$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/5A69D6D4824811EC9AAB122AC4F9AE02.roa File: 5A69D6D4824811EC9AAB122AC4F9AE02.roa (raw, json) Hash identifier: Oj/HpRoXwbskrx6g4DxKc4eANqMpbexlTcX718AemjQ= Subject key identifier: 2A:29:B0:0E:CC:B3:1D:DB:E3:13:29:F0:43:23:58:BE:0E:02:16:16 Certificate issuer: /CN=A91E2364/serialNumber=647B149EF016CC5356A7ED730F133E002C0E7FAA Certificate serial: 0B7C Authority key identifier: 64:7B:14:9E:F0:16:CC:53:56:A7:ED:73:0F:13:3E:00:2C:0E:7F:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/5A69D6D4824811EC9AAB122AC4F9AE02.roa Signing time: Tue 28 Nov 2023 19:26:43 +0000 ROA not before: Tue 28 Nov 2023 19:26:43 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38600 IP address blocks: 202.56.0.0/22 maxlen: 24 2401:9700:d000::/36 maxlen: 36 2401:9700:d000::/40 maxlen: 48 2401:9700:e000::/36 maxlen: 36 2401:9700:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.crl rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2940 (0xb7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2364/serialNumber=647B149EF016CC5356A7ED730F133E002C0E7FAA Validity Not Before: Nov 28 19:26:43 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65663ef3-a8e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0b:9a:a9:0d:81:97:fd:e9:88:3c:02:3b:46: 80:53:3b:af:68:06:a7:71:c0:6c:a3:73:5f:d2:1b: d4:ce:99:c4:a5:22:9b:8e:47:7e:70:8c:52:c2:87: f6:52:91:82:07:ed:2a:e4:62:09:1f:f8:33:e9:94: b4:b7:50:b5:14:2c:85:fc:0d:b4:d1:77:9c:0c:ac: ff:14:96:57:97:67:2b:4e:5d:0b:56:b3:53:7e:26: 40:f9:3a:7d:73:07:9e:2d:f9:67:10:14:1d:d4:f2: 15:05:c7:52:29:e2:15:e3:ec:f9:85:85:49:01:2f: 32:1e:10:ec:34:ce:b3:a8:ef:f3:ca:96:83:61:f3: bb:31:51:47:33:15:85:50:d9:2e:c4:04:68:b1:7d: b6:a5:a1:16:1e:00:27:3a:b8:0e:e7:e1:fe:6c:cc: 6e:0d:a5:33:42:1d:03:02:96:42:dd:c4:27:57:1c: ab:13:d2:06:68:37:af:0b:29:7b:11:1c:ff:de:c1: 87:00:2b:dd:b7:47:c5:68:e6:aa:66:da:b2:df:28: 6c:95:72:83:a9:f4:49:79:7c:bf:c6:01:0a:16:c3: 25:3b:b2:60:92:a0:16:b2:e5:6e:5b:d4:29:47:19: 2d:76:90:e6:2a:01:bb:1c:9b:42:c9:8e:f0:00:28: f7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:29:B0:0E:CC:B3:1D:DB:E3:13:29:F0:43:23:58:BE:0E:02:16:16 X509v3 Authority Key Identifier: keyid:64:7B:14:9E:F0:16:CC:53:56:A7:ED:73:0F:13:3E:00:2C:0E:7F:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/5A69D6D4824811EC9AAB122AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.56.0.0/22 IPv6: 2401:9700:d000::-2401:9700:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 