$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FC7C6F54995911ECBA362E6BC4F9AE02.roa File: FC7C6F54995911ECBA362E6BC4F9AE02.roa (raw, json) Hash identifier: 79jSSZsgVzeOB3JXG8CrDTsbD2h5rxpORhgIPPNsRJE= Subject key identifier: F4:A8:BD:02:DE:1B:7F:8A:ED:A5:D5:C7:C1:D3:FF:C7:C8:24:1E:85 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3FF9 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FC7C6F54995911ECBA362E6BC4F9AE02.roa Signing time: Tue 24 Oct 2023 02:58:43 +0000 ROA not before: Tue 24 Oct 2023 02:58:43 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45544 IP address blocks: 27.0.12.0/22 maxlen: 24 45.117.168.0/22 maxlen: 24 45.251.112.0/22 maxlen: 24 103.1.236.0/22 maxlen: 24 103.7.40.0/22 maxlen: 24 103.77.160.0/22 maxlen: 24 103.77.164.0/22 maxlen: 24 103.129.84.0/22 maxlen: 24 103.131.72.0/22 maxlen: 24 103.252.252.0/22 maxlen: 24 112.213.80.0/20 maxlen: 24 2406:9c80::/48 maxlen: 48 2406:9c80:af00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16377 (0x3ff9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Oct 24 02:58:43 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=653732e3-0d4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0a:61:70:49:b7:69:cc:3c:4d:69:80:bc:a4: a6:38:a0:2e:a2:c5:39:ec:da:60:dc:15:92:85:7b: ae:77:a5:f6:b5:b8:1a:23:cd:2f:da:91:b8:82:86: ad:79:dd:e5:7c:33:71:22:d0:fd:8f:d0:f6:02:0e: 6b:52:58:b3:31:da:92:02:44:c2:1f:63:90:3e:85: dd:73:b3:77:d6:ec:00:9e:d5:f7:1f:fb:73:63:28: ad:c7:81:b9:7e:cd:17:83:13:50:06:12:fb:a7:0e: a1:12:ce:f4:2e:0d:a2:46:07:36:32:49:16:c1:d9: b2:7f:0b:77:3c:b3:d9:fd:25:8e:11:aa:1e:2b:9a: c4:9f:b1:20:02:93:dc:15:11:1d:f2:52:4c:51:21: 17:3e:cc:fa:04:c9:01:b3:70:e6:6c:2b:a4:6e:8d: 1e:48:96:59:b7:28:a2:42:0f:b8:a8:ec:5f:19:d1: 98:73:35:60:f9:99:80:f3:ac:0c:94:aa:24:3b:c0: c1:0d:8f:f0:ee:cc:35:eb:6e:4a:c5:5c:05:11:ee: 04:cc:51:13:77:c8:68:97:a0:fc:00:ca:c7:79:b5: b5:2a:8e:1f:ff:05:ab:33:5e:9f:95:43:d4:4b:92: dc:b8:20:3d:20:88:a6:3f:84:44:de:f4:8c:ee:ce: aa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A8:BD:02:DE:1B:7F:8A:ED:A5:D5:C7:C1:D3:FF:C7:C8:24:1E:85 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FC7C6F54995911ECBA362E6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.0.12.0/22 45.117.168.0/22 45.251.112.0/22 103.1.236.0/22 103.7.40.0/22 103.77.160.0/21 103.129.84.0/22 103.131.72.0/22 