$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa File: 4AE6CFF8B25211EBA977EE09C4F9AE02.roa (raw, json) Hash identifier: 7/+tCt4S1TehzXEgy5vXWb10ZIir0doOODCzTHQK16s= Subject key identifier: 8A:12:21:30:26:F5:C4:FA:5D:50:BD:5B:8E:9E:20:20:01:11:2D:9C Certificate issuer: /CN=A91F8336/serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Certificate serial: 1115 Authority key identifier: D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa Signing time: Sun 04 Aug 2024 12:30:23 +0000 ROA not before: Sun 04 Aug 2024 12:30:23 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138495 IP address blocks: 103.126.244.0/22 maxlen: 24 2404:1540::/32 maxlen: 32 2404:1540:1000::/36 maxlen: 36 2404:1540:1000::/48 maxlen: 48 2404:1540:1001::/48 maxlen: 48 2404:1540:1002::/48 maxlen: 48 2404:1540:2000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4373 (0x1115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8336/serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Validity Not Before: Aug 4 12:30:23 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66af745f-780f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7e:1d:12:5a:2e:dc:2a:b6:dc:af:12:98:57: d4:3a:83:4d:6d:ab:ba:6b:a2:34:e5:5f:84:81:94: e9:de:90:ab:1c:bf:ba:1e:7c:53:d2:e6:34:c8:02: 46:46:6b:5b:95:2f:03:96:f2:c8:94:0e:ab:21:30: 90:5f:f8:00:0c:7c:53:e0:82:af:e6:17:77:7f:9c: 99:8c:56:7c:e9:31:9e:96:17:57:16:a2:31:31:7c: 0f:82:db:8f:7c:a9:e6:b9:34:e9:9d:cf:4e:a0:dd: 53:8b:1a:fb:cb:8f:cc:9d:42:5c:02:15:ec:4b:d3: 1c:da:5e:2d:17:5a:2d:17:e1:4e:d8:6a:ca:72:c0: 23:8a:09:60:aa:7b:52:f0:03:1b:c2:61:34:71:44: 34:1c:31:11:7d:e7:e8:15:58:fe:81:ee:e5:b8:c9: 75:e1:28:9c:53:8e:b9:cd:a5:e4:63:8b:3b:22:01: 3d:fd:9d:4d:c7:c9:c2:22:7e:74:5e:ae:af:54:d3: 79:62:68:a7:b7:bd:84:40:b1:5f:b1:ad:46:c6:3f: 6d:3d:4f:3e:93:a2:54:b8:d9:24:bd:e0:68:e8:e7: 56:c5:f1:c0:e2:73:de:ba:eb:49:5d:f9:04:fb:0d: 23:d0:f2:81:ba:1e:d2:36:78:0d:18:6c:eb:ef:be: 00:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:12:21:30:26:F5:C4:FA:5D:50:BD:5B:8E:9E:20:20:01:11:2D:9C X509v3 Authority Key Identifier: keyid:D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.244.0/22 IPv6: 2404:1540::/32 Signature Algorithm: sha256WithRSAEncryption 77:d5:00:a8:f7:6a:0a:29:c6:4e:00:64:35:13:86:b9:9c:e9: 9a:e2:8f:91:df:2e:b1:1e:8e:3a:5d:15:2f:36:07:79:5f:85: 01:cd:70:b8:a6:f6:19:c1:3c:95:b4:78:da:8d:52:5a:74:60: 21:85:f2:d8:61:09:9c:db:59:4c:f2:f5:21:2f:7d:6c:c0:ec: 9f:06:b8:1f:fe:a8:13:d2:3f:1c:d7:38:7e:5f:8f:1a:c7:ac: 38:5f:7a:9a:23:d1:fe:f1:b4:88:26:90:5b:a3:60:2b:a1:85: 91:c8:0f:70:7a:c4:ab:f7:07:08:a7:11:14:31:b1:57:cc:be: 5e:09:a1:c1:82:cc:68:59:0d:10:97:ac:50:d0:75:0f:b2:02: 54:84:b8:d5:12:4a:44:ae:dc:b4:a6:5c:93:67:51:06:da:71: 75:b8:a9:fe:04:82:d4:37:be:c7:9d:e8:0e:8e:ca:a5:78:08: 4f:8d:f8:ec:92:c5:4d:f1:6c:03:3e:0c:3d:39:b0:d6:12:ca: 8b:b2:cd:51:58:b8:bb:4e:65:5d:6d:bb:e6:0e:a7:6f:05:ab: dd:0f:a8:dd:42:b5:8b:a6:3c:e1:55:b7:12:87:3a:54:b6:13: 0b:10:44:35:bb:71:89:6d:84:6a:b1:7b:a8:7c:e6:28:ea:b5: 22:78:8f:47 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICERUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzMzYxMTAvBgNVBAUTKEQ3N0YzNzk3NTIzNUFCREU1RjQ5ODlGQkYzRkU5MzhE NTI3QzE5NDgwHhcNMjQwODA0MTIzMDIzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFmNzQ1Zi03ODBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5X4dElou3Cq23K8SmFfUOoNNbau6a6I05V+EgZTp3pCrHL+6HnxT0uY0yAJG RmtblS8DlvLIlA6rITCQX/gADHxT4IKv5hd3f5yZjFZ86TGelhdXFqIxMXwPgtuP fKnmuTTpnc9OoN1Tixr7y4/MnUJcAhXsS9Mc2l4tF1otF+FO2GrKcsAjiglgqntS 8AMbwmE0cUQ0HDERfefoFVj+ge7luMl14SicU465zaXkY4s7IgE9/Z1Nx8nCIn50 Xq6vVNN5Ymint72EQLFfsa1Gxj9tPU8+k6JUuNkkveBo6OdWxfHA4nPeuutJXfkE +w0j0PKBuh7SNngNGGzr774A/QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIoSITAm 9cT6XVC9W46eICABES2cMB8GA1UdIwQYMBaAFNd/N5dSNaveX0mJ+/P+k41SfBlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODMzNi8zN0UxNjczRUZE MUQxMUU4QjNFMzZFNTdDNEY5QUUwMi8xMzgzbDFJMXE5NWZTWW43OF82VGpWSjhH VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEzODNsMUkxcTk1ZlNZbjc4XzZUalZKOEdVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgzMzYvMzdFMTY3M0VGRDFEMTFFOEIzRTM2RTU3QzRGOUFFMDIvNEFFNkNGRjhC MjUyMTFFQkE5NzdFRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfvQwDQQCAAIwBwMFACQEFUAwDQYJKoZIhvcNAQELBQAD ggEBAHfVAKj3agopxk4AZDUThrmc6Zrij5HfLrEejjpdFS82B3lfhQHNcLim9hnB PJW0eNqNUlp0YCGF8thhCZzbWUzy9SEvfWzA7J8GuB/+qBPSPxzXOH5fjxrHrDhf epoj0f7xtIgmkFujYCuhhZHID3B6xKv3BwinERQxsVfMvl4JocGCzGhZDRCXrFDQ dQ+yAlSEuNUSSkSu3LSmXJNnUQbacXW4qf4EgtQ3vsed6A6OyqV4CE+N+OySxU3x bAM+DD05sNYSyouyzVFYuLtOZV1tu+YOp28Fq90PqN1CtYumPOFVtxKHOlS2EwsQ RDW7cYlthGqxe6h85ijqtSJ4j0c= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:23 2024 by rpki-client on console-ams.rpki-client.org