$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/2139F0442F4811EDAB838650C4F9AE02.roa File: 2139F0442F4811EDAB838650C4F9AE02.roa (raw, json) Hash identifier: mwOiT1+cYpsnlX0Rw3tjPnfeg7VspiWqaA8v/q974ik= Subject key identifier: 77:30:9D:C1:F5:FE:88:4A:CE:E6:EF:71:21:C1:87:18:69:23:7E:B6 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4679 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/2139F0442F4811EDAB838650C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:30 +0000 ROA not before: Thu 05 Sep 2024 03:36:30 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 63731 IP address blocks: 61.14.236.0/22 maxlen: 24 103.89.84.0/22 maxlen: 24 103.141.176.0/23 maxlen: 24 103.205.96.0/22 maxlen: 24 2001:df0:2a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18041 (0x4679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:30 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9273d-ad24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:02:76:dc:14:1e:c5:c7:86:70:22:29:ef:d1: e8:58:0b:27:cf:4a:71:cc:11:44:b8:ec:b5:85:b0: 33:91:36:31:d4:17:16:f7:9a:0c:c9:1b:90:af:2b: 46:d1:d1:94:fb:1f:b0:68:9d:4b:aa:5c:3b:d6:a6: 11:02:55:5b:87:37:10:87:50:03:33:bd:e2:8f:d0: 6a:82:87:62:21:b5:b6:eb:5d:29:4d:1e:ea:12:a9: cb:9b:da:7e:a0:6b:b7:29:b8:3e:fe:e7:9a:a6:3a: d0:b7:5e:1b:f5:d1:0a:8b:aa:64:c5:a9:71:0d:6d: 9d:ea:36:c7:4a:0c:3c:31:75:7d:f1:51:25:44:ae: 1b:c9:40:2d:0c:9c:e4:12:22:07:c7:c0:1b:c6:dd: 19:cf:c6:7c:1a:b3:1c:b0:d2:8a:83:b1:a0:83:73: 03:ff:c5:74:98:b5:6d:c6:33:00:35:e2:44:62:75: 04:42:45:be:6f:9a:8f:96:89:d0:b4:63:39:dd:aa: 29:c9:95:89:ef:e8:5d:7e:60:1c:a7:90:b0:85:e7: 1a:2f:6d:1d:3f:1d:57:d4:57:5c:a1:c3:19:cd:78: 69:2f:06:f2:00:34:be:02:f7:42:d3:07:a1:59:1e: 44:6a:af:76:de:db:68:e6:3e:32:ce:85:34:11:0b: 59:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:30:9D:C1:F5:FE:88:4A:CE:E6:EF:71:21:C1:87:18:69:23:7E:B6 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/2139F0442F4811EDAB838650C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.14.236.0/22 103.89.84.0/22 103.141.176.0/23 103.205.96.0/22 IPv6: 2001:df0:2a00::/48 Signature Algorithm: sha256WithRSAEncryption a0:0c:e7:9b:ea:c4:ae:17:31:5e:ff:10:cf:68:ca:e2:2d:44: 10:32:74:7c:f1:a5:d8:73:3b:f0:84:79:b3:dd:3c:ca:f5:de: b7:c7:a7:63:37:ea:f8:12:12:a4:3d:8a:7b:d5:e3:5d:b8:b9: e2:e4:cd:d7:26:c8:21:62:d5:1e:26:61:3e:42:e6:8b:57:aa: ae:9c:93:a0:c2:ff:b9:5b:4b:64:a4:f3:b5:38:81:c9:fa:8f: 3d:ca:54:82:9a:38:14:93:21:45:4c:1a:ab:40:4b:cf:29:ca: 24:92:e0:7f:7c:c4:2a:e3:ad:e4:62:3d:18:23:fa:08:eb:37: 18:b4:3f:c5:6e:5c:8f:9b:6c:97:3b:d0:e4:82:5f:11:e3:21: 32:13:de:f8:8d:20:da:67:a8:74:e8:b7:4d:6c:e7:47:17:70: 3e:70:16:d6:7b:7e:07:e5:ea:a7:a2:00:dd:67:1d:68:72:14: fc:ce:9a:a9:c9:0a:0d:59:97:47:80:58:41:41:11:68:9a:a1: 3c:eb:c0:1e:3a:86:bd:02:56:b7:0c:63:06:8f:3e:a6:56:9b: c1:bc:f1:9b:55:8f:b5:6d:6e:d6:4f:13:1b:5f:73:31:8e:b1: cd:83:31:6a:f1:b0:18:71:a5:c5:9d:c2:da:c3:3b:e6:fa:6b: 91:ae:9f:3e -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICRnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjMwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjczZC1hZDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QJ23BQexceGcCIp79HoWAsnz0pxzBFEuOy1hbAzkTYx1BcW95oMyRuQrytG 0dGU+x+waJ1Lqlw71qYRAlVbhzcQh1ADM73ij9BqgodiIbW2610pTR7qEqnLm9p+ oGu3Kbg+/ueapjrQt14b9dEKi6pkxalxDW2d6jbHSgw8MXV98VElRK4byUAtDJzk EiIHx8Abxt0Zz8Z8GrMcsNKKg7Ggg3MD/8V0mLVtxjMANeJEYnUEQkW+b5qPlonQ tGM53aopyZWJ7+hdfmAcp5CwhecaL20dPx1X1FdcocMZzXhpLwbyADS+AvdC0weh WR5Eaq923tto5j4yzoU0EQtZNwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFHcwncH1 /ohKzubvcSHBhxhpI362MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjEzOUYwNDQy RjQ4MTFFREFCODM4NjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAI9DuwDBAJnWVQDBAFnjbADBAJnzWAwDwQCAAIwCQMHACAB DfAqADANBgkqhkiG9w0BAQsFAAOCAQEAoAznm+rErhcxXv8Qz2jK4i1EEDJ0fPGl 2HM78IR5s908yvXet8enYzfq+BISpD2Ke9XjXbi54uTN1ybIIWLVHiZhPkLmi1eq rpyToML/uVtLZKTztTiByfqPPcpUgpo4FJMhRUwaq0BLzynKJJLgf3zEKuOt5GI9 GCP6COs3GLQ/xW5cj5tslzvQ5IJfEeMhMhPe+I0g2meodOi3TWznRxdwPnAW1nt+ B+Xqp6IA3WcdaHIU/M6aqckKDVmXR4BYQUERaJqhPOvAHjqGvQJWtwxjBo8+plab wbzxm1WPtW1u1k8TG19zMY6xzYMxavGwGHGlxZ3C2sM75vprka6fPg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org