$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/C4391160305611EABE7DF272C4F9AE02.roa File: C4391160305611EABE7DF272C4F9AE02.roa (raw, json) Hash identifier: 3CS63lxTVcr1lDEM5PMs5CO7XzdKCmryVXHiyIzoBgE= Subject key identifier: 9A:B4:41:34:85:72:7E:01:D0:A6:38:9B:8E:01:69:17:32:1F:D4:58 Certificate issuer: /CN=A91DA649/serialNumber=B9EB15486677737DB2739FD65462AEE7906168C2 Certificate serial: 0B8B Authority key identifier: B9:EB:15:48:66:77:73:7D:B2:73:9F:D6:54:62:AE:E7:90:61:68:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uesVSGZ3c32yc5_WVGKu55BhaMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/C4391160305611EABE7DF272C4F9AE02.roa Signing time: Mon 26 Aug 2024 19:27:30 +0000 ROA not before: Mon 26 Aug 2024 19:27:30 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45276 IP address blocks: 115.69.208.0/21 maxlen: 21 115.69.208.0/23 maxlen: 24 115.69.210.0/24 maxlen: 24 115.69.211.0/24 maxlen: 24 115.69.212.0/23 maxlen: 24 115.69.214.0/24 maxlen: 24 115.69.215.0/24 maxlen: 24 2400:1020::/32 maxlen: 32 2400:1020::/48 maxlen: 48 2400:1020:1100::/44 maxlen: 44 2400:1020:1110::/44 maxlen: 44 2400:1020:1160::/44 maxlen: 44 2400:1020:1167::/48 maxlen: 48 2400:1020:2000::/40 maxlen: 40 2400:1020:2100::/40 maxlen: 40 2400:1020:2110::/44 maxlen: 44 2400:1020:a000::/44 maxlen: 44 2400:1020:a000::/48 maxlen: 48 2400:1020:a001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/uesVSGZ3c32yc5_WVGKu55BhaMI.crl rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/uesVSGZ3c32yc5_WVGKu55BhaMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uesVSGZ3c32yc5_WVGKu55BhaMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA649/serialNumber=B9EB15486677737DB2739FD65462AEE7906168C2 Validity Not Before: Aug 26 19:27:30 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ccd722-8dc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4f:12:a7:68:34:51:a3:85:2d:ad:8f:c0:8f: fa:cd:19:1d:c6:cb:1c:25:c9:e6:b8:58:22:b7:63: 51:fb:54:31:03:e4:f8:93:cd:bf:77:1f:12:9a:7a: 47:36:36:22:4d:5f:a2:23:1d:83:bc:27:24:28:41: 57:02:65:2d:5c:f8:89:7c:cb:d1:44:5d:86:b1:a9: 8c:db:6a:fe:18:d4:d7:42:9e:b8:36:3e:cc:9d:c2: bd:97:c1:9d:3b:3b:85:9e:df:1c:a7:06:93:65:12: 97:5b:28:65:ea:44:56:f4:85:cc:cf:3e:c2:a2:04: 59:6b:24:43:e2:ef:41:25:ad:2a:f2:26:be:8b:1e: 71:d3:a0:16:af:d1:3c:18:6d:c4:41:fc:02:9a:0a: bb:3b:f3:c9:65:1e:2f:6b:d7:5e:42:00:c9:5c:66: c0:74:7f:c3:68:40:a8:7f:ca:9f:04:1d:d8:41:26: bf:79:ed:69:ce:4c:61:7f:cd:1b:43:ce:9b:fa:cd: 57:47:f3:57:9e:d5:e7:68:93:7d:02:a8:b5:d8:a9: 80:1f:9d:99:2f:43:88:ef:3d:6f:d9:32:a9:0a:8a: 18:ef:3b:6b:dd:d4:23:eb:ce:33:3d:30:06:e8:cc: 5a:8f:9e:be:7a:0b:d0:01:11:51:52:b5:7f:b3:b2: 87:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B4:41:34:85:72:7E:01:D0:A6:38:9B:8E:01:69:17:32:1F:D4:58 X509v3 Authority Key Identifier: