$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa File: 94855EA0357711EDB81B8A34C4F9AE02.roa (raw, json) Hash identifier: Y9T2NyTv6cgYGNyTNP7HWbxCaSu3SRapUzHs9J8NUe8= Subject key identifier: 10:60:D9:05:5D:FC:19:84:B9:A2:30:44:B1:4C:4C:DE:AA:36:B0:D7 Certificate issuer: /CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Certificate serial: 019E Authority key identifier: 40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa Signing time: Mon 12 Aug 2024 06:39:19 +0000 ROA not before: Mon 12 Aug 2024 06:39:19 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 63199 IP address blocks: 164.52.26.0/24 maxlen: 24 164.52.27.0/24 maxlen: 24 164.52.78.0/24 maxlen: 24 164.52.79.0/24 maxlen: 24 164.52.81.0/24 maxlen: 24 164.52.96.0/24 maxlen: 24 164.52.99.0/24 maxlen: 24 164.52.105.0/24 maxlen: 24 164.52.118.0/24 maxlen: 24 164.52.121.0/24 maxlen: 24 164.52.122.0/24 maxlen: 24 164.52.123.0/24 maxlen: 24 164.52.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Validity Not Before: Aug 12 06:39:19 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66b9ae17-4954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:40:09:d7:fb:d1:32:54:4b:0d:96:b7:de:12: 8a:10:3c:ac:87:9c:4f:f5:13:4b:75:2a:56:6a:9f: 5e:24:1a:9d:ee:f8:8e:b2:f1:a4:2d:da:57:b4:24: f0:50:3b:45:e5:5d:cd:d1:67:3f:4a:b0:eb:07:a3: 26:5b:0f:7e:d7:8a:1d:e4:97:f9:1e:f5:04:f0:ff: ae:65:eb:92:a5:6f:5a:e1:c1:37:92:cb:80:68:a1: ef:57:1e:de:33:95:71:86:d1:d6:e9:5d:e1:8a:a5: 8e:df:f0:b1:72:81:6b:2c:63:16:fb:2e:83:6d:99: b3:ba:28:1d:8e:c6:07:e8:17:44:0e:4c:5c:1d:41: 60:d8:3b:10:cf:48:1c:ed:30:5d:6f:01:eb:d3:91: a8:a2:e4:be:a4:6a:94:ec:04:fe:53:5f:9b:c3:1c: 04:90:6d:13:40:25:9a:19:bd:b4:c8:e3:12:34:00: 0c:be:e8:1a:05:5f:4c:b6:25:8d:9c:9c:9e:df:6b: 8e:66:f6:b0:b9:fb:99:de:25:cf:4e:9c:81:1f:1e: c7:1a:96:65:76:1c:b6:9b:b8:85:eb:7b:a5:ca:81: 19:d8:1b:d9:c7:32:12:f5:44:ea:26:ee:14:b1:47: 95:50:16:d8:12:b6:ac:0b:71:15:4f:d4:fa:c5:1c: 0d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:60:D9:05:5D:FC:19:84:B9:A2:30:44:B1:4C:4C:DE:AA:36:B0:D7 X509v3 Authority Key Identifier: keyid:40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.52.26.0/23 164.52.78.0/23 164.52.81.0/24 164.52.96.0/24 164.52.99.0/24 164.52.105.0/24 164.52.118.0/24 164.52.121.0-164.52.123.255 164.52.126.