$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/4114509A597511EFA2B79A84C4F9AE02.roa File: 4114509A597511EFA2B79A84C4F9AE02.roa (raw, json) Hash identifier: 0e5zzWh6ApozGk/jFChRqF4rHk2hQMmiudaU4V4FOFU= Subject key identifier: 46:1B:5D:3A:E0:43:19:9E:EC:3C:D0:50:93:F2:5B:32:78:75:8A:02 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 02FB Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/4114509A597511EFA2B79A84C4F9AE02.roa Signing time: Tue 13 Aug 2024 13:09:21 +0000 ROA not before: Tue 13 Aug 2024 13:09:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140599 IP address blocks: 45.115.224.0/22 maxlen: 22 45.115.224.0/24 maxlen: 24 45.115.225.0/24 maxlen: 24 45.115.226.0/24 maxlen: 24 45.115.227.0/24 maxlen: 24 103.56.4.0/22 maxlen: 24 103.150.220.0/24 maxlen: 24 103.150.221.0/24 maxlen: 24 2001:df3:8e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 763 (0x2fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Aug 13 13:09:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66bb5b01-6cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:96:73:5b:aa:48:65:91:e7:74:ea:7f:47:e8: 52:d5:07:52:6c:12:a7:eb:60:2a:b2:f6:db:62:f9: 20:37:38:9b:33:fe:18:d5:b9:ba:c4:64:4f:01:6e: 7b:fe:62:37:21:b6:69:47:a9:1d:f1:e8:52:e2:7e: be:98:ba:ef:50:c7:50:c3:bd:74:ea:8f:64:19:78: 6c:74:61:5d:41:20:5c:1e:92:32:e9:73:40:16:87: d0:f6:9b:41:f7:14:88:20:ce:97:15:c2:de:09:b7: 69:ae:7e:e7:e9:66:bc:32:f5:3c:65:81:e9:82:ed: ca:3e:5a:a3:f1:90:19:a7:5c:1c:44:5a:68:b5:83: ba:71:d0:73:37:46:45:e4:b1:af:8e:d7:34:1a:65: c8:75:f8:fe:3b:9c:93:d9:ee:c5:3a:03:4c:70:80: ad:50:d4:d3:9f:bc:8f:d9:f0:54:17:49:9d:fc:7c: 5c:65:57:5c:65:fe:71:03:2a:c0:1b:27:15:d6:7c: fb:c0:9f:75:cb:ee:3c:86:58:91:88:b8:b5:86:08: e2:31:e7:8e:36:f3:de:bd:b5:b7:ad:04:16:15:64: c6:86:10:75:11:9d:8d:e5:79:90:d7:9c:6a:b8:3a: c3:3e:d2:31:4c:66:9b:d0:1d:dc:e9:2f:80:3e:2a: c0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1B:5D:3A:E0:43:19:9E:EC:3C:D0:50:93:F2:5B:32:78:75:8A:02 X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/4114509A597511EFA2B79A84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.224.0/22 103.56.4.0/22 103.150.220.0/23 IPv6: 2001:df3:8e80::/48 Signature Algorithm: sha256WithRSAEncryption 5e:8b:26:a4:68:b4:a9:bd:3c:85:90:c9:f0:1e:19:39:31:6d: e5:3d:35:19:b3:da:f9:5b:f9:a7:55:e3:42:97:eb:3f:6f:05: 45:b2:c4:c0:fb:79:57:ad:ae:3d:53:bb:12:12:95:a5:60:37: d2:c5:5f:f0:f7:33:25:7e:41:05:8d:28:a3:76:4b:61:9b:69: 79:16:98:00:36:b1:e4:6e:6e:98:4a:f6:d3:a5:30:98:81:0f: 81:99:20:52:61:64:91:33:a7:07:0c:50:4e:1a:ce:5a:79:17: 2a:e9:5d:80:82:f9:45:d1:3e:0a:27:42:d9:f3:a5:3d:7d:2e: 74:65:93:78:d4:91:37:11:a0:de:03:78:11:09:26:5d:99:d9: 45:d0:47:9d:6f:30:f1:fc:86:16:05:07:43:80:3b:0d:2c:2d: 2b:7c:cf:6d:40:d0:74:a9:2f:c4:42:e6:81:ac:c4:32:14:e2: 8b:a7:70:35:1e:1a:1b:b1:9e:57:21:54:1d:91:c6:1c:0a:1b: d5:ef:e7:40:99:46:a3:96:db:d9:87:85:c8:c6:4b:b1:57:6b: b7:ae:50:64:e2:fd:ed:7b:cc:f8:c3:c3:c6:43:4d:2d:60:73: 11:4e:2f:13:66:14:6d:4e:a3:00:6e:7f:2b:1a:c1:ba:09:30: 3b:54:77:c3 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICAvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjQwODEzMTMwOTIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJiNWIwMS02Y2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5ZzW6pIZZHndOp/R+hS1QdSbBKn62AqsvbbYvkgNzibM/4Y1bm6xGRPAW57 /mI3IbZpR6kd8ehS4n6+mLrvUMdQw7106o9kGXhsdGFdQSBcHpIy6XNAFofQ9ptB 9xSIIM6XFcLeCbdprn7n6Wa8MvU8ZYHpgu3KPlqj8ZAZp1wcRFpotYO6cdBzN0ZF 5LGvjtc0GmXIdfj+O5yT2e7FOgNMcICtUNTTn7yP2fBUF0md/HxcZVdcZf5xAyrA GycV1nz7wJ91y+48hliRiLi1hgjiMeeONvPevbW3rQQWFWTGhhB1EZ2N5XmQ15xq uDrDPtIxTGab0B3c6S+APirAMQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFEYbXTrg Qxme7DzQUJPyWzJ4dYoCMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA0MzIvRjVCRjY5OUNBNENBMTFFQ0FDNEU1NzQ0QzRGOUFFMDIvNDExNDUwOUE1 OTc1MTFFRkEyQjc5QTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAItc+ADBAJnOAQDBAFnltwwDwQCAAIwCQMHACABDfOOgDAN BgkqhkiG9w0BAQsFAAOCAQEAXosmpGi0qb08hZDJ8B4ZOTFt5T01GbPa+Vv5p1Xj QpfrP28FRbLEwPt5V62uPVO7EhKVpWA30sVf8PczJX5BBY0oo3ZLYZtpeRaYADax 5G5umEr206UwmIEPgZkgUmFkkTOnBwxQThrOWnkXKuldgIL5RdE+CidC2fOlPX0u dGWTeNSRNxGg3gN4EQkmXZnZRdBHnW8w8fyGFgUHQ4A7DSwtK3zPbUDQdKkvxELm gazEMhTii6dwNR4aG7GeVyFUHZHGHAob1e/nQJlGo5bb2YeFyMZLsVdrt65QZOL9 7XvM+MPDxkNNLWBzEU4vE2YUbU6jAG5/KxrBugkwO1R3ww== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:42 2024 by rpki-client on console-fra.rpki-client.org