$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/5428E56AF53911EEB8A4592AC4F9AE02.roa File: 5428E56AF53911EEB8A4592AC4F9AE02.roa (raw, json) Hash identifier: V0jvv16GxWWSgYF6je4xv4QElPKOl/7nA+3XTVSMXTs= Subject key identifier: E4:06:C1:71:3E:3C:15:84:18:0C:82:DC:91:06:76:A9:B2:6C:4A:A6 Certificate issuer: /CN=A91139AB/serialNumber=D10BAF7AA8DB734B952D036087783C6437843C8F Certificate serial: C7 Authority key identifier: D1:0B:AF:7A:A8:DB:73:4B:95:2D:03:60:87:78:3C:64:37:84:3C:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/5428E56AF53911EEB8A4592AC4F9AE02.roa Signing time: Thu 31 Oct 2024 22:01:01 +0000 ROA not before: Thu 31 Oct 2024 22:01:01 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 4857 IP address blocks: 202.147.96.0/20 maxlen: 20 202.147.112.0/20 maxlen: 24 203.82.160.0/20 maxlen: 24 203.82.176.0/20 maxlen: 24 203.201.64.0/20 maxlen: 24 203.201.80.0/20 maxlen: 24 203.201.96.0/20 maxlen: 20 203.201.112.0/20 maxlen: 24 221.120.128.0/20 maxlen: 24 221.120.144.0/24 maxlen: 24 221.120.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB/serialNumber=D10BAF7AA8DB734B952D036087783C6437843C8F Validity Not Before: Oct 31 22:01:01 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6723fe1d-5581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2d:93:05:61:7e:e2:dd:2b:a3:93:c9:40:ea: 98:93:1a:fc:d6:8c:93:63:75:82:2c:05:50:1d:88: 6a:82:2c:0b:0e:6b:8a:b2:f8:b4:14:09:d0:76:2c: 57:7f:17:e8:98:2e:20:5e:be:bd:15:31:e7:2e:74: b9:14:23:a6:86:ee:00:69:3a:bd:7f:66:f6:83:da: a3:00:ed:be:f1:e7:2b:00:c8:6d:e4:a7:08:cd:d3: ce:54:cb:76:32:3b:e1:0d:e5:95:9b:d3:f8:e1:17: 8b:42:6b:3e:66:ea:13:47:53:2f:b2:89:c7:96:7a: 5c:be:56:08:f0:e6:b5:15:0a:0d:04:27:82:d4:72: f9:5c:43:4e:fb:03:5c:fe:08:74:63:ea:ce:c4:24: d1:a4:67:25:a1:4a:0a:75:05:8f:83:bb:42:e2:dc: 07:44:89:39:60:9c:63:39:e9:60:e7:5f:83:5c:9a: a7:34:74:e4:56:89:55:aa:4f:0d:6e:82:dd:31:a1: d9:1e:d8:a6:5f:63:a0:57:19:10:38:2b:9f:ac:c6: 3b:27:b5:d2:16:21:0b:a3:50:8d:df:e9:1b:cd:b6: cc:bc:50:46:c5:6d:2a:c8:b5:21:73:c5:b1:7f:f6: d5:f1:44:29:0d:33:cf:d4:18:fe:4e:df:9c:ec:ba: a5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:06:C1:71:3E:3C:15:84:18:0C:82:DC:91:06:76:A9:B2:6C:4A:A6 X509v3 Authority Key Identifier: keyid:D1:0B:AF:7A:A8:DB:73:4B:95:2D:03:60:87:78:3C:64:37:84:3C:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/5428E56AF53911EEB8A4592AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.147.96.0/19 203.82.160.0/19 203.201.64.0/18 221.120.128.0-221.120.145.255 Signature Algorithm: