$ rpki-client -vvf rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa File: 86019882E2A311EEA6A97425C4F9AE02.roa (raw, json) Hash identifier: rY3nCJHEdvDis2cayySCk8QGqqZuPm71Ue/Jfr5Cod0= Subject key identifier: 1D:29:F8:B2:29:C0:E4:C7:D3:8F:E7:6D:6F:88:5C:61:4E:05:61:10 Certificate issuer: /CN=A91B517C/serialNumber=9FAF8341675EF438964199362542572C8928540C Certificate serial: 3E Authority key identifier: 9F:AF:83:41:67:5E:F4:38:96:41:99:36:25:42:57:2C:89:28:54:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa Signing time: Mon 03 Jun 2024 09:33:40 +0000 ROA not before: Mon 03 Jun 2024 09:33:40 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 63981 IP address blocks: 45.117.96.0/22 maxlen: 22 45.117.96.0/24 maxlen: 24 45.117.97.0/24 maxlen: 24 45.117.98.0/24 maxlen: 24 45.117.99.0/24 maxlen: 24 45.251.64.0/23 maxlen: 24 45.251.66.0/24 maxlen: 24 103.29.140.0/22 maxlen: 24 103.117.76.0/22 maxlen: 24 103.220.8.0/22 maxlen: 24 203.166.220.0/22 maxlen: 24 2405:a480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.crl rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B517C/serialNumber=9FAF8341675EF438964199362542572C8928540C Validity Not Before: Jun 3 09:33:40 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d8df4-da87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:41:1c:57:9f:59:1d:a7:69:ed:60:5a:5c:c0: 6a:54:40:b0:32:22:d3:34:9a:db:5d:cc:e0:59:6d: 53:82:22:d9:ec:37:23:fc:e0:30:c5:bb:b0:59:61: 5a:12:80:1d:60:40:a3:27:d9:e6:14:62:f3:47:35: e8:7e:43:bc:e2:50:cf:48:4f:8e:90:33:5a:99:ce: c6:1a:b7:4f:c2:21:4a:b1:25:86:60:56:2e:55:e8: 26:49:5f:9f:25:64:96:16:ba:01:79:a7:08:b5:03: ea:3b:0f:c5:85:4f:5f:27:44:11:f6:64:44:0e:78: 2e:29:d0:22:36:44:56:c8:ba:c1:42:a3:01:27:c1: 4d:3b:61:4c:d7:4b:1e:5e:4c:3a:b9:b0:16:8c:9b: 86:fd:b0:2d:c2:93:63:3a:9a:ea:cd:ed:0f:e4:8c: 6c:b6:58:fa:5b:e4:46:6c:26:ad:b2:1f:7f:7a:d3: 13:a5:1e:bb:95:84:18:fd:4d:e8:9c:4b:0c:67:09: d3:20:d8:91:14:9c:82:cd:7d:2a:cf:e9:35:eb:fe: f1:9b:1c:84:f7:3d:ff:25:74:b6:a1:cf:ff:da:da: bd:a1:a3:e1:30:46:f8:30:16:b9:50:9f:c7:7a:66: 4c:79:04:d3:58:de:34:1b:61:9a:e6:63:10:18:a2: 35:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:29:F8:B2:29:C0:E4:C7:D3:8F:E7:6D:6F:88:5C:61:4E:05:61:10 X509v3 Authority Key Identifier: keyid:9F:AF:83:41:67:5E:F4:38:96:41:99:36:25:42:57:2C:89:28:54:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.96.0/22 45.251.64.0-45.251.66.255 103.29.140.0/22 103.117.76.0/22 103.220.8.0/22 203.166.220.0/22 IPv6: 2405:a480::/32 Signature Algorithm: sha256WithRSAEncryption 