$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa File: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (raw, json) Hash identifier: 5WitENJnrkIaDKSZdGfav4jBMV1MXsoOLjamdvAz9SU= Subject key identifier: B8:08:8C:C4:AF:8B:9E:3C:31:DD:CC:67:D9:B7:24:46:21:6F:0D:03 Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1C9D Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa Signing time: Fri 16 Aug 2024 16:33:38 +0000 ROA not before: Fri 16 Aug 2024 16:33:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 4638 IP address blocks: 45.112.224.0/22 maxlen: 24 103.52.88.0/22 maxlen: 24 119.235.64.0/19 maxlen: 24 119.235.96.0/21 maxlen: 24 202.62.118.0/23 maxlen: 24 202.62.120.0/22 maxlen: 24 202.62.124.0/22 maxlen: 24 210.7.0.0/19 maxlen: 24 2403:4600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7325 (0x1c9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Aug 16 16:33:38 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bf7f62-9aff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:87:fe:27:da:d2:90:30:fd:73:6c:d8:41:ce: 30:d3:ce:67:22:60:4c:52:d6:da:66:e0:fc:f8:3a: 0c:08:b7:74:89:7d:1c:39:34:8a:38:6b:fe:0a:b0: c2:d9:ce:6d:27:df:45:35:78:f1:af:89:b2:3d:0f: 12:f6:ad:fa:36:ef:db:a6:2b:90:78:4e:da:08:f0: d0:80:8f:a8:ae:51:66:c8:e5:07:e2:57:db:9c:a6: 2d:95:62:c2:97:92:0a:d5:ca:74:07:16:b9:ac:69: b4:79:29:34:d5:3c:05:16:60:49:fc:9e:30:3b:e1: 40:88:b7:f1:9a:24:e6:12:24:3a:8d:94:e5:c3:04: 67:a0:2c:18:4c:c5:e5:6c:31:43:65:13:cc:26:8a: 23:7e:db:77:03:bb:c0:55:46:08:63:fa:ce:be:e4: be:61:2d:13:4b:32:0b:c5:1f:09:a4:21:c7:14:fa: 55:95:aa:01:b7:3a:f6:1e:0c:68:ae:c7:59:56:1e: 6c:f8:82:70:e7:f5:8b:7b:1b:e5:45:ce:b3:8b:b5: f1:2c:65:12:1e:0d:d4:93:71:6c:6f:64:b3:e2:c3: eb:7e:23:1f:ff:05:55:8c:98:56:e6:fd:9e:16:33: 18:fd:55:35:17:d6:04:f7:2a:9f:f2:e5:92:1c:86: f5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:08:8C:C4:AF:8B:9E:3C:31:DD:CC:67:D9:B7:24:46:21:6F:0D:03 X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.224.0/22 103.52.88.0/22 119.235.64.0-119.235.103.255 202.62.118.0-202.62.127.255 210.7.0.0/19 IPv6: 2403:4600::/32 Signature Algorithm: sha256WithRSAEncryption 7d:53:12:ad:a7:f9:0b:11:05:f2:06:4a:57:91:db:19:81:df: 1d:18:e6:51:f6:b5:24:1f:05:fa:04:72:08:b3:e2:25:2c:21: 4c:ed:b7:ef:07:d0:4d:3e:72:77:9c:30:16:10:0c:e0:07:e4: e4:12:88:1b:3d:96:2a:0d:bb:51:04:a5:47:18:c5:1c:b4:65: 0d:02:30:19:57:94:e2:da:7e:82:03:45:45:81:69:2a:77:cb: c4:57:45:88:50:8d:4c:dc:32:25:94:36:29:29:66:df:30:da: 20:6b:2e:19:da:00:71:e7:fe:e4:11:9f:93:70:e6:02:e6:1d: 1b:da:92:fb:64:18:a8:ef:00:9a:00:70:85:f1:b6:c1:36:85: 33:a2:2d:8e:83:01:b9:bb:85:99:8b:a9:89:07:b4:d3:69:3d: b4:1b:c4:6e:71:01:3b:cc:73:67:03:d9:48:0a:5a:6e:0a:67: c6:e7:e9:6f:cd:c2:42:d9:f6:e1:4c:c6:da:99:49:ff:11:1d: 6c:f6:d9:61:05:38:da:5a:ab:64:9b:bc:06:15:7b:2e:a1:fd: b8:0d:c3:89:dd:50:51:2c:5a:d3:7d:50:71:91:b0:a6:a5:f2: 70:e6:d8:4f:05:7b:1e:c5:47:38:11:9c:53:04:bc:f6:4f:be: e7:94:79:29 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICHJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjQwODE2MTYzMzM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmN2Y2Mi05YWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4f+J9rSkDD9c2zYQc4w085nImBMUtbaZuD8+DoMCLd0iX0cOTSKOGv+CrDC 2c5tJ99FNXjxr4myPQ8S9q36Nu/bpiuQeE7aCPDQgI+orlFmyOUH4lfbnKYtlWLC l5IK1cp0Bxa5rGm0eSk01TwFFmBJ/J4wO+FAiLfxmiTmEiQ6jZTlwwRnoCwYTMXl bDFDZRPMJoojftt3A7vAVUYIY/rOvuS+YS0TSzILxR8JpCHHFPpVlaoBtzr2Hgxo rsdZVh5s+IJw5/WLexvlRc6zi7XxLGUSHg3Uk3Fsb2Sz4sPrfiMf/wVVjJhW5v2e FjMY/VU1F9YE9yqf8uWSHIb19QIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFLgIjMSv i548Md3MZ9m3JEYhbw0DMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIzQzUvODMxQTIwRkVCNUMzMTFFNkI1MTQzQTJBQzRGOUFFMDIvQUMzNEZCRDYx QzAxMTFFQzhBREJGODBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMDQEAgABMC4DBAItcOADBAJnNFgwDAMEBnfrQAMEA3frYDAMAwQByj52AwQH yj4AAwQF0gcAMA0EAgACMAcDBQAkA0YAMA0GCSqGSIb3DQEBCwUAA4IBAQB9UxKt p/kLEQXyBkpXkdsZgd8dGOZR9rUkHwX6BHIIs+IlLCFM7bfvB9BNPnJ3nDAWEAzg B+TkEogbPZYqDbtRBKVHGMUctGUNAjAZV5Ti2n6CA0VFgWkqd8vEV0WIUI1M3DIl lDYpKWbfMNogay4Z2gBx5/7kEZ+TcOYC5h0b2pL7ZBio7wCaAHCF8bbBNoUzoi2O gwG5u4WZi6mJB7TTaT20G8RucQE7zHNnA9lIClpuCmfG5+lvzcJC2fbhTMbamUn/ ER1s9tlhBTjaWqtkm7wGFXsuof24DcOJ3VBRLFrTfVBxkbCmpfJw5thPBXsexUc4 EZxTBLz2T77nlHkp -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org