$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/004C70608FEC11EC818F190FC4F9AE02.roa File: 004C70608FEC11EC818F190FC4F9AE02.roa (raw, json) Hash identifier: t33p/pphc54VCAS5I1Ej1yU5QHlbXRNpxk00IEUWAfw= Subject key identifier: 3A:C8:43:07:05:C6:7D:0E:EC:D8:E9:6F:66:0E:12:DA:2B:F9:CA:01 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4674 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/004C70608FEC11EC818F190FC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:26 +0000 ROA not before: Thu 05 Sep 2024 03:36:26 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 56149 IP address blocks: 45.121.160.0/22 maxlen: 24 103.3.252.0/22 maxlen: 24 2001:df5:8a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18036 (0x4674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:26 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92739-f073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f1:45:45:15:8a:8d:fc:66:32:77:db:70:68: c6:38:7c:ca:0f:02:41:d0:6e:87:bb:41:be:50:e1: b4:cd:f1:f6:54:2c:0e:04:ec:fa:56:a1:ca:4a:a9: 77:ac:9e:09:f2:1d:49:f9:f4:0a:df:27:f8:0c:f1: 4e:92:3f:ff:d7:eb:e8:84:90:42:59:9f:94:d9:17: 14:48:88:a5:96:a0:23:5e:48:df:e1:54:44:7c:db: 4a:2e:b1:43:fe:4d:be:8b:1e:bc:29:b6:70:32:d7: d5:e3:e7:28:b3:23:48:f0:45:2b:93:4d:be:b2:e3: 0d:48:21:11:d7:75:73:f6:dd:cf:86:f8:39:64:09: cc:03:48:47:8f:47:d6:28:3f:2e:fd:81:27:3d:9c: 9e:8c:f1:c2:81:d6:77:31:dc:da:50:32:de:8d:5e: 9c:c6:94:55:3f:7d:3a:8d:9d:75:b8:43:3f:8b:5a: 0a:b6:d1:b0:6f:f9:ee:d2:8b:38:88:85:37:32:7a: 92:b2:41:0a:a0:dc:e7:3f:7d:e6:01:09:27:8a:05: db:1f:cb:96:92:23:52:2e:0b:df:e7:6f:a1:c7:f1: c0:7d:6c:11:93:5b:17:ad:d8:0c:80:9e:74:5f:4b: fb:c7:a3:7d:38:71:a1:5d:a0:14:8b:cf:98:94:39: f4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C8:43:07:05:C6:7D:0E:EC:D8:E9:6F:66:0E:12:DA:2B:F9:CA:01 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/004C70608FEC11EC818F190FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.160.0/22 103.3.252.0/22 IPv6: 2001:df5:8a00::/48 Signature Algorithm: sha256WithRSAEncryption 78:07:ae:db:9a:f8:64:61:c6:f2:3a:ed:9d:c9:87:25:b6:b2: 93:70:43:4b:71:f0:e8:5b:a6:29:42:7d:b6:55:6b:d1:99:35: b0:61:a6:fb:7e:d5:14:1c:aa:22:91:a2:a5:1a:be:65:e7:48: 40:4d:18:4e:95:d0:a9:75:1d:fd:59:3a:71:1f:49:8a:36:36: 1f:0d:78:f8:1c:46:06:dd:04:97:39:4e:81:7b:6c:2b:4e:2d: 7a:27:65:2b:84:5c:98:88:15:bc:67:5b:da:ad:63:f9:3d:db: 89:89:a1:88:47:d0:95:cd:9c:24:3b:82:27:4d:fb:4a:1f:a9: 62:fa:2c:20:41:8b:65:ed:eb:47:0d:6e:1a:51:aa:0c:66:46: cb:41:5d:ac:1f:8b:fb:19:4b:63:87:51:9b:14:fb:3c:be:bb: fb:fb:ba:00:ae:ab:72:0a:6f:1b:57:8c:28:72:90:23:b0:52: 33:6b:b5:9d:31:28:98:37:62:d1:3d:87:77:1b:33:b9:b8:e5: d7:eb:c1:65:17:c8:87:1c:71:29:ef:e4:16:3c:a2:74:54:46: 2f:a1:1b:80:90:d6:35:e8:ee:e2:f4:6b:c9:0d:14:55:db:cc: ce:00:38:fe:3a:e9:03:d8:00:80:87:9d:ca:98:08:48:92:a3: 66:17:a3:3a -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICRnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjI2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjczOS1mMDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/FFRRWKjfxmMnfbcGjGOHzKDwJB0G6Hu0G+UOG0zfH2VCwOBOz6VqHKSql3 rJ4J8h1J+fQK3yf4DPFOkj//1+vohJBCWZ+U2RcUSIillqAjXkjf4VREfNtKLrFD /k2+ix68KbZwMtfV4+cosyNI8EUrk02+suMNSCER13Vz9t3Phvg5ZAnMA0hHj0fW KD8u/YEnPZyejPHCgdZ3MdzaUDLejV6cxpRVP306jZ11uEM/i1oKttGwb/nu0os4 iIU3MnqSskEKoNznP33mAQknigXbH8uWkiNSLgvf52+hx/HAfWwRk1sXrdgMgJ50 X0v7x6N9OHGhXaAUi8+YlDn0+QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFDrIQwcF xn0O7Njpb2YOEtor+coBMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMDA0QzcwNjA4 RkVDMTFFQzgxOEYxOTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAIteaADBAJnA/wwDwQCAAIwCQMHACABDfWKADANBgkqhkiG 9w0BAQsFAAOCAQEAeAeu25r4ZGHG8jrtncmHJbayk3BDS3Hw6FumKUJ9tlVr0Zk1 sGGm+37VFByqIpGipRq+ZedIQE0YTpXQqXUd/Vk6cR9JijY2Hw14+BxGBt0ElzlO gXtsK04teidlK4RcmIgVvGdb2q1j+T3biYmhiEfQlc2cJDuCJ037Sh+pYvosIEGL Ze3rRw1uGlGqDGZGy0FdrB+L+xlLY4dRmxT7PL67+/u6AK6rcgpvG1eMKHKQI7BS M2u1nTEomDdi0T2Hdxszubjl1+vBZRfIhxxxKe/kFjyidFRGL6EbgJDWNeju4vRr yQ0UVdvMzgA4/jrpA9gAgIedypgISJKjZhejOg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:14 2024 by rpki-client on console-fra.rpki-client.org