$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa File: 064D129A56EA11EA84DC982BC4F9AE02.roa (raw, json) Hash identifier: 6Rm16lqV7D8ogEdcWjZlICaxyf3FBMg+FZuEOmrvZ+E= Subject key identifier: 4B:EC:0C:FF:E9:DB:DD:B1:CB:AD:53:8A:F1:60:3D:B5:68:36:68:D3 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0C7D Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa Signing time: Mon 10 Jun 2024 19:32:58 +0000 ROA not before: Mon 10 Jun 2024 19:32:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38566 IP address blocks: 45.116.216.0/22 maxlen: 24 103.246.24.0/22 maxlen: 24 116.68.144.0/20 maxlen: 23 116.68.144.0/21 maxlen: 24 116.68.152.0/22 maxlen: 24 116.68.156.0/24 maxlen: 24 116.68.158.0/24 maxlen: 24 180.222.144.0/20 maxlen: 24 2403:2800:e15::/48 maxlen: 48 2403:2800:e16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Jun 10 19:32:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666754e9-e088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:63:22:b3:69:77:d4:c1:1c:95:d3:81:1d:f8: 34:aa:28:cf:94:db:e5:94:3b:fc:ec:89:bc:65:60: 02:9c:9c:90:e6:b7:69:3a:26:ad:34:a4:aa:45:1a: 8c:bd:db:73:06:d0:a8:94:0e:a5:e3:60:f9:bc:eb: 77:0c:55:8a:e2:83:0e:da:eb:d9:7d:97:82:cf:6d: 8f:0b:9f:86:4f:61:8b:8d:02:06:7e:17:10:a4:3f: 5b:3d:00:60:b4:2c:e6:7e:d6:a6:d9:bd:5a:a2:f5: bc:b4:42:cc:36:32:52:74:a3:33:fd:3a:e1:70:02: 88:e7:7a:af:30:83:95:2c:17:9b:cf:8c:89:59:65: 41:8e:15:62:0a:2f:21:de:0c:b6:4d:6e:5d:08:8a: 31:34:f0:4c:3b:48:19:a1:37:84:26:c7:63:ed:cf: e2:85:e0:6e:a3:e7:66:b6:f2:78:b3:50:6c:02:a6: 81:d1:a3:ec:e2:f5:5d:42:cb:09:de:bd:24:40:93: 45:21:8e:bd:19:69:2f:4f:9d:22:26:c4:fc:06:89: d2:71:2b:3d:48:a5:95:c1:6b:e9:b2:44:b7:ea:c2: 15:7d:83:d2:05:47:37:f8:d0:63:da:41:93:db:22: 30:e4:fe:f9:2f:5f:23:2d:5e:56:15:67:18:4f:0c: 48:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:EC:0C:FF:E9:DB:DD:B1:CB:AD:53:8A:F1:60:3D:B5:68:36:68:D3 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.216.0/22 103.246.24.0/22 116.68.144.0/20 180.222.144.0/20 IPv6: 2403:2800:e15::-2403:2800:e16:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 4b:21:89:3e:1a:79:3f:be:5f:91:3b:ad:c3:5a:25:c9:4e:38: 9b:f8:02:d6:26:e3:d3:bd:2e:cb:3a:7a:4d:2f:33:cc:cf:60: 8b:f4:29:2a:7a:a5:38:e8:dd:fe:58:bf:b2:e6:2f:7f:86:33: 48:77:7d:c4:e0:1a:36:67:ca:7f:81:70:5c:45:95:a1:c3:ee: 39:44:af:e7:af:fd:bc:95:08:a5:de:53:81:3f:23:89:9d:0a: bf:ef:18:af:9f:1b:c1:f3:d3:43:88:77:b3:b2:32:b9:e2:33: 5e:d7:93:c0:c7:6c:7c:33:21:23:43:9c:75:cb:43:81:d9:67: f2:c1:eb:82:53:58:a4:69:9b:fe:a0:65:f7:f9:56:76:cc:1a: ca:5f:94:3c:a9:a1:26:23:37:db:92:b4:2c:bd:fb:b2:83:5b: be:2a:4e:74:c5:68:88:e9:c6:26:c8:ad:ac:39:e4:45:86:39: ca:91:f0:2c:92:d3:d0:42:15:15:08:a3:e4:08:82:54:d3:ad: 1a:1d:05:1c:0a:14:a4:34:3b:dd:36:e1:97:d5:c3:aa:b0:ad: ee:fe:6c:b0:c3:39:8e:bb:85:9f:6b:37:16:52:fe:8a:b8:9a: f1:80:cd:db:52:31:d9:82:ba:40:ee:bd:ab:f0:16:99:48:87: 68:84:9e:65 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjQwNjEwMTkzMjU4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY3NTRlOS1lMDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGMis2l31MEcldOBHfg0qijPlNvllDv87Im8ZWACnJyQ5rdpOiatNKSqRRqM vdtzBtColA6l42D5vOt3DFWK4oMO2uvZfZeCz22PC5+GT2GLjQIGfhcQpD9bPQBg tCzmftam2b1aovW8tELMNjJSdKMz/TrhcAKI53qvMIOVLBebz4yJWWVBjhViCi8h 3gy2TW5dCIoxNPBMO0gZoTeEJsdj7c/iheBuo+dmtvJ4s1BsAqaB0aPs4vVdQssJ 3r0kQJNFIY69GWkvT50iJsT8BonScSs9SKWVwWvpskS36sIVfYPSBUc3+NBj2kGT 2yIw5P75L18jLV5WFWcYTwxIHQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFEvsDP/p 292xy61TivFgPbVoNmjTMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY2QTAvNjI1RkY3MjZEOUU3MTFFOTg4MDU0MDE2QzRGOUFFMDIvMDY0RDEyOUE1 NkVBMTFFQTg0REM5ODJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MB4EAgABMBgDBAItdNgDBAJn9hgDBAR0RJADBAS03pAwGgQCAAIwFDASAwcA JAMoAA4VAwcAJAMoAA4WMA0GCSqGSIb3DQEBCwUAA4IBAQBLIYk+Gnk/vl+RO63D WiXJTjib+ALWJuPTvS7LOnpNLzPMz2CL9CkqeqU46N3+WL+y5i9/hjNId33E4Bo2 Z8p/gXBcRZWhw+45RK/nr/28lQil3lOBPyOJnQq/7xivnxvB89NDiHezsjK54jNe 15PAx2x8MyEjQ5x1y0OB2WfyweuCU1ikaZv+oGX3+VZ2zBrKX5Q8qaEmIzfbkrQs vfuyg1u+Kk50xWiI6cYmyK2sOeRFhjnKkfAsktPQQhUVCKPkCIJU060aHQUcChSk NDvdNuGX1cOqsK3u/mywwzmOu4WfazcWUv6KuJrxgM3bUjHZgrpA7r2r8BaZSIdo hJ5l -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:25 2024 by rpki-client on console-fra.rpki-client.org