$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/864C4A7832C911EF9984B42FC4F9AE02.roa File: 864C4A7832C911EF9984B42FC4F9AE02.roa (raw, json) Hash identifier: kiY8QdXD3i3DcajAJs4qZShFOWQ3qheN6XpUvwiKLhg= Subject key identifier: 1D:14:DD:4B:B1:3F:CB:B3:FC:81:DC:09:8D:AD:B2:DC:3F:D7:7B:5B Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 453D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/864C4A7832C911EF9984B42FC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:55 +0000 ROA not before: Thu 05 Sep 2024 03:31:55 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131386 IP address blocks: 45.119.80.0/22 maxlen: 24 45.119.84.0/22 maxlen: 24 103.2.224.0/22 maxlen: 24 103.27.236.0/22 maxlen: 24 103.87.220.0/22 maxlen: 24 103.95.156.0/22 maxlen: 24 103.200.24.0/22 maxlen: 24 2403:bf40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17725 (0x453d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:55 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9262b-5e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:4d:08:b6:fc:96:7d:35:28:24:45:d3:6b:2b: f5:f6:0f:f5:c5:ac:78:44:bc:a0:63:71:63:12:c0: 8c:95:01:0d:a8:54:80:33:ee:67:21:50:44:25:ca: d4:f5:86:a3:17:e3:f0:74:68:10:18:da:69:9f:90: 21:46:63:42:1b:f0:75:cf:ae:e5:80:e1:29:41:ad: bd:9b:30:65:51:36:b9:06:cd:ec:b7:eb:73:6a:5a: 97:d3:64:d6:ca:80:58:04:e1:b8:24:d9:0d:c2:2d: 7d:0e:9b:a5:72:f6:c2:67:06:85:9d:db:3c:16:c5: fc:61:b7:74:a8:52:fb:47:29:48:17:96:88:83:d9: 9b:d7:41:ec:a5:07:5a:0d:f6:80:52:5f:7b:ae:f6: ee:61:ce:3e:ca:c8:18:0d:de:2f:2d:8b:9d:6d:20: 14:01:e0:61:81:07:f8:88:50:4b:64:61:f7:ff:69: c9:c2:1c:23:3d:19:b0:7c:67:98:40:2f:4e:88:87: c9:9c:1b:c3:67:f0:0e:c4:37:31:61:87:0d:21:31: d0:fa:79:e2:2e:e2:55:7c:68:65:7d:37:ee:3b:23: 12:3f:b4:ce:58:a5:49:ac:9e:59:0e:06:0c:e6:d6: 8f:7a:f0:0a:5f:04:eb:b1:be:f0:f1:8a:90:57:49: d1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:14:DD:4B:B1:3F:CB:B3:FC:81:DC:09:8D:AD:B2:DC:3F:D7:7B:5B X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/864C4A7832C911EF9984B42FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.80.0/21 103.2.224.0/22 103.27.236.0/22 103.87.220.0/22 103.95.156.0/22 103.200.24.0/22 IPv6: 2403:bf40::/48 Signature Algorithm: sha256WithRSAEncryption 73:4e:b0:ac:f8:ba:20:05:9e:50:a7:24:6b:c3:fe:07:b7:c6: 98:03:69:49:ca:bd:43:1d:6a:ac:19:b7:52:5b:08:86:d4:2e: 63:03:11:b6:e5:4e:3c:bf:6b:65:82:eb:19:4b:ff:1e:60:40: 2f:9f:e0:2d:98:3b:39:29:e4:b8:9b:d9:bb:86:6b:d5:99:fa: a0:2e:ba:01:fb:55:b4:fd:85:b5:b8:c4:75:63:24:05:97:95: 83:8d:c6:bc:68:26:14:6b:38:e1:95:b4:5c:ab:bd:55:c7:23: 28:fc:52:ae:73:6c:15:76:6a:fe:51:3e:9b:e2:56:f9:ae:e5: f4:03:73:bd:8c:d8:a1:06:4f:94:95:0b:62:29:e0:a2:ae:e2: 7d:d5:e2:56:8f:a8:ea:8b:4d:1d:a0:95:2b:1a:1e:02:0e:97: a7:d0:34:32:84:15:a3:87:2a:58:57:2b:72:be:ac:4a:55:0c: 75:34:f5:f9:de:94:b5:7f:f6:33:25:d9:2c:2e:ef:66:a7:73: b3:a7:b4:60:de:2a:99:8e:5f:30:b9:d2:eb:1f:cc:15:6d:6e: fb:3b:f7:5c:c2:0e:53:82:18:a1:aa:2e:43:9b:27:c3:ab:5c: 0d:2f:e0:b3:ca:00:b2:89:0e:00:f3:a2:38:ed:28:77:39:cc: bd:5c:3e:16 -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgICRT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTU1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYyYi01ZTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5k0ItvyWfTUoJEXTayv19g/1xax4RLygY3FjEsCMlQENqFSAM+5nIVBEJcrU 9YajF+PwdGgQGNppn5AhRmNCG/B1z67lgOEpQa29mzBlUTa5Bs3st+tzalqX02TW yoBYBOG4JNkNwi19DpulcvbCZwaFnds8FsX8Ybd0qFL7RylIF5aIg9mb10HspQda DfaAUl97rvbuYc4+ysgYDd4vLYudbSAUAeBhgQf4iFBLZGH3/2nJwhwjPRmwfGeY QC9OiIfJnBvDZ/AOxDcxYYcNITHQ+nniLuJVfGhlfTfuOyMSP7TOWKVJrJ5ZDgYM 5taPevAKXwTrsb7w8YqQV0nRHwIDAQABo4ICxDCCAsAwHQYDVR0OBBYEFB0U3Uux P8uz/IHcCY2tstw/13tbMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvODY0QzRBNzgz MkM5MTFFRjk5ODRCNDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTgYIKwYBBQUHAQcBAf8E PzA9MCoEAgABMCQDBAMtd1ADBAJnAuADBAJnG+wDBAJnV9wDBAJnX5wDBAJnyBgw DwQCAAIwCQMHACQDv0AAADANBgkqhkiG9w0BAQsFAAOCAQEAc06wrPi6IAWeUKck a8P+B7fGmANpScq9Qx1qrBm3UlsIhtQuYwMRtuVOPL9rZYLrGUv/HmBAL5/gLZg7 OSnkuJvZu4Zr1Zn6oC66AftVtP2FtbjEdWMkBZeVg43GvGgmFGs44ZW0XKu9Vccj KPxSrnNsFXZq/lE+m+JW+a7l9ANzvYzYoQZPlJULYingoq7ifdXiVo+o6otNHaCV KxoeAg6Xp9A0MoQVo4cqWFcrcr6sSlUMdTT1+d6UtX/2MyXZLC7vZqdzs6e0YN4q mY5fMLnS6x/MFW1u+zv3XMIOU4IYoaouQ5snw6tcDS/gs8oAsokOAPOiOO0odznM vVw+Fg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org