$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4C9159E069E211EFB237DF77C4F9AE02.roa File: 4C9159E069E211EFB237DF77C4F9AE02.roa (raw, json) Hash identifier: fSfhdrKJcWadMBdCbF485Qsb3cVfPKzBXZnvLcnui8Q= Subject key identifier: 77:64:AD:76:E2:C8:B5:CA:67:C0:C4:68:60:2F:29:96:32:1A:6F:B1 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 14F1 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4C9159E069E211EFB237DF77C4F9AE02.roa Signing time: Tue 03 Sep 2024 10:50:14 +0000 ROA not before: Tue 03 Sep 2024 10:50:14 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 38547 IP address blocks: 115.167.72.0/24 maxlen: 24 115.167.74.0/24 maxlen: 24 115.167.75.0/24 maxlen: 24 202.92.16.0/24 maxlen: 24 202.92.17.0/24 maxlen: 24 202.92.23.0/24 maxlen: 24 202.92.24.0/24 maxlen: 24 202.92.24.32/27 maxlen: 27 202.92.25.0/24 maxlen: 24 202.92.27.0/24 maxlen: 24 202.92.28.0/24 maxlen: 24 202.92.29.0/24 maxlen: 24 202.92.30.0/24 maxlen: 24 202.92.31.0/24 maxlen: 24 2400:9560:1::/48 maxlen: 48 2400:9560:5::/48 maxlen: 48 2400:9560:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 06:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5361 (0x14f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Sep 3 10:50:14 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66d6e9e6-768d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2a:54:bd:2c:d3:3d:7f:da:c1:c8:6d:0d:93: 5b:aa:14:ba:02:c0:42:cd:48:81:1e:f3:43:1e:e8: 3a:a1:79:f5:f1:4d:0a:ac:75:76:b9:58:f3:00:6a: 5f:b7:09:b9:89:95:77:e2:63:3a:49:7e:e4:06:86: 4d:e0:cd:57:8f:38:9a:bf:9f:50:b1:c2:ec:4a:63: d6:72:ef:f9:a9:aa:5f:c0:6b:50:9c:58:d2:70:25: 9a:b6:85:20:cf:08:02:c1:ba:e4:73:21:18:93:bb: 53:e6:00:0c:e9:3a:ca:fb:00:2f:b1:71:16:a9:c1: 51:51:93:e6:19:76:e8:17:f4:4e:f2:4d:e4:72:7e: cb:f7:e1:78:7c:69:d4:3c:a1:36:84:a0:94:52:62: b2:79:33:32:3c:14:7a:a0:23:7d:8b:ac:55:b6:a8: f7:a6:4b:df:18:be:ee:67:af:e6:72:e8:50:15:e1: 1b:34:b5:87:8d:ea:04:79:61:fd:8a:6f:79:db:94: 66:9d:ff:26:15:c3:14:66:45:8f:e3:7b:5a:c5:80: b9:82:6b:68:6c:93:29:5a:6f:92:49:4a:b0:ad:73: 3b:78:84:a0:a2:e3:d1:c5:b8:4f:b1:00:c0:9f:1d: 14:e1:43:00:bc:b8:d9:c5:c9:94:d0:34:99:c2:09: 52:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:64:AD:76:E2:C8:B5:CA:67:C0:C4:68:60:2F:29:96:32:1A:6F:B1 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4C9159E069E211EFB237DF77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.167.72.0/24 