$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/99341DD6663D11EE8CBBAE7CC4F9AE02.roa File: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (raw, json) Hash identifier: pidH+xtb8OXyN3SlmzLiBUdr0SQho8QbaXQpLP6w5rQ= Subject key identifier: 85:22:28:06:A2:2B:2E:E0:53:72:12:2F:88:2D:EC:7D:69:75:FD:63 Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: C9 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/99341DD6663D11EE8CBBAE7CC4F9AE02.roa Signing time: Wed 07 Aug 2024 06:07:29 +0000 ROA not before: Wed 07 Aug 2024 06:07:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9466 IP address blocks: 203.5.217.0/24 maxlen: 24 203.6.31.0/24 maxlen: 24 203.6.32.0/24 maxlen: 24 203.6.33.0/24 maxlen: 24 203.6.36.0/22 maxlen: 22 203.6.64.0/21 maxlen: 21 203.6.72.0/21 maxlen: 21 203.6.118.0/24 maxlen: 24 203.6.119.0/24 maxlen: 24 203.6.120.0/24 maxlen: 24 203.10.217.0/24 maxlen: 24 203.11.0.0/24 maxlen: 24 2401:6bff::/40 maxlen: 40 2401:6bff:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 04:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Aug 7 06:07:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b30f21-9152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:33:9f:d0:1d:93:96:bd:24:b8:fd:42:cf:6f: 32:0f:8f:33:16:82:a3:ef:b8:16:d4:84:cc:cd:5a: d7:9d:ab:5c:96:35:4a:b3:10:2e:b2:2c:d5:c5:5f: 6c:5c:45:52:ae:6c:4c:b9:ca:0a:dd:e4:e0:83:77: da:6f:8a:82:0c:2a:49:21:05:d5:0f:63:69:db:33: aa:13:2e:45:da:30:7c:21:42:28:b4:fd:14:81:72: dd:e9:01:ce:9c:b5:28:4a:48:d1:2e:a2:09:59:88: 40:71:dc:67:a5:84:06:24:8d:f2:24:f6:a6:bd:4f: a0:80:0f:98:8b:b7:85:f6:57:ea:b9:71:0f:f8:1b: ba:d9:e6:7c:de:c2:78:9f:89:29:e8:6b:1b:84:18: 3d:8a:c7:38:7c:c0:8b:ab:4c:4a:9e:cc:6d:bd:43: 22:0b:96:aa:5b:c8:53:a8:9d:52:6c:10:17:78:e1: bd:0a:e2:82:3d:d7:8a:bf:d1:d6:bd:27:2f:e4:99: 1e:59:e4:44:e0:56:f7:07:b0:8f:16:66:21:e2:74: b9:7e:78:5c:8a:4a:13:f5:ed:a2:2b:55:8c:07:39: dd:79:79:25:f3:e7:69:e2:27:9f:5c:96:c7:4b:13: 66:ca:25:40:ae:71:75:e2:99:df:43:7d:07:5c:84: 92:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:22:28:06:A2:2B:2E:E0:53:72:12:2F:88:2D:EC:7D:69:75:FD:63 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/99341DD6663D11EE8CBBAE7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.217.0/24 203.6.31.0-203.6.33.255 203.6.36.0/22 203.6.64.0/20 203.6.118.0-203.6.120.255 