$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/7D8845C43DD911EB8DA0EE5FC4F9AE02.roa File: 7D8845C43DD911EB8DA0EE5FC4F9AE02.roa (raw, json) Hash identifier: J2NTsyIpYZf2CeQjHrd3GmEpGqkuw4WoHXlCtDuwDwQ= Subject key identifier: 6A:44:D8:95:70:C6:03:31:6D:77:B2:4A:5D:06:27:FD:8C:4B:E8:4D Certificate issuer: /CN=A91CB816/serialNumber=BD06BDBF8B0EEDBC9F07395A65254FCB8583989D Certificate serial: 060C Authority key identifier: BD:06:BD:BF:8B:0E:ED:BC:9F:07:39:5A:65:25:4F:CB:85:83:98:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/7D8845C43DD911EB8DA0EE5FC4F9AE02.roa Signing time: Tue 26 Dec 2023 23:11:31 +0000 ROA not before: Tue 26 Dec 2023 23:11:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38017 IP address blocks: 202.59.128.0/20 maxlen: 22 202.59.128.0/24 maxlen: 24 202.59.129.0/24 maxlen: 24 202.59.130.0/24 maxlen: 24 202.59.131.0/24 maxlen: 24 202.59.132.0/24 maxlen: 24 202.59.133.0/24 maxlen: 24 202.59.134.0/24 maxlen: 24 202.59.135.0/24 maxlen: 24 202.59.136.0/24 maxlen: 24 202.59.137.0/24 maxlen: 24 202.59.138.0/24 maxlen: 24 202.59.139.0/24 maxlen: 24 202.59.140.0/24 maxlen: 24 202.59.141.0/24 maxlen: 24 202.59.142.0/24 maxlen: 24 202.59.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.crl rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1548 (0x60c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB816/serialNumber=BD06BDBF8B0EEDBC9F07395A65254FCB8583989D Validity Not Before: Dec 26 23:11:31 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658b5da3-8480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:88:14:e0:38:a5:8b:8c:3e:95:2c:77:01:c3: 5b:e0:54:dc:e1:b3:0f:31:33:19:a7:90:93:94:b0: 6c:65:28:db:c2:31:96:3e:5d:eb:4f:36:f5:c5:51: 29:8a:7c:da:38:6c:a5:64:72:0e:f0:d1:27:4a:bb: 50:08:33:86:3f:40:c4:57:8d:0d:80:35:31:dc:34: fd:cc:89:6d:c8:a6:54:07:c4:24:b1:b3:0e:29:08: aa:b1:26:e0:1c:44:10:17:aa:51:b1:25:fc:d8:35: b6:ee:4c:e3:9a:72:ec:09:02:c9:a9:75:2a:b2:7d: 17:9b:b8:a6:ad:bb:9a:48:9f:1b:52:49:27:a2:38: 2c:d3:0b:bc:77:f8:30:df:6b:cc:9b:56:da:41:4d: f5:ef:33:da:72:0c:86:c9:c3:89:d9:52:48:10:1e: 27:5c:9c:69:12:8b:87:bd:b5:e3:ca:b4:7e:a2:c9: 61:c0:f1:c9:9a:10:3e:7a:b7:73:07:e2:18:3d:65: 4c:c5:fe:f5:e2:29:15:40:d9:60:b4:c4:39:53:63: 27:c9:88:1d:04:28:35:cf:48:e8:40:0e:d7:39:ef: 43:4d:98:dc:33:bc:9a:bf:0f:44:f0:69:14:da:03: ab:15:4c:23:eb:7b:56:fd:c5:3b:69:1b:d7:35:89: 5f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:44:D8:95:70:C6:03:31:6D:77:B2:4A:5D:06:27:FD:8C:4B:E8:4D X509v3 Authority Key Identifier: