$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/CF41132A1DE811EB9DE34963C4F9AE02.roa File: CF41132A1DE811EB9DE34963C4F9AE02.roa (raw, json) Hash identifier: YABaqUWE/JPdcjinbFv0PWoHHYymCq6aO+ylU5Xzjo0= Subject key identifier: 75:90:30:C7:5A:EA:79:3A:E3:62:D8:90:A1:03:21:D9:BA:61:8F:66 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 074A Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/CF41132A1DE811EB9DE34963C4F9AE02.roa Signing time: Wed 04 Sep 2024 22:41:24 +0000 ROA not before: Wed 04 Sep 2024 22:41:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135407 IP address blocks: 110.93.223.0/24 maxlen: 24 110.93.226.0/24 maxlen: 24 110.93.227.0/24 maxlen: 24 110.93.228.0/24 maxlen: 24 110.93.230.0/24 maxlen: 24 110.93.236.0/24 maxlen: 24 110.93.237.0/24 maxlen: 24 110.93.240.0/24 maxlen: 24 110.93.244.0/24 maxlen: 24 110.93.245.0/24 maxlen: 24 110.93.246.0/24 maxlen: 24 110.93.247.0/24 maxlen: 24 117.20.29.0/24 maxlen: 24 119.63.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1866 (0x74a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Sep 4 22:41:24 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d8e213-1ae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:06:da:0b:c8:8a:e4:30:b4:5e:c8:e3:79:fe: dd:f6:81:13:ee:25:f7:ac:75:03:ff:c8:cd:e3:be: 3c:b2:5f:2a:aa:0b:fb:4f:f6:5e:9b:6a:16:f3:fd: 44:32:b5:c1:73:9e:da:57:e0:74:33:24:84:79:60: e6:29:49:b5:a5:15:c6:8d:c3:e9:55:ba:61:31:f6: 59:de:7b:ed:67:f7:0e:ad:cf:7d:fb:8e:2b:85:c2: 3b:ca:63:7c:77:96:18:52:cf:61:fd:21:89:42:97: 99:65:3c:22:6e:0b:e1:12:2b:99:50:77:ee:09:e2: 3f:d2:9b:97:75:29:96:a6:ca:6d:fe:c6:6b:e9:3e: 28:14:8e:65:81:d7:11:1e:00:dd:cf:c5:50:0a:4d: 1e:7e:a2:c2:17:a5:c1:d7:55:fd:ca:79:85:55:c0: 15:63:d2:3e:9e:af:cb:5f:95:33:09:ac:7f:d6:da: f6:8d:a4:09:bd:18:cc:3b:57:86:c1:d4:bf:2b:d3: 90:13:66:fd:08:a8:99:f3:2f:12:7a:9b:2d:07:76: b4:e3:89:d1:d3:b5:16:67:ce:c1:5c:05:31:9e:1d: f1:3b:f6:8f:6e:84:76:f7:24:fd:22:b1:79:39:ca: 00:aa:c5:82:4b:4c:3c:f3:11:95:e1:36:a1:a7:43: 73:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:90:30:C7:5A:EA:79:3A:E3:62:D8:90:A1:03:21:D9:BA:61:8F:66 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/CF41132A1DE811EB9DE34963C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.93.223.0/24 110.93.226.0-110.93.228.255 110.93.230.0/24 110.93.236.0/23 110.93.240.0/24 110.93.244.0/22 117.20.29.0/24 119.63.139.0/24 Signature Algorithm: sha256WithRSAEncryption 67:b6:a7:8a:2c:08:cd:44:06:89:65:b0:13:de:c8:ea:bc:90: 0c:21:85:7a:b2:18:bb:4b:60:da:15:e6:39:2c:d9:20:e8:ef: c2:08:33:af:9d:3e:4d:04:7b:ef:5a:fd:e5:b0:77:97:57:1a: d1:70:fc:41:bd:ee:71:39:1c:ec:44:a9:fa:60:03:38:a8:0f: 3e:7d:87:8c:e8:af:8d:e5:75:8d:7e:02:6c:a0:24:8d:76:79: 5f:3c:d7:15:ca:12:99:20:67:8a:2e:9a:a9:96:38:c5:da:3d: 0f:65:af:51:1a:ee:24:d9:07:9d:c1:15:4f:e3:d1:0c:be:19: ed:ab:9a:3d:a7:0b:34:2b:ee:68:d7:13:ae:c2:20:f6:dc:ec: cf:3e:a0:17:ad:ba:79:01:a2:e1:54:d6:78:1b:a2:45:7a:91: 27:fd:a6:90:82:fe:85:d6:93:66:5c:e4:e9:77:69:e5:63:53: 0c:b4:db:bc:7d:0f:a5:b0:31:e1:6d:ca:89:f2:ab:93:1a:15: 7a:18:6d:8e:a8:b2:5f:2d:5d:86:d3:0b:0b:25:d3:35:df:b4: 39:d2:01:38:de:7e:df:fe:1a:24:a5:4f:9c:b3:4a:53:9a:11: ef:a0:56:0f:e7:7d:cd:87:49:81:08:8a:eb:cb:2e:e3:5a:02: 49:f3:14:d4 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICB0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjQwOTA0MjI0MTI0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4ZTIxMy0xYWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwbaC8iK5DC0Xsjjef7d9oET7iX3rHUD/8jN4748sl8qqgv7T/Zem2oW8/1E MrXBc57aV+B0MySEeWDmKUm1pRXGjcPpVbphMfZZ3nvtZ/cOrc99+44rhcI7ymN8 d5YYUs9h/SGJQpeZZTwibgvhEiuZUHfuCeI/0puXdSmWpspt/sZr6T4oFI5lgdcR HgDdz8VQCk0efqLCF6XB11X9ynmFVcAVY9I+nq/LX5UzCax/1tr2jaQJvRjMO1eG wdS/K9OQE2b9CKiZ8y8SepstB3a044nR07UWZ87BXAUxnh3xO/aPboR29yT9IrF5 OcoAqsWCS0w88xGV4Tahp0NzLQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFHWQMMda 6nk642LYkKEDIdm6YY9mMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIyMEIvQkE3MUI2NDgxMjAzMTFFQkJBQTE5NDE0QzRGOUFFMDIvQ0Y0MTEzMkEx REU4MTFFQjlERTM0OTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMD4EAgABMDgDBABuXd8wDAMEAW5d4gMEAG5d5AMEAG5d5gMEAW5d7AMEAG5d 8AMEAm5d9AMEAHUUHQMEAHc/izANBgkqhkiG9w0BAQsFAAOCAQEAZ7aniiwIzUQG iWWwE97I6ryQDCGFerIYu0tg2hXmOSzZIOjvwggzr50+TQR771r95bB3l1ca0XD8 Qb3ucTkc7ESp+mADOKgPPn2HjOivjeV1jX4CbKAkjXZ5XzzXFcoSmSBnii6aqZY4 xdo9D2WvURruJNkHncEVT+PRDL4Z7auaPacLNCvuaNcTrsIg9tzszz6gF626eQGi 4VTWeBuiRXqRJ/2mkIL+hdaTZlzk6Xdp5WNTDLTbvH0PpbAx4W3KifKrkxoVehht jqiyXy1dhtMLCyXTNd+0OdIBON5+3/4aJKVPnLNKU5oR76BWD+d9zYdJgQiK68su 41oCSfMU1A== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org