$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/C98708BE477711EBB4044E31C4F9AE02.roa File: C98708BE477711EBB4044E31C4F9AE02.roa (raw, json) Hash identifier: c59MSrVHqgcEbaHqGs+kUo5YIngAyWH9D88+iqkZAwI= Subject key identifier: E0:2E:EC:87:FA:3B:03:47:33:05:30:D7:FA:F1:7E:7F:4E:F4:17:E5 Certificate issuer: /CN=A91BAEDC/serialNumber=AD059592223E816AC53C433B965846F79D305234 Certificate serial: 1A99 Authority key identifier: AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/C98708BE477711EBB4044E31C4F9AE02.roa Signing time: Fri 02 Feb 2024 17:04:09 +0000 ROA not before: Fri 02 Feb 2024 17:04:09 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 24220 IP address blocks: 116.66.160.0/20 maxlen: 20 116.66.160.0/20 maxlen: 24 116.66.160.0/23 maxlen: 24 116.66.162.0/23 maxlen: 24 116.66.164.0/22 maxlen: 24 116.66.168.0/23 maxlen: 24 116.66.170.0/23 maxlen: 24 116.66.172.0/23 maxlen: 24 116.66.174.0/23 maxlen: 24 2402:d800::/32 maxlen: 33 2402:d800::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6809 (0x1a99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAEDC/serialNumber=AD059592223E816AC53C433B965846F79D305234 Validity Not Before: Feb 2 17:04:09 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bd2089-5876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ea:89:a4:10:25:e3:f1:12:9c:28:37:cc:e3: 26:43:5d:f5:cb:a6:70:ca:70:d5:ef:ff:bc:e0:61: c5:9e:f2:e8:17:6e:99:fd:12:6b:18:58:0b:18:68: 3a:25:57:7a:c1:47:46:ca:4a:8a:d5:84:e1:c8:06: 2c:6b:e8:eb:4e:5c:dd:af:4c:70:e6:77:54:ac:ff: 26:b7:e9:b1:74:35:af:05:cd:2c:e2:3d:ac:ef:51: 89:d0:26:ca:bf:51:ac:0d:8c:bd:d2:35:f3:48:d4: e8:a1:21:bf:fd:a7:4c:63:9e:78:9f:4d:4b:dc:3c: 7d:d1:68:61:44:2e:5f:f6:f5:20:29:bb:fe:72:5b: 9d:c7:15:62:20:d3:ae:e1:47:01:25:28:d9:b3:ac: 71:9a:8b:2a:10:d9:13:7d:e4:f0:a4:05:4b:dd:68: cd:57:20:12:c9:75:41:fd:eb:69:1e:34:99:31:d3: 9d:ff:a9:86:0d:34:c9:44:f1:cc:4e:c7:b2:e9:87: e3:91:5f:1d:5d:da:25:eb:cc:8e:82:ed:9c:3d:23: 43:ae:ce:63:3a:b3:6b:23:5e:68:ec:04:e7:7d:f2: 41:d7:19:d6:c4:78:0f:97:73:c5:1c:a8:10:35:28: 1b:d4:b8:b5:2b:23:23:a1:66:26:6e:d0:ee:71:36: 18:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2E:EC:87:FA:3B:03:47:33:05:30:D7:FA:F1:7E:7F:4E:F4:17:E5 X509v3 Authority Key Identifier: keyid:AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/C98708BE477711EBB4044E31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.66.160.0/20 IPv6: 2402:d800::/32 Signature Algorithm: sha256WithRSAEncryption ac:96:72:8a:01:ea:20:9b:d1:2b:f4:42:cb:50:4f:c7:1a:d0: 