$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/0A66C1B0C60711EE8FCEFB7AC4F9AE02.roa File: 0A66C1B0C60711EE8FCEFB7AC4F9AE02.roa (raw, json) Hash identifier: 7sNWwGuZ+OzZYuTBVak4Ik70FNdyKT2hyC5Tpz41AG0= Subject key identifier: 91:99:5E:ED:56:7B:84:65:04:03:F7:07:F3:1B:B6:E6:40:A5:FA:1C Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 0755 Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/0A66C1B0C60711EE8FCEFB7AC4F9AE02.roa Signing time: Wed 28 Aug 2024 21:59:56 +0000 ROA not before: Wed 28 Aug 2024 21:59:56 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132857 IP address blocks: 43.243.56.0/23 maxlen: 24 202.49.41.0/24 maxlen: 24 2407:2b00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 20:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1877 (0x755) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: Aug 28 21:59:56 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66cf9ddc-67cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:95:2e:07:52:3f:0d:65:fd:88:a9:7c:af:07: 62:ba:b3:9a:17:8d:59:03:5d:16:e8:89:1b:04:43: ff:57:7f:5e:7d:4d:39:07:33:7c:52:33:fa:61:82: a3:70:13:44:81:06:d4:b2:69:99:af:b5:d3:93:ea: e2:82:87:c8:ca:74:66:42:b9:50:d5:e5:f2:6f:7b: 2d:92:60:46:5d:42:a4:dd:8d:3b:db:03:42:71:69: bc:62:54:32:c9:4f:4a:97:52:ea:e3:9d:41:a9:9d: 5a:f6:a5:44:ad:e1:5b:e0:6d:2c:c6:9c:81:c9:5c: f3:3f:c2:c5:c9:7a:e9:c2:ca:7d:70:9d:b3:e1:10: f9:99:ab:af:0e:75:5e:ea:03:9a:86:e3:f6:14:4c: de:35:11:1e:fc:cf:7a:b5:27:a0:46:49:d6:b0:e3: f1:c9:91:2b:bb:65:55:c3:3f:13:75:c2:32:7f:d9: b2:8c:4c:98:f2:78:39:74:a5:1e:db:60:a4:2f:31: 42:dc:86:95:79:99:21:21:44:a4:e4:ea:9d:38:4e: f8:21:81:c4:76:19:c7:55:51:95:e9:70:ea:75:7d: 89:f4:df:d2:4e:f0:1b:ff:3f:da:a2:ff:ee:05:54: 7e:d7:78:d0:81:fc:64:97:8e:02:c0:5a:db:7a:91: 1a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:99:5E:ED:56:7B:84:65:04:03:F7:07:F3:1B:B6:E6:40:A5:FA:1C X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/0A66C1B0C60711EE8FCEFB7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.56.0/23 202.49.41.0/24 IPv6: 2407:2b00::/32 Signature Algorithm: sha256WithRSAEncryption 4e:ca:90:26:6d:4a:10:24:9e:91:2e:e2:a7:24:ce:88:c1:65: f9:25:e5:5d:5c:ad:55:07:50:01:17:44:07:d2:aa:41:7f:7f: bd:79:7a:5d:31:5b:3c:60:10:de:93:08:c2:ee:80:4c:79:51: 4d:f8:c8:b7:ea:dd:68:66:15:5a:a3:ca:92:f2:25:26:50:fa: c9:2b:1f:c3:46:d7:54:85:c4:ed:d2:81:e3:17:f1:7d:81:8b: 6d:0f:0f:9e:7b:10:fc:21:ef:84:c3:b9:a8:80:52:e5:cb:11: f7:ad:cc:e6:a1:d0:39:41:20:bb:7d:42:4b:99:8a:44:29:38: e9:22:9f:0e:c8:70:1e:ef:78:18:f3:45:e5:e9:66:00:1e:9d: 9c:7e:94:35:59:55:ef:99:d8:32:69:53:f0:6d:fb:98:27:a5: 04:86:55:22:84:2c:ff:c5:40:65:dd:01:f7:13:b9:6b:87:ec: d2:3f:0d:a1:24:84:8b:b6:4d:5f:ea:11:e0:a1:9c:13:b7:32: 83:7d:b3:f5:8b:18:3a:fd:c2:9d:3d:26:fb:3b:99:f0:ac:0f: 5d:04:7d:be:77:e3:14:4b:21:22:be:f4:a5:b5:3e:6e:84:40: f8:03:96:19:d9:ff:92:16:a5:b7:89:b6:19:ba:dd:e6:b9:b7: 1b:9f:97:6c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjQwODI4MjE1OTU2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNmOWRkYy02N2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopUuB1I/DWX9iKl8rwdiurOaF41ZA10W6IkbBEP/V39efU05BzN8UjP6YYKj cBNEgQbUsmmZr7XTk+rigofIynRmQrlQ1eXyb3stkmBGXUKk3Y072wNCcWm8YlQy yU9Kl1Lq451BqZ1a9qVEreFb4G0sxpyByVzzP8LFyXrpwsp9cJ2z4RD5mauvDnVe 6gOahuP2FEzeNREe/M96tSegRknWsOPxyZEru2VVwz8TdcIyf9myjEyY8ng5dKUe 22CkLzFC3IaVeZkhIUSk5OqdOE74IYHEdhnHVVGV6XDqdX2J9N/STvAb/z/aov/u BVR+13jQgfxkl44CwFrbepEaHQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJGZXu1W e4RlBAP3B/MbtuZApfocMB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYzQzYvNjMxQ0MxNjBGMzM4MTFFQUE2M0Q0MTU0QzRGOUFFMDIvMEE2NkMxQjBD NjA3MTFFRThGQ0VGQjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAEr8zgDBADKMSkwDQQCAAIwBwMFACQHKwAwDQYJKoZIhvcN AQELBQADggEBAE7KkCZtShAknpEu4qckzojBZfkl5V1crVUHUAEXRAfSqkF/f715 el0xWzxgEN6TCMLugEx5UU34yLfq3WhmFVqjypLyJSZQ+skrH8NG11SFxO3SgeMX 8X2Bi20PD557EPwh74TDuaiAUuXLEfetzOah0DlBILt9QkuZikQpOOkinw7IcB7v eBjzReXpZgAenZx+lDVZVe+Z2DJpU/Bt+5gnpQSGVSKELP/FQGXdAfcTuWuH7NI/ DaEkhIu2TV/qEeChnBO3MoN9s/WLGDr9wp09Jvs7mfCsD10Efb534xRLISK+9KW1 Pm6EQPgDlhnZ/5IWpbeJthm63ea5txufl2w= -----END CERTIFICATE-----Generated at Tue Nov 26 22:44:34 2024 by rpki-client on console-fra.rpki-client.org