$ rpki-client -vvf rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/F9393E440C4811EF97CBBC31C4F9AE02.roa File: F9393E440C4811EF97CBBC31C4F9AE02.roa (raw, json) Hash identifier: 8Rz14qqnLJzTDtmQhY87UU9ZmhRFExlX0EXdINFDVKA= Subject key identifier: DB:7C:D5:86:FC:AA:24:BF:17:53:F1:FB:53:C9:E4:F1:4C:DA:0C:AA Certificate issuer: /CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Certificate serial: 68 Authority key identifier: BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/F9393E440C4811EF97CBBC31C4F9AE02.roa Signing time: Fri 13 Sep 2024 10:19:55 +0000 ROA not before: Fri 13 Sep 2024 10:19:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17990 IP address blocks: 118.103.240.0/21 maxlen: 24 202.70.160.0/20 maxlen: 24 2001:df0:44::/48 maxlen: 48 2001:df5:3380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Validity Not Before: Sep 13 10:19:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e411cb-b23f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d9:02:d9:84:37:42:ba:54:8a:77:cb:92:1a: 63:df:21:69:7c:58:f7:00:2a:56:e3:af:d8:04:bc: c3:ba:99:ae:12:cc:19:1a:bd:6b:8e:00:d3:d4:01: 4e:b5:95:99:4e:07:82:64:36:a2:ba:f6:dd:e1:a8: 3d:b3:1d:fa:44:e8:dd:9f:2d:e7:99:6f:06:75:1f: 52:6d:ba:f7:24:d8:ba:d7:63:3d:2b:0d:bf:91:51: 12:70:f9:06:02:3f:6a:a1:6f:81:3c:73:24:7f:c1: 36:a5:08:81:24:ab:e8:ac:11:91:df:be:71:7f:12: f8:74:f9:19:70:a1:35:87:bc:d5:60:7d:09:3e:37: 8a:d6:db:7f:c9:d0:46:f6:06:21:32:f8:ec:c0:81: 35:80:05:2a:d2:3f:df:6d:bc:85:71:93:cf:59:d2: 55:e9:37:e7:83:64:81:09:5f:2f:48:6f:6b:cd:fd: 73:80:aa:f7:91:1d:79:e8:98:cc:5e:80:26:f8:24: dd:4c:61:36:e7:d6:77:46:45:e1:37:8a:95:ac:94: bd:4a:34:8c:29:89:bb:2e:d6:50:c6:43:e9:d5:df: da:8b:af:69:f7:e3:bc:f9:29:b9:e1:d8:fe:e0:c4: 5c:e6:32:1b:77:55:7d:81:f1:50:cf:c6:73:50:e5: f3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:7C:D5:86:FC:AA:24:BF:17:53:F1:FB:53:C9:E4:F1:4C:DA:0C:AA X509v3 Authority Key Identifier: keyid:BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/F9393E440C4811EF97CBBC31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.103.240.0/21 202.70.160.0/20 IPv6: 2001:df0:44::/48 2001:df5:3380::/48 Signature Algorithm: sha256WithRSAEncryption 00:5e:f0:c5:3f:88:65:5c:60:c9:5b:72:9e:43:f3:18:88:02: 56:10:c5:8b:52:a3:74:6a:44:c8:fe:24:ab:c8:5f:7d:0a:8e: 33:86:e2:39:e9:a5:d3:4b:27:d0:5c:8c:4f:7f:9e:78:eb:d1: 