$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B54202E2BDF511EBA9CAA245C4F9AE02.roa File: B54202E2BDF511EBA9CAA245C4F9AE02.roa (raw, json) Hash identifier: vQ8JhWicoU0dkoRjJwzrCV3LzlI0cgERcIVRE+JdfYo= Subject key identifier: 2E:20:97:C0:BE:65:E0:E6:67:92:E7:25:18:0F:56:AA:40:70:E1:F7 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4678 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B54202E2BDF511EBA9CAA245C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:29 +0000 ROA not before: Thu 05 Sep 2024 03:36:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 63730 IP address blocks: 36.50.28.0/23 maxlen: 23 103.161.174.0/23 maxlen: 23 103.185.184.0/23 maxlen: 24 2400:69e0::/48 maxlen: 48 2401:53e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18040 (0x4678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9273d-b5eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7f:03:48:8d:ed:65:87:01:1c:7f:f4:c7:99: 69:95:32:b9:26:0e:a0:66:26:a1:ea:f7:e8:32:bb: 3c:9e:b1:4e:65:14:90:d3:7b:11:18:3f:7e:b3:c3: f6:5f:e8:ae:66:bf:9e:1e:b3:f8:fa:60:f9:17:a1: 1f:d5:5a:63:c5:0d:8b:32:68:28:ab:73:43:ae:12: 2e:93:16:87:ee:bf:ef:9e:26:6c:e2:b0:1b:68:46: d7:0c:56:43:ab:b8:94:70:f8:94:b1:79:50:ea:51: 23:c0:bd:60:42:87:f0:c7:43:d3:61:4a:80:fb:57: af:ee:12:be:1d:cd:3f:ea:e5:57:44:cb:2a:86:34: b1:a1:a8:5b:d9:4f:d5:f8:ef:58:96:e6:9b:c8:7f: 68:88:8a:fe:7c:37:95:53:47:8c:33:4a:78:17:1a: c2:dd:99:d8:18:7f:9f:22:d0:98:cc:b3:05:30:f2: 8e:45:8a:14:37:c0:86:25:57:01:5e:e1:4e:54:7a: 83:ae:1f:e8:d7:3e:fd:ed:4c:d7:f5:3f:52:e1:c6: cb:9d:98:1e:a2:8d:f5:a8:40:68:75:3f:33:ed:7e: c7:3d:ef:b3:ac:24:eb:05:8d:92:14:e0:da:21:04: ef:91:61:7b:08:c0:e5:95:f3:16:8f:a7:5e:a2:cc: de:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:20:97:C0:BE:65:E0:E6:67:92:E7:25:18:0F:56:AA:40:70:E1:F7 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B54202E2BDF511EBA9CAA245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.28.0/23 103.161.174.0/23 103.185.184.0/23 IPv6: 2400:69e0::/48 2401:53e0::/48 Signature Algorithm: sha256WithRSAEncryption 91:bd:b2:31:fe:c5:6c:c0:80:19:9e:09:5c:bb:d5:54:a2:42: 42:8e:4f:86:e9:07:6c:42:30:1f:a0:77:83:0b:a3:52:df:0f: 9a:0b:ba:3a:fe:24:d1:ca:4c:3c:45:56:84:9c:cb:12:d4:af: d5:38:b9:d2:ed:7a:b3:86:48:b3:5c:89:82:1b:6e:9c:71:0e: e6:df:bb:2a:7d:6a:b9:64:8b:62:18:02:bd:05:60:25:47:f9: c6:a5:9c:45:1b:08:04:31:e1:79:1f:0b:02:69:26:81:a0:28: 75:84:e2:6d:4b:9e:95:77:cf:60:8c:49:38:f0:a7:1b:79:94: 50:e6:4a:28:1f:0a:12:fb:a9:2e:8f:68:d7:28:01:9e:8d:20: d8:a3:4d:ba:1f:45:dc:75:02:cc:40:09:f1:3f:1a:3e:02:9b: e8:88:d1:40:2b:89:81:71:99:ea:4c:34:8b:c0:14:57:63:9d: 57:54:ab:2f:91:ac:18:11:7a:af:4f:d3:76:eb:11:51:a6:dc: cf:be:2f:0c:8c:d7:41:b8:a0:2e:de:77:2c:99:6d:ce:34:c5: d8:33:56:7f:23:42:ec:60:67:cd:5b:d9:59:ef:e6:00:8f:50: 88:dd:1a:7e:e0:86:83:82:48:8d:88:d5:af:1e:c5:75:6b:90: 9c:04:78:e7 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICRngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjczZC1iNWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyH8DSI3tZYcBHH/0x5lplTK5Jg6gZiah6vfoMrs8nrFOZRSQ03sRGD9+s8P2 X+iuZr+eHrP4+mD5F6Ef1VpjxQ2LMmgoq3NDrhIukxaH7r/vniZs4rAbaEbXDFZD q7iUcPiUsXlQ6lEjwL1gQofwx0PTYUqA+1ev7hK+Hc0/6uVXRMsqhjSxoahb2U/V +O9YluabyH9oiIr+fDeVU0eMM0p4FxrC3ZnYGH+fItCYzLMFMPKORYoUN8CGJVcB XuFOVHqDrh/o1z797UzX9T9S4cbLnZgeoo31qEBodT8z7X7HPe+zrCTrBY2SFODa IQTvkWF7CMDllfMWj6deoszebQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFC4gl8C+ ZeDmZ5LnJRgPVqpAcOH3MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQjU0MjAyRTJC REY1MTFFQkE5Q0FBMjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAEkMhwDBAFnoa4DBAFnubgwGAQCAAIwEgMHACQAaeAAAAMH ACQBU+AAADANBgkqhkiG9w0BAQsFAAOCAQEAkb2yMf7FbMCAGZ4JXLvVVKJCQo5P hukHbEIwH6B3gwujUt8Pmgu6Ov4k0cpMPEVWhJzLEtSv1Ti50u16s4ZIs1yJghtu nHEO5t+7Kn1quWSLYhgCvQVgJUf5xqWcRRsIBDHheR8LAmkmgaAodYTibUuelXfP YIxJOPCnG3mUUOZKKB8KEvupLo9o1ygBno0g2KNNuh9F3HUCzEAJ8T8aPgKb6IjR QCuJgXGZ6kw0i8AUV2OdV1SrL5GsGBF6r0/TdusRUabcz74vDIzXQbigLt53LJlt zjTF2DNWfyNC7GBnzVvZWe/mAI9QiN0afuCGg4JIjYjVrx7FdWuQnAR45w== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org