$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6793E3A8717F11EF8AC01F2BC4F9AE02.roa File: 6793E3A8717F11EF8AC01F2BC4F9AE02.roa (raw, json) Hash identifier: iSzAOBhPYpNRjBD8nX0y6ObQbgYmdChWmX1RFcmnr1c= Subject key identifier: 4C:D6:A1:C1:9B:CF:B7:8C:3B:6A:CE:7F:E2:18:1F:54:3C:B1:F2:45 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 46CA Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6793E3A8717F11EF8AC01F2BC4F9AE02.roa Signing time: Fri 13 Sep 2024 03:22:28 +0000 ROA not before: Fri 13 Sep 2024 03:22:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45546 IP address blocks: 110.35.72.0/21 maxlen: 24 2401:77a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18122 (0x46ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 13 03:22:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e3aff4-a1fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2a:a9:3f:28:b4:85:bf:ec:64:a2:55:d3:c6: 5c:e6:a5:f5:fc:e4:d6:6d:9e:42:6a:f8:7e:44:f1: 8a:b7:60:c4:ed:01:39:0c:74:6d:ca:28:f8:79:be: bd:5a:50:16:02:fb:97:66:1b:1b:94:ba:4b:be:21: ea:16:1f:bc:7a:62:a2:1e:43:68:36:72:58:20:12: b9:e0:0d:a0:4f:10:87:9a:e0:11:34:cb:94:8e:47: 02:1d:23:e4:58:11:32:b4:95:60:ee:63:7f:11:68: 64:f1:aa:64:79:bc:34:dd:5e:8a:1e:36:e5:ac:d2: 8b:91:77:96:ee:b5:14:0b:bc:18:74:73:92:ec:d6: 1f:b8:e7:58:c9:b4:c1:fe:06:ef:2d:06:60:6f:3b: 65:52:12:0a:ed:24:0a:39:4a:22:a9:5f:6e:29:54: 6f:30:28:fe:d7:cb:af:67:21:ac:93:81:3c:07:8b: 69:7e:9b:cb:49:b4:68:7b:d6:fe:73:83:cb:0c:5b: c4:36:62:fa:ed:6d:10:6d:0b:52:ff:44:05:ae:ce: 5d:74:6f:19:4e:26:b8:e7:e8:26:33:f3:8d:81:33: d2:64:c4:09:02:07:e5:e4:9c:42:e8:e1:16:71:ab: f3:94:33:76:28:af:b5:95:6f:8f:9a:f3:8a:91:2d: f0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D6:A1:C1:9B:CF:B7:8C:3B:6A:CE:7F:E2:18:1F:54:3C:B1:F2:45 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6793E3A8717F11EF8AC01F2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.35.72.0/21 IPv6: 2401:77a0::/32 Signature Algorithm: sha256WithRSAEncryption 44:18:b4:f2:e5:2d:35:49:22:6d:80:99:39:4f:6e:76:eb:81: 78:11:6f:42:68:bb:2d:63:08:9d:89:29:bf:67:c9:73:31:d0: 62:31:d3:c2:e5:1a:aa:28:b2:d3:ee:95:e3:e1:61:22:1f:c3: d3:64:cf:d2:52:aa:81:ab:11:53:67:bd:a1:07:84:c1:a5:0e: fd:d0:92:2a:d3:2c:48:46:05:fc:1b:28:e9:ee:fe:e2:80:be: dd:fc:54:f9:fd:0b:f8:ef:51:13:bc:96:b6:48:5a:da:4b:68: 94:f4:16:9a:95:23:4a:d1:c3:7d:76:97:d0:df:05:dd:29:f3: 71:f1:f4:68:b8:df:65:ad:2b:db:a9:24:9b:99:c1:8b:39:a7: 03:b1:40:61:54:42:08:54:09:2b:c2:c0:1b:73:f2:3b:bb:8d: 44:cd:d1:da:c1:28:8a:94:a1:28:ff:56:b5:53:78:af:7b:8f: a3:2a:bc:63:6a:68:ae:33:45:45:22:f4:dd:71:26:74:6a:45: 88:94:22:62:87:de:b7:a0:82:f3:1b:ac:0b:f6:bd:1c:45:2f: 3c:0a:6f:35:64:f7:89:80:a6:43:fe:4a:09:dc:7d:90:43:90: 78:8f:67:36:75:83:d6:55:f2:d6:77:13:01:69:27:ce:bc:5e: 9c:00:5d:21 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICRsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTEzMDMyMjI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzYWZmNC1hMWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CqpPyi0hb/sZKJV08Zc5qX1/OTWbZ5Cavh+RPGKt2DE7QE5DHRtyij4eb69 WlAWAvuXZhsblLpLviHqFh+8emKiHkNoNnJYIBK54A2gTxCHmuARNMuUjkcCHSPk WBEytJVg7mN/EWhk8apkebw03V6KHjblrNKLkXeW7rUUC7wYdHOS7NYfuOdYybTB /gbvLQZgbztlUhIK7SQKOUoiqV9uKVRvMCj+18uvZyGsk4E8B4tpfpvLSbRoe9b+ c4PLDFvENmL67W0QbQtS/0QFrs5ddG8ZTia45+gmM/ONgTPSZMQJAgfl5JxC6OEW cavzlDN2KK+1lW+PmvOKkS3w3wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEzWocGb z7eMO2rOf+IYH1Q8sfJFMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNjc5M0UzQTg3 MTdGMTFFRjhBQzAxRjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBANuI0gwDQQCAAIwBwMFACQBd6AwDQYJKoZIhvcNAQELBQAD ggEBAEQYtPLlLTVJIm2AmTlPbnbrgXgRb0Jouy1jCJ2JKb9nyXMx0GIx08LlGqoo stPulePhYSIfw9Nkz9JSqoGrEVNnvaEHhMGlDv3QkirTLEhGBfwbKOnu/uKAvt38 VPn9C/jvURO8lrZIWtpLaJT0FpqVI0rRw312l9DfBd0p83Hx9Gi432WtK9upJJuZ wYs5pwOxQGFUQghUCSvCwBtz8ju7jUTN0drBKIqUoSj/VrVTeK97j6MqvGNqaK4z RUUi9N1xJnRqRYiUImKH3reggvMbrAv2vRxFLzwKbzVk94mApkP+SgncfZBDkHiP ZzZ1g9ZV8tZ3EwFpJ868XpwAXSE= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org