95:6c:5d:27:76:39:7a:14:10:6a:90:5f:e8:66:58:95:ab:81: 5b:4f:4f:e2:bd:d8:06:95:b8:3b:ba:f3:37:94:96:79:14:17: a8:5b:5a:9c:43:51:06:ee:29:d6:64:f3:a3:2d:0d:bf:c5:2c: 6e:ae:27:46:6d:56:b6:9a:1d:80:ef:7e:95:4a:14:5d:ca:6d: ac:e5:ea:18:11:ba:cc:19:4d:c8:5c:bf:9b:a6:c1:23:f3:85: 74:cf:26:79:1f:c6:e1:b1:a6:8b:15:ab:e4:84:24:d2:57:79: e2:8f:e0:b7:a4:2d:86:fa:12:54:e9:68:31:8e:3c:65:8f:58: 77:e1:61:c1:7f:7e:ea:a0:1d:30:a5:32:78:84:1c:e7:5d:41: 91:65:97:98:34:c5:f2:74:f6:0e:65:2d:f3:f5:1f:81:55:81: 77:9a:b9:08:20:77:8e:2b:04:1a:05:83:73:90:8d:b9:b5:d1: 9d:ac:74:21:21:a1:26:a2:00:b1:c5:08:6e:8c:64:f0:c1:ee: 84:6f:36:3b -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTNBMDExMC8GA1UEBRMoQkNCN0NGNDQzMEJCOThFQTA0ODUxQzM0MDcyNkU1ODgx NTBFMTM5RDAeFw0yNDA5MTMxMDE5NTVaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTQxMWNiLWIyM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCb2QLZhDdCulSKd8uSGmPfIWl8WPcAKlbjr9gEvMO6ma4SzBkavWuOANPUAU61 lZlOB4JkNqK69t3hqD2zHfpE6N2fLeeZbwZ1H1Jtuvck2LrXYz0rDb+RURJw+QYC P2qhb4E8cyR/wTalCIEkq+isEZHfvnF/Evh0+RlwoTWHvNVgfQk+N4rW23/J0Eb2 BiEy+OzAgTWABSrSP99tvIVxk89Z0lXpN+eDZIEJXy9Ib2vN/XOAqveRHXnomMxe gCb4JN1MYTbn1ndGReE3ipWslL1KNIwpibsu1lDGQ+nV39qLr2n347z5Kbnh2P7g xFzmMht3VX2B8VDPxnNQ5fPRAgMBAAGjggK1MIICsTAdBgNVHQ4EFgQU23zVhvyq JL8XU/H7U8nk8UzaDKowHwYDVR0jBBgwFoAUvLfPRDC7mOoEhRw0BybliBUOE50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5M0EwL0E1OTU1RTU2MEM0 NTExRUY5RTdFMDUxREM0RjlBRTAyL3ZMZlBSREM3bU9vRWhSdzBCeWJsaUJVT0U1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkxmUFJEQzdtT29FaFJ3MEJ5YmxpQlVPRTUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTNBMC9BNTk1NUU1NjBDNDUxMUVGOUU3RTA1MURDNEY5QUUwMi9GOTM5M0U0NDBD NDgxMUVGOTdDQkJDMzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA/BggrBgEFBQcBBwEB/wQw MC4wEgQCAAEwDAMEA3Zn8AMEBMpGoDAYBAIAAjASAwcAIAEN8ABEAwcAIAEN9TOA MA0GCSqGSIb3DQEBCwUAA4IBAQAAXvDFP4hlXGDJW3KeQ/MYiAJWEMWLUqN0akTI /iSryF99Co4zhuI56aXTSyfQXIxPf55469GVbF0ndjl6FBBqkF/oZliVq4FbT0/i vdgGlbg7uvM3lJZ5FBeoW1qcQ1EG7inWZPOjLQ2/xSxuridGbVa2mh2A736VShRd ym2s5eoYEbrMGU3IXL+bpsEj84V0zyZ5H8bhsaaLFavkhCTSV3nij+C3pC2G+hJU 6Wgxjjxlj1h34WHBf37qoB0wpTJ4hBznXUGRZZeYNMXydPYOZS3z9R+BVYF3mrkI IHeOKwQaBYNzkI25tdGdrHQhIaEmogCxxQhujGTwwe6EbzY7 -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:35 2024 by rpki-client on console-ams.rpki-client.org