d:10:93:99:9f:95:07: c7:b0:75:5d:05:7e:7e:0a:8a:02:3a:eb:f1:55:ec:e9:26:51: 2b:e2:a2:f9:c9:af:78:b2:53:f0:a0:fe:34:6c:61:65:7f:d6: 2f:7e:65:8d:8b:de:6a:24:95:b4:5d:7e:84:4d:f8:5b:3b:5c: 9f:83:b7:8a:f2:c2:04:a1:d6:fc:86:a9:b8:e9:b1:15:03:74: db:be:06:b2:c8:72:1a:bf:bb:cc:18:b4:59:54:ea:c0:89:d0: c8:e2:4f:e3:8f:ea:33:7e:1e:72:5b:9c:7b:77:ad:6c:b8:3c: 14:65:1a:cb:82:48:45:a9:35:31:cd:5a:61:28:ff:24:d0:48: 93:77:c8:d0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBRTAxMTAvBgNVBAUTKEUxNDg5RTA1NDU2RTkyQ0FENzE1ODQ3MjAwRTRBNzVE NkMzRTQzQ0UwHhcNMjQwODA5MDI1MzM3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI1ODRiMS03NDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4i8bgI1ftFkqSpQc0iuhXa7AA7neYeJuFjmkPzOsiDinknuz1Zb+mOUkF8P4 vuNbdqVWVDiyf1Kh59VYi/C+0jT1i9B/NV3PZVdTQmyIKe7ZA4rZmTt3Qwf5TZsx lLTy/FTj1Y+l26ges/D6Py2ERNbHcdgjRfqDGTSN+HSsc5aZ29zzw6YX/PYLdiN4 kUEjAG5Cl8PkcyyYLWcvCpmC+5OrUU8+6dbQJXclzHBmQGh5m7Uq11T6Ax1ZoxxL AoXgqdwbxvnYVABcbj2ws9aXBw+ibPjG3KTgkcTinoHh4VQxhVTC0UoEIWqhEUvK JPWk1stkYqn/ac96dy9Mv0W5/wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGqSfSCk RUK+qF0yn1zdPQxxLyLEMB8GA1UdIwQYMBaAFOFIngVFbpLK1xWEcgDkp11sPkPO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFFMC9GQTA0N0Y1NEYx RkMxMUVDOTlCMkNCNkJDNEY5QUUwMi80VWllQlVWdWtzclhGWVJ5QU9TblhXdy1R ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVaWVCVVZ1a3NyWEZZUnlBT1NuWFd3LVE4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZBRTAvRkEwNDdGNTRGMUZDMTFFQzk5QjJDQjZCQzRGOUFFMDIvRTJERjgyOENG MjAyMTFFQ0JDQzlCOTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnvfYwDwQCAAIwCQMHACABDfDfwDANBgkqhkiG9w0BAQsF AAOCAQEAhbBRA7+y8HJ0zub5tkFBRhWKfSgIGYLvqTq3hj25UfYj4ibcYZ7fn1ee VmPuO0g9qkzxgzzhv7imZiBno/4uAQpdE2y4rCPuqFChwEGdRrreBPqDxnzJX9Sh GNMLaiNNW5Hq+gKV1bC2Kt/Y7Y2FV5B6RqTR8mZNEJOZn5UHx7B1XQV+fgqKAjrr 8VXs6SZRK+Ki+cmveLJT8KD+NGxhZX/WL35ljYveaiSVtF1+hE34Wztcn4O3ivLC BKHW/IapuOmxFQN0274GsshyGr+7zBi0WVTqwInQyOJP44/qM34ecluce3etbLg8 FGUay4JIRak1Mc1aYSj/JNBIk3fI0A== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:59 2024 by rpki-client on console-ams.rpki-client.org