$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FEEEAB348FEB11EC818F190FC4F9AE02.roa File: FEEEAB348FEB11EC818F190FC4F9AE02.roa (raw, json) Hash identifier: eFzgLHgA4+ijLeJ1BLbXyIw3kVfpxA1C/0SJUE6Hl7M= Subject key identifier: 6F:3F:B6:79:1A:2B:6D:70:FC:D6:93:83:95:49:99:A8:F0:72:1D:D8 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4653 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FEEEAB348FEB11EC818F190FC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:56 +0000 ROA not before: Thu 05 Sep 2024 03:35:56 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38738 IP address blocks: 101.96.12.0/22 maxlen: 24 113.61.108.0/22 maxlen: 24 2405:cd00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18003 (0x4653) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:56 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9271c-9b2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:63:4b:0a:47:33:f4:b1:91:99:a3:d1:0e:55: c7:24:e4:cd:2f:4e:3b:8d:00:01:60:b2:e4:f2:29: e0:9e:9a:57:c4:ef:44:de:21:bd:71:a9:f8:1a:cf: 20:29:67:68:16:fb:ee:30:ac:62:25:a0:23:7d:d4: d2:ae:51:4d:f3:80:82:61:cc:e8:06:ae:5f:45:70: bb:46:02:93:83:82:dd:46:57:a5:7b:85:20:76:d0: d1:40:bd:94:90:2b:16:09:64:9e:8f:1f:1b:6a:d2: 5e:81:83:f6:55:4b:c3:ab:95:80:59:72:86:bf:c3: 65:5a:8f:b0:f3:cb:bb:07:46:e7:8b:80:d1:64:c5: ad:e3:60:f9:3a:6b:9b:b7:1b:70:76:e8:86:88:3a: ef:7f:07:4d:f6:49:2f:7c:ca:99:43:2e:bf:83:1e: 00:44:cf:85:bc:e5:ed:a6:5e:09:be:c2:4a:24:2a: 82:2e:61:f0:ea:ae:54:eb:84:ad:af:1d:09:7f:6e: 67:21:61:1f:75:f9:8b:11:41:3f:50:53:94:34:de: 15:3e:b9:3b:ec:f8:6e:f8:5f:e4:63:67:5e:05:50: eb:6a:38:93:b0:9f:a5:dc:b8:5f:a3:65:dc:75:5f: a4:03:6b:b1:8a:08:dd:7e:10:57:c4:16:7b:aa:fa: e1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:3F:B6:79:1A:2B:6D:70:FC:D6:93:83:95:49:99:A8:F0:72:1D:D8 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FEEEAB348FEB11EC818F190FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.96.12.0/22 113.61.108.0/22 IPv6: 2405:cd00::/48 Signature Algorithm: sha256WithRSAEncryption 48:9c:ef:47:97:b0:e0:25:f9:c5:11:14:c7:9f:ec:4e:f8:bd: 66:1e:8e:e4:df:54:ed:fe:8e:f9:46:c8:09:34:5c:a3:bb:51: 9b:bd:6e:8d:57:36:ff:b6:f4:31:3c:49:b9:70:30:d7:87:74: 2a:b0:03:78:d0:04:6d:0e:09:65:e6:21:27:82:37:1f:7c:93: f5:6f:8f:df:33:e6:7f:9c:02:99:29:06:a9:ee:47:57:0e:28: c8:ec:ff:c1:bc:de:8e:5c:0f:61:f8:8a:51:0b:06:6a:ef:05: 76:8d:c0:6c:ac:77:bb:1a:f0:ab:1e:d1:0b:22:9a:f9:c8:5f: 66:f9:c3:0f:18:7b:e3:bf:80:66:b9:65:16:dc:9f:f7:3b:31: 43:f1:43:69:e0:57:6e:27:08:31:d8:09:46:55:bf:f8:f9:a9: f7:c5:eb:dc:69:c5:38:3f:54:d1:cd:99:0e:8c:99:c7:62:0c: 33:f0:fa:8c:6b:d6:45:74:bc:95:3e:a1:b6:30:8d:47:ed:80: 0c:a0:c8:bc:53:e4:41:1f:4f:46:15:46:cc:02:f3:62:a6:1a: 00:41:cf:1b:24:c1:1f:af:12:12:8b:c1:3e:27:a8:cb:49:2a: f4:d4:71:25:9d:1a:75:da:31:31:68:0b:fd:e6:ef:19:a9:c0: 10:93:b5:ee -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICRlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTU2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcxYy05YjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGNLCkcz9LGRmaPRDlXHJOTNL047jQABYLLk8ingnppXxO9E3iG9can4Gs8g KWdoFvvuMKxiJaAjfdTSrlFN84CCYczoBq5fRXC7RgKTg4LdRlele4UgdtDRQL2U kCsWCWSejx8batJegYP2VUvDq5WAWXKGv8NlWo+w88u7B0bni4DRZMWt42D5Omub txtwduiGiDrvfwdN9kkvfMqZQy6/gx4ARM+FvOXtpl4JvsJKJCqCLmHw6q5U64St rx0Jf25nIWEfdfmLEUE/UFOUNN4VPrk77Phu+F/kY2deBVDrajiTsJ+l3Lhfo2Xc dV+kA2uxigjdfhBXxBZ7qvrhewIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFG8/tnka K21w/NaTg5VJmajwch3YMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRkVFRUFCMzQ4 RkVCMTFFQzgxOEYxOTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJlYAwDBAJxPWwwDwQCAAIwCQMHACQFzQAAADANBgkqhkiG 9w0BAQsFAAOCAQEASJzvR5ew4CX5xREUx5/sTvi9Zh6O5N9U7f6O+UbICTRco7tR m71ujVc2/7b0MTxJuXAw14d0KrADeNAEbQ4JZeYhJ4I3H3yT9W+P3zPmf5wCmSkG qe5HVw4oyOz/wbzejlwPYfiKUQsGau8Fdo3AbKx3uxrwqx7RCyKa+chfZvnDDxh7 47+AZrllFtyf9zsxQ/FDaeBXbicIMdgJRlW/+Pmp98Xr3GnFOD9U0c2ZDoyZx2IM M/D6jGvWRXS8lT6htjCNR+2ADKDIvFPkQR9PRhVGzALzYqYaAEHPGyTBH68SEovB Pieoy0kq9NRxJZ0addoxMWgL/ebvGanAEJO17g== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org