$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E802366A199911ED906C1345C4F9AE02.roa File: E802366A199911ED906C1345C4F9AE02.roa (raw, json) Hash identifier: zuQfNnMxwrYZJBxDtkZHB/IQSwHGqq7eaungJQ0GQfU= Subject key identifier: 19:FE:DD:44:BA:8C:83:38:AF:C4:EC:06:AD:81:0B:2D:66:6D:FD:F0 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4573 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E802366A199911ED906C1345C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:32:42 +0000 ROA not before: Thu 05 Sep 2024 03:32:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135942 IP address blocks: 43.239.222.0/24 maxlen: 24 43.239.223.0/24 maxlen: 24 103.53.170.0/24 maxlen: 24 103.53.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17779 (0x4573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:32:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9265a-4f9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:75:82:e5:75:6d:fe:11:5d:31:4f:15:64:27: 5d:9d:ad:61:5e:06:53:e1:21:9b:57:dd:af:28:98: b8:69:8b:26:5c:61:a8:86:8d:54:45:c1:56:ea:b9: 22:e2:b9:a9:62:42:4f:45:5f:e6:df:7f:3a:48:37: 61:9f:e0:ba:b1:7c:9c:90:37:99:36:ba:9a:15:77: a6:2e:43:15:39:55:93:f3:84:d6:06:d0:07:d5:d9: 32:e0:78:6c:f3:06:34:64:9b:ca:e3:a1:72:3a:d0: 97:9a:5a:8d:fd:a5:76:11:bd:c4:18:9b:6a:60:12: 4f:ba:90:04:8a:8c:43:9b:4f:a8:a2:47:be:33:e8: 31:dc:42:3e:05:8e:d1:88:bd:18:4b:3c:cb:e2:26: b3:7c:df:4d:41:61:c9:57:fc:fc:b3:39:d3:15:12: 14:85:22:85:b0:65:46:8c:cb:bb:af:27:74:54:37: 4f:65:6f:c1:34:a6:9a:63:9c:2b:39:de:b8:54:11: cc:d6:a3:56:e1:58:9a:b6:62:9b:41:f9:72:7d:bf: af:79:6f:1d:f0:44:2f:b4:be:b3:66:a8:32:10:79: 67:d4:bf:02:e5:84:f2:9d:77:7c:17:6f:f0:9e:82: fe:30:62:95:65:d3:cb:5f:39:9e:d6:f4:bd:fb:5e: 0b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FE:DD:44:BA:8C:83:38:AF:C4:EC:06:AD:81:0B:2D:66:6D:FD:F0 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E802366A199911ED906C1345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.222.0/23 103.53.170.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:9e:c0:66:ad:b2:96:f5:02:34:b6:b9:46:0a:1e:65:f2:20: d5:62:41:a0:90:94:15:62:e5:79:3e:03:13:80:1f:0f:45:c5: d5:2a:fa:23:d4:c4:b0:da:d1:a3:50:8d:39:e8:95:58:07:d0: 82:5d:63:6e:fd:07:83:86:d5:de:a5:48:0e:48:f2:18:ac:d4: 8f:89:a8:70:ee:a5:7c:e7:05:55:34:b1:50:8c:3b:4a:3a:e3: 47:ae:39:dc:93:96:62:98:e5:36:66:8b:67:2a:26:cc:c2:a9: 10:85:67:6f:90:df:07:a5:a4:b2:a6:99:aa:41:2c:33:eb:0e: 0a:c9:67:76:a7:d6:fc:15:24:e0:a7:de:f3:74:af:03:ae:3f: de:10:0b:f9:ac:d2:6f:75:da:f1:9e:85:f2:3f:e4:4c:49:eb: e0:e2:b4:2c:fd:c5:22:1e:a2:ec:6d:c8:34:1f:06:ca:c2:ec: 40:fe:56:fb:8b:64:14:43:e6:80:36:d2:a8:d5:c7:59:0d:70: 95:84:26:b4:35:e2:6e:4c:21:b6:81:8b:bf:d5:15:96:68:cd: f9:7f:6d:65:6b:59:6f:d9:8d:ff:49:1d:22:69:42:d8:f8:85: fc:11:cf:8c:7a:ec:2b:a8:b9:7d:37:3f:01:26:65:74:03:fd: 8f:bd:88:1a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICRXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMjQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY1YS00ZjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnWC5XVt/hFdMU8VZCddna1hXgZT4SGbV92vKJi4aYsmXGGoho1URcFW6rki 4rmpYkJPRV/m3386SDdhn+C6sXyckDeZNrqaFXemLkMVOVWT84TWBtAH1dky4Hhs 8wY0ZJvK46FyOtCXmlqN/aV2Eb3EGJtqYBJPupAEioxDm0+ooke+M+gx3EI+BY7R iL0YSzzL4iazfN9NQWHJV/z8sznTFRIUhSKFsGVGjMu7ryd0VDdPZW/BNKaaY5wr Od64VBHM1qNW4ViatmKbQflyfb+veW8d8EQvtL6zZqgyEHln1L8C5YTynXd8F2/w noL+MGKVZdPLXzme1vS9+14L0QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBn+3US6 jIM4r8TsBq2BCy1mbf3wMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRTgwMjM2NkEx OTk5MTFFRDkwNkMxMzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEr794DBAFnNaowDQYJKoZIhvcNAQELBQADggEBAI+ewGat spb1AjS2uUYKHmXyINViQaCQlBVi5Xk+AxOAHw9FxdUq+iPUxLDa0aNQjTnolVgH 0IJdY279B4OG1d6lSA5I8his1I+JqHDupXznBVU0sVCMO0o640euOdyTlmKY5TZm i2cqJszCqRCFZ2+Q3welpLKmmapBLDPrDgrJZ3an1vwVJOCn3vN0rwOuP94QC/ms 0m912vGehfI/5ExJ6+DitCz9xSIeouxtyDQfBsrC7ED+VvuLZBRD5oA20qjVx1kN cJWEJrQ14m5MIbaBi7/VFZZozfl/bWVrWW/Zjf9JHSJpQtj4hfwRz4x67CuouX03 PwEmZXQD/Y+9iBo= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org