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:10:c4:0d:94:bb:2a:1f:63:f1:68:1b:4c:04:16:48:a0:04: 67:e7:c7:ae:a9:6a:85:77:55:34:34:45:ca:aa:0a:fe:af:23: b8:6d:88:12:12:ac:65:b8:eb:c7:7f:1e:1c:d0:1a:96:db:70: b6:da:4b:7b:44:fb:ba:d6:b9:bd:22:dd:05:f8:d1:dc:3f:13: 8e:f9:a1:d7:b1:32:1a:c9:80:f4:3d:0f:34:22:af:53:52:c3: bd:82:43:e1:06:03:98:25:55:33:aa:fe:78:b1:e7:7b:2b:d9: 0f:b1:87:39:80:ad:42:b9:50:3d:98:36:c7:e1:52:ee:70:d1: 42:17:7a:93:0b:b0:45:3a:5d:06:02:3b:b5:c6:bf:c4:ba:8f: aa:52:b7:ba:35:96:0d:96:03:54:5e:5e:e9:5e:23:b1:30:3a: 5a:91:6c:24:ab:59:a7:c2:28:11:f4:49:e5:bb:27:86:65:87: 61:46:a9:9a:8f:d7:15:88:f2:84:95:05:4b:8e:2e:4f:04:6d: 47:b4:6d:04:a1:1d:15:19:63:f1:e6:cb:8e:61:e3:2f:e6:a4: 8e:2d:a4:b8:cc:49:b2:39:b3:5a:29:43:d1:97:70:0c:b7:4c: cf:45:4a:87:a8:1a:06:4e:c7:af:7f:fc:03:61:64:8b:3a:8d: 0d:1c:d0:25 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQTIxMTAvBgNVBAUTKDQwRTU4MjYzOTcyQjlFMjQxNDJCQUE5QjVBRkEwNTM0 ODFBMzcxOUUwHhcNMjQwODEyMDYzOTE5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI5YWUxNy00OTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0AJ1/vRMlRLDZa33hKKEDysh5xP9RNLdSpWap9eJBqd7viOsvGkLdpXtCTw UDtF5V3N0Wc/SrDrB6MmWw9+14od5Jf5HvUE8P+uZeuSpW9a4cE3ksuAaKHvVx7e M5VxhtHW6V3hiqWO3/CxcoFrLGMW+y6DbZmzuigdjsYH6BdEDkxcHUFg2DsQz0gc 7TBdbwHr05GoouS+pGqU7AT+U1+bwxwEkG0TQCWaGb20yOMSNAAMvugaBV9MtiWN nJye32uOZvawufuZ3iXPTpyBHx7HGpZldhy2m7iF63ulyoEZ2BvZxzIS9UTqJu4U sUeVUBbYErasC3EVT9T6xRwN7QIDAQABo4ICzTCCAskwHQYDVR0OBBYEFBBg2QVd /BmEuaIwRLFMTN6qNrDXMB8GA1UdIwQYMBaAFEDlgmOXK54kFCuqm1r6BTSBo3Ge MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFBMi9ENDc2RUQ3NjM1 NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi9RT1dDWTVjcm5pUVVLNnFiV3ZvRk5JR2pj WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FPV0NZNWNybmlRVUs2cWJXdm9GTklHamNaNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQTIvRDQ3NkVENzYzNTcyMTFFREFFOTc3ODM5QzRGOUFFMDIvOTQ4NTVFQTAz NTc3MTFFREI4MUI4QTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVwYIKwYBBQUHAQcBAf8E SDBGMEQEAgABMD4DBAGkNBoDBAGkNE4DBACkNFEDBACkNGADBACkNGMDBACkNGkD BACkNHYwDAMEAKQ0eQMEAqQ0eAMEAaQ0fjANBgkqhkiG9w0BAQsFAAOCAQEAPRDE DZS7Kh9j8WgbTAQWSKAEZ+fHrqlqhXdVNDRFyqoK/q8juG2IEhKsZbjrx38eHNAa lttwttpLe0T7uta5vSLdBfjR3D8Tjvmh17EyGsmA9D0PNCKvU1LDvYJD4QYDmCVV M6r+eLHneyvZD7GHOYCtQrlQPZg2x+FS7nDRQhd6kwuwRTpdBgI7tca/xLqPqlK3 ujWWDZYDVF5e6V4jsTA6WpFsJKtZp8IoEfRJ5bsnhmWHYUapmo/XFYjyhJUFS44u TwRtR7RtBKEdFRlj8ebLjmHjL+akji2kuMxJsjmzWilD0ZdwDLdMz0VKh6gaBk7H r3/8A2FkizqNDRzQJQ== -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:51 2024 by rpki-client on console-ams.rpki-client.org