$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/1B4BDA5C48B011EF9D34415EC4F9AE02.roa File: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (raw, json) Hash identifier: /fW0UzdpOpiVi/4bzpgP5X5TzlzFOgXdGZfbyGjzbdE= Subject key identifier: 6A:40:A4:EF:C8:81:46:69:02:86:0F:D2:7B:49:0C:1B:5A:4E:5C:84 Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: 06 Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/1B4BDA5C48B011EF9D34415EC4F9AE02.roa Signing time: Tue 23 Jul 2024 04:57:48 +0000 ROA not before: Tue 23 Jul 2024 04:57:48 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 18199 IP address blocks: 202.37.68.0/24 maxlen: 24 202.37.167.0/24 maxlen: 24 202.50.240.0/24 maxlen: 24 202.169.192.0/19 maxlen: 24 2403:de00::/32 maxlen: 32 2403:de00:100::/40 maxlen: 40 2403:de00:200::/39 maxlen: 40 2403:de00:400::/38 maxlen: 40 2403:de00:1000::/36 maxlen: 40 2403:de00:2000::/35 maxlen: 40 2403:de00:4000::/34 maxlen: 35 2403:de00:4000::/35 maxlen: 40 2403:de00:6000::/36 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Jul 23 04:57:48 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=669f384c-b2e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c9:e5:8e:7a:1b:67:45:73:40:e1:76:51:bb: fc:30:b9:97:07:87:a4:1e:58:bf:89:6a:61:a7:c2: ae:bf:02:33:a7:74:9f:64:63:5e:64:6d:c5:b5:49: dc:07:d1:08:f5:81:3f:4e:cd:ed:b5:6d:fa:22:18: e2:c1:dd:3d:63:78:0c:1e:52:78:eb:38:99:fc:e6: f3:1a:91:a3:b8:f0:0f:c0:68:ef:d3:22:bb:16:2b: 78:b5:50:0c:e0:19:b4:51:c1:d1:ad:cd:36:9f:81: f3:b3:c4:a9:1f:a4:af:7a:04:c4:95:d6:61:98:51: 89:fe:c3:9e:9f:70:d9:34:89:a5:71:cb:0e:e7:3e: 97:aa:02:45:35:71:da:85:43:c3:f6:29:cc:ff:b9: 55:c6:7b:aa:18:92:f9:4d:ce:9d:91:f9:8f:86:cf: 1e:9c:e9:27:e4:9e:d1:7b:02:72:8b:1d:fb:6a:81: 00:22:84:00:c2:79:44:b4:68:32:39:32:b3:2d:10: 96:f6:0e:ba:ec:09:dc:90:f8:06:79:57:33:97:f5: fd:12:5b:ba:f2:4a:7d:71:cd:ca:98:2e:a9:de:b4: be:87:c7:cf:70:06:93:5d:87:46:ca:06:17:98:08: 76:35:76:c6:d1:ba:d0:27:66:5c:f9:58:0e:70:6d: 81:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:40:A4:EF:C8:81:46:69:02:86:0F:D2:7B:49:0C:1B:5A:4E:5C:84 X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/1B4BDA5C48B011EF9D34415EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.68.0/24 202.37.167.0/24 202.50.240.0/24 202.169.192.0/19 IPv6: 2403:de00::/32 Signature Algorithm: sha256WithRSAEncryption 71:51:53:18:97:a6:c3:0f:c2:e7:1c:21:ba:ee:7f:a0:68:2d: 32:9c:d0:69:5c:73:c4:07:e7:b5:0f:15:5f:a9:e0:13:a1:53: 