keyid:B9:EB:15:48:66:77:73:7D:B2:73:9F:D6:54:62:AE:E7:90:61:68:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/uesVSGZ3c32yc5_WVGKu55BhaMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uesVSGZ3c32yc5_WVGKu55BhaMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/C4391160305611EABE7DF272C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.69.208.0/21 IPv6: 2400:1020::/32 Signature Algorithm: sha256WithRSAEncryption 18:65:c8:7a:15:64:68:26:e6:16:30:c2:bb:07:85:d9:95:5c: 01:e2:42:d2:44:20:62:0b:b5:d4:61:05:8a:00:1b:0b:21:1b: 7a:cf:73:e0:6e:ed:fd:49:26:4d:a1:6b:1d:6b:fa:c2:ed:c6: c2:cc:f0:e6:e7:81:7c:7e:8f:2d:4d:be:d6:e3:a2:bb:bd:fa: 12:46:bf:ef:c1:ae:2c:b1:58:69:f7:f1:0d:0c:ac:78:bd:52: 51:92:13:64:26:3c:9b:e9:2f:10:b0:1b:13:c0:f0:52:82:58: 8e:c7:bd:0d:16:72:37:ab:be:a6:f2:b2:da:1e:37:91:42:b8: b8:d1:f8:b1:93:43:65:d2:31:18:56:f1:10:9b:c0:64:dd:cb: 17:94:9b:fe:3e:ea:63:67:3a:2a:cb:77:e2:14:68:47:e5:ee: a0:fc:39:e5:13:b1:fa:ad:85:83:cf:67:3a:13:cb:d5:28:5b: 70:a0:fb:8a:f1:c2:a8:f2:1a:3b:36:d7:b4:bc:3a:ea:76:5a: d9:50:41:01:ba:a8:a3:2b:5d:89:34:7b:b7:bb:f2:62:6b:a4: ee:5a:1c:de:89:3c:c7:00:a3:a2:07:ac:13:0f:34:44:ed:41: c9:8b:48:ba:5a:59:e8:96:a7:4f:fd:50:f3:94:f0:96:09:4b: 53:cc:68:2a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE2NDkxMTAvBgNVBAUTKEI5RUIxNTQ4NjY3NzczN0RCMjczOUZENjU0NjJBRUU3 OTA2MTY4QzIwHhcNMjQwODI2MTkyNzMwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjZDcyMi04ZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA008Sp2g0UaOFLa2PwI/6zRkdxsscJcnmuFgit2NR+1QxA+T4k82/dx8SmnpH NjYiTV+iIx2DvCckKEFXAmUtXPiJfMvRRF2GsamM22r+GNTXQp64Nj7MncK9l8Gd OzuFnt8cpwaTZRKXWyhl6kRW9IXMzz7CogRZayRD4u9BJa0q8ia+ix5x06AWr9E8 GG3EQfwCmgq7O/PJZR4va9deQgDJXGbAdH/DaECof8qfBB3YQSa/ee1pzkxhf80b Q86b+s1XR/NXntXnaJN9Aqi12KmAH52ZL0OI7z1v2TKpCooY7ztr3dQj684zPTAG 6Mxaj56+egvQARFRUrV/s7KHhwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJq0QTSF cn4B0KY4m44BaRcyH9RYMB8GA1UdIwQYMBaAFLnrFUhmd3N9snOf1lRirueQYWjC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTY0OS81RDk3Nzc0QzBG NTExMUVBOEM0QTVDMEFDNEY5QUUwMi91ZXNWU0daM2MzMnljNV9XVkdLdTU1Qmhh TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vlc1ZTR1ozYzMyeWM1X1dWR0t1NTVCaGFNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REE2NDkvNUQ5Nzc3NEMwRjUxMTFFQThDNEE1QzBBQzRGOUFFMDIvQzQzOTExNjAz MDU2MTFFQUJFN0RGMjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBANzRdAwDQQCAAIwBwMFACQAECAwDQYJKoZIhvcNAQELBQAD ggEBABhlyHoVZGgm5hYwwrsHhdmVXAHiQtJEIGILtdRhBYoAGwshG3rPc+Bu7f1J Jk2hax1r+sLtxsLM8ObngXx+jy1Nvtbjoru9+hJGv+/BriyxWGn38Q0MrHi9UlGS E2QmPJvpLxCwGxPA8FKCWI7HvQ0WcjervqbystoeN5FCuLjR+LGTQ2XSMRhW8RCb wGTdyxeUm/4+6mNnOirLd+IUaEfl7qD8OeUTsfqthYPPZzoTy9UoW3Cg+4rxwqjy Gjs217S8Oup2WtlQQQG6qKMrXYk0e7e78mJrpO5aHN6JPMcAo6IHrBMPNETtQcmL SLpaWeiWp0/9UPOU8JYJS1PMaCo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:18 2024 by rpki-client on console-ams.rpki-client.org