$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EF3/2519CDF0492311EAA069A566C4F9AE02/82C388B8492511EAB59F4F6EC4F9AE02.roa File: 82C388B8492511EAB59F4F6EC4F9AE02.roa (raw, json) Hash identifier: //cAWY0jQnyuJnbZCfohs3b8LmaCJANi/dl+jsnUPWE= Subject key identifier: 87:87:07:C5:B3:3D:CB:F5:26:DF:10:DC:E7:8F:B2:81:A6:FD:23:3A Certificate issuer: /CN=A91B9EF3/serialNumber=F6CB2E8EBC7A892BFA15C447B39824A058C755AE Certificate serial: 09D3 Authority key identifier: F6:CB:2E:8E:BC:7A:89:2B:FA:15:C4:47:B3:98:24:A0:58:C7:55:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ssujrx6iSv6FcRHs5gkoFjHVa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EF3/2519CDF0492311EAA069A566C4F9AE02/82C388B8492511EAB59F4F6EC4F9AE02.roa Signing time: Tue 28 Nov 2023 20:47:51 +0000 ROA not before: Tue 28 Nov 2023 20:47:51 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45164 IP address blocks: 202.36.163.0/24 maxlen: 24 202.49.72.0/22 maxlen: 22 202.49.72.0/24 maxlen: 24 202.49.73.0/24 maxlen: 24 202.49.74.0/24 maxlen: 24 202.49.75.0/24 maxlen: 24 2001:df5:b000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EF3/2519CDF0492311EAA069A566C4F9AE02/9ssujrx6iSv6FcRHs5gkoFjHVa4.crl rsync://rpki.apnic.net/member_repository/A91B9EF3/2519CDF0492311EAA069A566C4F9AE02/9ssujrx6iSv6FcRHs5gkoFjHVa4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ssujrx6iSv6FcRHs5gkoFjHVa4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2515 (0x9d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EF3/serialNumber=F6CB2E8EBC7A892BFA15C447B39824A058C755AE Validity Not Before: Nov 28 20:47:51 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656651f6-b2ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0e:d3:e9:b5:a0:a2:3a:89:18:fd:79:ae:5f: 18:af:73:6e:76:26:ab:b1:47:16:ed:6c:61:25:95: a0:93:5e:f8:20:2f:33:7c:76:2e:45:da:81:78:67: 6e:4c:04:25:b5:af:44:21:8b:38:30:e0:56:05:5c: 24:60:44:56:24:ce:a6:09:29:07:35:09:6c:bd:6e: 84:52:16:5f:db:be:cf:c8:c8:a6:e3:1c:9d:fb:a1: d9:a8:1e:59:a1:b3:93:f6:4d:83:9d:10:ad:d9:5c: f0:cb:c8:88:76:92:d7:f7:76:07:ee:71:68:51:be: 5d:a1:a6:4e:5e:79:72:1b:f7:22:2c:4e:ff:8e:78: 69:ef:fa:fc:18:36:3e:df:e5:b2:f1:bd:48:b9:11: 24:0d:b3:c8:29:12:0d:87:09:48:10:1f:71:0a:cc: 20:4d:e7:9f:1e:98:17:e2:cd:22:b0:dc:e9:40:aa: 47:61:51:d8:b9:d6:4c:7e:b1:4b:21:cf:0f:6d:a7: 1b:62:81:8c:2d:45:95:38:a1:2c:77:c9:3b:1d:ad: 29:e1:70:0f:5d:ca:e8:13:5c:f4:85:79:ce:f7:b2: 6d:fa:8d:7a:6d:34:5c:56:89:57:64:1c:e1:e7:04: 84:90:79:95:dc:56:6d:4f:40:1b:f2:c4:26:92:c5: e4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:87:07:C5:B3:3D:CB:F5:26:DF:10:DC:E7:8F:B2:81:A6:FD:23:3A X509v3 Authority Key Identifier: