$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D674499A330E11ED904A987BC4F9AE02.roa File: D674499A330E11ED904A987BC4F9AE02.roa (raw, json) Hash identifier: XB5OjLD0x2JpwmVxmYQBUlwWHB31KCwdWXOCkMq3JOQ= Subject key identifier: FD:74:F0:E8:35:EC:81:5A:88:6C:47:CB:EF:CE:1E:34:73:7E:5D:0B Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 465D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D674499A330E11ED904A987BC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:07 +0000 ROA not before: Thu 05 Sep 2024 03:36:07 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45894 IP address blocks: 111.65.240.0/20 maxlen: 24 180.148.128.0/20 maxlen: 24 2001:df0:66::/48 maxlen: 48 2402:dd40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18013 (0x465d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:07 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92727-8e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:16:39:f3:25:fe:25:ac:01:d5:6a:bf:7d:2e: 3a:ff:3b:34:a3:6f:b8:9f:08:88:f4:6e:c6:89:d2: 6f:d2:2f:b2:35:d9:e1:58:d4:5d:ff:37:e2:47:31: 4a:f5:e7:c5:e3:da:6c:b8:08:da:2f:39:a6:e5:3a: 91:71:8a:d8:d2:83:6b:a2:e2:4e:78:2f:aa:5e:1f: a7:09:87:9d:38:14:2d:83:3c:9b:37:8d:0f:43:19: ee:17:2a:05:26:e4:c2:a5:7a:fb:5f:2a:99:1d:49: 33:7a:a6:b0:12:42:92:d0:f3:3a:20:0e:21:d0:45: cf:0f:63:b5:d5:21:89:06:bb:d7:43:75:83:b3:23: 8f:2f:08:ce:15:e8:f6:ba:9e:a2:2e:3b:16:da:6b: af:ee:90:74:6d:46:7c:86:c1:af:a1:bf:25:79:73: 16:a1:0e:9b:a4:74:61:1b:b5:f3:59:83:82:cc:33: 3f:c5:ef:0d:ab:7f:b4:73:8c:ed:00:d9:f4:31:5c: 94:4f:cc:14:fc:c2:ec:3c:23:ea:27:74:91:a6:cc: bf:8a:fc:18:3c:62:a5:37:b3:40:15:7d:d2:56:41: b9:0e:ce:ca:a8:56:cc:21:e3:a9:3a:36:5e:be:bb: ba:38:d2:6f:91:4b:4f:5b:e6:e2:89:58:0e:8a:59: 15:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:74:F0:E8:35:EC:81:5A:88:6C:47:CB:EF:CE:1E:34:73:7E:5D:0B X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D674499A330E11ED904A987BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.65.240.0/20 180.148.128.0/20 IPv6: 2001:df0:66::/48 2402:dd40::/32 Signature Algorithm: sha256WithRSAEncryption 1d:f0:de:68:46:42:99:6a:a7:60:88:35:2e:29:64:c9:6f:7e: b2:24:14:cf:cb:6a:2a:5e:00:5b:9f:35:36:e2:4e:da:07:af: 8b:f8:49:b2:ff:2b:5d:b3:c7:52:c7:a4:3b:bf:b3:58:f8:b8: 27:f7:3d:44:c0:6c:29:14:e0:32:c6:80:32:36:cc:70:84:1f: 1b:c0:b3:dc:ba:40:16:62:fc:94:6c:bf:49:01:1b:1b:26:8b: e2:37:6d:fe:bc:06:fa:9f:80:eb:52:14:35:56:5e:2e:b7:32: 9b:9e:d5:ea:4a:84:59:20:62:dc:8e:40:b0:1b:64:fd:fc:1f: 0b:ab:24:bc:f7:60:e7:33:e8:66:dc:82:51:d2:58:fd:ad:ee: e8:7f:af:03:2b:8b:92:58:89:4e:01:31:dc:15:71:67:55:ad: e5:91:d0:0a:e1:d9:05:36:98:a5:72:b5:3a:c6:e3:54:35:cb: 70:da:f3:0c:42:a2:c1:04:08:c9:8e:4a:42:fb:90:ee:1c:69: be:c0:2c:b1:17:6d:0a:69:c7:24:0b:cb:22:30:48:ed:d6:50: 99:6a:e3:a2:51:0a:8a:b6:83:b5:53:cb:94:45:d9:bb:22:01: 19:5c:70:9f:7e:bc:eb:5e:35:c3:b2:5f:bb:ec:70:6d:32:e5: 6c:9e:3a:7d -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICRl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjA3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcyNy04ZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxY58yX+JawB1Wq/fS46/zs0o2+4nwiI9G7GidJv0i+yNdnhWNRd/zfiRzFK 9efF49psuAjaLzmm5TqRcYrY0oNrouJOeC+qXh+nCYedOBQtgzybN40PQxnuFyoF JuTCpXr7XyqZHUkzeqawEkKS0PM6IA4h0EXPD2O11SGJBrvXQ3WDsyOPLwjOFej2 up6iLjsW2muv7pB0bUZ8hsGvob8leXMWoQ6bpHRhG7XzWYOCzDM/xe8Nq3+0c4zt ANn0MVyUT8wU/MLsPCPqJ3SRpsy/ivwYPGKlN7NAFX3SVkG5Ds7KqFbMIeOpOjZe vru6ONJvkUtPW+biiVgOilkVawIDAQABo4ICszCCAq8wHQYDVR0OBBYEFP108Og1 7IFaiGxHy+/OHjRzfl0LMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRDY3NDQ5OUEz MzBFMTFFRDkwNEE5ODdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBARvQfADBAS0lIAwFgQCAAIwEAMHACABDfAAZgMFACQC3UAw DQYJKoZIhvcNAQELBQADggEBAB3w3mhGQplqp2CINS4pZMlvfrIkFM/LaipeAFuf NTbiTtoHr4v4SbL/K12zx1LHpDu/s1j4uCf3PUTAbCkU4DLGgDI2zHCEHxvAs9y6 QBZi/JRsv0kBGxsmi+I3bf68BvqfgOtSFDVWXi63Mpue1epKhFkgYtyOQLAbZP38 HwurJLz3YOcz6GbcglHSWP2t7uh/rwMri5JYiU4BMdwVcWdVreWR0Arh2QU2mKVy tTrG41Q1y3Da8wxCosEECMmOSkL7kO4cab7ALLEXbQppxyQLyyIwSO3WUJlq46JR Coq2g7VTy5RF2bsiARlccJ9+vOteNcOyX7vscG0y5WyeOn0= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org