203.10.217.0/24 203.11.0.0/24 IPv6: 2401:6bff::/40 2401:6bff:8000::/40 Signature Algorithm: sha256WithRSAEncryption 4f:03:73:81:a5:e4:03:b0:28:88:39:af:b9:e1:a6:9c:d2:65: 7d:ba:d9:87:ad:2e:8f:b7:02:44:1c:09:36:6e:3d:22:56:a7: bf:b1:d7:9f:ff:16:1c:22:8d:7e:18:3c:b5:ee:ff:3a:31:1a: 3e:11:c2:f8:52:cc:89:24:8b:61:ef:7f:bd:e7:50:08:98:68: 8b:80:2c:dd:6a:b1:c9:ce:f5:d6:a8:2b:67:f6:f3:66:4f:71: 37:0e:36:33:a8:dd:97:5e:d0:fe:3b:60:41:7a:63:73:46:2c: f3:df:11:eb:31:34:0c:bc:ec:f2:2e:90:13:95:af:53:e5:38: 77:79:09:39:21:39:d2:60:9c:f3:fc:93:70:99:95:ba:ef:18: 19:dc:8f:e7:20:b3:ed:eb:80:c0:75:f1:3d:bd:91:c2:01:b2: 30:ff:ae:42:b1:52:d8:97:db:b1:ce:7a:2c:12:29:b7:4d:fd: aa:b8:87:d7:74:c8:e3:db:58:30:d8:a9:bb:6a:f9:7f:55:ac: db:a4:b7:bc:32:0f:8e:c2:31:cf:ea:83:02:f7:c4:65:d1:83: 9f:bf:df:ee:06:cb:2f:11:f9:d4:62:f6:16:9a:46:cc:46:25: 5b:9a:31:4b:f1:47:27:41:6a:c8:90:06:20:8e:c1:64:8d:69: a6:33:95:b4 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjQwODA3MDYwNzI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIzMGYyMS05MTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzOf0B2Tlr0kuP1Cz28yD48zFoKj77gW1ITMzVrXnatcljVKsxAusizVxV9s XEVSrmxMucoK3eTgg3fab4qCDCpJIQXVD2Np2zOqEy5F2jB8IUIotP0UgXLd6QHO nLUoSkjRLqIJWYhAcdxnpYQGJI3yJPamvU+ggA+Yi7eF9lfquXEP+Bu62eZ83sJ4 n4kp6GsbhBg9isc4fMCLq0xKnsxtvUMiC5aqW8hTqJ1SbBAXeOG9CuKCPdeKv9HW vScv5JkeWeRE4Fb3B7CPFmYh4nS5fnhcikoT9e2iK1WMBzndeXkl8+dp4iefXJbH SxNmyiVArnF14pnfQ30HXISS2QIDAQABo4IC4TCCAt0wHQYDVR0OBBYEFIUiKAai Ky7gU3ISL4gt7H1pdf1jMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlFODIvRUE3RTVGQTY2MzZGMTFFRTk3Qzc0QjVDQzRGOUFFMDIvOTkzNDFERDY2 NjNEMTFFRThDQkJBRTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwawYIKwYBBQUHAQcBAf8E XDBaMEAEAgABMDoDBADLBdkwDAMEAMsGHwMEAcsGIAMEAssGJAMEBMsGQDAMAwQB ywZ2AwQAywZ4AwQAywrZAwQAywsAMBYEAgACMBADBgAkAWv/AAMGACQBa/+AMA0G CSqGSIb3DQEBCwUAA4IBAQBPA3OBpeQDsCiIOa+54aac0mV9utmHrS6PtwJEHAk2 bj0iVqe/sdef/xYcIo1+GDy17v86MRo+EcL4UsyJJIth73+951AImGiLgCzdarHJ zvXWqCtn9vNmT3E3DjYzqN2XXtD+O2BBemNzRizz3xHrMTQMvOzyLpATla9T5Th3 eQk5ITnSYJzz/JNwmZW67xgZ3I/nILPt64DAdfE9vZHCAbIw/65CsVLYl9uxznos Eim3Tf2quIfXdMjj21gw2Km7avl/VazbpLe8Mg+OwjHP6oMC98Rl0YOfv9/uBssv EfnUYvYWmkbMRiVbmjFL8UcnQWrIkAYgjsFkjWmmM5W0 -----END CERTIFICATE-----Generated at Thu Oct 17 05:09:50 2024 by rpki-client on console-fra.rpki-client.org