$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/93C20720C45311EBB305C97FC4F9AE02.roa File: 93C20720C45311EBB305C97FC4F9AE02.roa (raw, json) Hash identifier: N2FIp6cqZ/iIaqLg9GcTL9vc/asv0vunls3TgsCu4g8= Subject key identifier: 4B:60:22:C9:7C:53:C2:64:8A:B3:1A:5F:7E:28:86:3D:72:29:34:35 Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Certificate serial: 1261 Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/93C20720C45311EBB305C97FC4F9AE02.roa Signing time: Sat 10 Aug 2024 17:44:51 +0000 ROA not before: Sat 10 Aug 2024 17:44:51 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38861 IP address blocks: 111.223.96.0/19 maxlen: 24 113.10.64.0/18 maxlen: 24 117.20.128.0/18 maxlen: 24 122.11.128.0/17 maxlen: 24 171.207.0.0/16 maxlen: 24 182.19.128.0/17 maxlen: 24 182.55.0.0/16 maxlen: 24 183.90.0.0/17 maxlen: 24 203.116.0.0/16 maxlen: 24 203.117.0.0/16 maxlen: 24 203.118.0.0/18 maxlen: 24 2406:3000:4::/48 maxlen: 48 2406:3001::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4705 (0x1261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Validity Not Before: Aug 10 17:44:51 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b7a713-3d44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e5:89:56:06:08:60:ac:4d:0c:9d:b9:99:de: c6:02:13:64:9d:ec:1c:4e:ca:92:f5:88:77:86:3d: ec:a6:aa:df:97:01:f4:3f:8b:8d:70:20:81:75:a1: 87:98:91:ff:d0:72:a6:d1:74:31:32:6e:b6:50:33: fe:05:91:12:80:bf:1f:3a:9f:4a:16:b0:81:e4:fa: 0a:da:43:e4:65:4f:19:34:09:a9:c4:70:4b:95:42: 05:f1:b3:86:27:6b:3a:77:7f:c7:35:f6:a7:58:b8: 32:e6:58:a0:e0:b3:b9:e8:60:b3:90:83:33:08:17: 54:1f:55:71:74:03:17:dd:ae:91:1c:65:cb:f4:92: d2:f2:86:19:8e:12:d7:05:1c:36:e4:b2:a8:5e:bd: 66:b4:73:e2:1f:cb:e1:b6:71:3a:0a:d1:0d:91:9d: c3:ab:5c:70:e8:96:62:25:4b:5a:a5:a0:fd:31:1e: 8f:c6:91:19:74:c4:fc:e5:36:bd:95:80:85:18:9d: f5:01:7c:d6:50:35:d7:6f:6a:9b:b5:35:c7:73:57: e0:8e:d2:2a:b1:53:d7:a4:1f:fd:48:9c:65:13:2c: 2e:cc:9c:3c:db:fd:62:5c:00:01:1a:ca:5d:8d:b7: fa:8a:89:6d:57:1b:84:63:8d:9c:34:20:81:37:29: 93:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:60:22:C9:7C:53:C2:64:8A:B3:1A:5F:7E:28:86:3D:72:29:34:35 X509v3 Authority Key Identifier: keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/93C20720C45311EBB305C97FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.223.96.0/19 113.10.64.0/18 117.20.128.0/18 122.11.128.0/17 171.207.0.0/16 182.19.128.0/17 182.55.0.0/16 183.90.0.0/17 203.116.0.0-203.118.63.255 IPv6: 2406:3000:4::/48 2406:3001::/32 Signature Algorithm: sha256WithRSAEncryption 71:c2:57:57:71:e9:74:31:ec:b4:5f:d5:ac:31:e2:73:ff:f7: 