$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/48543F6A8E5111EC9893FC68C4F9AE02.roa File: 48543F6A8E5111EC9893FC68C4F9AE02.roa (raw, json) Hash identifier: WWrXmmjtXtkK3otJMBx1Zgtrfel8d4tZKpdVVdsH1Ok= Subject key identifier: 2D:AD:05:D1:72:BF:A2:EB:C3:17:25:F6:14:39:12:50:98:C2:DD:29 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4666 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/48543F6A8E5111EC9893FC68C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:15 +0000 ROA not before: Thu 05 Sep 2024 03:36:15 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55309 IP address blocks: 103.235.208.0/22 maxlen: 24 112.109.88.0/21 maxlen: 24 182.237.20.0/22 maxlen: 24 2405:cb00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18022 (0x4666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:15 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9272f-6bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3a:94:6d:12:5f:57:e4:b4:32:8b:f1:d5:44: 62:ca:e1:62:cb:71:22:ce:36:34:9b:19:0b:73:0c: e8:7a:fc:32:59:7c:a7:50:c3:76:f1:41:12:fa:6e: 2d:52:81:8f:a6:0d:06:aa:52:3d:89:9d:5a:71:4c: 7f:55:c4:e1:6c:2e:57:c1:47:d7:fd:ed:c9:34:17: b8:11:96:04:40:44:02:5f:b2:68:97:62:c9:de:0f: 7a:01:b8:12:98:69:2d:49:78:d4:52:0c:20:07:05: 37:92:6c:9f:d9:7d:ec:cb:4f:35:19:ff:24:f6:6e: cd:23:bc:b1:ed:b9:dc:ef:13:4e:18:e4:20:96:35: 95:64:d9:ba:cc:b1:79:4f:e6:73:8b:e8:a0:10:98: ca:00:45:3e:7e:61:ad:10:83:5c:8d:01:55:c9:35: a4:a7:69:8b:2e:ed:5c:2a:19:59:f4:03:01:0a:d7: cd:f6:33:22:4e:c9:d1:8f:20:56:77:b6:f2:1d:c3: e8:e3:55:74:02:88:e7:c5:f2:de:44:a4:86:36:a6: 07:48:c8:ee:cd:fd:94:f2:97:d1:24:ef:02:71:89: 85:18:b8:4d:bb:b4:ce:aa:40:3c:de:31:01:c4:7a: cb:fe:ae:63:26:5f:8b:35:d2:81:54:fa:2d:bd:64: 54:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:AD:05:D1:72:BF:A2:EB:C3:17:25:F6:14:39:12:50:98:C2:DD:29 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/48543F6A8E5111EC9893FC68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.208.0/22 112.109.88.0/21 182.237.20.0/22 IPv6: 2405:cb00::/48 Signature Algorithm: sha256WithRSAEncryption 04:ba:56:ec:21:6b:c9:9f:bb:d9:33:9d:ea:97:3d:ad:43:8c: 3a:8d:a8:37:2e:79:29:ce:26:1b:19:35:8c:be:58:8b:15:cd: ed:bf:01:68:a3:b1:8a:39:97:19:94:30:5d:aa:2d:76:cc:e0: 46:c1:30:d7:ae:c9:7b:ee:e7:01:8b:c5:17:c6:94:ac:ec:51: c8:64:7a:a7:51:32:32:22:f3:0b:bd:db:02:e0:85:62:90:74: 8e:f6:1a:f2:a2:b1:eb:e3:a7:a3:44:20:2b:51:1d:8b:3f:0c: dd:35:4f:ea:f0:8b:82:90:29:20:5e:b1:bc:50:f5:de:61:b5: 29:d9:e9:fb:7f:3f:a7:e6:4e:e2:1a:70:9a:01:89:71:4f:1d: 90:90:f0:98:16:4d:46:d4:b0:07:45:a7:52:bc:d4:01:b0:05: a7:1d:af:7f:44:4c:72:b5:01:f9:a5:84:d2:75:d1:4c:d6:e6: f9:5a:6c:8d:b8:42:eb:43:e3:24:ef:c9:42:8b:49:ef:41:5a: 62:ca:55:69:7d:af:6a:7f:01:2b:c0:3d:0f:6b:74:ba:7c:9d: c9:1c:9f:47:36:c3:cf:37:da:0c:c8:17:34:2b:67:29:c3:24: 6f:18:33:bc:7b:9c:b5:52:60:cc:a1:65:b3:50:98:1d:b6:e9: e7:b0:8e:87 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICRmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjE1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcyZi02YmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jqUbRJfV+S0Movx1URiyuFiy3EizjY0mxkLcwzoevwyWXynUMN28UES+m4t UoGPpg0GqlI9iZ1acUx/VcThbC5XwUfX/e3JNBe4EZYEQEQCX7Jol2LJ3g96AbgS mGktSXjUUgwgBwU3kmyf2X3sy081Gf8k9m7NI7yx7bnc7xNOGOQgljWVZNm6zLF5 T+Zzi+igEJjKAEU+fmGtEINcjQFVyTWkp2mLLu1cKhlZ9AMBCtfN9jMiTsnRjyBW d7byHcPo41V0AojnxfLeRKSGNqYHSMjuzf2U8pfRJO8CcYmFGLhNu7TOqkA83jEB xHrL/q5jJl+LNdKBVPotvWRUZQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFC2tBdFy v6Lrwxcl9hQ5ElCYwt0pMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDg1NDNGNkE4 RTUxMTFFQzk4OTNGQzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAJn69ADBANwbVgDBAK27RQwDwQCAAIwCQMHACQFywAAADAN BgkqhkiG9w0BAQsFAAOCAQEABLpW7CFryZ+72TOd6pc9rUOMOo2oNy55Kc4mGxk1 jL5YixXN7b8BaKOxijmXGZQwXaotdszgRsEw167Je+7nAYvFF8aUrOxRyGR6p1Ey MiLzC73bAuCFYpB0jvYa8qKx6+Ono0QgK1Ediz8M3TVP6vCLgpApIF6xvFD13mG1 Kdnp+38/p+ZO4hpwmgGJcU8dkJDwmBZNRtSwB0WnUrzUAbAFpx2vf0RMcrUB+aWE 0nXRTNbm+VpsjbhC60PjJO/JQotJ70FaYspVaX2van8BK8A9D2t0unydyRyfRzbD zzfaDMgXNCtnKcMkbxgzvHuctVJgzKFls1CYHbbp57COhw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org