$ rpki-client -vvf rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/F5C5A42C5ADC11EF8061F335C4F9AE02.roa File: F5C5A42C5ADC11EF8061F335C4F9AE02.roa (raw, json) Hash identifier: jyFeBHdKHmG1HRE/BTdZ4LEVyNfH72ioQGaOrtzmyn8= Subject key identifier: 8F:77:0B:BA:AD:E8:BF:B0:34:A5:20:D4:EF:B6:AD:99:20:B8:DA:38 Certificate issuer: /CN=A91604A8/serialNumber=86E234E2E1E23A4971458D2A72614DF13895E29A Certificate serial: 29 Authority key identifier: 86:E2:34:E2:E1:E2:3A:49:71:45:8D:2A:72:61:4D:F1:38:95:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/huI04uHiOklxRY0qcmFN8TiV4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/F5C5A42C5ADC11EF8061F335C4F9AE02.roa Signing time: Fri 25 Oct 2024 06:22:00 +0000 ROA not before: Fri 25 Oct 2024 06:22:00 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 26658 IP address blocks: 45.127.160.0/22 maxlen: 22 103.196.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/huI04uHiOklxRY0qcmFN8TiV4po.crl rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/huI04uHiOklxRY0qcmFN8TiV4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/huI04uHiOklxRY0qcmFN8TiV4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604A8/serialNumber=86E234E2E1E23A4971458D2A72614DF13895E29A Validity Not Before: Oct 25 06:22:00 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671b3907-1774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:74:4a:cd:02:78:11:ad:02:33:f7:0a:33:c3: 52:d0:57:eb:4f:ba:52:91:5c:c7:87:f8:56:df:ff: 49:91:7b:8f:0e:cb:2e:91:d5:ca:14:80:9b:30:90: 3d:c2:26:ca:a4:ca:c7:a1:c2:47:0a:05:e0:70:8b: 64:27:54:3f:26:cb:66:dc:71:b8:6b:15:b2:12:6a: c3:56:96:d3:92:4b:9d:64:02:b7:4c:1e:0b:40:a7: 95:8c:f3:b6:96:3b:7a:77:62:21:4e:b1:87:0f:3d: 6f:19:20:2d:d5:d9:2c:63:5e:fc:75:51:38:ba:c8: 96:ad:f5:79:76:1f:02:a1:e2:b6:46:1e:cc:88:16: 00:34:7c:ec:ee:d1:99:24:cc:3d:5d:9b:c5:52:8e: 13:e7:78:1a:49:05:40:35:d6:4e:a2:0f:07:c6:0d: f1:01:b4:30:4f:2b:0e:e4:4d:cd:a6:88:11:d7:c5: 5a:8c:d0:90:68:33:ed:fa:79:b4:1a:51:8f:c4:be: 97:78:cb:a2:41:08:77:cc:03:6c:0c:9a:66:a8:52: 60:0f:11:aa:4b:3e:13:94:85:da:93:5b:85:9c:87: c4:42:d2:ab:90:dd:e2:b0:11:4f:5f:e7:52:ed:78: f7:c8:4f:a1:1e:18:f9:71:27:4f:12:71:6d:81:68: d5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:77:0B:BA:AD:E8:BF:B0:34:A5:20:D4:EF:B6:AD:99:20:B8:DA:38 X509v3 Authority Key Identifier: keyid:86:E2:34:E2:E1:E2:3A:49:71:45:8D:2A:72:61:4D:F1:38:95:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/huI04uHiOklxRY0qcmFN8TiV4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/huI04uHiOklxRY0qcmFN8TiV4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/F5C5A42C5ADC11EF8061F335C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.160.0/22 103.196.100.