$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/519EFB1CDF0C11EC95837910C4F9AE02.roa File: 519EFB1CDF0C11EC95837910C4F9AE02.roa (raw, json) Hash identifier: yVJYGMO9cpOy9ZVoc1CS4FfA6YNAu2Hrw5rdGW5jab0= Subject key identifier: A2:1F:4E:AC:D2:C9:BE:A4:B4:BF:3B:98:7D:98:AC:6E:D8:D6:18:A7 Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 050D Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/519EFB1CDF0C11EC95837910C4F9AE02.roa Signing time: Wed 31 Jul 2024 02:33:39 +0000 ROA not before: Wed 31 Jul 2024 02:33:39 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24455 IP address blocks: 27.254.242.0/24 maxlen: 24 27.254.243.0/24 maxlen: 24 58.137.69.0/24 maxlen: 24 202.183.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1293 (0x50d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Jul 31 02:33:39 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9a283-5657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9f:dd:40:cc:3d:80:9e:43:98:b4:bf:de:ee: 9b:3a:fd:60:c9:17:8e:d1:e5:27:79:de:99:0a:db: 62:02:22:22:cb:48:89:66:8b:d2:0f:ac:67:3b:da: 57:c3:c2:15:40:80:98:30:a6:73:f0:c6:84:8e:e6: e1:b1:5c:c0:db:73:1d:f5:ec:7a:78:42:ed:39:6a: 4e:6a:82:71:bc:bd:03:1f:35:91:06:63:92:ce:e3: fb:4e:fb:70:f8:fb:83:59:71:9b:a5:2b:7e:00:71: 4c:cc:5a:c0:5d:18:b4:0b:fc:2c:fd:ac:31:6b:97: a6:19:fa:cb:b8:42:06:56:71:d2:9f:c1:bf:90:85: 9e:30:e6:fa:8e:8f:84:c9:35:9c:24:b7:e0:60:97: 43:fa:24:35:64:80:0e:a1:4e:1a:c1:d8:df:c3:d7: 69:34:51:77:72:5c:79:ab:11:99:df:c7:14:d3:6a: 5f:7b:41:d4:62:55:74:17:c0:8a:98:2c:b8:e9:8d: b3:c7:0d:fb:7b:11:fa:51:69:08:52:16:fe:bc:61: 22:06:be:17:0b:06:d8:14:8f:a9:39:ee:4d:df:68: e8:c4:98:5c:61:be:c6:c1:c2:63:ff:33:19:70:ad: 49:47:cb:cc:bd:be:d2:fa:07:79:36:b0:2a:1e:be: ea:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:1F:4E:AC:D2:C9:BE:A4:B4:BF:3B:98:7D:98:AC:6E:D8:D6:18:A7 X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/519EFB1CDF0C11EC95837910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.254.242.0/23 58.137.69.0/24 202.183.207.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:9a:35:94:69:bc:7a:cd:83:04:44:90:ad:c1:32:15:c8:9d: e0:10:b6:0f:5f:8b:cc:0d:27:a5:38:d9:e7:12:92:43:45:38: 4e:4b:ac:56:e2:95:9a:9d:6d:0b:f5:4c:78:e5:5f:19:09:15: 83:d9:15:8e:7b:b2:be:4d:12:16:eb:78:e3:44:e3:42:3d:29: 69:d8:83:8a:fd:cd:85:28:a3:ef:21:37:b1:1b:42:e9:98:b6: 95:2e:15:d4:b5:87:c8:df:56:db:34:e3:9c:01:19:98:80:67: e8:45:95:80:e6:f1:cc:aa:55:cd:c4:e0:ee:de:b7:1a:48:c7: 5b:11:68:84:70:e3:a0:1d:81:c3:20:e5:82:75:59:8b:e8:7b: e6:37:88:89:65:19:62:72:85:d0:63:c7:c4:2c:0d:91:6b:a9: bb:04:46:64:d9:79:92:dd:05:7f:bb:0e:b4:8f:2e:54:3c:0d: e1:15:1e:9b:76:40:fa:ff:f4:1f:14:8a:18:33:98:8e:e1:ca: 5e:6d:08:b1:8c:2a:e6:cc:5a:09:e5:3f:1b:73:80:e8:18:d9: 57:7d:ef:ca:3a:76:f5:11:73:c3:ff:c0:66:bb:f4:f1:9d:bb: de:0c:0c:66:47:48:86:e0:0b:43:38:12:12:09:b8:fb:0c:0c: 6a:02:67:2f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjQwNzMxMDIzMzM5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YTI4My01NjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Z/dQMw9gJ5DmLS/3u6bOv1gyReO0eUned6ZCttiAiIiy0iJZovSD6xnO9pX w8IVQICYMKZz8MaEjubhsVzA23Md9ex6eELtOWpOaoJxvL0DHzWRBmOSzuP7Tvtw +PuDWXGbpSt+AHFMzFrAXRi0C/ws/awxa5emGfrLuEIGVnHSn8G/kIWeMOb6jo+E yTWcJLfgYJdD+iQ1ZIAOoU4awdjfw9dpNFF3clx5qxGZ38cU02pfe0HUYlV0F8CK mCy46Y2zxw37exH6UWkIUhb+vGEiBr4XCwbYFI+pOe5N32joxJhcYb7GwcJj/zMZ cK1JR8vMvb7S+gd5NrAqHr7qTQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKIfTqzS yb6ktL87mH2YrG7Y1hinMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvNTE5RUZCMUNE RjBDMTFFQzk1ODM3OTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEb/vIDBAA6iUUDBADKt88wDQYJKoZIhvcNAQELBQADggEB AIuaNZRpvHrNgwREkK3BMhXIneAQtg9fi8wNJ6U42ecSkkNFOE5LrFbilZqdbQv1 THjlXxkJFYPZFY57sr5NEhbreONE40I9KWnYg4r9zYUoo+8hN7EbQumYtpUuFdS1 h8jfVts045wBGZiAZ+hFlYDm8cyqVc3E4O7etxpIx1sRaIRw46AdgcMg5YJ1WYvo e+Y3iIllGWJyhdBjx8QsDZFrqbsERmTZeZLdBX+7DrSPLlQ8DeEVHpt2QPr/9B8U ihgzmI7hyl5tCLGMKubMWgnlPxtzgOgY2Vd978o6dvURc8P/wGa79PGdu94MDGZH SIbgC0M4EhIJuPsMDGoCZy8= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:20 2024 by rpki-client on console-ams.rpki-client.org