$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/89E1ED764CC111EE87453D77C4F9AE02.roa File: 89E1ED764CC111EE87453D77C4F9AE02.roa (raw, json) Hash identifier: i4o6KpN/sFIWxaZMoc1d6q2sPtevZ9Tpc5mV9I6tNEk= Subject key identifier: CD:CF:48:D5:35:3F:AB:F4:B8:6B:12:7C:8E:E2:BA:58:84:30:F4:0B Certificate issuer: /CN=A91304A9/serialNumber=580553B883DEC3DDB24F688E6C2D1BFA93C263AA Certificate serial: 0AAD Authority key identifier: 58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/89E1ED764CC111EE87453D77C4F9AE02.roa Signing time: Fri 09 Aug 2024 07:03:09 +0000 ROA not before: Fri 09 Aug 2024 07:03:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 3491 IP address blocks: 14.192.160.0/19 maxlen: 24 116.66.208.0/20 maxlen: 20 116.66.210.0/23 maxlen: 24 116.66.212.0/22 maxlen: 22 116.66.216.0/22 maxlen: 22 116.66.217.0/24 maxlen: 24 116.66.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2733 (0xaad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9/serialNumber=580553B883DEC3DDB24F688E6C2D1BFA93C263AA Validity Not Before: Aug 9 07:03:09 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66b5bf2d-d1c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f8:d7:85:66:31:8e:a6:7e:97:2f:c0:fb:06: 2b:65:87:d2:6c:97:7b:9f:75:27:ab:da:2e:b6:ee: e4:6c:83:e5:91:15:54:f2:66:de:1a:45:72:70:56: 3d:e9:8d:84:cc:ac:5f:91:25:88:46:e8:27:bc:80: 4d:57:bf:28:b7:4b:a3:c2:bb:8c:e3:19:57:1c:b8: 07:3c:ba:95:e7:b8:8a:37:94:4b:95:41:49:a6:a2: 14:b4:58:5a:34:aa:3a:bb:6f:22:cc:43:4b:0e:1c: 3b:b0:55:91:0c:71:d2:53:d8:13:81:9f:78:6a:f2: c0:41:0b:fc:25:bf:d1:94:62:d2:48:be:4f:ff:3f: 7a:e1:2d:89:b3:37:f8:d3:32:21:8c:d8:6f:01:1f: 81:10:0d:36:f7:04:1c:c9:3f:4e:15:7f:f4:f0:19: 92:d9:3c:82:fc:de:6c:7c:ff:ca:04:3d:2c:71:51: 25:fc:28:d6:fc:a6:b8:28:31:5f:12:a6:59:be:7a: fe:00:c2:27:da:fc:1f:8a:35:7d:c4:01:cd:1a:d2: 04:b0:6f:34:50:53:3c:30:2b:7b:f6:d2:59:b2:b5: 4e:84:03:60:1d:88:e7:f7:3e:bf:4d:96:35:a6:b9: 11:8b:0d:67:5f:e3:3a:73:33:43:ad:7e:ee:89:24: 63:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:CF:48:D5:35:3F:AB:F4:B8:6B:12:7C:8E:E2:BA:58:84:30:F4:0B X509v3 Authority Key Identifier: keyid:58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/89E1ED764CC111EE87453D77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.160.0/19 116.66.208.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:07:e3:b7:f2:c3:f5:c8:81:9a:9d:8d:fd:de:ae:c2:17:d4: ef:87:75:14:fe:46:39:e8:86:ef:94:c7:bd:98:25:f2:77:1a: fa:ea:5f:c3:5d:bc:eb:6d:b8:5c:e2:5d:9f:5f:0e:23:f0:b7: 35:42:36:fa:59:51:5b:d4:a8:73:7f:1e:cf:b3:46:2b:66:55: 3b:cc:4f:53:ae:38:11:e4:7f:4b:9e:87:dd:cc:a5:49:59:9a: b6:4d:96:61:27:f4:4a:c3:42:a0:fc:09:7c:0e:87:cc:fb:96: 64:10:84:1f:7f:18:70:41:14:32:26:8a:c4:c0:35:7f:19:80: f4:f4:26:c4:74:ed:48:68:42:e8:9e:02:32:c9:25:fe:a9:95: 8c:96:94:38:92:72:74:c8:4d:f9:7f:a7:60:f6:53:f0:49:49: cf:a6:7d:66:09:9a:2c:c9:bc:ae:fb:d9:dc:9c:9b:63:fe:b7: 09:16:f3:c1:42:11:b9:26:19:a1:d9:54:cf:de:85:a2:25:0a: b4:ab:39:07:64:e1:7b:ec:0d:ec:27:de:27:1c:d5:07:02:13: 36:e0:04:b5:4e:53:0f:e3:38:75:5d:c3:8a:ff:6e:ea:09:ed: bc:40:40:fd:de:ba:c9:ae:c2:20:11:1d:23:e8:68:48:b4:8e: 97:13:4a:af -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA0QTkxMTAvBgNVBAUTKDU4MDU1M0I4ODNERUMzRERCMjRGNjg4RTZDMkQxQkZB OTNDMjYzQUEwHhcNMjQwODA5MDcwMzA5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI1YmYyZC1kMWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvjXhWYxjqZ+ly/A+wYrZYfSbJd7n3Unq9outu7kbIPlkRVU8mbeGkVycFY9 6Y2EzKxfkSWIRugnvIBNV78ot0ujwruM4xlXHLgHPLqV57iKN5RLlUFJpqIUtFha NKo6u28izENLDhw7sFWRDHHSU9gTgZ94avLAQQv8Jb/RlGLSSL5P/z964S2Jszf4 0zIhjNhvAR+BEA029wQcyT9OFX/08BmS2TyC/N5sfP/KBD0scVEl/CjW/Ka4KDFf EqZZvnr+AMIn2vwfijV9xAHNGtIEsG80UFM8MCt79tJZsrVOhANgHYjn9z6/TZY1 prkRiw1nX+M6czNDrX7uiSRj+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM3PSNU1 P6v0uGsSfI7iuliEMPQLMB8GA1UdIwQYMBaAFFgFU7iD3sPdsk9ojmwtG/qTwmOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDRBOS9BMzc0QTFCNjQ2 NzExMUVBODFBQkIyNUZDNEY5QUUwMi9XQVZUdUlQZXc5MnlUMmlPYkMwYi1wUENZ Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBVlR1SVBldzkyeVQyaU9iQzBiLXBQQ1k2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzA0QTkvQTM3NEExQjY0NjcxMTFFQTgxQUJCMjVGQzRGOUFFMDIvODlFMUVENzY0 Q0MxMTFFRTg3NDUzRDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAUOwKADBAR0QtAwDQYJKoZIhvcNAQELBQADggEBAFsH47fy w/XIgZqdjf3ersIX1O+HdRT+Rjnohu+Ux72YJfJ3GvrqX8NdvOttuFziXZ9fDiPw tzVCNvpZUVvUqHN/Hs+zRitmVTvMT1OuOBHkf0ueh93MpUlZmrZNlmEn9ErDQqD8 CXwOh8z7lmQQhB9/GHBBFDImisTANX8ZgPT0JsR07UhoQuieAjLJJf6plYyWlDiS cnTITfl/p2D2U/BJSc+mfWYJmizJvK772dycm2P+twkW88FCEbkmGaHZVM/ehaIl CrSrOQdk4XvsDewn3icc1QcCEzbgBLVOUw/jOHVdw4r/buoJ7bxAQP3eusmuwiAR HSPoaEi0jpcTSq8= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:23 2024 by rpki-client on console-ams.rpki-client.org