$ rpki-client -vvf rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/1A377B907A7811EF9D5ED47CC4F9AE02.roa File: 1A377B907A7811EF9D5ED47CC4F9AE02.roa (raw, json) Hash identifier: 2rZ8JkbwEBy2UzepU0XN3j2F5qgf6EJRSOSaXa5sPO8= Subject key identifier: 86:FD:D8:E6:9C:06:2B:5F:FA:8D:A6:0B:22:BB:6B:19:6B:11:6F:F3 Certificate issuer: /CN=A91F86D2/serialNumber=B8ADD5F84D11BAD747FBE958D46BAD3BA9131903 Certificate serial: 030A Authority key identifier: B8:AD:D5:F8:4D:11:BA:D7:47:FB:E9:58:D4:6B:AD:3B:A9:13:19:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK3V-E0RutdH--lY1GutO6kTGQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/1A377B907A7811EF9D5ED47CC4F9AE02.roa Signing time: Tue 24 Sep 2024 13:23:20 +0000 ROA not before: Tue 24 Sep 2024 13:23:20 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 149522 IP address blocks: 103.182.122.0/23 maxlen: 24 2400:5ce0::/44 maxlen: 44 2400:5ce0:10::/46 maxlen: 46 2400:5ce0:18::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.crl rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK3V-E0RutdH--lY1GutO6kTGQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 778 (0x30a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F86D2/serialNumber=B8ADD5F84D11BAD747FBE958D46BAD3BA9131903 Validity Not Before: Sep 24 13:23:20 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66f2bd48-766b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a1:a4:94:b4:ee:5a:8b:64:98:1b:83:d0:55: 32:05:ca:dd:b8:aa:a4:ee:60:f9:6d:e0:60:85:ca: 35:5a:ed:dc:19:ab:c5:1c:07:ac:8b:c4:ae:cb:b9: f3:13:73:99:1b:18:9e:08:85:2a:67:0a:f0:19:0b: 26:5b:46:2d:91:40:0b:6e:ae:42:39:0a:83:8d:74: 33:fb:ac:0a:ea:a2:a6:f2:9a:b7:ec:b6:03:8b:c5: 5d:53:95:b0:b0:0b:d9:26:45:a1:11:9e:86:4e:e0: d8:8c:a5:78:bf:d2:50:6c:0a:f6:90:1c:54:f9:e9: b2:a3:eb:c4:f9:e0:24:ab:e5:69:19:8d:5e:86:55: be:2b:f9:53:d0:b8:28:c6:96:61:0a:05:a5:ad:31: 1b:04:ca:37:e5:39:40:17:f9:ab:4d:42:02:b7:5b: c9:78:fb:31:c0:0f:ee:b9:af:2a:64:96:98:07:e9: 0c:c7:a1:a2:8b:21:26:71:b6:41:37:aa:18:7c:37: e6:f3:c5:17:90:e1:27:95:ab:4f:4b:47:b3:0a:45: 16:cb:50:92:44:ed:b6:62:0f:bc:bf:38:0a:ce:fd: ca:a3:7e:60:c7:84:c8:b5:b9:94:52:1e:b9:df:78: 92:60:17:21:44:64:0a:70:8e:f0:e0:c2:07:48:74: 6a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:FD:D8:E6:9C:06:2B:5F:FA:8D:A6:0B:22:BB:6B:19:6B:11:6F:F3 X509v3 Authority Key Identifier: keyid:B8:AD:D5:F8:4D:11:BA:D7:47:FB:E9:58:D4:6B:AD:3B:A9:13:19:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK3V-E0RutdH--lY1GutO6kTGQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/1A377B907A7811EF9D5ED47CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.122.0/23 IPv6: 