103.252.252.0/22 112.213.80.0/20 IPv6: 2406:9c80::/48 2406:9c80:af00::/48 Signature Algorithm: sha256WithRSAEncryption 04:33:74:dd:99:87:83:e8:a9:2a:22:1c:2f:18:04:27:5d:7e: ed:c9:db:df:37:9b:00:af:84:51:90:14:1f:a7:83:5e:30:6e: d2:f0:44:fc:47:eb:a5:b9:1b:f5:88:b7:96:2f:ba:26:d7:1b: d8:4a:ae:f1:8b:9a:02:b7:0b:3c:f5:7b:36:44:f5:0e:4d:d6: 31:2b:d8:10:6f:8f:94:ac:56:d1:5b:6b:a0:8c:09:53:c9:d4: 71:cc:91:53:d7:ec:8e:78:a1:29:cf:d7:a0:b1:a4:e4:e8:bb: 7e:92:c7:e1:09:51:aa:1a:2f:24:31:00:94:36:a7:96:49:59: 1a:3e:4b:57:73:cf:c6:7c:c0:fb:85:04:9a:fe:a8:ad:dd:7d: cf:17:14:28:02:56:46:69:d6:94:1a:33:55:ee:b8:1f:00:b3: f5:4a:3d:06:0d:ea:42:db:00:41:54:f5:cc:8d:d5:f6:0d:c3: b0:2c:18:18:72:3c:9c:fc:94:fd:d5:00:8b:86:7e:23:a1:48: 2a:e5:75:e4:72:e6:c8:fd:db:86:f6:ac:bf:9e:41:3d:aa:23: 6d:71:44:85:00:33:ee:4c:e2:5c:b8:77:66:a7:74:69:f4:81: 2d:19:6e:bf:79:4e:51:7c:bd:14:62:4f:7d:c0:57:b7:0e:fb: f8:ab:2c:97 -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgICP/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMxMDI0MDI1ODQzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM3MzJlMy0wZDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgphcEm3acw8TWmAvKSmOKAuosU57Npg3BWShXuud6X2tbgaI80v2pG4goat ed3lfDNxItD9j9D2Ag5rUlizMdqSAkTCH2OQPoXdc7N31uwAntX3H/tzYyitx4G5 fs0XgxNQBhL7pw6hEs70Lg2iRgc2MkkWwdmyfwt3PLPZ/SWOEaoeK5rEn7EgApPc FREd8lJMUSEXPsz6BMkBs3DmbCukbo0eSJZZtyiiQg+4qOxfGdGYczVg+ZmA86wM lKokO8DBDY/w7sw1625KxVwFEe4EzFETd8hol6D8AMrHebW1Ko4f/wWrM16flUPU S5LcuCA9IIimP4RE3vSM7s6qnwIDAQABo4IC5TCCAuEwHQYDVR0OBBYEFPSovQLe G3+K7aXVx8HT/8fIJB6FMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRkM3QzZGNTQ5 OTU5MTFFQ0JBMzYyRTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbwYIKwYBBQUHAQcBAf8E YDBeMEIEAgABMDwDBAIbAAwDBAItdagDBAIt+3ADBAJnAewDBAJnBygDBANnTaAD BAJngVQDBAJng0gDBAJn/PwDBARw1VAwGAQCAAIwEgMHACQGnIAAAAMHACQGnICv ADANBgkqhkiG9w0BAQsFAAOCAQEABDN03ZmHg+ipKiIcLxgEJ11+7cnb3zebAK+E UZAUH6eDXjBu0vBE/Efrpbkb9Yi3li+6Jtcb2Equ8YuaArcLPPV7NkT1Dk3WMSvY EG+PlKxW0VtroIwJU8nUccyRU9fsjnihKc/XoLGk5Oi7fpLH4QlRqhovJDEAlDan lklZGj5LV3PPxnzA+4UEmv6ord19zxcUKAJWRmnWlBozVe64HwCz9Uo9Bg3qQtsA QVT1zI3V9g3DsCwYGHI8nPyU/dUAi4Z+I6FIKuV15HLmyP3bhvasv55BPaojbXFE hQAz7kziXLh3Zqd0afSBLRluv3lOUXy9FGJPfcBXtw77+Ksslw== -----END CERTIFICATE-----Generated at Fri May 31 15:08:34 2024 by rpki-client on console-fra.rpki-client.org