$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/6B10211E032B11ED8B3C5B4EC4F9AE02.roa File: 6B10211E032B11ED8B3C5B4EC4F9AE02.roa (raw, json) Hash identifier: TagIMdFi8Wzn09/Ge5pL8woV36T21sjYNdiET9ad6yQ= Subject key identifier: 98:97:2D:89:72:D6:FA:D7:FE:1A:63:8F:1E:57:76:7D:81:92:C4:14 Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 01EB Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/6B10211E032B11ED8B3C5B4EC4F9AE02.roa Signing time: Fri 31 May 2024 05:02:27 +0000 ROA not before: Fri 31 May 2024 05:02:27 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 7545 IP address blocks: 202.94.32.0/20 maxlen: 20 203.24.63.0/24 maxlen: 24 203.27.44.0/24 maxlen: 24 203.29.208.0/23 maxlen: 23 203.55.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Validity Not Before: May 31 05:02:27 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665959e3-3ae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0b:bf:3d:bd:91:3c:da:49:f5:a9:b6:86:db: d1:ef:f1:93:84:a7:0e:c3:fb:d6:b6:9e:7b:bf:40: c0:fa:a8:f3:74:9c:d8:b2:1d:b8:42:55:c8:a8:0f: 14:c9:6e:4e:93:59:46:59:cc:97:f8:a7:de:2e:9c: 17:66:0b:92:14:8a:91:9d:aa:f6:68:ec:77:4f:f1: f8:f4:1e:93:13:2d:ac:88:95:c2:48:24:6c:70:f3: a9:84:1c:f0:bd:e3:c2:4d:6e:ac:51:29:b4:c2:7c: 1d:fd:52:5f:98:a0:48:43:b0:2a:bb:a1:56:de:3b: 7f:91:32:dc:9d:72:5c:93:45:44:60:c5:a6:9c:26: f9:10:95:2c:35:a5:56:de:a6:48:7d:66:5a:56:cb: cd:f6:2b:fa:0a:a1:73:bd:27:31:3c:fb:0f:56:74: 22:44:cc:4d:a2:de:3a:a3:ff:a2:04:d4:2d:c5:02: 34:47:d7:66:a0:6e:b0:af:8b:d8:b1:8d:d9:66:21: a5:3f:9a:c3:29:af:2a:16:b2:81:00:51:69:0e:74: 9a:93:56:e6:cd:24:5d:99:1a:cd:08:a7:34:5b:b8: c0:d8:c7:c9:33:34:1b:ae:eb:dd:4f:ae:5d:08:62: 95:5e:41:4c:32:e6:cc:3f:f7:9e:87:3c:8a:67:56: d8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:97:2D:89:72:D6:FA:D7:FE:1A:63:8F:1E:57:76:7D:81:92:C4:14 X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/6B10211E032B11ED8B3C5B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.32.0/20 203.24.63.0/24 203.27.44.0/24 203.29.208.0/23 203.55.134.0/23 Signature Algorithm: sha256WithRSAEncryption 78:16:68:f3:57:35:c9:ac:4b:06:56:d5:83:7b:8d:c5:bc:9c: 79:e6:18:25:4c:26:0f:e5:09:8c:a7:a8:9b:78:a9:1b:d1:05: 86:89:e4:0d:b5:2b:1d:15:1d:17:85:30:b6:4b:8c:c5:10:dd: f0:db:00:f5:ee:37:f8:a3:45:e3:0f:a9:0f:4e:18:c3:4f:22: dd:e2:83:7d:8b:a0:25:13:a0:b5:f2:ef:d2:18:e6:1c:1e:32: 01:5c:2e:ac:b0:80:33:c7:e8:fb:0c:2d:2b:71:43:ec:79:7b: 44:b6:0f:21:46:96:2d:c6:68:8c:6b:3c:b7:28:d4:dd:a3:df: 66:9e:e2:d3:20:b4:de:a1:94:6a:8e:24:c2:0c:ff:97:57:01: f6:72:4a:a7:30:06:4b:0f:7e:88:3e:48:c6:04:70:9c:f6:a4: 27:d4:d5:1a:1a:91:35:94:e7:9e:b9:43:4b:d5:f1:d4:6b:4d: 73:8b:8c:62:62:34:1d:5b:ba:bd:a5:3e:24:be:9d:bb:f2:6f: ea:07:57:c9:5f:b0:ce:38:2d:9a:32:30:6a:c3:9f:69:f4:34: 37:1a:e8:21:b4:87:a1:1f:8b:a0:c2:b6:a4:55:56:38:1f:b1: 59:16:fc:ea:51:c6:f4:8c:8e:66:0c:68:d5:49:74:34:27:aa: f5:55:37:61 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjQwNTMxMDUwMjI3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5NTllMy0zYWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQu/Pb2RPNpJ9am2htvR7/GThKcOw/vWtp57v0DA+qjzdJzYsh24QlXIqA8U yW5Ok1lGWcyX+KfeLpwXZguSFIqRnar2aOx3T/H49B6TEy2siJXCSCRscPOphBzw vePCTW6sUSm0wnwd/VJfmKBIQ7Aqu6FW3jt/kTLcnXJck0VEYMWmnCb5EJUsNaVW 3qZIfWZaVsvN9iv6CqFzvScxPPsPVnQiRMxNot46o/+iBNQtxQI0R9dmoG6wr4vY sY3ZZiGlP5rDKa8qFrKBAFFpDnSak1bmzSRdmRrNCKc0W7jA2MfJMzQbruvdT65d CGKVXkFMMubMP/eehzyKZ1bY6QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFJiXLYly 1vrX/hpjjx5Xdn2BksQUMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1NzcvOTAzRTRDNzgwMzE2MTFFRDkwRjg4NDRGQzRGOUFFMDIvNkIxMDIxMUUw MzJCMTFFRDhCM0M1QjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBATKXiADBADLGD8DBADLGywDBAHLHdADBAHLN4YwDQYJKoZI hvcNAQELBQADggEBAHgWaPNXNcmsSwZW1YN7jcW8nHnmGCVMJg/lCYynqJt4qRvR BYaJ5A21Kx0VHReFMLZLjMUQ3fDbAPXuN/ijReMPqQ9OGMNPIt3ig32LoCUToLXy 79IY5hweMgFcLqywgDPH6PsMLStxQ+x5e0S2DyFGli3GaIxrPLco1N2j32ae4tMg tN6hlGqOJMIM/5dXAfZySqcwBksPfog+SMYEcJz2pCfU1RoakTWU5565Q0vV8dRr TXOLjGJiNB1bur2lPiS+nbvyb+oHV8lfsM44LZoyMGrDn2n0NDca6CG0h6Efi6DC tqRVVjgfsVkW/OpRxvSMjmYMaNVJdDQnqvVVN2E= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:02 2024 by rpki-client on console-fra.rpki-client.org