keyid:BD:06:BD:BF:8B:0E:ED:BC:9F:07:39:5A:65:25:4F:CB:85:83:98:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/7D8845C43DD911EB8DA0EE5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.59.128.0/20 Signature Algorithm: sha256WithRSAEncryption 00:2e:ab:e6:e9:a4:0b:3f:e3:0b:be:f9:93:61:56:09:ea:0c: b7:02:19:f4:05:37:e1:ca:e8:3c:3e:20:84:ce:95:a6:f5:0b: 75:87:4c:78:d1:fd:c9:7b:68:ea:4b:e4:98:eb:20:3f:84:7b: e3:d8:23:06:0b:33:1b:c1:bb:66:17:b4:e1:2f:b6:42:66:dc: 80:c2:52:a7:1c:fe:0e:93:f8:0d:98:88:36:50:19:86:73:0d: 46:09:86:fa:ea:9d:6d:71:15:f6:d9:cf:54:7d:c2:fb:50:b2: 16:2a:e1:c3:08:25:da:5e:bd:1e:a8:58:bc:08:7e:e1:77:14: 55:9e:7e:1a:82:d7:27:0c:5c:2f:86:23:b9:22:3b:bc:2f:17: 48:df:cf:e0:d6:fc:71:07:7b:0e:5e:98:a7:e6:63:24:5a:9c: e5:0f:97:48:93:a1:65:aa:55:e0:ea:ed:72:fc:3d:16:63:6c: 8a:76:57:bf:67:31:73:ca:42:52:56:99:e8:a6:b1:4d:ae:9c: 3c:7b:36:42:d0:88:ad:48:78:3f:d9:96:f7:78:5e:de:61:bb: 2c:88:63:93:5e:4a:0d:51:86:07:b8:04:85:5f:34:28:98:a0: 48:0c:ab:ec:95:6f:bf:f2:b3:51:e1:22:51:4d:47:46:8a:fe: a7:ff:27:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4MTYxMTAvBgNVBAUTKEJEMDZCREJGOEIwRUVEQkM5RjA3Mzk1QTY1MjU0RkNC ODU4Mzk4OUQwHhcNMjMxMjI2MjMxMTMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThiNWRhMy04NDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4gU4Dili4w+lSx3AcNb4FTc4bMPMTMZp5CTlLBsZSjbwjGWPl3rTzb1xVEp inzaOGylZHIO8NEnSrtQCDOGP0DEV40NgDUx3DT9zIltyKZUB8QksbMOKQiqsSbg HEQQF6pRsSX82DW27kzjmnLsCQLJqXUqsn0Xm7imrbuaSJ8bUkknojgs0wu8d/gw 32vMm1baQU317zPacgyGycOJ2VJIEB4nXJxpEouHvbXjyrR+oslhwPHJmhA+erdz B+IYPWVMxf714ikVQNlgtMQ5U2MnyYgdBCg1z0joQA7XOe9DTZjcM7yavw9E8GkU 2gOrFUwj63tW/cU7aRvXNYlfuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGpE2JVw xgMxbXeySl0GJ/2MS+hNMB8GA1UdIwQYMBaAFL0Gvb+LDu28nwc5WmUlT8uFg5id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjgxNi82MTA0NjYxMDNE RDYxMUVCQTA2MDJDNUJDNEY5QUUwMi92UWE5djRzTzdieWZCemxhWlNWUHk0V0Rt SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZRYTl2NHNPN2J5ZkJ6bGFaU1ZQeTRXRG1KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I4MTYvNjEwNDY2MTAzREQ2MTFFQkEwNjAyQzVCQzRGOUFFMDIvN0Q4ODQ1QzQz REQ5MTFFQjhEQTBFRTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKO4AwDQYJKoZIhvcNAQELBQADggEBAAAuq+bppAs/4wu+ +ZNhVgnqDLcCGfQFN+HK6Dw+IITOlab1C3WHTHjR/cl7aOpL5JjrID+Ee+PYIwYL MxvBu2YXtOEvtkJm3IDCUqcc/g6T+A2YiDZQGYZzDUYJhvrqnW1xFfbZz1R9wvtQ shYq4cMIJdpevR6oWLwIfuF3FFWefhqC1ycMXC+GI7kiO7wvF0jfz+DW/HEHew5e mKfmYyRanOUPl0iToWWqVeDq7XL8PRZjbIp2V79nMXPKQlJWmeimsU2unDx7NkLQ iK1IeD/Zlvd4Xt5huyyIY5NeSg1Rhge4BIVfNCiYoEgMq+yVb7/ys1HhIlFNR0aK /qf/J18= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org