21:27:86:4d:21:c5:82:fb:e7:3b:62:3f:3c:ac:6b:f6:62:6c: e9:ff:32:e9:78:ae:fa:40:72:04:b1:e2:74:29:80:ab:d2:6d: 83:47:59:9f:02:69:51:9d:36:3f:57:82:82:ae:18:18:74:75: ef:c9:00:a4:e1:0c:d0:e5:80:e5:be:a8:10:b9:3d:1e:b5:d4: b4:c1:20:0e:ca:09:5c:7d:1f:d6:48:f7:cd:87:7b:fc:93:b1: 0e:00:55:f1:79:32:00:d3:b2:1b:ab:e9:67:6d:0a:12:eb:4c: cd:c0:9e:d6:b9:98:ba:4c:d8:9f:26:7e:a8:24:37:a1:bd:7b: 94:e0:33:34:ba:f1:e7:15:dd:c5:c1:90:8b:33:04:d9:de:38: 25:5b:5f:fe:1a:0e:54:20:f1:06:0a:07:0b:03:18:fd:ff:88: a8:bc:0f:9e:c9:ab:f1:5b:3d:ac:f0:83:4f:3a:44:a6:a3:27: 6b:74:71:9c:cb:90:c2:17:35:50:71:69:06:8f:92:8f:72:a7: ef:51:14:12:f1:53:4c:31:4a:98:a9:cf:61:ed:83:ad:0c:e9: 9b:65:f2:c2:47:31:47:f9:b1:8b:32:5d:53:ba:91:d4:4e:1b: d6:95:3f:d8 -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgICEmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyREMxMTAvBgNVBAUTKEMyQjlGNUYzQzY4QzU3NjcyNzIzOUI5MkE5M0IzNjI5 N0QxQjE2NTMwHhcNMjQwODEwMTc0NDUxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI3YTcxMy0zZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweWJVgYIYKxNDJ25md7GAhNknewcTsqS9Yh3hj3spqrflwH0P4uNcCCBdaGH mJH/0HKm0XQxMm62UDP+BZESgL8fOp9KFrCB5PoK2kPkZU8ZNAmpxHBLlUIF8bOG J2s6d3/HNfanWLgy5lig4LO56GCzkIMzCBdUH1VxdAMX3a6RHGXL9JLS8oYZjhLX BRw25LKoXr1mtHPiH8vhtnE6CtENkZ3Dq1xw6JZiJUtapaD9MR6PxpEZdMT85Ta9 lYCFGJ31AXzWUDXXb2qbtTXHc1fgjtIqsVPXpB/9SJxlEywuzJw82/1iXAABGspd jbf6ioltVxuEY42cNCCBNymTnwIDAQABo4IC4jCCAt4wHQYDVR0OBBYEFEtgIsl8 U8JkirMaX34ohj1yKTQ1MB8GA1UdIwQYMBaAFMK59fPGjFdnJyObkqk7Nil9GxZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDJEQy8yRDUxQUY0MkZE M0UxMUU4ODhDNTM5NDRDNEY5QUUwMi93cm4xODhhTVYyY25JNXVTcVRzMktYMGJG bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dybjE4OGFNVjJjbkk1dVNxVHMyS1gwYkZsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAyREMvMkQ1MUFGNDJGRDNFMTFFODg4QzUzOTQ0QzRGOUFFMDIvOTNDMjA3MjBD NDUzMTFFQkIzMDVDOTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbAYIKwYBBQUHAQcBAf8E XTBbMEEEAgABMDsDBAVv32ADBAZxCkADBAZ1FIADBAd6C4ADAwCrzwMEB7YTgAMD ALY3AwQHt1oAMAsDAwLLdAMEBst2ADAWBAIAAjAQAwcAJAYwAAAEAwUAJAYwATAN BgkqhkiG9w0BAQsFAAOCAQEAccJXV3HpdDHstF/VrDHic//3ISeGTSHFgvvnO2I/ PKxr9mJs6f8y6Xiu+kByBLHidCmAq9Jtg0dZnwJpUZ02P1eCgq4YGHR178kApOEM 0OWA5b6oELk9HrXUtMEgDsoJXH0f1kj3zYd7/JOxDgBV8XkyANOyG6vpZ20KEutM zcCe1rmYukzYnyZ+qCQ3ob17lOAzNLrx5xXdxcGQizME2d44JVtf/hoOVCDxBgoH CwMY/f+IqLwPnsmr8Vs9rPCDTzpEpqMna3RxnMuQwhc1UHFpBo+Sj3Kn71EUEvFT TDFKmKnPYe2DrQzpm2XywkcxR/mxizJdU7qR1E4b1pU/2A== -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:08 2024 by rpki-client on console-ams.rpki-client.org