06:5d:73:6f:37:bb:ba:ac:b2:ad:39:28:b8:82:0d:4a:b8:f2: c7:5c:39:96:f0:c0:c6:41:37:82:99:93:e4:10:1b:27:16:65: d4:4e:98:97:36:c4:9f:d1:df:c1:13:62:41:89:e3:de:c2:34: 54:af:0c:bc:d7:b2:ac:20:ee:68:19:79:c1:ba:4a:aa:e9:bb: aa:3b:ca:9b:c0:fc:56:73:df:29:33:79:bb:a5:86:34:25:dc: a2:6e:58:5d:5c:15:b8:8a:4f:4a:f4:10:d6:b7:0a:04:85:0e: 05:49:58:ca:10:5e:a1:69:e2:9e:fb:19:e5:7b:54:e1:e4:46: 12:05:51:b7:46:b6:be:60:d8:3b:c9:a8:8f:96:1c:d8:3b:c1: cc:f3:5a:02:d6:b4:6f:72:51:88:b3:6d:b3:3f:9f:0a:71:78: 91:b5:75:c7:66:ef:69:e3:bb:2b:52:83:31:7f:07:3e:4e:57: 46:69:39:80:0d:c4:a1:d5:31:ee:c1:b3:2a:f3:1a:28:6b:6b: 4b:02:3c:4c:12:3f:fc:83:9d:55:64:b1:98:4a:20:60:f4:fd: 7d:48:ee:9f -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MjQ3MjExMC8GA1UEBRMoOUU1MTNBQ0M0RDdCOTAwMTRBODY3RkI1MkFGODkyMjlF MDBCQTRBQzAeFw0yNDA3MjMwNDU3NDhaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OWYzODRjLWIyZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/yeWOehtnRXNA4XZRu/wwuZcHh6QeWL+JamGnwq6/AjOndJ9kY15kbcW1SdwH 0Qj1gT9Oze21bfoiGOLB3T1jeAweUnjrOJn85vMakaO48A/AaO/TIrsWK3i1UAzg GbRRwdGtzTafgfOzxKkfpK96BMSV1mGYUYn+w56fcNk0iaVxyw7nPpeqAkU1cdqF Q8P2Kcz/uVXGe6oYkvlNzp2R+Y+Gzx6c6SfkntF7AnKLHftqgQAihADCeUS0aDI5 MrMtEJb2DrrsCdyQ+AZ5VzOX9f0SW7rySn1xzcqYLqnetL6Hx89wBpNdh0bKBheY CHY1dsbRutAnZlz5WA5wbYHtAgMBAAGjggK2MIICsjAdBgNVHQ4EFgQUakCk78iB RmkChg/Se0kMG1pOXIQwHwYDVR0jBBgwFoAUnlE6zE17kAFKhn+1KviSKeALpKww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyNDcyL0U2MkI3MzVBNDgx OTExRUZCOEJFNDUzNEM0RjlBRTAyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBL dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmxFNnpFMTdrQUZLaG4tMUt2aVNLZUFMcEt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjQ3Mi9FNjJCNzM1QTQ4MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi8xQjRCREE1QzQ4 QjAxMUVGOUQzNDQxNUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBABggrBgEFBQcBBwEB/wQx MC8wHgQCAAEwGAMEAMolRAMEAMolpwMEAMoy8AMEBcqpwDANBAIAAjAHAwUAJAPe ADANBgkqhkiG9w0BAQsFAAOCAQEAcVFTGJemww/C5xwhuu5/oGgtMpzQaVxzxAfn tQ8VX6ngE6FTBl1zbze7uqyyrTkouIINSrjyx1w5lvDAxkE3gpmT5BAbJxZl1E6Y lzbEn9HfwRNiQYnj3sI0VK8MvNeyrCDuaBl5wbpKqum7qjvKm8D8VnPfKTN5u6WG NCXcom5YXVwVuIpPSvQQ1rcKBIUOBUlYyhBeoWninvsZ5XtU4eRGEgVRt0a2vmDY O8moj5Yc2DvBzPNaAta0b3JRiLNtsz+fCnF4kbV1x2bvaeO7K1KDMX8HPk5XRmk5 gA3EodUx7sGzKvMaKGtrSwI8TBI//IOdVWSxmEogYPT9fUjunw== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:27 2024 by rpki-client on console-ams.rpki-client.org