$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C5FADDCA3C3911ED8A8C856DC4F9AE02.roa File: C5FADDCA3C3911ED8A8C856DC4F9AE02.roa (raw, json) Hash identifier: NQ7pV6ss4OytYSkb8HcCL/zEf3Pr8ST42eiZppYyndg= Subject key identifier: 01:ED:61:17:72:98:C6:91:C6:AD:D1:63:E6:EF:0F:92:62:9A:40:95 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4690 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C5FADDCA3C3911ED8A8C856DC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:49 +0000 ROA not before: Thu 05 Sep 2024 03:36:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 7602 IP address blocks: 103.200.60.0/22 maxlen: 24 116.118.0.0/17 maxlen: 24 180.93.0.0/16 maxlen: 24 203.196.24.0/22 maxlen: 24 221.121.0.0/18 maxlen: 24 221.133.0.0/19 maxlen: 24 2402:f800::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18064 (0x4690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92751-3dc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e1:c4:4c:dd:8e:26:3a:ad:e0:9b:a4:2c:8c: 29:f0:2f:8a:44:e6:aa:19:cd:88:00:aa:db:d1:1a: e1:11:c1:5f:e3:7e:91:ff:97:26:9c:0b:0f:8a:1f: 50:63:67:a0:93:08:8d:2d:cc:71:0e:03:aa:57:18: fd:fc:e9:61:37:ea:b9:33:e0:06:01:56:6f:70:49: 95:f0:58:7a:81:c5:66:91:de:41:1e:7a:6c:62:8e: bf:7d:39:89:29:d2:bd:26:44:38:82:85:5e:04:e4: 99:34:e8:4b:4c:14:66:16:ec:a3:bb:9e:97:b2:6e: 39:21:c0:d6:f0:f4:45:03:89:69:ef:e1:e3:d8:74: 55:64:37:7a:a3:be:9a:59:47:cd:84:03:3a:e1:61: 42:18:0e:12:f0:96:6a:5d:36:30:d4:42:15:0c:b1: 0e:ee:bd:d1:42:10:75:2e:62:52:c7:d6:dc:7a:6d: 47:b6:c0:c8:ce:3a:0e:6e:58:a7:5e:95:bc:2d:3f: dd:82:bc:2f:e9:a4:67:b9:61:14:f0:e4:1b:96:99: 91:98:9a:13:1c:5d:4b:ba:d4:9e:29:1d:22:cf:81: 09:18:10:24:02:be:eb:ab:38:d6:b2:bb:14:ee:5f: c4:fb:ab:4e:24:c6:b7:28:b5:b2:51:ec:56:b4:7f: 42:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:ED:61:17:72:98:C6:91:C6:AD:D1:63:E6:EF:0F:92:62:9A:40:95 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C5FADDCA3C3911ED8A8C856DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.200.60.0/22 116.118.0.0/17 180.93.0.0/16 203.196.24.0/22 221.121.0.0/18 221.133.0.0/19 IPv6: 2402:f800::/32 Signature Algorithm: sha256WithRSAEncryption 1f:c0:12:c0:ca:2d:8b:31:75:91:bc:ab:8d:d3:79:00:99:ca: f5:bd:f7:49:85:64:99:aa:51:fd:c3:d4:dd:7b:6f:de:b4:72: ac:44:71:d0:c0:dc:d8:53:24:43:81:91:d1:91:e4:90:dc:52: 5e:4f:78:52:2b:56:6c:f4:da:77:b9:91:1d:7d:10:ed:2f:53: 2b:48:e5:8d:43:1d:66:d1:ad:f1:73:12:76:af:01:ee:81:87: bf:85:d5:b1:5c:40:9b:05:7c:e2:5b:92:6d:b9:18:55:f6:cc: 3e:46:9f:5b:b1:2d:2e:ab:50:7b:4a:b8:bd:ca:ce:d5:33:c3: b5:eb:f0:62:b9:30:d0:98:4e:9a:75:37:3f:43:03:b3:b0:27: d6:8b:56:71:d0:70:8d:56:c9:58:2c:a0:02:aa:fb:29:e9:a3: a3:e7:3c:c9:95:81:db:4f:35:49:c8:ab:52:1d:0b:79:26:93: 60:aa:7f:fe:6a:8e:c7:52:d5:86:96:49:51:e8:5b:43:d8:a8: 01:41:a2:ba:fc:cc:95:10:69:92:44:75:29:55:61:86:87:35: be:73:f6:dc:cc:87:a8:9a:0f:bf:78:8c:f7:c0:60:1b:26:4c: 6e:7d:cb:27:f9:d5:6a:ab:63:d8:f4:55:bf:e9:49:4d:6a:3e: a1:a5:f8:8e -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICRpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5Mjc1MS0zZGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+HETN2OJjqt4JukLIwp8C+KROaqGc2IAKrb0RrhEcFf436R/5cmnAsPih9Q Y2egkwiNLcxxDgOqVxj9/OlhN+q5M+AGAVZvcEmV8Fh6gcVmkd5BHnpsYo6/fTmJ KdK9JkQ4goVeBOSZNOhLTBRmFuyju56Xsm45IcDW8PRFA4lp7+Hj2HRVZDd6o76a WUfNhAM64WFCGA4S8JZqXTYw1EIVDLEO7r3RQhB1LmJSx9bcem1HtsDIzjoOblin XpW8LT/dgrwv6aRnuWEU8OQblpmRmJoTHF1LutSeKR0iz4EJGBAkAr7rqzjWsrsU 7l/E+6tOJMa3KLWyUexWtH9C8QIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFAHtYRdy mMaRxq3RY+bvD5JimkCVMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzVGQUREQ0Ez QzM5MTFFRDhBOEM4NTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MCkEAgABMCMDBAJnyDwDBAd0dgADAwC0XQMEAsvEGAMEBt15AAMEBd2FADAN BAIAAjAHAwUAJAL4ADANBgkqhkiG9w0BAQsFAAOCAQEAH8ASwMotizF1kbyrjdN5 AJnK9b33SYVkmapR/cPU3Xtv3rRyrERx0MDc2FMkQ4GR0ZHkkNxSXk94UitWbPTa d7mRHX0Q7S9TK0jljUMdZtGt8XMSdq8B7oGHv4XVsVxAmwV84luSbbkYVfbMPkaf W7EtLqtQe0q4vcrO1TPDtevwYrkw0JhOmnU3P0MDs7An1otWcdBwjVbJWCygAqr7 Kemjo+c8yZWB2081ScirUh0LeSaTYKp//mqOx1LVhpZJUehbQ9ioAUGiuvzMlRBp kkR1KVVhhoc1vnP23MyHqJoPv3iM98BgGyZMbn3LJ/nVaqtj2PRVv+lJTWo+oaX4 jg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org