$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/F5E65C96FD6C11ECB2384E64C4F9AE02.roa File: F5E65C96FD6C11ECB2384E64C4F9AE02.roa (raw, json) Hash identifier: jruCV8o7M+K9hoZkMPNs3l4bUYZ+XPug7o900UdOtso= Subject key identifier: 0E:71:76:C5:DB:4E:94:39:F3:09:3E:B6:08:4C:D4:F7:AF:EF:63:A4 Certificate issuer: /CN=A91758DF/serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF Certificate serial: 07C9 Authority key identifier: 42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/F5E65C96FD6C11ECB2384E64C4F9AE02.roa Signing time: Thu 17 Oct 2024 16:40:32 +0000 ROA not before: Thu 17 Oct 2024 16:40:32 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 14593 IP address blocks: 14.1.64.0/19 maxlen: 24 103.152.126.0/23 maxlen: 24 103.235.92.0/22 maxlen: 24 116.91.208.0/20 maxlen: 24 203.17.80.0/21 maxlen: 24 2406:2d40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.crl rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1993 (0x7c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF/serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF Validity Not Before: Oct 17 16:40:32 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67113e00-0c5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e1:7f:22:0c:4e:3c:34:c0:b9:a9:4c:d6:43: f8:c6:e7:0e:ad:b2:da:1e:7f:36:8e:f0:1d:2f:52: a3:14:a2:bd:07:b7:68:4a:a0:87:c6:6b:44:66:7b: 1c:56:97:2e:8c:a1:ed:09:ef:3d:aa:49:c7:06:10: b2:f0:04:a4:31:d5:e7:25:db:07:74:83:93:8c:a1: e3:f5:20:bf:39:e2:d2:7a:2b:95:b9:78:6f:88:67: 01:23:88:74:37:8d:47:6f:aa:1b:d5:29:12:cd:93: c9:e8:f3:9a:ea:e4:4a:81:1b:94:71:07:ab:26:e7: c1:d8:f1:76:6b:99:47:bc:7a:cd:a8:9a:e1:23:93: 0a:a8:77:e1:1b:25:08:91:1c:68:1c:1d:8f:14:c0: 1a:cc:56:77:fc:e9:01:91:c3:88:c7:bf:dd:03:41: 6c:de:67:3b:fc:68:61:f4:4e:9a:e7:49:39:fd:34: 27:25:2c:ed:84:4e:a9:12:7b:a0:91:e4:7e:c8:be: 50:97:3d:c1:7c:2b:58:6b:13:37:39:d6:f5:da:82: af:70:ed:34:89:70:d8:6c:8f:dd:09:eb:53:63:b6: f2:63:14:b9:45:83:88:55:aa:8f:73:ec:d2:cd:15: 28:c3:07:05:a2:97:a2:24:d9:50:f7:7c:bb:7f:26: af:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:71:76:C5:DB:4E:94:39:F3:09:3E:B6:08:4C:D4:F7:AF:EF:63:A4 X509v3 Authority Key Identifier: keyid:42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/F5E65C96FD6C11ECB2384E64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.1.64.0/19 103.152.126.0/23 103.235.92.0/22 116.91.208.0/20 203.17.80.0/21 IPv6: 2406:2d40::/32 Signature Algorithm: sha256WithRSAEncryption 1d:b0:fb:2a:dc:02:79:a4:2b:ac:8a:b6:e0:b1:9f:1b:22:98: 