keyid:F6:CB:2E:8E:BC:7A:89:2B:FA:15:C4:47:B3:98:24:A0:58:C7:55:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EF3/2519CDF0492311EAA069A566C4F9AE02/9ssujrx6iSv6FcRHs5gkoFjHVa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ssujrx6iSv6FcRHs5gkoFjHVa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EF3/2519CDF0492311EAA069A566C4F9AE02/82C388B8492511EAB59F4F6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.163.0/24 202.49.72.0/22 IPv6: 2001:df5:b000::/48 Signature Algorithm: sha256WithRSAEncryption 37:fb:6a:06:fa:8a:7a:16:d8:46:23:37:c0:a9:ba:4c:3e:06: ce:1f:45:60:08:65:5c:2a:dd:38:8e:6a:ae:eb:f4:3c:35:30: e0:38:2d:fb:50:25:cb:dd:fe:53:4f:5c:3b:bf:0b:9e:c2:44: d7:e4:9f:e0:3b:7f:34:0a:8b:00:10:81:75:c4:d8:09:b6:9a: 78:b3:26:34:c9:25:55:82:ca:94:9c:bb:f5:28:ac:30:77:b5: 1c:e4:ab:48:47:92:14:27:16:16:db:10:c6:19:4f:32:b6:d8: 69:5d:92:af:a9:11:a1:f7:ee:25:a9:ff:ad:b2:54:2e:92:f6: 1a:29:00:f3:e7:17:d9:b3:52:5a:54:db:61:97:15:15:3e:52: 00:13:3c:73:74:79:bb:5e:7e:e4:63:3b:6c:ac:3f:40:ef:bf: 91:a1:b2:41:8f:bd:c6:63:a9:50:89:68:6f:1a:be:c6:d4:f7: 2d:f2:81:38:79:80:c8:9b:19:a9:d4:44:e8:92:ed:60:b3:bc: d5:f1:a2:6b:d7:8d:1a:f1:ae:1b:83:6f:a6:10:92:e3:f0:fa: f6:32:e3:ed:3f:a8:df:0c:0d:ce:2a:1f:58:fe:90:82:76:bc: 02:a0:5b:5d:bb:a1:52:df:c5:d4:34:1a:b2:06:23:6e:1f:46: bf:2c:e7:fb -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFRjMxMTAvBgNVBAUTKEY2Q0IyRThFQkM3QTg5MkJGQTE1QzQ0N0IzOTgyNEEw NThDNzU1QUUwHhcNMjMxMTI4MjA0NzUxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2NTFmNi1iMmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Q7T6bWgojqJGP15rl8Yr3NudiarsUcW7WxhJZWgk174IC8zfHYuRdqBeGdu TAQlta9EIYs4MOBWBVwkYERWJM6mCSkHNQlsvW6EUhZf277PyMim4xyd+6HZqB5Z obOT9k2DnRCt2Vzwy8iIdpLX93YH7nFoUb5doaZOXnlyG/ciLE7/jnhp7/r8GDY+ 3+Wy8b1IuREkDbPIKRINhwlIEB9xCswgTeefHpgX4s0isNzpQKpHYVHYudZMfrFL Ic8PbacbYoGMLUWVOKEsd8k7Ha0p4XAPXcroE1z0hXnO97Jt+o16bTRcVolXZBzh 5wSEkHmV3FZtT0Ab8sQmksXkkQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFIeHB8Wz Pcv1Jt8Q3OePsoGm/SM6MB8GA1UdIwQYMBaAFPbLLo68eokr+hXER7OYJKBYx1Wu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVGMy8yNTE5Q0RGMDQ5 MjMxMUVBQTA2OUE1NjZDNEY5QUUwMi85c3N1anJ4NmlTdjZGY1JIczVna29GakhW YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlzc3Vqcng2aVN2NkZjUkhzNWdrb0ZqSFZhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlFRjMvMjUxOUNERjA0OTIzMTFFQUEwNjlBNTY2QzRGOUFFMDIvODJDMzg4Qjg0 OTI1MTFFQUI1OUY0RjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBADKJKMDBALKMUgwDwQCAAIwCQMHACABDfWwADANBgkqhkiG 9w0BAQsFAAOCAQEAN/tqBvqKehbYRiM3wKm6TD4Gzh9FYAhlXCrdOI5qruv0PDUw 4Dgt+1Aly93+U09cO78LnsJE1+Sf4Dt/NAqLABCBdcTYCbaaeLMmNMklVYLKlJy7 9SisMHe1HOSrSEeSFCcWFtsQxhlPMrbYaV2Sr6kRoffuJan/rbJULpL2GikA8+cX 2bNSWlTbYZcVFT5SABM8c3R5u15+5GM7bKw/QO+/kaGyQY+9xmOpUIlobxq+xtT3 LfKBOHmAyJsZqdRE6JLtYLO81fGia9eNGvGuG4NvphCS4/D69jLj7T+o3wwNziof WP6Qgna8AqBbXbuhUt/F1DQasgYjbh9Gvyzn+w== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org