$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/92F62AF0032811ED8DFE1842C4F9AE02.roa File: 92F62AF0032811ED8DFE1842C4F9AE02.roa (raw, json) Hash identifier: Vaf/2IuP6hiZHVP/Zzaz4dOsvcYmitwX0HNjNxuvpnM= Subject key identifier: 84:15:1B:47:D4:F1:B0:DD:2F:DE:36:F7:E8:45:75:DD:3B:F1:07:1F Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 01E9 Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/92F62AF0032811ED8DFE1842C4F9AE02.roa Signing time: Fri 31 May 2024 05:02:25 +0000 ROA not before: Fri 31 May 2024 05:02:25 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 2764 IP address blocks: 202.94.32.0/20 maxlen: 20 203.24.63.0/24 maxlen: 24 203.27.44.0/24 maxlen: 24 203.29.208.0/23 maxlen: 23 203.55.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Validity Not Before: May 31 05:02:25 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665959e1-e70b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:82:10:f8:41:6a:e4:26:90:41:bf:7f:f3:f9: a9:62:f0:b8:42:36:7d:72:8f:7a:20:5a:03:69:6f: 48:b0:c7:83:99:80:59:5c:18:9e:a8:08:22:6a:79: 0d:46:31:b9:d6:9c:fe:f5:31:64:0a:ea:64:af:1e: 37:72:8b:0d:b9:43:6c:8d:4d:de:e6:51:74:30:44: 2e:ab:f7:54:ba:52:c4:be:20:2e:9f:b0:c3:71:be: ed:53:b7:03:f5:3f:50:39:f2:8c:01:df:39:e2:83: 97:eb:03:53:c6:2e:6a:a1:bf:6c:34:67:46:bf:b2: 62:33:fd:16:1b:b5:24:a2:14:14:fd:8c:8a:e2:5b: 0c:d9:0b:77:bb:c6:7e:dc:fc:1e:79:30:c6:7f:24: 13:15:54:9d:e2:ae:e5:4d:1d:0a:34:7c:f5:7c:de: a3:fd:34:73:b9:81:e1:91:2f:da:35:12:58:11:a9: 76:14:42:1f:7a:ac:22:87:90:e3:70:4f:5a:5b:d8: fe:d1:b3:8e:7f:9b:a1:10:98:08:d4:0e:d9:3b:50: fb:d8:80:d2:b5:8f:5a:c4:e1:62:d7:ca:37:d0:21: c0:12:1c:0a:cf:90:b2:31:b2:ce:c3:b3:91:80:39: d2:10:17:12:13:3f:2a:1a:e0:31:52:29:4a:3f:93: 99:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:15:1B:47:D4:F1:B0:DD:2F:DE:36:F7:E8:45:75:DD:3B:F1:07:1F X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/92F62AF0032811ED8DFE1842C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.32.0/20 203.24.63.0/24 203.27.44.0/24 203.29.208.0/23 203.55.134.0/23 Signature Algorithm: sha256WithRSAEncryption 96:b4:42:70:35:fe:e5:5e:55:40:14:dc:e9:77:a5:e4:c9:75: d3:af:b4:52:31:4f:86:12:db:6b:bd:37:69:84:d2:5b:35:b0: a8:36:56:3b:8c:32:86:5b:06:03:fd:ef:91:1f:95:b9:df:26: c6:2d:ab:58:51:b9:a4:95:da:d8:06:7f:e8:44:c6:45:d4:3f: 68:62:ad:7d:db:63:07:94:35:92:06:93:60:22:41:83:9e:4b: e6:76:a8:d2:f2:96:0a:14:0c:26:bc:56:90:f2:71:b3:4a:ac: e0:5e:0c:f7:5d:a3:91:9e:04:7f:e0:92:68:67:76:2b:61:ac: 13:ba:81:93:95:9d:98:c2:3e:fd:bf:af:ea:89:d6:b6:e9:b8: 9d:25:c2:18:bf:af:21:b9:3a:b8:73:08:9e:c0:83:4d:3c:05: 89:58:8e:ad:63:94:31:b3:6c:0e:81:6a:35:cc:9d:36:84:f2: fe:f9:b8:b4:36:a8:12:89:4b:7f:e6:2d:a9:69:7e:13:39:79: 69:6f:24:32:82:85:9d:56:3c:b2:23:a7:a9:be:50:e8:d9:db: 53:53:b4:c4:bd:7c:8e:0d:25:96:ad:93:4f:bc:2a:9c:56:b6: 3c:52:ba:39:ac:57:67:ba:9e:5e:99:3e:9b:3d:c6:8e:8b:4f: fc:ad:83:6d -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjQwNTMxMDUwMjI1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5NTllMS1lNzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34IQ+EFq5CaQQb9/8/mpYvC4QjZ9co96IFoDaW9IsMeDmYBZXBieqAgiankN RjG51pz+9TFkCupkrx43cosNuUNsjU3e5lF0MEQuq/dUulLEviAun7DDcb7tU7cD 9T9QOfKMAd854oOX6wNTxi5qob9sNGdGv7JiM/0WG7UkohQU/YyK4lsM2Qt3u8Z+ 3PweeTDGfyQTFVSd4q7lTR0KNHz1fN6j/TRzuYHhkS/aNRJYEal2FEIfeqwih5Dj cE9aW9j+0bOOf5uhEJgI1A7ZO1D72IDStY9axOFi18o30CHAEhwKz5CyMbLOw7OR gDnSEBcSEz8qGuAxUilKP5OZrwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFIQVG0fU 8bDdL9429+hFdd078QcfMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1NzcvOTAzRTRDNzgwMzE2MTFFRDkwRjg4NDRGQzRGOUFFMDIvOTJGNjJBRjAw MzI4MTFFRDhERkUxODQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBATKXiADBADLGD8DBADLGywDBAHLHdADBAHLN4YwDQYJKoZI hvcNAQELBQADggEBAJa0QnA1/uVeVUAU3Ol3peTJddOvtFIxT4YS22u9N2mE0ls1 sKg2VjuMMoZbBgP975EflbnfJsYtq1hRuaSV2tgGf+hExkXUP2hirX3bYweUNZIG k2AiQYOeS+Z2qNLylgoUDCa8VpDycbNKrOBeDPddo5GeBH/gkmhndithrBO6gZOV nZjCPv2/r+qJ1rbpuJ0lwhi/ryG5OrhzCJ7Ag008BYlYjq1jlDGzbA6BajXMnTaE 8v75uLQ2qBKJS3/mLalpfhM5eWlvJDKChZ1WPLIjp6m+UOjZ21NTtMS9fI4NJZat k0+8KpxWtjxSujmsV2e6nl6ZPps9xo6LT/ytg20= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org