115.167.74.0/23 202.92.16.0/23 202.92.23.0-202.92.25.255 202.92.27.0-202.92.31.255 IPv6: 2400:9560:1::/48 2400:9560:5::/48 2400:9560:9::/48 Signature Algorithm: sha256WithRSAEncryption 65:dd:ad:ef:4f:65:6f:f3:fb:2a:73:55:08:96:30:e1:23:0f: f4:05:cb:34:2e:15:f9:53:47:5b:a7:0b:e2:e6:c5:15:e8:6a: 86:2f:3b:84:b2:f0:cf:42:7c:3a:d6:7c:24:08:ab:f7:ef:4e: 77:ec:78:36:fc:e3:ac:e5:6a:6a:95:72:60:b9:05:a7:37:56: 39:ce:93:9b:54:67:9d:d9:12:08:43:3d:ca:a7:29:32:67:35: 0b:07:c2:9d:ab:c0:6a:ad:16:4a:eb:66:6f:b0:51:66:d3:d8: ba:72:7e:d6:eb:72:d4:9d:31:62:f0:c6:ba:6c:44:6a:6d:92: 8e:c5:cb:00:51:51:62:d4:59:4b:6e:8b:12:d9:b4:04:a4:33: 89:06:aa:38:68:9b:13:15:7f:a0:2c:e4:a9:92:c2:7c:86:0a: f6:43:5f:aa:7c:35:d0:b7:0d:78:50:6c:ee:7a:a6:70:28:85: 31:52:ee:b9:78:6a:29:1c:87:71:50:0a:2c:ac:d1:a8:8e:0a: 3f:cb:5e:3e:2a:b0:c5:28:f5:64:ef:ce:55:9c:89:b0:66:1e: 98:29:38:fb:0c:02:e0:84:31:8b:cc:03:eb:0c:1f:21:8a:04: bf:91:8b:7d:e4:15:d7:d0:db:de:9a:79:fb:f4:8f:17:b9:dc: 46:b7:d6:a6 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgICFPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjQwOTAzMTA1MDE0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2ZTllNi03NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCpUvSzTPX/awchtDZNbqhS6AsBCzUiBHvNDHug6oXn18U0KrHV2uVjzAGpf twm5iZV34mM6SX7kBoZN4M1Xjziav59QscLsSmPWcu/5qapfwGtQnFjScCWatoUg zwgCwbrkcyEYk7tT5gAM6TrK+wAvsXEWqcFRUZPmGXboF/RO8k3kcn7L9+F4fGnU PKE2hKCUUmKyeTMyPBR6oCN9i6xVtqj3pkvfGL7uZ6/mcuhQFeEbNLWHjeoEeWH9 im9525Rmnf8mFcMUZkWP43taxYC5gmtobJMpWm+SSUqwrXM7eISgouPRxbhPsQDA nx0U4UMAvLjZxcmU0DSZwglSoQIDAQABo4IC4DCCAtwwHQYDVR0OBBYEFHdkrXbi yLXKZ8DEaGAvKZYyGm+xMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNEM5MTU5RTA2 OUUyMTFFRkIyMzdERjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwagYIKwYBBQUHAQcBAf8E WzBZMDQEAgABMC4DBABzp0gDBAFzp0oDBAHKXBAwDAMEAMpcFwMEAcpcGDAMAwQA ylwbAwQFylwAMCEEAgACMBsDBwAkAJVgAAEDBwAkAJVgAAUDBwAkAJVgAAkwDQYJ KoZIhvcNAQELBQADggEBAGXdre9PZW/z+ypzVQiWMOEjD/QFyzQuFflTR1unC+Lm xRXoaoYvO4Sy8M9CfDrWfCQIq/fvTnfseDb846zlamqVcmC5Bac3VjnOk5tUZ53Z EghDPcqnKTJnNQsHwp2rwGqtFkrrZm+wUWbT2LpyftbrctSdMWLwxrpsRGptko7F ywBRUWLUWUtuixLZtASkM4kGqjhomxMVf6As5KmSwnyGCvZDX6p8NdC3DXhQbO56 pnAohTFS7rl4aikch3FQCiys0aiOCj/LXj4qsMUo9WTvzlWcibBmHpgpOPsMAuCE MYvMA+sMHyGKBL+Ri33kFdfQ296aefv0jxe53Ea31qY= -----END CERTIFICATE-----Generated at Mon Nov 25 09:04:28 2024 by rpki-client on console-fra.rpki-client.org