$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/FAA2E3324C3811EEB7116433C4F9AE02.roa File: FAA2E3324C3811EEB7116433C4F9AE02.roa (raw, json) Hash identifier: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0= Subject key identifier: 24:E7:25:14:4D:64:60:CE:4F:7D:FF:40:4F:42:C2:BC:FA:D2:23:2C Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: E1 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/FAA2E3324C3811EEB7116433C4F9AE02.roa Signing time: Tue 15 Oct 2024 04:28:48 +0000 ROA not before: Tue 15 Oct 2024 04:28:48 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17435 IP address blocks: 58.28.0.0/16 maxlen: 16 118.90.0.0/16 maxlen: 16 182.154.0.0/16 maxlen: 16 2001:e20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Oct 15 04:28:48 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670def80-3c06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:7c:57:51:e4:1c:c4:ce:6b:92:4c:93:66:07: ed:7b:08:95:b4:2c:bb:78:e1:90:5e:a9:ad:4b:61: af:49:82:28:e5:e9:f8:8b:67:7a:91:6e:8e:7e:44: 3f:80:99:04:11:8e:0a:65:19:66:a6:0f:ae:b0:37: 59:25:a7:24:e0:61:c5:93:81:a2:1a:3d:b6:e0:db: 59:f8:d9:1e:e7:51:43:09:80:23:10:e2:91:33:eb: ca:9d:f0:13:4c:80:dc:54:a2:51:75:38:44:ba:08: 41:80:f9:4a:ab:3f:02:99:78:ce:47:7e:40:73:3b: 23:e8:17:b5:09:b5:e2:5c:8a:9f:be:9e:50:65:86: e7:f5:3f:4f:70:b8:b4:b4:22:3f:f2:a3:a1:5c:c5: ab:76:96:68:15:f9:10:68:72:16:a9:34:08:2f:c7: 47:ff:0a:a2:8e:dd:8e:dc:70:19:4b:6d:1e:07:ae: 58:9f:cd:73:2d:23:0c:d9:67:58:c4:d6:a9:3e:45: 9b:cc:a6:b8:b7:65:a5:eb:6b:ff:da:bf:fb:37:b6: 18:df:d4:41:4f:2c:a3:bb:05:e2:9c:c4:a0:82:ef: 08:9a:43:c7:4d:59:ce:12:2a:d1:ed:59:03:85:e2: e6:6d:a3:ee:1a:f7:95:2d:ce:f0:e7:a7:1b:66:65: ec:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E7:25:14:4D:64:60:CE:4F:7D:FF:40:4F:42:C2:BC:FA:D2:23:2C X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/FAA2E3324C3811EEB7116433C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.28.0.0/16 118.90.0.0/16 182.154.0.0/16 IPv6: 2001:e20::/32 Signature Algorithm: sha256WithRSAEncryption 70:2e:9e:e6:21:df:a1:18:47:20:8f:10:b1:b9:ed:a8:39:14: 22:7e:48:52:4d:cd:48:11:6c:ab:d1:57:8f:aa:28:62:c7:c4: 84:c1:1b:4a:84:9d:40:5a:1d:7f:92:56:64:03:2e:15:0a:12: ba:9e:bc:dd:d3:cf:a0:8a:a7:3a:65:5c:77:9c:f0:7a:aa:d3: 51:65:61:e5:1f:75:d4:07:31:c9:c5:ce:b5:c6:2f:77:60:6f: 9c:55:e0:58:37:0e:b1:96:9c:8c:51:14:7c:fb:4d:25:38:20: 6c:38:51:b4:67:57:dc:ef:3e:3c:af:14:60:d6:95:59:5b:ff: 4e:99:e2:bd:99:4d:fb:25:d4:ce:97:8b:ac:50:49:eb:c3:20: a6:f1:eb:8c:43:e2:b2:42:d2:fb:db:96:88:1d:04:7a:a5:72: 9a:ce:55:a4:71:58:e1:4d:14:4f:3f:04:bf:c2:29:71:3f:bd: d1:80:64:96:11:02:48:92:ce:5b:18:d8:ce:5f:c3:0e:aa:43: 43:52:43:ee:f8:a7:3d:ae:c8:fa:02:48:27:98:e8:e9:1b:29: f1:a2:03:06:0b:c4:59:bf:80:3d:40:3c:2a:88:70:10:12:47: ea:f3:9c:18:47:58:73:fe:0b:31:f5:a0:07:b7:d4:b9:3c:81: 7d:f0:6a:61 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjQxMDE1MDQyODQ4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkZWY4MC0zYzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+nxXUeQcxM5rkkyTZgftewiVtCy7eOGQXqmtS2GvSYIo5en4i2d6kW6OfkQ/ gJkEEY4KZRlmpg+usDdZJack4GHFk4GiGj224NtZ+Nke51FDCYAjEOKRM+vKnfAT TIDcVKJRdThEughBgPlKqz8CmXjOR35Aczsj6Be1CbXiXIqfvp5QZYbn9T9PcLi0 tCI/8qOhXMWrdpZoFfkQaHIWqTQIL8dH/wqijt2O3HAZS20eB65Yn81zLSMM2WdY xNapPkWbzKa4t2Wl62v/2r/7N7YY39RBTyyjuwXinMSggu8ImkPHTVnOEirR7VkD heLmbaPuGveVLc7w56cbZmXsKwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFCTnJRRN ZGDOT33/QE9Cwrz60iMsMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE1QzYvRDU1NTE5QjQ0QzM0MTFFRUFFRURBMjJDQzRGOUFFMDIvRkFBMkUzMzI0 QzM4MTFFRUI3MTE2NDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMBUEAgABMA8DAwA6HAMDAHZaAwMAtpowDQQCAAIwBwMFACABDiAwDQYJKoZI hvcNAQELBQADggEBAHAunuYh36EYRyCPELG57ag5FCJ+SFJNzUgRbKvRV4+qKGLH xITBG0qEnUBaHX+SVmQDLhUKErqevN3Tz6CKpzplXHec8Hqq01FlYeUfddQHMcnF zrXGL3dgb5xV4Fg3DrGWnIxRFHz7TSU4IGw4UbRnV9zvPjyvFGDWlVlb/06Z4r2Z Tfsl1M6Xi6xQSevDIKbx64xD4rJC0vvblogdBHqlcprOVaRxWOFNFE8/BL/CKXE/ vdGAZJYRAkiSzlsY2M5fww6qQ0NSQ+74pz2uyPoCSCeY6OkbKfGiAwYLxFm/gD1A PCqIcBASR+rznBhHWHP+CzH1oAe31Lk8gX3wamE= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:03 2024 by rpki-client on console-fra.rpki-client.org