$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C3B463CEAB6E11EE84C1C409C4F9AE02.roa File: C3B463CEAB6E11EE84C1C409C4F9AE02.roa (raw, json) Hash identifier: vdRe1wCbHI+MqhG+x/NgVhoDM9stRIIO4M5C3MzJYm8= Subject key identifier: 4F:BA:DC:71:38:B2:FE:29:B5:53:AB:0E:B4:FA:6A:5E:2D:B8:1F:15 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4643 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C3B463CEAB6E11EE84C1C409C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:43 +0000 ROA not before: Thu 05 Sep 2024 03:35:43 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24175 IP address blocks: 110.35.64.0/21 maxlen: 24 119.18.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17987 (0x4643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:43 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9270e-100d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f2:c9:78:5f:ec:25:5a:f6:c2:28:ec:a5:2e: d4:d5:bb:32:24:d8:67:62:14:81:ba:5b:9a:fc:e5: 92:f7:3c:dc:3b:9d:db:1c:bd:17:80:14:d6:6d:84: 1c:58:6f:28:fc:ef:cf:a6:b8:be:ae:ad:8a:9e:30: d0:60:d7:9b:df:0b:90:e8:74:73:f8:fc:98:ba:53: 93:38:ab:26:d4:cb:4b:6b:3f:e7:23:05:a5:34:f0: 6a:0d:f7:98:eb:b4:52:73:31:70:b3:8d:65:59:8b: 67:82:63:31:e4:6f:2d:6a:ad:6e:6f:71:51:b6:25: 40:b4:0f:1f:ea:e7:ce:70:d6:40:41:42:90:cd:81: e9:33:82:b8:ac:bc:dd:ff:9a:5a:e3:24:0d:4d:b1: 9f:76:7d:4a:8e:e4:8f:99:df:3a:4f:cb:18:76:76: af:55:1c:1f:ca:3e:19:f8:b1:27:d0:a8:34:9d:14: 4f:f8:f8:fc:b6:29:21:ca:3f:4f:17:29:72:c6:b7: 7d:d3:37:be:9e:18:70:b9:d8:2c:8f:ff:52:c2:f1: 44:de:6b:05:71:86:e9:eb:47:96:e2:a9:64:c6:11: 0d:38:69:86:7e:c1:dd:d3:42:2d:66:0b:de:eb:6d: 8f:95:97:e3:40:c7:f3:9a:59:bd:68:6a:9e:82:dd: 5e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BA:DC:71:38:B2:FE:29:B5:53:AB:0E:B4:FA:6A:5E:2D:B8:1F:15 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C3B463CEAB6E11EE84C1C409C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.35.64.0/21 119.18.128.0/20 Signature Algorithm: sha256WithRSAEncryption 50:ef:ec:05:b8:06:f8:70:4f:39:f5:54:bc:f9:2b:93:80:84: be:13:6a:a3:8c:79:87:95:32:a2:f4:35:89:1e:3f:7a:e2:61: df:2f:66:a2:2c:95:44:2f:0d:5f:a4:8a:63:d6:49:0d:d4:b0: 34:41:d8:0f:8e:71:b1:f1:49:37:67:7f:3f:94:d0:8b:aa:c4: 6c:91:58:1f:3a:b1:05:c0:33:ae:3e:58:66:a8:c5:9e:7a:f9: 6e:eb:69:0f:78:4c:42:db:d8:63:cf:a7:ab:bb:75:48:5e:4a: 8b:c9:db:24:d6:a8:46:bc:6d:76:44:5f:ea:26:20:f3:49:29: 00:4b:eb:2a:b1:41:7b:21:a9:5c:f7:39:13:3e:7e:3a:12:46: d6:1e:11:c5:da:16:da:f0:60:0f:c8:d1:60:0e:e5:cf:22:05: 08:b8:cc:9a:49:a5:09:e7:63:60:97:65:ce:dd:24:42:a4:c6: 74:92:7a:8e:a9:42:98:20:d1:3e:7f:68:75:78:db:86:45:b3: 33:92:8b:07:1c:53:33:d8:3b:51:38:85:db:1b:5c:82:3c:41: a0:62:17:21:85:3d:cd:1d:24:c5:0b:8e:1c:19:59:36:6d:54: dd:61:85:50:09:38:15:31:6e:e9:3a:22:cd:1a:5e:9d:7c:05: 5a:11:5e:bc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICRkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTQzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcwZS0xMDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfLJeF/sJVr2wijspS7U1bsyJNhnYhSBulua/OWS9zzcO53bHL0XgBTWbYQc WG8o/O/Ppri+rq2KnjDQYNeb3wuQ6HRz+PyYulOTOKsm1MtLaz/nIwWlNPBqDfeY 67RSczFws41lWYtngmMx5G8taq1ub3FRtiVAtA8f6ufOcNZAQUKQzYHpM4K4rLzd /5pa4yQNTbGfdn1KjuSPmd86T8sYdnavVRwfyj4Z+LEn0Kg0nRRP+Pj8tikhyj9P Fylyxrd90ze+nhhwudgsj/9SwvFE3msFcYbp60eW4qlkxhENOGmGfsHd00ItZgve 622PlZfjQMfzmlm9aGqegt1eHwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFE+63HE4 sv4ptVOrDrT6al4tuB8VMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzNCNDYzQ0VB QjZFMTFFRTg0QzFDNDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANuI0ADBAR3EoAwDQYJKoZIhvcNAQELBQADggEBAFDv7AW4 BvhwTzn1VLz5K5OAhL4TaqOMeYeVMqL0NYkeP3riYd8vZqIslUQvDV+kimPWSQ3U sDRB2A+OcbHxSTdnfz+U0IuqxGyRWB86sQXAM64+WGaoxZ56+W7raQ94TELb2GPP p6u7dUheSovJ2yTWqEa8bXZEX+omIPNJKQBL6yqxQXshqVz3ORM+fjoSRtYeEcXa FtrwYA/I0WAO5c8iBQi4zJpJpQnnY2CXZc7dJEKkxnSSeo6pQpgg0T5/aHV424ZF szOSiwccUzPYO1E4hdsbXII8QaBiFyGFPc0dJMULjhwZWTZtVN1hhVAJOBUxbuk6 Is0aXp18BVoRXrw= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org