62:22:b9:b4:5d:fe:da:77:a9:28:65:8a:35:74:70:72:0c:a2: d2:94:51:e2:e7:ec:63:46:dd:0d:87:6a:b7:b3:1b:2b:ed:2c: cd:60:5d:c9:fe:da:ec:f3:79:b0:9d:d7:30:d2:78:f8:01:0e: 66:a0:ce:4c:52:5a:38:53:ec:df:af:f4:1b:ed:1b:d9:28:38: 20:e9:97:42:b4:ad:51:f3:e7:7f:64:82:43:2f:bc:44:43:28: a8:43:10:3a:01:98:09:1d:6f:fe:b2:01:b8:66:04:e4:49:33: 87:3c:ee:a2:2e:f4:46:f6:23:de:81:ae:9d:14:98:3a:4d:bf: 3e:fe:3e:bf:2e:a0:d1:f7:02:f3:74:31:df:8a:64:1a:e0:0a: 06:71:35:64:c3:e2:06:38:45:8e:e3:cf:1e:6d:d6:52:54:e2: d5:7f:0d:61:a6:2e:db:20:c1:c6:ec:47:ed:2f:dd:61:86:3b: b4:cd:c0:de:01:cd:f9:a6:7c:7a:6d:dd:f7:5c:a7:61:78:29: 19:98:61:8b:c6:ee:9b:e2:e5:d0:7b:cc:ae:5c:69:cd:f1:4f: 33:17:da:15:21:ad:75:68:17:21:a7:ba:d5:ae:bb:25:58:b8: 60:86:c3:75:d0:11:4e:0a:9c:07:74:b3:74:eb:f5:f2:12:2c: 38:ba:31:ef -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICC3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIzNjQxMTAvBgNVBAUTKDY0N0IxNDlFRjAxNkNDNTM1NkE3RUQ3MzBGMTMzRTAw MkMwRTdGQUEwHhcNMjMxMTI4MTkyNjQzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2M2VmMy1hOGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQuaqQ2Bl/3piDwCO0aAUzuvaAanccBso3Nf0hvUzpnEpSKbjkd+cIxSwof2 UpGCB+0q5GIJH/gz6ZS0t1C1FCyF/A200XecDKz/FJZXl2crTl0LVrNTfiZA+Tp9 cweeLflnEBQd1PIVBcdSKeIV4+z5hYVJAS8yHhDsNM6zqO/zypaDYfO7MVFHMxWF UNkuxARosX22paEWHgAnOrgO5+H+bMxuDaUzQh0DApZC3cQnVxyrE9IGaDevCyl7 ERz/3sGHACvdt0fFaOaqZtqy3yhslXKDqfRJeXy/xgEKFsMlO7JgkqAWsuVuW9Qp RxktdpDmKgG7HJtCyY7wACj36QIDAQABo4ICrjCCAqowHQYDVR0OBBYEFCopsA7M sx3b4xMp8EMjWL4OAhYWMB8GA1UdIwQYMBaAFGR7FJ7wFsxTVqftcw8TPgAsDn+q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjM2NC84RkU3MTc4NkZG OUIxMUU5QjdGNEE3NzJDNEY5QUUwMi9aSHNVbnZBV3pGTldwLTF6RHhNLUFDd09m Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIc1VudkFXekZOV3AtMXpEeE0tQUN3T2Y2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIzNjQvOEZFNzE3ODZGRjlCMTFFOUI3RjRBNzcyQzRGOUFFMDIvNUE2OUQ2RDQ4 MjQ4MTFFQzlBQUIxMjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMAwEAgABMAYDBALKOAAwFwQCAAIwETAPAwYEJAGXANADBQAkAZcAMA0GCSqG SIb3DQEBCwUAA4IBAQBiIrm0Xf7ad6koZYo1dHByDKLSlFHi5+xjRt0Nh2q3sxsr 7SzNYF3J/trs83mwndcw0nj4AQ5moM5MUlo4U+zfr/Qb7RvZKDgg6ZdCtK1R8+d/ ZIJDL7xEQyioQxA6AZgJHW/+sgG4ZgTkSTOHPO6iLvRG9iPega6dFJg6Tb8+/j6/ LqDR9wLzdDHfimQa4AoGcTVkw+IGOEWO488ebdZSVOLVfw1hpi7bIMHG7EftL91h hju0zcDeAc35pnx6bd33XKdheCkZmGGLxu6b4uXQe8yuXGnN8U8zF9oVIa11aBch p7rVrrslWLhghsN10BFOCpwHdLN06/XyEiw4ujHv -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:19 2024 by rpki-client on console-ams.rpki-client.org