$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa File: C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa (raw, json) Hash identifier: vB5S4M8KPJrSxS8L2webzj4xBupgLT0HTf15T7rGUvE= Subject key identifier: 77:19:07:21:99:B8:47:F5:EA:95:D3:79:4E:36:9B:75:A7:7B:27:CA Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4542 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:59 +0000 ROA not before: Thu 05 Sep 2024 03:31:59 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131392 IP address blocks: 103.18.4.0/22 maxlen: 24 118.27.192.0/19 maxlen: 24 137.59.104.0/22 maxlen: 24 150.95.16.0/22 maxlen: 24 150.95.104.0/21 maxlen: 24 150.95.112.0/21 maxlen: 24 150.95.120.0/21 maxlen: 24 163.44.192.0/22 maxlen: 24 163.44.200.0/24 maxlen: 24 163.44.205.0/24 maxlen: 24 163.44.206.0/23 maxlen: 24 2404:f080::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17730 (0x4542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:59 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9262e-f5e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:cc:4f:cc:1d:fe:cb:9c:69:e5:fb:30:14:db: c0:2d:48:99:08:fa:ac:f4:82:2f:2f:fb:c6:87:7b: d8:02:ae:5c:1d:af:0d:87:a5:88:ce:cd:66:31:08: b7:30:64:ee:ae:99:24:54:39:ed:c6:86:f4:20:d8: 4f:26:40:00:e6:55:7a:2b:c5:9d:11:d2:5b:0f:4e: 0f:30:03:fd:f0:51:be:9b:f0:e0:3c:ac:f0:ad:3a: b7:4a:d4:1f:ef:b9:7d:02:1a:08:e5:4f:e9:72:7c: 6d:43:72:1c:e4:fe:20:8a:03:f0:60:36:88:58:c3: 0a:c7:62:76:eb:57:4b:5f:39:ab:37:bf:d0:0d:13: 94:22:51:84:b4:f6:f9:cd:b9:c2:45:1f:fe:a8:66: 40:d4:20:dd:37:ec:6d:0f:01:60:da:b0:f1:0b:74: 6e:fc:2b:af:c2:f5:b5:24:ae:bc:21:e5:43:e8:81: 84:37:db:4c:8e:84:3f:85:9c:70:5f:68:93:2f:36: ad:a5:86:94:27:12:cc:ee:80:c1:3e:76:c7:21:5e: 51:34:90:4d:6c:63:70:67:c1:74:1d:26:ff:ad:59: 24:f6:a5:31:62:26:12:f0:07:17:a8:8f:34:b9:30: de:72:eb:b0:9b:54:23:f3:38:a9:ae:c5:de:05:f3: 03:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:19:07:21:99:B8:47:F5:EA:95:D3:79:4E:36:9B:75:A7:7B:27:CA X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.4.0/22 118.27.192.0/19 137.59.104.0/22 150.95.16.0/22 150.95.104.0-150.95.127.255 163.44.192.0/22 163.44.200.0/24 163.44.205.0-163.44.207.255 IPv6: 2404:f080::/32 Signature Algorithm: sha256WithRSAEncryption 82:17:28:7b:39:7f:aa:f6:96:53:a2:21:24:0b:27:8e:53:1f: c7:c4:09:32:2f:1c:9e:6a:ea:bd:a8:44:b0:6c:6c:61:94:e6: 35:e3:49:86:52:1c:ea:e5:e6:30:56:99:33:d5:84:70:39:92: 08:31:8c:b5:f1:05:c6:d0:f6:a3:16:a2:8c:13:dd:8f:5e:2e: 03:c1:d9:33:cc:cb:e3:c5:f3:cd:f8:a1:6d:9c:07:31:d8:b5: 28:4e:f1:45:c6:64:18:f5:50:3d:67:e8:7f:a6:75:34:db:3f: 8b:d3:5e:47:0d:7f:d5:ad:6b:09:18:5f:3e:65:42:dc:1a:39: fe:ff:04:3a:b7:41:63:eb:7f:78:6f:d6:09:74:58:21:f3:1e: 71:f0:48:b9:b8:58:7a:82:42:4e:2a:cd:28:28:a0:67:bf:54: fe:43:0a:e8:c2:cb:3a:e2:e8:e5:a9:dc:cb:0c:49:b0:cf:a1: cb:0e:18:05:5c:e3:25:49:dd:86:76:39:0d:b8:b2:0d:6f:4f: c7:0c:a7:f6:45:09:aa:a6:c6:92:d0:02:d9:72:ab:6b:b0:db: b8:6d:57:74:a6:cb:e2:a8:9e:62:6c:57:e5:13:66:8a:8c:7b: f0:b0:71:bf:75:b7:e4:57:0c:62:56:92:4b:ff:96:0a:c8:10: ab:ac:96:ec -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgICRUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTU5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYyZS1mNWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmMxPzB3+y5xp5fswFNvALUiZCPqs9IIvL/vGh3vYAq5cHa8Nh6WIzs1mMQi3 MGTurpkkVDntxob0INhPJkAA5lV6K8WdEdJbD04PMAP98FG+m/DgPKzwrTq3StQf 77l9AhoI5U/pcnxtQ3Ic5P4gigPwYDaIWMMKx2J261dLXzmrN7/QDROUIlGEtPb5 zbnCRR/+qGZA1CDdN+xtDwFg2rDxC3Ru/CuvwvW1JK68IeVD6IGEN9tMjoQ/hZxw X2iTLzatpYaUJxLM7oDBPnbHIV5RNJBNbGNwZ8F0HSb/rVkk9qUxYiYS8AcXqI80 uTDecuuwm1Qj8ziprsXeBfMDUQIDAQABo4IC3jCCAtowHQYDVR0OBBYEFHcZByGZ uEf16pXTeU42m3WneyfKMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzM3RDJDRjZF QjRDMTFFRTlDQzFDODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaAYIKwYBBQUHAQcBAf8E WTBXMEYEAgABMEADBAJnEgQDBAV2G8ADBAKJO2gDBAKWXxAwDAMEA5ZfaAMEB5Zf AAMEAqMswAMEAKMsyDAMAwQAoyzNAwQEoyzAMA0EAgACMAcDBQAkBPCAMA0GCSqG SIb3DQEBCwUAA4IBAQCCFyh7OX+q9pZToiEkCyeOUx/HxAkyLxyeauq9qESwbGxh lOY140mGUhzq5eYwVpkz1YRwOZIIMYy18QXG0PajFqKME92PXi4DwdkzzMvjxfPN +KFtnAcx2LUoTvFFxmQY9VA9Z+h/pnU02z+L015HDX/VrWsJGF8+ZULcGjn+/wQ6 t0Fj6394b9YJdFgh8x5x8Ei5uFh6gkJOKs0oKKBnv1T+Qwrowss64ujlqdzLDEmw z6HLDhgFXOMlSd2GdjkNuLINb0/HDKf2RQmqpsaS0ALZcqtrsNu4bVd0psviqJ5i bFflE2aKjHvwsHG/dbfkVwxiVpJL/5YKyBCrrJbs -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org