sha256WithRSAEncryption 44:45:42:d4:9f:4a:b3:e5:64:7a:6b:2e:53:55:4f:43:e6:eb: c2:e0:42:f1:2f:fc:ee:a8:52:62:8f:da:4b:6d:a6:51:b3:05: 78:4c:1d:c2:31:98:f9:de:19:03:95:cd:8d:10:26:62:09:ba: 95:ed:2c:cb:5b:de:bb:bd:23:37:32:8f:4e:59:47:93:6e:fe: be:2e:68:25:ac:9b:79:98:f8:3c:46:dd:11:a3:8e:32:8e:c8: 7f:d3:3b:4e:62:c3:e3:be:7a:a8:da:4c:7c:ca:67:94:af:90: aa:ae:b2:17:53:3b:c8:89:f7:dd:2e:88:d8:6a:c8:40:81:c7: 52:56:b9:70:d8:70:19:cf:b7:0f:00:fa:76:c7:66:40:ad:d5: 2f:ea:16:6f:4d:7b:1f:ce:74:d8:35:70:18:ce:c3:c7:a3:1e: a5:47:1a:16:f1:9a:d4:1f:53:46:09:b0:ba:32:74:59:a4:ce: 0b:aa:91:48:e5:29:1a:28:43:47:56:b4:0a:4b:99:55:28:88: fd:64:0d:3d:ba:70:bd:69:84:47:49:53:42:43:3c:33:da:0c: 91:cb:bd:f8:84:93:1f:2e:d5:7c:b7:ca:62:31:35:4c:f2:38: ad:ba:cf:40:8b:7b:0d:e1:40:17:8d:7d:b8:78:b1:e0:88:03: dc:3e:d1:16 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5QUIxMTAvBgNVBAUTKEQxMEJBRjdBQThEQjczNEI5NTJEMDM2MDg3NzgzQzY0 Mzc4NDNDOEYwHhcNMjQxMDMxMjIwMTAxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIzZmUxZC01NTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4y2TBWF+4t0ro5PJQOqYkxr81oyTY3WCLAVQHYhqgiwLDmuKsvi0FAnQdixX fxfomC4gXr69FTHnLnS5FCOmhu4AaTq9f2b2g9qjAO2+8ecrAMht5KcIzdPOVMt2 MjvhDeWVm9P44ReLQms+ZuoTR1MvsonHlnpcvlYI8Oa1FQoNBCeC1HL5XENO+wNc /gh0Y+rOxCTRpGcloUoKdQWPg7tC4twHRIk5YJxjOelg51+DXJqnNHTkVolVqk8N boLdMaHZHtimX2OgVxkQOCufrMY7J7XSFiELo1CN3+kbzbbMvFBGxW0qyLUhc8Wx f/bV8UQpDTPP1Bj+Tt+c7LqltwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFOQGwXE+ PBWEGAyC3JEGdqmybEqmMB8GA1UdIwQYMBaAFNELr3qo23NLlS0DYId4PGQ3hDyP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzlBQi8xNThENDkwNjI1 NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi8wUXV2ZXFqYmMwdVZMUU5naDNnOFpEZUVQ STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRdXZlcWpiYzB1VkxRTmdoM2c4WkRlRVBJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTM5QUIvMTU4RDQ5MDYyNTVCMTFFQkE5RjU2MDFBQzRGOUFFMDIvNTQyOEU1NkFG NTM5MTFFRUI4QTQ1OTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAXKk2ADBAXLUqADBAbLyUAwDAMEB914gAMEAd14kDANBgkq hkiG9w0BAQsFAAOCAQEAREVC1J9Ks+VkemsuU1VPQ+brwuBC8S/87qhSYo/aS22m UbMFeEwdwjGY+d4ZA5XNjRAmYgm6le0sy1veu70jNzKPTllHk27+vi5oJaybeZj4 PEbdEaOOMo7If9M7TmLD4756qNpMfMpnlK+Qqq6yF1M7yIn33S6I2GrIQIHHUla5 cNhwGc+3DwD6dsdmQK3VL+oWb017H8502DVwGM7Dx6MepUcaFvGa1B9TRgmwujJ0 WaTOC6qRSOUpGihDR1a0CkuZVSiI/WQNPbpwvWmER0lTQkM8M9oMkcu9+ISTHy7V fLfKYjE1TPI4rbrPQIt7DeFAF419uHix4IgD3D7RFg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:34 2024 by rpki-client on console-ams.rpki-client.org