$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/248F325863DE11EC8CB33722C4F9AE02.roa File: 248F325863DE11EC8CB33722C4F9AE02.roa (raw, json) Hash identifier: 6nBIjAoEJCWXHXRqvONcl6Z9YjjSvVT8LJo1Vdz5hGQ= Subject key identifier: 53:0C:22:1C:9E:00:9C:32:A2:A3:12:C8:E6:62:FA:F8:CF:84:38:85 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 463B Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/248F325863DE11EC8CB33722C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:36 +0000 ROA not before: Thu 05 Sep 2024 03:35:36 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 23902 IP address blocks: 203.119.8.0/22 maxlen: 24 203.119.72.0/22 maxlen: 24 2001:dc8::/48 maxlen: 48 2001:dc8:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17979 (0x463b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:36 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92708-1b18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f3:a5:d0:74:f1:3b:2e:dd:e4:ad:8c:dd:f2: 5e:ce:90:28:01:17:7b:5d:b1:a4:14:f3:e3:40:20: 15:0b:7e:7f:89:03:d5:76:54:9f:0d:33:e9:f5:32: fe:6e:01:58:e0:6e:88:de:19:46:53:6e:05:c3:8d: d5:ed:b2:89:c4:c8:9a:8e:a5:a5:92:db:bd:58:5d: f7:3c:2c:51:0e:d5:dd:a4:6b:b1:a5:f1:3e:0a:a6: d3:f5:3f:54:31:f2:ff:96:b1:6e:73:54:1a:b0:c6: 20:f6:09:bc:02:bf:f7:25:86:0e:26:ac:d6:27:a8: 7f:81:9b:59:fe:12:a1:a8:4f:85:23:8c:8e:e7:e2: 27:a9:b6:e7:d3:21:48:31:78:c6:a1:4a:78:36:ad: 71:8e:50:f3:3b:14:ad:40:ac:0a:4f:2a:3e:7d:cd: 41:57:42:ba:53:89:3e:46:89:09:b7:29:70:d6:38: 8e:e2:c1:6f:a9:20:f1:20:41:df:ac:97:12:24:87: 86:0a:cc:bc:0d:4c:f1:1c:73:4e:83:4e:68:73:48: 42:bd:50:3a:d5:65:2a:be:00:20:3c:c0:c2:98:78: 6b:70:62:3d:8b:77:9e:d2:0d:a2:62:83:c8:f2:1a: 31:ea:6a:43:cd:95:6c:75:24:fd:f1:3b:c1:71:a1: fa:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0C:22:1C:9E:00:9C:32:A2:A3:12:C8:E6:62:FA:F8:CF:84:38:85 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/248F325863DE11EC8CB33722C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.119.8.0/22 203.119.72.0/22 IPv6: 2001:dc8::/47 Signature Algorithm: sha256WithRSAEncryption 2b:c8:28:ca:93:b4:3b:c4:c6:ee:34:dd:c1:6e:2c:52:89:a4: 18:32:4f:77:a4:4e:2d:dc:22:61:54:32:c4:41:95:ef:c9:95: cb:a3:d0:3c:01:a5:5d:8c:fd:35:43:31:01:3f:89:b8:7b:24: f0:a4:62:98:a5:6a:51:b3:7a:f6:8c:5e:42:79:c4:a8:b4:f5: a6:59:b7:22:91:43:31:34:f1:8b:ab:99:f0:ef:9e:24:87:81: 24:f8:00:eb:ad:e2:8d:8a:85:5d:a1:c0:33:0e:6c:30:8d:d0: 60:b1:02:f9:64:44:5b:8f:ab:63:ee:84:ce:3b:f9:9b:31:79: d2:d4:8f:e2:a8:5b:94:6e:ec:e8:04:fe:aa:fe:d7:95:1b:d4: 9c:d2:b6:20:07:df:6a:aa:43:07:8b:9a:6d:9a:89:b6:0e:b9: d5:1c:86:7d:81:62:0f:5f:ca:d2:00:16:53:0e:8f:11:ec:1d: ac:f4:68:4c:fe:08:a4:4a:f4:07:7f:3f:11:1f:f3:3f:e2:2f: 12:7c:ed:6d:0d:37:51:b6:3b:ee:ca:ef:c1:cb:d8:2f:ab:1d: c8:a8:fd:0d:a1:f1:13:e1:04:f3:1a:03:7e:df:ee:e9:60:0e: a5:90:69:f5:cf:90:a0:d0:82:7c:2b:48:0a:e6:2e:82:fe:02: d3:f3:54:83 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICRjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTM2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcwOC0xYjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fOl0HTxOy7d5K2M3fJezpAoARd7XbGkFPPjQCAVC35/iQPVdlSfDTPp9TL+ bgFY4G6I3hlGU24Fw43V7bKJxMiajqWlktu9WF33PCxRDtXdpGuxpfE+CqbT9T9U MfL/lrFuc1QasMYg9gm8Ar/3JYYOJqzWJ6h/gZtZ/hKhqE+FI4yO5+Inqbbn0yFI MXjGoUp4Nq1xjlDzOxStQKwKTyo+fc1BV0K6U4k+RokJtylw1jiO4sFvqSDxIEHf rJcSJIeGCsy8DUzxHHNOg05oc0hCvVA61WUqvgAgPMDCmHhrcGI9i3ee0g2iYoPI 8hox6mpDzZVsdST98TvBcaH67wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFFMMIhye AJwyoqMSyOZi+vjPhDiFMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjQ4RjMyNTg2 M0RFMTFFQzhDQjMzNzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBALLdwgDBALLd0gwDwQCAAIwCQMHASABDcgAADANBgkqhkiG 9w0BAQsFAAOCAQEAK8goypO0O8TG7jTdwW4sUomkGDJPd6ROLdwiYVQyxEGV78mV y6PQPAGlXYz9NUMxAT+JuHsk8KRimKVqUbN69oxeQnnEqLT1plm3IpFDMTTxi6uZ 8O+eJIeBJPgA663ijYqFXaHAMw5sMI3QYLEC+WREW4+rY+6Ezjv5mzF50tSP4qhb lG7s6AT+qv7XlRvUnNK2IAffaqpDB4uabZqJtg651RyGfYFiD1/K0gAWUw6PEewd rPRoTP4IpEr0B38/ER/zP+IvEnztbQ03UbY77srvwcvYL6sdyKj9DaHxE+EE8xoD ft/u6WAOpZBp9c+QoNCCfCtICuYugv4C0/NUgw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org