$ rpki-client -vvf rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/F5660FBC160611ECB3912A7EC4F9AE02.roa File: F5660FBC160611ECB3912A7EC4F9AE02.roa (raw, json) Hash identifier: RPlpLsvu7u5Rnn/6LuYgjLv1WN/M07IljCmFXb548ck= Subject key identifier: 89:A6:A3:6B:E4:50:D3:92:F9:F0:A2:A8:A9:EF:F5:BE:33:71:5B:EB Certificate issuer: /CN=A91473F8/serialNumber=0BF2B5944C3A2CCAB6C1D12BC36A5AF3C2DCF77F Certificate serial: 0C32 Authority key identifier: 0B:F2:B5:94:4C:3A:2C:CA:B6:C1:D1:2B:C3:6A:5A:F3:C2:DC:F7:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C_K1lEw6LMq2wdErw2pa88Lc938.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/F5660FBC160611ECB3912A7EC4F9AE02.roa Signing time: Thu 19 Sep 2024 09:52:01 +0000 ROA not before: Thu 19 Sep 2024 09:52:01 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 38011 IP address blocks: 202.44.104.0/21 maxlen: 24 2402:21c0::/32 maxlen: 32 2402:21c0:100::/40 maxlen: 40 2402:21c0:200::/40 maxlen: 40 2402:21c0:300::/40 maxlen: 40 2402:21c0:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/C_K1lEw6LMq2wdErw2pa88Lc938.crl rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/C_K1lEw6LMq2wdErw2pa88Lc938.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C_K1lEw6LMq2wdErw2pa88Lc938.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3122 (0xc32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91473F8/serialNumber=0BF2B5944C3A2CCAB6C1D12BC36A5AF3C2DCF77F Validity Not Before: Sep 19 09:52:01 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66ebf441-5cbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b5:5e:ed:1f:a4:af:ad:e8:e3:29:e1:48:ab: c2:48:7e:99:26:6d:c0:75:3b:38:ff:ae:67:df:b9: b4:44:45:6c:65:e0:4a:1f:59:d8:16:67:45:43:1e: 8e:5e:fd:90:1d:58:df:cd:4c:68:87:a4:be:21:6a: 42:45:16:ad:83:2d:bd:02:74:a1:c6:5e:70:db:73: 99:a9:81:1a:8f:43:c5:e0:d8:e4:6b:75:19:8a:5e: df:c1:17:ac:03:23:a7:f7:b5:25:5a:52:74:87:aa: 9f:cb:35:1f:bb:42:50:73:c5:81:53:7b:3c:49:1a: ea:7a:d4:0e:17:3c:87:2e:5a:f1:4e:52:69:a9:4e: d2:be:ac:e1:d7:78:bc:a0:6a:05:16:c8:87:4e:72: 3c:a8:e1:51:30:86:99:28:e8:41:2f:61:84:ec:e4: fd:92:99:04:f2:63:62:f3:e6:f1:25:49:32:a0:3e: 5a:57:b0:96:98:51:27:a4:53:51:fe:6f:27:4e:54: b8:c4:86:4a:26:d5:f1:14:89:3e:be:a1:08:7a:64: 89:b1:87:64:7f:e9:20:77:c3:d5:f5:e3:68:16:bc: 05:0e:fd:f1:78:77:5f:b7:fb:b4:aa:8b:be:55:dc: 3d:cf:38:76:c2:5d:01:ad:55:b4:b2:fa:da:a0:21: e2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A6:A3:6B:E4:50:D3:92:F9:F0:A2:A8:A9:EF:F5:BE:33:71:5B:EB X509v3 Authority Key Identifier: keyid:0B:F2:B5:94:4C:3A:2C:CA:B6:C1:D1:2B:C3:6A:5A:F3:C2:DC:F7:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/C_K1lEw6LMq2wdErw2pa88Lc938.