$ rpki-client -vvf rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/A1FA613614AF11ED8CE9335EC4F9AE02.roa File: A1FA613614AF11ED8CE9335EC4F9AE02.roa (raw, json) Hash identifier: FA1bepThm+QVvw1q0u8zzYFpqsnzknERutF0jYbh+Nk= Subject key identifier: 4B:86:10:81:B9:A2:24:8A:3B:A8:86:5A:90:FD:94:17:1D:1D:50:66 Certificate issuer: /CN=A91183D4/serialNumber=8A339195E2CE2975B5F7899A3D02CE62EF91BF39 Certificate serial: 01EF Authority key identifier: 8A:33:91:95:E2:CE:29:75:B5:F7:89:9A:3D:02:CE:62:EF:91:BF:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijORleLOKXW194maPQLOYu-Rvzk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/A1FA613614AF11ED8CE9335EC4F9AE02.roa Signing time: Thu 03 Oct 2024 02:35:55 +0000 ROA not before: Thu 03 Oct 2024 02:35:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136545 IP address blocks: 59.153.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.crl rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijORleLOKXW194maPQLOYu-Rvzk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91183D4/serialNumber=8A339195E2CE2975B5F7899A3D02CE62EF91BF39 Validity Not Before: Oct 3 02:35:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fe030b-158d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:60:db:4a:d6:b3:c0:e4:0e:63:4f:ff:a9:d5: 80:21:fd:8d:c8:86:9c:80:d9:85:3d:60:73:7f:f9: 57:d2:3f:20:8b:e3:18:f1:1f:29:89:0a:82:27:66: ef:ef:dc:a5:82:c3:8a:5b:38:6d:50:64:5f:b2:3b: 4a:68:9c:73:45:cf:66:51:d8:83:72:b7:63:b1:14: e3:de:cd:ee:a2:02:fa:96:c0:59:87:3e:64:d8:8b: e4:de:6d:9c:b5:fc:12:32:ed:7c:8f:7b:0e:0f:49: 34:87:9a:ec:2e:4e:3d:25:01:fa:21:22:76:15:84: 45:d8:83:ca:9c:6d:cb:e5:dd:07:76:74:98:6f:7f: dc:53:06:78:b3:e4:56:de:e1:3b:79:0d:5c:73:54: d6:51:41:0f:1c:b5:8e:58:29:f5:4e:16:8e:7b:c6: 01:06:85:6f:52:7d:d1:ec:fb:cd:a3:57:e2:15:51: 96:d5:ac:1a:da:05:77:52:d0:2d:7d:94:04:1f:cc: d0:de:d3:78:21:06:00:42:01:8f:8b:6d:83:52:99: 3d:93:3d:69:3c:13:11:65:21:0d:ea:3b:7e:1a:71: 3a:42:d9:a6:41:ac:82:49:9b:d1:62:85:6b:47:63: 14:2e:ca:83:55:b7:41:e7:29:e3:46:2b:2d:4d:2d: 44:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:86:10:81:B9:A2:24:8A:3B:A8:86:5A:90:FD:94:17:1D:1D:50:66 X509v3 Authority Key Identifier: keyid:8A:33:91:95:E2:CE:29:75:B5:F7:89:9A:3D:02:CE:62:EF:91:BF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijORleLOKXW194maPQLOYu-Rvzk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/A1FA613614AF11ED8CE9335EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.60.0/22 