$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa File: 505FA2389AEC11EC9C828D20C4F9AE02.roa (raw, json) Hash identifier: 0PYZEcu39sJrHSqLm5KjDTs+wHYf8BmCjVUSu9MEbHc= Subject key identifier: EA:3C:3E:17:8C:20:73:CF:53:00:DF:D7:B5:E5:57:5C:52:BA:2F:F9 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4646 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:46 +0000 ROA not before: Thu 05 Sep 2024 03:35:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38247 IP address blocks: 59.153.212.0/22 maxlen: 24 103.19.96.0/22 maxlen: 24 103.23.156.0/22 maxlen: 24 103.249.20.0/22 maxlen: 24 202.79.232.0/21 maxlen: 24 203.160.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17990 (0x4646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:46 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92712-c785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:65:3c:26:86:71:80:c1:0b:a2:07:d0:9e:13: 46:15:98:97:71:3c:e5:02:c2:84:ad:32:05:0d:1a: a1:00:29:a0:9e:b2:c7:a6:6b:b4:39:a6:b9:58:c9: 3c:81:af:4f:4f:e9:d2:f0:99:73:74:c1:8e:97:d9: c4:7b:98:82:f7:e7:2b:73:f7:c4:a6:f1:d9:cf:3b: 4f:7c:a6:57:67:62:a4:b6:98:97:42:60:2c:da:a0: 9f:e3:af:87:bf:0f:6e:c5:aa:04:8e:b1:31:cc:8d: b8:fd:2f:82:94:b1:5c:11:4b:d7:bf:c7:a2:c9:ac: e0:19:49:ad:c1:38:37:da:f7:bb:d8:cf:93:2f:d4: 6e:fe:09:60:e4:6a:1d:a1:6f:fb:dd:bb:ed:b2:f6: 6d:a1:3f:ef:9a:0e:5e:07:82:8e:d8:e1:57:16:73: 44:d6:13:10:24:38:ae:f4:be:33:bb:b1:67:d4:41: 1a:35:d8:d0:cf:8c:7e:97:db:0c:df:67:fc:f5:30: f5:d8:de:d0:0d:3c:da:ef:9f:06:9a:b0:57:e2:1a: 97:fa:d0:ae:81:32:0a:92:6f:cc:14:7d:08:fe:8c: a1:36:81:a1:35:51:41:64:1d:d0:1a:23:b7:fa:1d: 19:25:eb:4e:fb:d7:03:44:65:8b:0e:3e:25:2a:e0: bd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:3C:3E:17:8C:20:73:CF:53:00:DF:D7:B5:E5:57:5C:52:BA:2F:F9 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.212.0/22 103.19.96.0/22 103.23.156.0/22 103.249.20.0/22 202.79.232.0/21 203.160.96.0/21 Signature Algorithm: sha256WithRSAEncryption 58:f2:60:59:00:11:74:a6:8a:6e:6b:a1:1d:d3:44:a0:b8:0a: 1b:0e:2b:2a:92:eb:51:5f:a1:0d:11:28:b4:c9:3b:61:39:37: c6:32:46:25:54:fe:5b:35:f3:f8:0b:d2:34:4b:02:a7:7c:74: 33:ce:53:5c:51:6c:cd:b9:7a:8f:7f:5b:47:5f:35:52:45:56: 3d:5e:d7:6e:4b:12:c7:58:33:bb:0f:31:06:d2:80:7e:e2:10: dd:42:84:4b:1e:99:bb:49:ec:3f:fa:82:e0:bb:15:72:7c:4e: bb:e6:61:52:d2:ea:79:f1:71:2b:4e:03:b9:c3:3c:15:9b:55: 30:a8:9b:52:a6:8a:ac:2b:b4:9b:13:17:8f:04:90:73:c3:1f: ad:e6:57:fc:6c:92:4c:ae:10:e4:30:a2:06:d1:d5:c7:ac:8d: ac:f4:e8:8b:f1:5b:a1:51:1a:1e:80:bf:de:a2:dc:3d:42:a1: e0:74:d4:82:3f:70:49:4f:cc:66:2d:f9:de:ea:d3:ee:b9:75: b9:c0:8c:8b:2f:07:ab:49:1f:61:b5:ab:7a:ba:65:db:89:3c: 31:cf:b3:ac:41:89:c9:20:21:2a:b3:11:5f:f9:51:d9:b2:64: 4d:66:d1:9b:19:71:69:8d:67:7d:48:f7:fa:78:41:46:61:aa: 35:03:df:4b -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICRkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTQ2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcxMi1jNzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02U8JoZxgMELogfQnhNGFZiXcTzlAsKErTIFDRqhACmgnrLHpmu0Oaa5WMk8 ga9PT+nS8JlzdMGOl9nEe5iC9+crc/fEpvHZzztPfKZXZ2KktpiXQmAs2qCf46+H vw9uxaoEjrExzI24/S+ClLFcEUvXv8eiyazgGUmtwTg32ve72M+TL9Ru/glg5God oW/73bvtsvZtoT/vmg5eB4KO2OFXFnNE1hMQJDiu9L4zu7Fn1EEaNdjQz4x+l9sM 32f89TD12N7QDTza758GmrBX4hqX+tCugTIKkm/MFH0I/oyhNoGhNVFBZB3QGiO3 +h0ZJetO+9cDRGWLDj4lKuC9DQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFOo8PheM IHPPUwDf17XlV1xSui/5MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNTA1RkEyMzg5 QUVDMTFFQzlDODI4RDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAI7mdQDBAJnE2ADBAJnF5wDBAJn+RQDBAPKT+gDBAPLoGAw DQYJKoZIhvcNAQELBQADggEBAFjyYFkAEXSmim5roR3TRKC4ChsOKyqS61FfoQ0R KLTJO2E5N8YyRiVU/ls18/gL0jRLAqd8dDPOU1xRbM25eo9/W0dfNVJFVj1e125L EsdYM7sPMQbSgH7iEN1ChEsembtJ7D/6guC7FXJ8TrvmYVLS6nnxcStOA7nDPBWb VTCom1KmiqwrtJsTF48EkHPDH63mV/xskkyuEOQwogbR1cesjaz06IvxW6FRGh6A v96i3D1CoeB01II/cElPzGYt+d7q0+65dbnAjIsvB6tJH2G1q3q6ZduJPDHPs6xB ickgISqzEV/5UdmyZE1m0ZsZcWmNZ31I9/p4QUZhqjUD30s= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org