$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1637570ECDDB11ED90586709C4F9AE02.roa File: 1637570ECDDB11ED90586709C4F9AE02.roa (raw, json) Hash identifier: sjru9OKk3QuijzCuuUEwa5hBBPEP5ISuhitC5NuAugc= Subject key identifier: 37:AB:6E:26:92:84:B2:B3:6C:0F:65:BD:64:FF:69:A2:DE:14:E4:C3 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 463D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1637570ECDDB11ED90586709C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:38 +0000 ROA not before: Thu 05 Sep 2024 03:35:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24085 IP address blocks: 116.193.64.0/20 maxlen: 24 120.72.80.0/21 maxlen: 24 120.72.96.0/19 maxlen: 24 202.78.224.0/21 maxlen: 24 210.2.64.0/18 maxlen: 24 2403:6000::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17981 (0x463d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:38 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92709-4c4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:33:cb:b7:03:29:a0:e0:fe:6e:60:4f:b2:0d: d6:87:be:ac:ec:1a:33:b0:80:8b:70:f3:18:3b:fe: ad:53:8c:fa:c8:02:27:a2:0a:a6:f9:d2:0a:63:fd: 5e:22:b7:91:5f:d7:0f:a9:7d:6c:95:67:9f:99:87: 38:1f:a6:4e:21:35:d5:4c:06:69:73:2d:0d:c2:d0: b9:57:70:1d:0d:aa:a3:1d:e9:7b:d8:59:3c:9e:be: 27:9f:b8:5e:82:ff:b5:f5:05:c6:b4:64:67:89:f2: 75:83:7e:73:87:bb:c9:16:1c:94:35:24:a5:ae:48: 53:25:94:b9:6e:d5:d3:79:62:1e:d0:a2:7f:66:58: 1d:f3:17:44:59:43:18:b5:c6:38:8e:bb:c4:ea:94: af:c0:fc:f3:b6:a2:89:53:0c:f9:33:fd:17:33:bb: 34:95:d9:79:54:79:35:7b:23:db:c9:ff:47:0b:d9: 21:11:42:1f:44:6f:d9:c8:bb:30:e2:68:b5:b5:53: f6:76:24:49:26:65:29:73:95:06:39:b9:39:4e:4f: 05:8d:47:ae:d0:55:e8:2e:94:9a:7c:66:93:f5:40: d4:16:47:86:00:7a:a9:f0:e4:bd:6d:2e:74:69:20: 79:0a:b6:f4:9b:67:e8:1b:2b:44:22:84:b0:15:c5: 45:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:AB:6E:26:92:84:B2:B3:6C:0F:65:BD:64:FF:69:A2:DE:14:E4:C3 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1637570ECDDB11ED90586709C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.193.64.0/20 120.72.80.0/21 120.72.96.0/19 202.78.224.0/21 210.2.64.0/18 IPv6: 2403:6000::/32 Signature Algorithm: sha256WithRSAEncryption a4:25:e6:ef:99:b8:3e:a1:ad:1d:bc:38:99:3f:8b:2f:e4:d9: 9c:d9:90:63:9d:72:41:f3:3d:ed:7d:b1:19:82:8b:39:6c:f5: bc:23:7b:0b:7a:d8:2f:25:b0:64:9d:43:78:67:54:eb:09:e5: e8:18:e4:ae:d7:13:59:06:d5:74:44:e2:9e:5d:16:95:d0:db: 45:60:cf:2b:72:fe:a2:91:cd:2d:f3:2d:db:cf:33:d6:d9:19: c1:ff:c2:35:d0:b1:d6:95:49:71:1e:f4:d6:cb:6a:6e:9e:62: 83:e7:2f:97:a9:5c:e9:a4:91:eb:63:4e:0d:61:18:31:53:6e: e4:a5:a3:a2:ae:dc:db:15:6e:1a:52:19:96:54:47:8e:94:af: 84:b8:a1:a0:0e:82:2e:b3:d3:3e:5d:39:bc:b5:c3:ee:24:29: e7:57:bd:c3:da:5a:10:26:34:d8:66:0a:2e:d0:b3:12:98:5c: c8:ee:f7:2d:99:e8:0e:4f:19:15:8a:b4:26:e6:6f:65:bd:3d: b9:47:7a:13:1f:d4:6f:84:db:8f:13:9f:19:25:2f:52:f4:1b: b8:a4:af:a5:40:50:c2:6c:ec:34:24:c8:5c:c6:ee:62:1a:1e: ae:1f:c9:10:e4:fd:96:9d:88:82:fe:e6:49:c6:a4:71:8f:14: 0c:3b:a8:22 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICRj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcwOS00YzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTPLtwMpoOD+bmBPsg3Wh76s7BozsICLcPMYO/6tU4z6yAInogqm+dIKY/1e IreRX9cPqX1slWefmYc4H6ZOITXVTAZpcy0NwtC5V3AdDaqjHel72Fk8nr4nn7he gv+19QXGtGRnifJ1g35zh7vJFhyUNSSlrkhTJZS5btXTeWIe0KJ/Zlgd8xdEWUMY tcY4jrvE6pSvwPzztqKJUwz5M/0XM7s0ldl5VHk1eyPbyf9HC9khEUIfRG/ZyLsw 4mi1tVP2diRJJmUpc5UGObk5Tk8FjUeu0FXoLpSafGaT9UDUFkeGAHqp8OS9bS50 aSB5Crb0m2foGytEIoSwFcVFpwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFDerbiaS hLKzbA9lvWT/aaLeFOTDMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMTYzNzU3MEVD RERCMTFFRDkwNTg2NzA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAR0wUADBAN4SFADBAV4SGADBAPKTuADBAbSAkAwDQQCAAIw BwMFACQDYAAwDQYJKoZIhvcNAQELBQADggEBAKQl5u+ZuD6hrR28OJk/iy/k2ZzZ kGOdckHzPe19sRmCizls9bwjewt62C8lsGSdQ3hnVOsJ5egY5K7XE1kG1XRE4p5d FpXQ20Vgzyty/qKRzS3zLdvPM9bZGcH/wjXQsdaVSXEe9NbLam6eYoPnL5epXOmk ketjTg1hGDFTbuSlo6Ku3NsVbhpSGZZUR46Ur4S4oaAOgi6z0z5dOby1w+4kKedX vcPaWhAmNNhmCi7QsxKYXMju9y2Z6A5PGRWKtCbmb2W9PblHehMf1G+E248Tnxkl L1L0G7ikr6VAUMJs7DQkyFzG7mIaHq4fyRDk/ZadiIL+5knGpHGPFAw7qCI= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org