Signature Algorithm: sha256WithRSAEncryption 91:65:5f:21:d5:fd:c8:b1:e3:3f:8d:86:e2:26:d3:d5:93:d1: fd:94:d8:26:a4:99:59:71:99:53:cc:29:15:ad:b0:49:43:68: 13:2f:41:38:e1:41:b6:bc:bf:77:14:30:3d:c3:61:b8:f2:04: 0e:1a:71:c1:1a:85:5b:1c:90:05:89:2c:ab:70:09:48:d2:f5: e9:95:42:3b:3b:a3:4b:36:5d:ee:b3:c8:d5:ad:6f:6d:59:aa: 8f:7b:97:f3:7c:b9:30:b5:d8:63:be:90:d0:4a:58:b4:dd:b7: bc:d8:81:17:2a:3d:b0:c4:41:60:58:a2:46:fb:7e:84:64:b8: b9:93:9e:20:7e:75:20:1e:5f:02:3b:cd:c3:b1:9b:4c:59:78: e9:13:ca:f9:46:fc:e5:52:80:ec:b9:1c:0e:c9:e4:27:21:b5: c4:f7:1d:2a:27:ae:b3:14:3a:c5:e6:36:1b:b5:44:78:7d:e3: 18:fc:87:51:93:48:3f:ac:7b:f2:cb:6c:6c:ac:97:99:bb:ec: 94:cf:f8:9c:29:4e:47:9c:52:02:df:4e:44:dd:2a:b2:a6:ae: 36:05:58:c6:ad:4e:65:21:d7:19:3f:e9:5d:03:1d:d8:c6:6d: 37:e3:e9:ab:7b:2d:d4:df:53:d6:83:ac:47:95:12:7f:8a:71: ce:ed:a7:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzRDQxMTAvBgNVBAUTKDhBMzM5MTk1RTJDRTI5NzVCNUY3ODk5QTNEMDJDRTYy RUY5MUJGMzkwHhcNMjQxMDAzMDIzNTU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZlMDMwYi0xNThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGDbStazwOQOY0//qdWAIf2NyIacgNmFPWBzf/lX0j8gi+MY8R8piQqCJ2bv 79ylgsOKWzhtUGRfsjtKaJxzRc9mUdiDcrdjsRTj3s3uogL6lsBZhz5k2Ivk3m2c tfwSMu18j3sOD0k0h5rsLk49JQH6ISJ2FYRF2IPKnG3L5d0HdnSYb3/cUwZ4s+RW 3uE7eQ1cc1TWUUEPHLWOWCn1ThaOe8YBBoVvUn3R7PvNo1fiFVGW1awa2gV3UtAt fZQEH8zQ3tN4IQYAQgGPi22DUpk9kz1pPBMRZSEN6jt+GnE6QtmmQayCSZvRYoVr R2MULsqDVbdB5ynjRistTS1E4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEuGEIG5 oiSKO6iGWpD9lBcdHVBmMB8GA1UdIwQYMBaAFIozkZXizil1tfeJmj0CzmLvkb85 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODNENC9GNkJFODY5NjE0 QUMxMUVEODNBNzZFNTlDNEY5QUUwMi9pak9SbGVMT0tYVzE5NG1hUFFMT1l1LVJ2 emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lqT1JsZUxPS1hXMTk0bWFQUUxPWXUtUnZ6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTgzRDQvRjZCRTg2OTYxNEFDMTFFRDgzQTc2RTU5QzRGOUFFMDIvQTFGQTYxMzYx NEFGMTFFRDhDRTkzMzVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAI7mTwwDQYJKoZIhvcNAQELBQADggEBAJFlXyHV/cix4z+N huIm09WT0f2U2CakmVlxmVPMKRWtsElDaBMvQTjhQba8v3cUMD3DYbjyBA4accEa hVsckAWJLKtwCUjS9emVQjs7o0s2Xe6zyNWtb21Zqo97l/N8uTC12GO+kNBKWLTd t7zYgRcqPbDEQWBYokb7foRkuLmTniB+dSAeXwI7zcOxm0xZeOkTyvlG/OVSgOy5 HA7J5CchtcT3HSonrrMUOsXmNhu1RHh94xj8h1GTSD+se/LLbGysl5m77JTP+Jwp TkecUgLfTkTdKrKmrjYFWMatTmUh1xk/6V0DHdjGbTfj6at7LdTfU9aDrEeVEn+K cc7tpw8= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:50 2024 by rpki-client on console-fra.rpki-client.org