$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/418966DA032011ED84D6CA1EC4F9AE02.roa File: 418966DA032011ED84D6CA1EC4F9AE02.roa (raw, json) Hash identifier: OYepGimgXK3MUKlDDQh6/2vOomTeihklKTqr9GGXQtI= Subject key identifier: B7:96:B6:04:77:DE:0D:42:A1:BB:93:32:E1:1E:0D:71:8C:6F:33:DA Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 01EA Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/418966DA032011ED84D6CA1EC4F9AE02.roa Signing time: Fri 31 May 2024 05:02:26 +0000 ROA not before: Fri 31 May 2024 05:02:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 4851 IP address blocks: 202.94.32.0/20 maxlen: 20 203.24.63.0/24 maxlen: 24 203.27.44.0/24 maxlen: 24 203.29.208.0/23 maxlen: 23 203.55.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Validity Not Before: May 31 05:02:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665959e2-5182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:78:de:7b:55:7e:c6:37:47:42:3a:9d:a9:76: 37:5d:9b:db:90:78:e9:cc:11:0d:0f:d7:c1:11:86: f4:10:79:ae:bd:e6:0d:ee:e7:a0:3d:d2:b8:ce:c3: 69:34:a8:01:c8:de:3f:26:d0:77:b7:a8:fd:26:a2: db:35:0c:98:27:29:28:67:1a:50:1e:93:bc:83:ba: 9d:5b:79:86:dd:94:4c:02:80:de:db:64:bf:82:ba: 6c:79:61:34:eb:5b:e5:e9:41:f6:8b:0f:5e:20:18: 10:56:86:c5:ad:36:19:66:b9:7d:17:d1:71:ba:03: d6:40:3c:f0:22:6b:7c:b9:42:78:7d:ab:c6:00:6a: e9:f3:86:41:7b:58:3a:2c:6c:bc:69:d2:4b:fe:eb: b0:b6:49:81:92:6e:cd:72:48:f9:1f:4d:e7:04:3a: 12:f3:50:cb:83:9c:b4:77:79:63:23:5a:16:1e:05: ec:96:fb:b2:8d:0a:f0:39:23:f2:c8:93:12:19:8a: 52:cc:bd:02:07:2d:90:6c:2f:ae:96:e2:04:67:c9: f2:99:8c:52:81:85:75:75:38:93:64:92:d4:81:c8: 96:20:45:f3:0e:cb:79:e8:8a:1d:7c:cc:ac:ba:08: 29:7b:4b:1d:21:31:e8:b2:f6:63:e7:f0:8d:e4:ee: 64:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:96:B6:04:77:DE:0D:42:A1:BB:93:32:E1:1E:0D:71:8C:6F:33:DA X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/418966DA032011ED84D6CA1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.32.0/20 203.24.63.0/24 203.27.44.0/24 203.29.208.0/23 203.55.134.0/23 Signature Algorithm: sha256WithRSAEncryption b7:28:7f:48:29:4d:2f:36:8b:c0:69:d4:e2:c5:d8:83:5a:43: 03:d4:0d:36:e8:2f:ee:93:3e:5a:c5:4d:57:65:93:78:af:71: 5c:0a:3a:f5:bd:06:9a:e0:07:2f:d8:0c:ba:d2:4e:df:ad:92: e7:b2:18:ea:5d:89:5b:6c:24:0b:51:74:9f:6b:7a:fc:35:40: 58:59:b9:08:a7:28:d7:90:e6:ad:0c:34:82:cf:13:1c:0b:ca: 41:da:29:6c:7e:52:12:fb:3c:22:b3:c7:23:db:46:85:d1:89: 05:79:97:c3:a6:43:d1:91:5a:6d:7d:42:ea:f4:2d:cb:3b:bd: 05:36:f2:ef:fd:77:17:ee:48:f2:06:ac:01:a9:ef:44:33:e2: 19:9d:7a:ff:c9:2b:99:1d:fb:c3:d6:5c:2a:5b:fb:fe:c2:5b: ac:90:21:f0:30:45:10:af:3f:cf:a0:ab:8e:1c:a2:04:fc:0d: 01:62:7e:7a:e8:97:07:13:7f:af:6e:bc:cd:ef:df:77:aa:fc: 0e:68:f4:22:96:2f:a4:2c:74:46:af:98:44:2a:ba:f8:ab:f1: 8d:e1:82:4e:20:d1:bb:6b:12:e4:0b:8f:bc:c7:9c:dc:68:da: 0a:0a:21:1a:74:da:e3:51:57:71:45:ac:10:e2:35:11:b7:14: 01:84:e0:c2 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjQwNTMxMDUwMjI2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5NTllMi01MTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3jee1V+xjdHQjqdqXY3XZvbkHjpzBEND9fBEYb0EHmuveYN7uegPdK4zsNp NKgByN4/JtB3t6j9JqLbNQyYJykoZxpQHpO8g7qdW3mG3ZRMAoDe22S/grpseWE0 61vl6UH2iw9eIBgQVobFrTYZZrl9F9FxugPWQDzwImt8uUJ4favGAGrp84ZBe1g6 LGy8adJL/uuwtkmBkm7Nckj5H03nBDoS81DLg5y0d3ljI1oWHgXslvuyjQrwOSPy yJMSGYpSzL0CBy2QbC+uluIEZ8nymYxSgYV1dTiTZJLUgciWIEXzDst56IodfMys uggpe0sdITHosvZj5/CN5O5kRQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFLeWtgR3 3g1CobuTMuEeDXGMbzPaMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1NzcvOTAzRTRDNzgwMzE2MTFFRDkwRjg4NDRGQzRGOUFFMDIvNDE4OTY2REEw MzIwMTFFRDg0RDZDQTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBATKXiADBADLGD8DBADLGywDBAHLHdADBAHLN4YwDQYJKoZI hvcNAQELBQADggEBALcof0gpTS82i8Bp1OLF2INaQwPUDTboL+6TPlrFTVdlk3iv cVwKOvW9BprgBy/YDLrSTt+tkueyGOpdiVtsJAtRdJ9revw1QFhZuQinKNeQ5q0M NILPExwLykHaKWx+UhL7PCKzxyPbRoXRiQV5l8OmQ9GRWm19Qur0Lcs7vQU28u/9 dxfuSPIGrAGp70Qz4hmdev/JK5kd+8PWXCpb+/7CW6yQIfAwRRCvP8+gq44cogT8 DQFifnrolwcTf69uvM3v33eq/A5o9CKWL6QsdEavmEQquvir8Y3hgk4g0btrEuQL j7zHnNxo2goKIRp02uNRV3FFrBDiNRG3FAGE4MI= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org