$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/A6A53FA2D67E11EEAA2CA218C4F9AE02.roa File: A6A53FA2D67E11EEAA2CA218C4F9AE02.roa (raw, json) Hash identifier: FvGgX1gCx1cBSjoXto+3irDwcPXWVzclj/ITlffBz0s= Subject key identifier: 0B:FD:28:18:13:15:E7:66:74:0F:9C:45:22:8A:2C:12:86:F5:FA:5F Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0B65 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/A6A53FA2D67E11EEAA2CA218C4F9AE02.roa Signing time: Wed 26 Jun 2024 09:18:28 +0000 ROA not before: Wed 26 Jun 2024 09:18:27 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38565 IP address blocks: 36.252.0.0/15 maxlen: 23 36.253.19.0/24 maxlen: 24 36.253.26.0/24 maxlen: 24 43.243.96.0/22 maxlen: 24 49.126.0.0/16 maxlen: 20 103.38.196.0/22 maxlen: 24 116.68.208.0/21 maxlen: 24 2400:9500::/32 maxlen: 32 2400:9500:4000::/36 maxlen: 44 2400:9500:6000::/36 maxlen: 44 2400:9500:8000::/36 maxlen: 44 2400:9500:c000::/36 maxlen: 44 2400:9500:e000::/36 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2917 (0xb65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Jun 26 09:18:27 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=667bdce3-32cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:22:ef:66:e4:75:eb:bc:11:2d:02:f5:2c:bc: 54:56:d9:4a:6f:17:d8:a1:dd:e3:4b:1a:31:dd:20: 4e:30:ed:e0:a5:d9:7c:77:55:60:94:27:8f:ec:14: 37:a1:e3:54:fb:98:a4:47:5e:77:bd:2a:e9:00:0a: fd:c1:ce:eb:40:0c:46:97:f5:5a:a0:a0:29:84:d4: 9d:ab:82:94:e5:33:f8:77:da:f9:d4:fc:c1:58:dc: dc:e1:f1:a6:fe:d3:28:7b:e8:31:45:c4:7c:f7:0c: fd:0c:41:ee:c9:73:af:0d:93:37:0b:fb:f0:01:dd: 61:2b:03:62:16:8e:c8:87:c1:62:f4:f1:8c:0a:b6: c5:88:0e:ce:c1:f3:3e:77:eb:b9:a5:90:26:b2:57: 90:d1:66:af:8b:b0:e1:53:a7:26:ff:66:e7:8b:1f: ac:46:f0:06:ea:78:82:90:70:c7:89:1a:62:6a:3c: 95:64:99:f9:0c:0e:07:ce:ea:c4:42:82:3d:be:7e: 17:fd:40:21:ff:f8:54:02:be:74:4c:e0:da:0a:22: 88:64:21:20:d7:94:f9:32:09:99:85:4d:1b:e7:fd: aa:07:80:cc:54:9a:41:36:3a:62:d7:60:94:11:3b: 21:97:02:6d:04:36:24:61:12:fe:bf:c9:b8:32:59: 31:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:FD:28:18:13:15:E7:66:74:0F:9C:45:22:8A:2C:12:86:F5:FA:5F X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/A6A53FA2D67E11EEAA2CA218C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.252.0.0/15 43.243.96.0/22 49.126.0.0/16 103.38.196.0/22 116.68.208.0/21 IPv6: 2400:9500::/32 Signature Algorithm: sha256WithRSAEncryption 0a:16:cb:af:e2:85:d4:6b:86:e7:bc:a1:74:21:ef:42:16:91: 23:7a:22:a5:61:70:5f:3e:42:fc:3e:9f:25:87:b5:b8:fd:57: 13:6e:e5:8b:16:1d:c5:68:92:61:15:55:82:be:1a:50:84:18: c0:3a:29:e6:04:96:61:85:df:70:3f:67:24:38:0c:8c:bc:60: d7:d4:80:80:44:1d:9f:1f:f8:f2:3d:2b:0b:ce:06:60:06:3d: ec:29:ef:81:e8:9f:d3:7b:ff:9b:be:22:f3:7a:fb:74:5b:a9: d9:cb:af:98:f3:29:e3:7b:0b:e3:f2:57:80:0c:63:a9:d5:2b: 1d:c0:ec:f2:04:f3:2d:a6:d5:78:85:60:25:d8:cb:c5:85:2d: d3:87:a8:35:73:3d:b4:51:6d:09:83:38:4f:6f:c6:6a:4d:8d: b1:38:67:0b:b2:18:ad:61:e5:f7:73:1c:b3:12:d3:7e:04:6c: ca:6b:35:26:e2:56:3b:83:d4:3b:8d:01:98:57:80:7e:61:ef: 4d:2d:f7:b1:9d:cb:34:d5:7c:9e:e7:3a:6a:28:0e:e7:18:fe: 3e:74:0d:45:b4:7e:43:db:07:ca:95:aa:df:7a:6b:8f:8b:d6: fb:0d:d8:e4:81:4d:0a:ae:98:14:16:ff:1e:9f:88:3a:b3:f5: 2f:ae:1d:5c -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICC2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjQwNjI2MDkxODI3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdiZGNlMy0zMmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyLvZuR167wRLQL1LLxUVtlKbxfYod3jSxox3SBOMO3gpdl8d1VglCeP7BQ3 oeNU+5ikR153vSrpAAr9wc7rQAxGl/VaoKAphNSdq4KU5TP4d9r51PzBWNzc4fGm /tMoe+gxRcR89wz9DEHuyXOvDZM3C/vwAd1hKwNiFo7Ih8Fi9PGMCrbFiA7OwfM+ d+u5pZAmsleQ0Wavi7DhU6cm/2bnix+sRvAG6niCkHDHiRpiajyVZJn5DA4HzurE QoI9vn4X/UAh//hUAr50TODaCiKIZCEg15T5MgmZhU0b5/2qB4DMVJpBNjpi12CU ETshlwJtBDYkYRL+v8m4MlkxpwIDAQABo4ICujCCArYwHQYDVR0OBBYEFAv9KBgT FedmdA+cRSKKLBKG9fpfMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvQTZBNTNGQTJE NjdFMTFFRUFBMkNBMjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMCIEAgABMBwDAwEk/AMEAivzYAMDADF+AwQCZybEAwQDdETQMA0EAgACMAcD BQAkAJUAMA0GCSqGSIb3DQEBCwUAA4IBAQAKFsuv4oXUa4bnvKF0Ie9CFpEjeiKl YXBfPkL8Pp8lh7W4/VcTbuWLFh3FaJJhFVWCvhpQhBjAOinmBJZhhd9wP2ckOAyM vGDX1ICARB2fH/jyPSsLzgZgBj3sKe+B6J/Te/+bviLzevt0W6nZy6+Y8ynjewvj 8leADGOp1SsdwOzyBPMtptV4hWAl2MvFhS3Th6g1cz20UW0JgzhPb8ZqTY2xOGcL shitYeX3cxyzEtN+BGzKazUm4lY7g9Q7jQGYV4B+Ye9NLfexncs01Xye5zpqKA7n GP4+dA1FtH5D2wfKlarfemuPi9b7DdjkgU0KrpgUFv8en4g6s/Uvrh1c -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org