2400:5ce0::-2400:5ce0:13:ffff:ffff:ffff:ffff:ffff 2400:5ce0:18::/45 Signature Algorithm: sha256WithRSAEncryption 26:48:65:ee:93:38:3d:42:a8:3e:cd:64:3f:08:29:e1:9b:0a: ce:f5:88:5c:d9:80:9c:1e:a4:63:f6:dc:e8:09:53:9f:d4:d8: 60:3f:1b:91:66:7a:6d:f2:70:c3:69:3d:4b:a1:d3:99:7d:aa: b8:92:5d:86:fa:50:6e:32:d7:ee:3b:1e:9f:ab:db:8a:8c:b9: 16:e1:ac:5c:51:e3:b1:7f:6d:17:5f:08:5a:32:18:92:53:18: 5b:b8:89:6e:88:78:ac:1c:48:d5:3e:31:5b:ef:a1:e5:78:48: 02:6e:a4:d1:1d:43:52:e5:1a:16:dc:d4:1f:60:a8:8b:c4:8c: 70:09:0b:39:c7:de:1b:ba:fb:ed:9f:4b:8e:e7:85:a8:86:b5: e7:13:93:ed:f3:7c:84:39:ef:c7:25:71:c2:65:e6:0d:90:a0: 3c:df:c9:96:5b:f0:2d:97:c9:f2:1b:19:d4:a2:01:1c:7f:1f: 2d:5e:65:f3:b8:ff:97:f0:49:5c:32:8e:be:73:fb:2d:ca:ef: 86:bd:91:39:31:e1:da:41:99:cc:f1:4e:c8:4b:21:b6:f7:63: a9:e5:fa:f0:d7:5b:33:8a:c9:d0:40:af:6b:59:69:ed:0e:33: 13:ba:b1:61:0a:f1:9f:61:c7:14:bc:30:35:9f:e2:b6:e8:b6: 45:1b:75:4a -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICAwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg2RDIxMTAvBgNVBAUTKEI4QURENUY4NEQxMUJBRDc0N0ZCRTk1OEQ0NkJBRDNC QTkxMzE5MDMwHhcNMjQwOTI0MTMyMzIwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyYmQ0OC03NjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKGklLTuWotkmBuD0FUyBcrduKqk7mD5beBghco1Wu3cGavFHAesi8Suy7nz E3OZGxieCIUqZwrwGQsmW0YtkUALbq5COQqDjXQz+6wK6qKm8pq37LYDi8VdU5Ww sAvZJkWhEZ6GTuDYjKV4v9JQbAr2kBxU+emyo+vE+eAkq+VpGY1ehlW+K/lT0Lgo xpZhCgWlrTEbBMo35TlAF/mrTUICt1vJePsxwA/uua8qZJaYB+kMx6GiiyEmcbZB N6oYfDfm88UXkOEnlatPS0ezCkUWy1CSRO22Yg+8vzgKzv3Ko35gx4TItbmUUh65 33iSYBchRGQKcI7w4MIHSHRqvQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFIb92Oac Bitf+o2mCyK7axlrEW/zMB8GA1UdIwQYMBaAFLit1fhNEbrXR/vpWNRrrTupExkD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODZEMi8zOUREQ0NEQ0E5 NzUxMUVDQkE1QkRDMzNDNEY5QUUwMi91SzNWLUUwUnV0ZEgtLWxZMUd1dE82a1RH UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLM1YtRTBSdXRkSC0tbFkxR3V0TzZrVEdRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjg2RDIvMzlERENDRENBOTc1MTFFQ0JBNUJEQzMzQzRGOUFFMDIvMUEzNzdCOTA3 QTc4MTFFRjlENUVENDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMAwEAgABMAYDBAFntnowIQQCAAIwGzAQAwUFJABc4AMHAiQAXOAAEAMHAyQA XOAAGDANBgkqhkiG9w0BAQsFAAOCAQEAJkhl7pM4PUKoPs1kPwgp4ZsKzvWIXNmA nB6kY/bc6AlTn9TYYD8bkWZ6bfJww2k9S6HTmX2quJJdhvpQbjLX7jsen6vbioy5 FuGsXFHjsX9tF18IWjIYklMYW7iJboh4rBxI1T4xW++h5XhIAm6k0R1DUuUaFtzU H2Coi8SMcAkLOcfeG7r77Z9LjueFqIa15xOT7fN8hDnvxyVxwmXmDZCgPN/Jllvw LZfJ8hsZ1KIBHH8fLV5l87j/l/BJXDKOvnP7Lcrvhr2ROTHh2kGZzPFOyEshtvdj qeX68NdbM4rJ0ECva1lp7Q4zE7qxYQrxn2HHFLwwNZ/itui2RRt1Sg== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:51 2024 by rpki-client on console-fra.rpki-client.org