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C_K1lEw6LMq2wdErw2pa88Lc938.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/F5660FBC160611ECB3912A7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.44.104.0/21 IPv6: 2402:21c0::/32 Signature Algorithm: sha256WithRSAEncryption 7f:06:3d:ee:4e:98:47:e8:f9:53:96:18:7c:e3:58:f7:9a:53: bc:27:ca:23:b1:f2:81:37:6d:b9:ac:e6:e6:31:20:34:47:a0: e7:ea:93:e4:4b:e8:fa:53:13:90:0a:fb:4d:78:46:55:6e:73: b5:3e:a2:52:f5:3f:c9:1a:91:87:11:cb:a6:bb:c4:1f:4d:6a: 6d:92:3b:97:d0:a0:08:d1:f0:f1:b8:3e:3c:30:37:ce:87:c8: c8:63:06:e2:2f:b5:da:28:78:fd:fa:70:2a:f1:32:9e:02:9b: 77:cc:52:70:92:78:10:b4:fd:fd:79:80:db:cd:c3:13:26:ef: 12:80:c5:aa:6e:0f:fe:4d:27:d0:c4:43:cb:e4:ac:d0:4f:74: e2:23:c4:6a:1f:a6:bf:93:fd:93:70:2e:4c:95:40:74:5c:b7: 64:4b:15:c3:fc:0d:b1:7c:91:0a:be:83:73:6c:c2:69:d8:2d: b7:03:58:7a:ad:0f:3e:f1:32:28:2b:2a:57:7e:04:f7:43:d9: 44:01:e2:ba:1e:46:75:43:ca:7f:ef:6a:a0:1c:24:00:fa:10: 33:b0:8b:15:7e:fd:d5:fb:68:7b:fb:bc:d0:3b:31:5b:99:6a: 6b:ea:00:c2:05:3a:ab:47:35:dc:34:0c:c0:0f:0e:32:5e:f8: 57:61:2a:30 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDczRjgxMTAvBgNVBAUTKDBCRjJCNTk0NEMzQTJDQ0FCNkMxRDEyQkMzNkE1QUYz QzJEQ0Y3N0YwHhcNMjQwOTE5MDk1MjAxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmViZjQ0MS01Y2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubVe7R+kr63o4ynhSKvCSH6ZJm3AdTs4/65n37m0REVsZeBKH1nYFmdFQx6O Xv2QHVjfzUxoh6S+IWpCRRatgy29AnShxl5w23OZqYEaj0PF4Njka3UZil7fwRes AyOn97UlWlJ0h6qfyzUfu0JQc8WBU3s8SRrqetQOFzyHLlrxTlJpqU7Svqzh13i8 oGoFFsiHTnI8qOFRMIaZKOhBL2GE7OT9kpkE8mNi8+bxJUkyoD5aV7CWmFEnpFNR /m8nTlS4xIZKJtXxFIk+vqEIemSJsYdkf+kgd8PV9eNoFrwFDv3xeHdft/u0qou+ Vdw9zzh2wl0BrVW0svraoCHiMQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFImmo2vk UNOS+fCiqKnv9b4zcVvrMB8GA1UdIwQYMBaAFAvytZRMOizKtsHRK8NqWvPC3Pd/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzNGOC80QjQ1NkM4OEYz NjkxMUU5OUM2N0EwNjFDNEY5QUUwMi9DX0sxbEV3NkxNcTJ3ZEVydzJwYTg4TGM5 MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NfSzFsRXc2TE1xMndkRXJ3MnBhODhMYzkzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDczRjgvNEI0NTZDODhGMzY5MTFFOTlDNjdBMDYxQzRGOUFFMDIvRjU2NjBGQkMx NjA2MTFFQ0IzOTEyQTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAPKLGgwDQQCAAIwBwMFACQCIcAwDQYJKoZIhvcNAQELBQAD ggEBAH8GPe5OmEfo+VOWGHzjWPeaU7wnyiOx8oE3bbms5uYxIDRHoOfqk+RL6PpT E5AK+014RlVuc7U+olL1P8kakYcRy6a7xB9Nam2SO5fQoAjR8PG4PjwwN86HyMhj BuIvtdooeP36cCrxMp4Cm3fMUnCSeBC0/f15gNvNwxMm7xKAxapuD/5NJ9DEQ8vk rNBPdOIjxGofpr+T/ZNwLkyVQHRct2RLFcP8DbF8kQq+g3NswmnYLbcDWHqtDz7x MigrKld+BPdD2UQB4roeRnVDyn/vaqAcJAD6EDOwixV+/dX7aHv7vNA7MVuZamvq AMIFOqtHNdw0DMAPDjJe+FdhKjA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org