37:66:87:52:08:11:06:9c:b1:18:64:6c:dd:40:8d:59:03:95: eb:5e:5a:4f:ab:cf:88:f9:44:b7:98:e6:0e:29:65:6a:0e:c0: f5:4a:ad:07:ee:0b:ac:b8:0d:41:94:cb:39:54:94:f2:35:d7: 3b:c2:44:04:f7:6a:e9:01:61:52:20:bc:ee:19:d2:9f:90:c7: 90:10:63:41:c2:3d:e1:41:bc:04:95:e4:dd:e6:75:70:4b:41: 94:42:da:05:d6:19:4e:2e:51:5e:23:45:e7:3f:cf:27:90:6d: 9f:b4:39:b4:68:d3:91:3a:33:8f:a3:94:03:aa:3b:f1:ba:bb: 23:33:63:cd:ac:bb:d7:39:79:ce:43:01:4b:44:f6:80:73:70: e1:00:b6:3b:da:8b:34:b2:5f:30:7a:a9:f4:33:ea:3d:8f:4e: 13:a2:cb:00:66:b3:17:71:7b:bf:bb:65:d8:56:f3:d8:29:00: 51:f9:bd:6b:59:9a:ed:f0:ae:b5:d8:1f:46:87:1e:85:a7:bd: 44:2a:1c:f7:5b:7e:05:07:19:1d:32:bc:10:79:f3:e9:e5:3e: 4b:bb:d4:27:2d:0d:f8:8c:1e:f8:7a:d0:0b:24:dd:7e:0b:14: 55:7e:01:90 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICGpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFREMxMTAvBgNVBAUTKEFEMDU5NTkyMjIzRTgxNkFDNTNDNDMzQjk2NTg0NkY3 OUQzMDUyMzQwHhcNMjQwMjAyMTcwNDA5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkMjA4OS01ODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eqJpBAl4/ESnCg3zOMmQ131y6ZwynDV7/+84GHFnvLoF26Z/RJrGFgLGGg6 JVd6wUdGykqK1YThyAYsa+jrTlzdr0xw5ndUrP8mt+mxdDWvBc0s4j2s71GJ0CbK v1GsDYy90jXzSNTooSG//adMY554n01L3Dx90WhhRC5f9vUgKbv+cludxxViINOu 4UcBJSjZs6xxmosqENkTfeTwpAVL3WjNVyASyXVB/etpHjSZMdOd/6mGDTTJRPHM Tsey6YfjkV8dXdol68yOgu2cPSNDrs5jOrNrI15o7ATnffJB1xnWxHgPl3PFHKgQ NSgb1Li1KyMjoWYmbtDucTYYFwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOAu7If6 OwNHMwUw1/rxfn9O9BflMB8GA1UdIwQYMBaAFK0FlZIiPoFqxTxDO5ZYRvedMFI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUVEQy8yREMxQkFGMjA5 ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdXckZQRU03bGxoRzk1MHdV alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRV1ZraUktZ1dyRlBFTTdsbGhHOTUwd1VqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFFREMvMkRDMUJBRjIwOTg1MTFFN0IxRkZDMjNGQzRGOUFFMDIvQzk4NzA4QkU0 Nzc3MTFFQkI0MDQ0RTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAR0QqAwDQQCAAIwBwMFACQC2AAwDQYJKoZIhvcNAQELBQAD ggEBAKyWcooB6iCb0Sv0QstQT8ca0Ddmh1IIEQacsRhkbN1AjVkDleteWk+rz4j5 RLeY5g4pZWoOwPVKrQfuC6y4DUGUyzlUlPI11zvCRAT3aukBYVIgvO4Z0p+Qx5AQ Y0HCPeFBvASV5N3mdXBLQZRC2gXWGU4uUV4jRec/zyeQbZ+0ObRo05E6M4+jlAOq O/G6uyMzY82su9c5ec5DAUtE9oBzcOEAtjvaizSyXzB6qfQz6j2PThOiywBmsxdx e7+7ZdhW89gpAFH5vWtZmu3wrrXYH0aHHoWnvUQqHPdbfgUHGR0yvBB58+nlPku7 1CctDfiMHvh60Ask3X4LFFV+AZA= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:05 2024 by rpki-client on console-ams.rpki-client.org