$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa File: E7FE45667E8311ECA552B67FC4F9AE02.roa (raw, json) Hash identifier: OijvdKYC8DjMphaEyFQ4TM5tLnVnkQ/IOeHSMr/fpgg= Subject key identifier: F7:45:52:3C:1B:30:D3:C3:FF:2D:5B:06:13:A8:DE:6F:B5:BC:BC:05 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 0379 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa Signing time: Thu 17 Oct 2024 00:53:58 +0000 ROA not before: Thu 17 Oct 2024 00:53:58 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 23767 IP address blocks: 202.83.248.0/22 maxlen: 22 202.83.250.0/24 maxlen: 24 202.130.56.0/22 maxlen: 22 202.130.56.0/24 maxlen: 24 202.130.59.0/24 maxlen: 24 2001:df0:75::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 889 (0x379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Oct 17 00:53:58 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67106026-2a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ee:68:45:b3:5f:53:56:fe:af:c9:c0:c8:a3: 5c:c1:a2:20:d0:4c:15:d9:24:53:b8:d4:f4:60:8a: 3a:29:eb:7a:52:f4:50:24:8d:2b:b5:44:3a:5f:ba: 89:34:a2:bd:7a:72:ce:d1:fb:bc:9b:45:13:23:20: 21:04:b6:41:ae:68:14:f3:38:5a:fe:88:2e:51:d3: 47:61:d9:8c:e9:5e:5e:29:1b:01:4c:4a:d2:2a:e9: 28:ce:94:39:3b:2e:e5:46:b2:cf:30:56:8a:82:5e: dc:5c:2f:d4:1a:da:2d:38:d4:6e:a5:22:5a:0e:9e: dc:a8:e0:b3:1f:a4:d9:9a:ce:a4:dc:f6:92:7d:da: 90:be:6c:8b:b5:0f:61:e5:8a:fe:1c:ce:a0:ec:66: a8:c3:4e:73:7f:e4:f1:9e:a8:a5:de:90:1b:84:36: 38:8f:1d:98:65:55:5e:ac:c7:f2:03:2a:93:39:3a: 5d:2e:61:20:19:0d:04:37:fd:e2:10:7f:d8:e6:87: bd:86:98:85:44:bd:06:c8:dd:e2:ff:74:f3:2e:bb: 79:72:6f:bc:67:75:84:9d:2d:88:2f:e7:c6:50:34: 9b:fa:b9:be:d5:f3:85:3f:24:fe:8d:bd:15:ab:6d: 67:fd:f5:d8:de:28:6c:5b:61:24:42:32:1e:00:8d: 22:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:45:52:3C:1B:30:D3:C3:FF:2D:5B:06:13:A8:DE:6F:B5:BC:BC:05 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.248.0/22 202.130.56.0/22 IPv6: 2001:df0:75::/48 Signature Algorithm: sha256WithRSAEncryption 61:5d:fd:13:36:f9:b8:7e:8e:ce:14:89:ba:73:01:f3:57:60: af:7b:d7:9b:b4:59:63:09:b6:18:c3:54:6b:46:88:40:f6:01: 5d:f0:ec:a3:51:20:d7:f5:b6:ff:8e:4a:e5:df:1f:2f:c6:82: 40:39:9d:8c:6d:61:73:42:33:0f:42:18:04:47:46:29:64:6d: fb:7b:77:60:b2:95:72:41:ef:2e:63:e9:23:08:5c:89:59:81: ee:7f:36:9e:17:a5:ee:f5:98:92:04:99:f7:08:93:ae:d5:fc: 84:57:25:6a:bb:ae:55:28:3c:dc:88:4b:c4:93:82:61:2b:51: e4:5e:ae:94:50:aa:14:a3:9f:5c:51:40:38:9a:bc:31:d3:fa: 37:44:d5:bd:61:dc:97:53:71:26:13:89:a4:9e:fe:99:88:b6: eb:73:bb:42:0d:4a:c0:e9:22:d0:cb:2e:d0:b2:5a:c2:92:f2: 4d:cf:67:16:b2:0d:dd:08:48:ec:ec:98:75:6d:31:65:2f:0b: cd:cf:f2:6a:d5:1f:c1:03:54:e2:99:b7:c5:91:66:64:e7:50: 88:6a:20:28:42:0d:85:9d:bf:33:a4:30:fd:6e:f0:20:99:40: db:c9:0c:6d:7d:43:c1:b3:6f:62:d4:e1:79:a1:22:4c:e8:0c: ad:a4:7a:8b -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjQxMDE3MDA1MzU4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwNjAyNi0yYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxO5oRbNfU1b+r8nAyKNcwaIg0EwV2SRTuNT0YIo6Ket6UvRQJI0rtUQ6X7qJ NKK9enLO0fu8m0UTIyAhBLZBrmgU8zha/oguUdNHYdmM6V5eKRsBTErSKukozpQ5 Oy7lRrLPMFaKgl7cXC/UGtotONRupSJaDp7cqOCzH6TZms6k3PaSfdqQvmyLtQ9h 5Yr+HM6g7Gaow05zf+Txnqil3pAbhDY4jx2YZVVerMfyAyqTOTpdLmEgGQ0EN/3i EH/Y5oe9hpiFRL0GyN3i/3TzLrt5cm+8Z3WEnS2IL+fGUDSb+rm+1fOFPyT+jb0V q21n/fXY3ihsW2EkQjIeAI0iSwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPdFUjwb MNPD/y1bBhOo3m+1vLwFMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA4RTEvRjkwRjlFODg3RTgxMTFFQ0I4ODczQTdGQzRGOUFFMDIvRTdGRTQ1NjY3 RTgzMTFFQ0E1NTJCNjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBALKU/gDBALKgjgwDwQCAAIwCQMHACABDfAAdTANBgkqhkiG 9w0BAQsFAAOCAQEAYV39Ezb5uH6OzhSJunMB81dgr3vXm7RZYwm2GMNUa0aIQPYB XfDso1Eg1/W2/45K5d8fL8aCQDmdjG1hc0IzD0IYBEdGKWRt+3t3YLKVckHvLmPp IwhciVmB7n82nhel7vWYkgSZ9wiTrtX8hFclaruuVSg83IhLxJOCYStR5F6ulFCq FKOfXFFAOJq8MdP6N0TVvWHcl1NxJhOJpJ7+mYi263O7Qg1KwOki0Msu0LJawpLy Tc9nFrIN3QhI7OyYdW0xZS8Lzc/yatUfwQNU4pm3xZFmZOdQiGogKEINhZ2/M6Qw /W7wIJlA28kMbX1DwbNvYtTheaEiTOgMraR6iw== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org