23:cf:a1:0b:6b:a7:d5:1a:78:d6:21:02:d3:cb:9e:11:8a:00: ac:2e:b5:03:c5:03:ee:d3:ff:28:7a:7d:7f:f2:7a:ac:71:f6: f7:ea:86:7f:9a:fa:49:e8:6c:01:9a:99:c0:4e:30:d6:70:47: 88:ec:fb:a8:23:0b:cd:54:f7:e4:50:3f:cb:69:58:e4:4f:72: 43:a0:d1:0c:ae:d3:f4:67:9b:51:a1:a7:24:e0:48:67:bf:54: ee:48:0c:8b:ee:6f:32:9b:51:cf:a2:84:a3:71:b8:f6:7a:51: 51:f3:00:ca:2d:f1:05:68:c2:b6:c3:93:f0:71:27:cb:8b:fd: f6:02:00:40:81:de:de:7a:77:56:15:53:1d:b3:16:41:dd:d0: 11:ee:ba:11:3d:fa:1e:0e:34:21:25:3c:fb:10:90:83:4b:50: bd:0f:e9:e3:5e:24:88:67:21:95:4d:67:95:6a:9c:9d:47:65: 24:54:80:32:f1:ae:ba:79:bb:c4:bb:e3:a6:3b:be:0a:09:c0: fa:2c:55:6e:cd:ba:dc:bf:9b:ef:24:ca:71:bf:e9:e3:a7:c2: 22:66:c1:20:1b:d3:f9:ab:33:63:55:26:82:ce:07:2c:3d:7d: 82:5f:9a:f0 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICB8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDQyNkI2MjBDMDQwQzgzOTQ2QTRCNzU4NjQzNkVDQkQw RkM0NTQ2Q0YwHhcNMjQxMDE3MTY0MDMyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzExM2UwMC0wYzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteF/IgxOPDTAualM1kP4xucOrbLaHn82jvAdL1KjFKK9B7doSqCHxmtEZnsc VpcujKHtCe89qknHBhCy8ASkMdXnJdsHdIOTjKHj9SC/OeLSeiuVuXhviGcBI4h0 N41Hb6ob1SkSzZPJ6POa6uRKgRuUcQerJufB2PF2a5lHvHrNqJrhI5MKqHfhGyUI kRxoHB2PFMAazFZ3/OkBkcOIx7/dA0Fs3mc7/Ghh9E6a50k5/TQnJSzthE6pEnug keR+yL5Qlz3BfCtYaxM3Odb12oKvcO00iXDYbI/dCetTY7byYxS5RYOIVaqPc+zS zRUowwcFopeiJNlQ93y7fyav8QIDAQABo4ICvDCCArgwHQYDVR0OBBYEFA5xdsXb TpQ58wk+tghM1Pev72OkMB8GA1UdIwQYMBaAFEJrYgwEDIOUakt1hkNuy9D8RUbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi81MzE5MTA0NkRD MjQxMUVBQkQwNTdGMTZDNEY5QUUwMi9RbXRpREFRTWc1UnFTM1dHUTI3TDBQeEZS czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtdGlEQVFNZzVScVMzV0dRMjdMMFB4RlJzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU4REYvNTMxOTEwNDZEQzI0MTFFQUJEMDU3RjE2QzRGOUFFMDIvRjVFNjVDOTZG RDZDMTFFQ0IyMzg0RTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAUOAUADBAFnmH4DBAJn61wDBAR0W9ADBAPLEVAwDQQCAAIw BwMFACQGLUAwDQYJKoZIhvcNAQELBQADggEBAB2w+yrcAnmkK6yKtuCxnxsimCPP oQtrp9UaeNYhAtPLnhGKAKwutQPFA+7T/yh6fX/yeqxx9vfqhn+a+knobAGamcBO MNZwR4js+6gjC81U9+RQP8tpWORPckOg0Qyu0/Rnm1GhpyTgSGe/VO5IDIvubzKb Uc+ihKNxuPZ6UVHzAMot8QVowrbDk/BxJ8uL/fYCAECB3t56d1YVUx2zFkHd0BHu uhE9+h4ONCElPPsQkINLUL0P6eNeJIhnIZVNZ5VqnJ1HZSRUgDLxrrp5u8S746Y7 vgoJwPosVW7Nuty/m+8kynG/6eOnwiJmwSAb0/mrM2NVJoLOByw9fYJfmvA= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:41 2024 by rpki-client on console-fra.rpki-client.org