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:aa:75:66:6f:fe:ed:ca:c0:c8:f1:53:ee:b0:53:98:56:4d: 88:99:30:94:0e:e0:86:72:8e:80:92:95:b3:b2:c6:54:f1:11: 81:1d:c3:42:4d:46:26:46:18:5b:b8:6b:bc:4e:63:4c:b7:4b: e0:c5:b6:24:ae:a6:ec:58:04:0f:a8:24:64:80:f4:47:ef:e6: f5:39:88:05:3a:9a:02:81:ae:8c:39:45:c1:2a:30:e6:29:03: 48:6c:39:ae:53:70:0b:ef:38:2a:3c:24:8e:25:aa:cb:4a:d4: ec:9a:3e:14:ac:80:19:5a:ee:77:e4:60:76:8f:71:c3:60:5f: 9b:4e:78:9e:47:c5:3a:91:fa:50:82:21:9d:67:1e:c4:98:42: fd:aa:7e:76:23:d3:6d:0e:d2:76:b4:6c:d3:05:62:c8:05:1e: 56:34:05:f3:ed:e0:66:b8:45:05:7b:2a:91:38:e9:05:ca:28: db:55:b8:e2:5f:a1:fb:53:af:7c:65:90:c6:7f:b6:7d:1e:c7: 16:f6:47:6e:97:22:b4:ba:09:05:86:52:cf:9d:e0:1e:1b:be: bc:3a:04:d0:48:b1:97:cc:23:ef:99:9e:f1:23:8f:78:ae:66: 17:44:f2:e7:d2:04:7f:37:2c:48:5a:cb:29:92:15:e9:b1:e5: 55:fc:4f:be -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDRBODExMC8GA1UEBRMoODZFMjM0RTJFMUUyM0E0OTcxNDU4RDJBNzI2MTRERjEz ODk1RTI5QTAeFw0yNDEwMjUwNjIyMDBaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWIzOTA3LTE3NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDdErNAngRrQIz9wozw1LQV+tPulKRXMeH+Fbf/0mRe48Oyy6R1coUgJswkD3C JsqkysehwkcKBeBwi2QnVD8my2bccbhrFbISasNWltOSS51kArdMHgtAp5WM87aW O3p3YiFOsYcPPW8ZIC3V2SxjXvx1UTi6yJat9Xl2HwKh4rZGHsyIFgA0fOzu0Zkk zD1dm8VSjhPneBpJBUA11k6iDwfGDfEBtDBPKw7kTc2miBHXxVqM0JBoM+36ebQa UY/Evpd4y6JBCHfMA2wMmmaoUmAPEapLPhOUhdqTW4Wch8RC0quQ3eKwEU9f51Lt ePfIT6EeGPlxJ08ScW2BaNX9AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUj3cLuq3o v7A0pSDU77atmSC42jgwHwYDVR0jBBgwFoAUhuI04uHiOklxRY0qcmFN8TiV4pow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwNEE4L0E1RjhFODc4NUFE QzExRUY4RjRDOTM3N0M0RjlBRTAyL2h1STA0dUhpT2tseFJZMHFjbUZOOFRpVjRw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHVJMDR1SGlPa2x4UlkwcWNtRk44VGlWNHBvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDRBOC9BNUY4RTg3ODVBREMxMUVGOEY0QzkzNzdDNEY5QUUwMi9GNUM1QTQyQzVB REMxMUVGODA2MUYzMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAi1/oAMEAmfEZDANBgkqhkiG9w0BAQsFAAOCAQEAjqp1Zm/+ 7crAyPFT7rBTmFZNiJkwlA7ghnKOgJKVs7LGVPERgR3DQk1GJkYYW7hrvE5jTLdL 4MW2JK6m7FgED6gkZID0R+/m9TmIBTqaAoGujDlFwSow5ikDSGw5rlNwC+84Kjwk jiWqy0rU7Jo+FKyAGVrud+Rgdo9xw2Bfm054nkfFOpH6UIIhnWcexJhC/ap+diPT bQ7SdrRs0wViyAUeVjQF8+3gZrhFBXsqkTjpBcoo21W44l+h+1OvfGWQxn+2fR7H FvZHbpcitLoJBYZSz53gHhu+vDoE0Eixl8wj75me8SOPeK5mF0Ty59IEfzcsSFrL KZIV6bHlVfxPvg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:16 2024 by rpki-client on console-fra.rpki-client.org