0f:74:e3:c1:4f:fe:59:b4:92:72:1a:73:6e:52:16:72:e5:59: 28:ee:7e:fc:32:93:3f:fc:67:c9:94:f7:a8:a8:de:b6:61:e3: 55:7a:ce:ee:0a:94:bc:1a:2b:17:fc:6b:df:06:7c:e3:7f:bc: f7:6f:50:e5:cb:03:1b:5b:89:49:18:e9:26:0f:dc:27:49:c9: 6a:dd:92:ba:9a:c9:af:a1:15:7e:48:83:c1:24:c3:7c:11:2c: 9d:59:2a:cc:20:97:41:5d:d9:35:35:a6:e3:7c:ba:d2:e6:7e: 36:94:6c:8b:2e:93:20:ee:99:45:11:24:10:f2:7d:21:26:9b: f5:bf:af:04:4a:25:aa:76:e3:3a:a1:64:19:62:20:cd:60:03: db:5e:a7:0c:46:2f:ae:42:a9:90:c7:70:05:ae:4e:5d:69:a0: c0:81:7a:af:09:f7:ca:91:bd:3b:54:cf:d6:b4:e8:a5:9b:75: b1:b6:a7:5d:dd:34:e3:f8:d0:cb:4a:10:d3:73:79:0f:3e:72: 8b:5b:e2:a1:4a:5a:57:d9:d1:52:7f:3c:1e:07:d5:fe:58:7c: c6:34:b3:bb:df:df:f5:f6:78:4e:1b:89:e8:49:c7:d5:29:37: b6:00:4f:b3:d0:34:97:d6:e2:49:1d:a8:55:a8:e7:e0:96:21: f5:1a:28:c8 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NTE3QzExMC8GA1UEBRMoOUZBRjgzNDE2NzVFRjQzODk2NDE5OTM2MjU0MjU3MkM4 OTI4NTQwQzAeFw0yNDA2MDMwOTMzNDBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWQ4ZGY0LWRhODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLQRxXn1kdp2ntYFpcwGpUQLAyItM0mttdzOBZbVOCItnsNyP84DDFu7BZYVoS gB1gQKMn2eYUYvNHNeh+Q7ziUM9IT46QM1qZzsYat0/CIUqxJYZgVi5V6CZJX58l ZJYWugF5pwi1A+o7D8WFT18nRBH2ZEQOeC4p0CI2RFbIusFCowEnwU07YUzXSx5e TDq5sBaMm4b9sC3Ck2M6murN7Q/kjGy2WPpb5EZsJq2yH3960xOlHruVhBj9Teic SwxnCdMg2JEUnILNfSrP6TXr/vGbHIT3Pf8ldLahz//a2r2ho+EwRvgwFrlQn8d6 Zkx5BNNY3jQbYZrmYxAYojUbAgMBAAGjggLKMIICxjAdBgNVHQ4EFgQUHSn4sinA 5MfTj+dtb4hcYU4FYRAwHwYDVR0jBBgwFoAUn6+DQWde9DiWQZk2JUJXLIkoVAww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1MTdDL0NEMzc2M0U2RENF RDExRUVCREUwMEUzMEM0RjlBRTAyL242LURRV2RlOURpV1FaazJKVUpYTElrb1ZB dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbjYtRFFXZGU5RGlXUVprMkpVSlhMSWtvVkF3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTE3Qy9DRDM3NjNFNkRDRUQxMUVFQkRFMDBFMzBDNEY5QUUwMi84NjAxOTg4MkUy QTMxMUVFQTZBOTc0MjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBUBggrBgEFBQcBBwEB/wRF MEMwMgQCAAEwLAMEAi11YDAMAwQGLftAAwQALftCAwQCZx2MAwQCZ3VMAwQCZ9wI AwQCy6bcMA0EAgACMAcDBQAkBaSAMA0GCSqGSIb3DQEBCwUAA4IBAQAPdOPBT/5Z tJJyGnNuUhZy5Vko7n78MpM//GfJlPeoqN62YeNVes7uCpS8GisX/GvfBnzjf7z3 b1DlywMbW4lJGOkmD9wnSclq3ZK6msmvoRV+SIPBJMN8ESydWSrMIJdBXdk1Nabj fLrS5n42lGyLLpMg7plFESQQ8n0hJpv1v68ESiWqduM6oWQZYiDNYAPbXqcMRi+u QqmQx3AFrk5daaDAgXqvCffKkb07VM/WtOilm3Wxtqdd3TTj+NDLShDTc3kPPnKL W+KhSlpX2dFSfzweB9X+WHzGNLO739/19nhOG4noScfVKTe2AE+z0DSX1uJJHahV qOfgliH1GijI -----END CERTIFICATE-----Generated at Fri Jun 7 11:02:53 2024 by rpki-client on console-fra.rpki-client.org