$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa File: DA504F0E175911EC87322F85C4F9AE02.roa (raw, json) Hash identifier: YomnTGjnYQfGm6lXnJ1sPxZZ35epRd9BPyzWwaToY+I= Subject key identifier: 9E:13:A5:75:67:80:AC:1E:8F:2E:8F:0D:D8:D2:05:89:B9:4B:C7:A0 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 0539 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:57 +0000 ROA not before: Tue 03 Sep 2024 01:14:57 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 4804 IP address blocks: 1.44.0.0/21 maxlen: 21 1.44.8.0/21 maxlen: 21 1.44.16.0/21 maxlen: 21 1.44.24.0/21 maxlen: 21 1.44.32.0/21 maxlen: 21 1.44.40.0/21 maxlen: 21 1.44.48.0/21 maxlen: 21 1.44.56.0/21 maxlen: 21 61.88.184.0/24 maxlen: 24 61.88.185.0/24 maxlen: 24 61.88.186.0/24 maxlen: 24 61.88.190.0/24 maxlen: 24 119.225.240.0/21 maxlen: 21 119.225.248.0/21 maxlen: 21 202.139.72.0/22 maxlen: 22 203.202.52.0/24 maxlen: 24 203.202.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1337 (0x539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Sep 3 01:14:57 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d66311-96cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:22:a5:70:7f:41:18:85:95:e5:32:54:a4:30: d2:18:e4:ba:76:1d:f9:f5:8b:91:24:51:76:79:65: 04:81:cf:f8:aa:d2:35:47:67:f7:11:69:1b:2c:4e: 95:0b:a7:cc:f9:0e:0f:25:f7:4a:fd:31:d5:14:08: 91:36:d0:0a:d7:18:6d:4d:77:1b:b3:01:08:03:e6: 8f:5d:9a:79:75:7a:af:da:eb:f0:7c:2a:29:83:4e: fa:2d:74:4d:76:1f:f8:65:8d:2b:68:35:5f:c6:1f: 1c:5a:1e:e8:cd:d7:29:2c:0e:90:90:b9:2d:47:07: 2a:0f:ce:5e:8c:36:e3:88:bf:df:6f:5b:eb:ff:91: 0c:75:92:39:8d:70:44:82:7e:ab:a9:9a:11:af:6e: 4f:07:69:46:57:ce:4c:b7:d5:e0:6c:ce:8c:a5:6a: e4:d9:22:37:88:61:e0:97:d7:8f:79:d3:ca:ce:5b: 23:e1:a7:f3:4f:4c:ca:8a:ac:ed:03:4a:79:0a:b8: ed:00:89:13:00:23:20:c2:c8:14:e4:01:e8:58:11: 90:62:55:d3:65:65:08:8d:e3:04:d2:9e:f3:4a:c0: 8b:26:91:29:a9:6c:a9:e0:66:54:e7:21:5c:99:35: 24:ff:30:06:3c:15:98:0c:29:f7:d2:58:3b:45:3f: 4b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:13:A5:75:67:80:AC:1E:8F:2E:8F:0D:D8:D2:05:89:B9:4B:C7:A0 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.44.0.0/18 61.88.184.0-61.88.186.255 61.88.190.0/24 119.225.240.0/20 202.139.72.0/22 203.202.52.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:41:0d:a8:3a:c3:dc:47:e3:21:4f:80:80:12:9b:a2:5e:17: 0c:92:74:4f:66:77:5b:f8:68:a1:8f:72:dd:7d:ac:86:8a:43: 44:4d:c3:b5:d7:da:46:7b:8f:7c:a4:5e:d3:22:f4:03:cc:af: 8b:4e:e0:58:9e:6b:1a:be:1e:a9:72:42:3b:0b:67:c6:d0:a2: 47:32:38:87:55:24:1f:c0:23:60:1d:94:24:7f:62:cf:5f:67: c7:3e:0c:1e:08:a3:4e:e2:08:89:0f:a1:d1:b0:32:47:5b:3a: 08:3a:fc:7a:7e:0c:64:43:bb:d1:92:cc:95:76:e5:bc:87:52: 19:d5:b0:79:63:e1:37:2a:99:9f:a6:7e:c7:09:b5:6d:18:4e: b9:62:22:1a:eb:7b:14:ee:f4:18:9d:98:c4:ec:b9:7e:aa:93: 76:6c:07:63:ee:b8:71:3d:21:d7:e2:46:94:11:63:e4:95:67: 3d:25:5c:02:37:76:a8:e9:d6:f2:81:6c:c1:35:05:d9:a7:2e: 51:61:85:bd:1d:31:7d:01:4e:43:69:bd:83:0c:98:bd:d6:77: 31:30:3e:27:dc:9c:30:de:dd:c8:9f:e2:e8:97:48:0d:7f:75: 56:c2:6a:45:38:e4:3f:8e:c2:96:cd:c2:7d:a8:6c:1d:e8:ad: 2e:b8:57:96 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICBTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjQwOTAzMDExNDU3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMxMS05NmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6yKlcH9BGIWV5TJUpDDSGOS6dh359YuRJFF2eWUEgc/4qtI1R2f3EWkbLE6V C6fM+Q4PJfdK/THVFAiRNtAK1xhtTXcbswEIA+aPXZp5dXqv2uvwfCopg076LXRN dh/4ZY0raDVfxh8cWh7ozdcpLA6QkLktRwcqD85ejDbjiL/fb1vr/5EMdZI5jXBE gn6rqZoRr25PB2lGV85Mt9XgbM6MpWrk2SI3iGHgl9ePedPKzlsj4afzT0zKiqzt A0p5CrjtAIkTACMgwsgU5AHoWBGQYlXTZWUIjeME0p7zSsCLJpEpqWyp4GZU5yFc mTUk/zAGPBWYDCn30lg7RT9LUQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFJ4TpXVn gKwejy6PDdjSBYm5S8egMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvREE1MDRGMEUx NzU5MTFFQzg3MzIyRjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAYBLAAwDAMEAz1YuAMEAD1YugMEAD1YvgMEBHfh8AMEAsqL SAMEAcvKNDANBgkqhkiG9w0BAQsFAAOCAQEAOkENqDrD3EfjIU+AgBKbol4XDJJ0 T2Z3W/hooY9y3X2shopDRE3DtdfaRnuPfKRe0yL0A8yvi07gWJ5rGr4eqXJCOwtn xtCiRzI4h1UkH8AjYB2UJH9iz19nxz4MHgijTuIIiQ+h0bAyR1s6CDr8en4MZEO7 0ZLMlXblvIdSGdWweWPhNyqZn6Z+xwm1bRhOuWIiGut7FO70GJ2YxOy5fqqTdmwH Y+64cT0h1+JGlBFj5JVnPSVcAjd2qOnW8oFswTUF2acuUWGFvR0xfQFOQ2m9gwyY vdZ3MTA+J9ycMN7dyJ/i6JdIDX91VsJqRTjkP47Cls3CfahsHeitLrhXlg== -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:58 2024 by rpki-client on console-ams.rpki-client.org