$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/943D15902D1011EFBBEBA67BC4F9AE02.roa File: 943D15902D1011EFBBEBA67BC4F9AE02.roa (raw, json) Hash identifier: fU6wBgRfhiuZgpgLWpVCXuIdWzE0XlueCJBlp8QO+XQ= Subject key identifier: AC:E3:00:6A:6C:5B:A3:1D:18:FB:07:B4:37:53:E7:70:7E:57:79:8F Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 0301 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/943D15902D1011EFBBEBA67BC4F9AE02.roa Signing time: Tue 18 Jun 2024 01:17:50 +0000 ROA not before: Tue 18 Jun 2024 01:17:50 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 17551 IP address blocks: 123.50.128.0/20 maxlen: 20 123.50.128.0/21 maxlen: 21 123.50.136.0/22 maxlen: 22 123.50.140.0/22 maxlen: 22 123.50.148.0/22 maxlen: 22 125.254.110.0/23 maxlen: 23 125.254.118.0/23 maxlen: 23 125.254.120.0/21 maxlen: 21 125.254.120.0/22 maxlen: 22 125.254.124.0/22 maxlen: 22 202.169.22.0/24 maxlen: 24 210.56.224.0/22 maxlen: 22 210.56.228.0/23 maxlen: 23 210.56.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 769 (0x301) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Jun 18 01:17:50 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6670e03e-a439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e5:e6:16:88:a3:61:1d:c2:e3:97:29:7f:16: 30:4f:ab:1c:df:fa:38:89:9f:ab:2d:74:de:8d:bc: f7:6b:5c:02:e0:ac:21:35:d8:98:6b:a5:2e:6f:c4: 1f:b6:31:96:4b:8f:46:5d:98:c5:25:f3:4b:68:10: f6:0e:e7:65:a4:1c:ac:23:1e:e6:db:aa:64:88:3e: 78:77:fe:6e:a6:99:a6:3b:b6:a9:a8:57:8d:b0:bf: 0c:a7:29:c5:9d:0b:7b:28:ae:80:80:90:64:3b:6b: bc:bc:74:0f:15:40:db:bc:0b:e0:60:60:a7:a1:72: e6:5f:b3:4e:88:95:de:6e:37:f8:b7:33:21:6f:ec: fd:22:64:a4:3c:66:24:e6:da:58:4e:b7:22:79:be: 50:16:86:83:ed:e0:dd:d9:fb:dc:d8:d8:a8:cf:5c: aa:13:93:0d:4b:f7:e7:7b:3f:56:56:f5:0a:4f:5f: 92:b8:2a:27:ae:bf:47:75:2f:8c:9e:0e:a9:33:03: 8c:e3:5a:49:29:96:8f:a5:55:9a:7f:a7:27:d0:69: 89:65:91:de:ae:f5:99:fd:81:fb:6e:dd:0b:cf:fa: bf:78:f3:e3:10:8d:9b:45:1c:31:7c:e0:d1:d3:2f: eb:28:42:76:36:93:a8:b7:fe:08:a0:1f:6c:fb:b0: 5f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E3:00:6A:6C:5B:A3:1D:18:FB:07:B4:37:53:E7:70:7E:57:79:8F X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/943D15902D1011EFBBEBA67BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.50.128.0/20 123.50.148.0/22 125.254.110.0/23 125.254.118.0-125.254.127.255 202.169.22.0/24 210.56.224.0-210.56.229.255 210.56.254.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:ee:32:33:de:34:8b:69:b9:cd:c1:b8:ce:39:2e:3b:32:9e: 8b:4c:40:68:8f:c6:eb:97:79:0a:bd:64:ea:7b:51:9b:56:d9: 45:8b:1e:28:11:dd:e8:11:68:2a:4f:29:d4:ad:7a:80:e8:88: d9:f2:7e:8a:5f:66:b8:51:77:ed:0d:45:a2:4e:f1:9b:65:bc: d7:dd:5f:79:e9:2f:b7:d6:c2:c7:c6:af:8b:8e:b8:41:5e:8c: 7e:db:1a:f1:72:9d:4d:1d:47:07:74:80:2a:0e:38:81:02:83: 49:cc:9c:70:41:84:dc:cf:37:f5:72:5f:d3:4c:31:e1:35:ec: 0a:90:28:80:bc:94:3f:ed:ca:a0:50:b1:a0:8b:7e:ea:08:a6: 1f:08:c7:02:11:09:ed:9e:5c:d3:f0:30:a1:f3:ca:49:85:a1: a2:7c:03:9c:f5:77:70:92:3e:b6:6d:48:e3:cc:2e:6b:19:d4: c4:9c:bb:9e:53:ec:eb:47:ec:85:d9:f1:cf:dd:69:ca:5f:1b: b3:ee:d6:52:6d:a3:07:34:57:42:71:c2:2d:09:ef:4d:3d:7c: 79:81:b8:0c:ae:39:d6:c7:50:60:56:3f:3b:7f:45:d9:4f:06: 02:e9:d9:2d:20:ae:03:fc:a6:68:3d:5b:34:5b:5f:6c:f7:85: 77:53:bb:2c -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICAwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjQwNjE4MDExNzUwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcwZTAzZS1hNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+XmFoijYR3C45cpfxYwT6sc3/o4iZ+rLXTejbz3a1wC4KwhNdiYa6Uub8Qf tjGWS49GXZjFJfNLaBD2DudlpBysIx7m26pkiD54d/5uppmmO7apqFeNsL8MpynF nQt7KK6AgJBkO2u8vHQPFUDbvAvgYGCnoXLmX7NOiJXebjf4tzMhb+z9ImSkPGYk 5tpYTrcieb5QFoaD7eDd2fvc2Nioz1yqE5MNS/fnez9WVvUKT1+SuConrr9HdS+M ng6pMwOM41pJKZaPpVWaf6cn0GmJZZHervWZ/YH7bt0Lz/q/ePPjEI2bRRwxfODR 0y/rKEJ2NpOot/4IoB9s+7BfjQIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFKzjAGps W6MdGPsHtDdT53B+V3mPMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyMTYvREM3ODI2OENCOTRCMTFFQzgzMkI3NDE5QzRGOUFFMDIvOTQzRDE1OTAy RDEwMTFFRkJCRUJBNjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMEAEAgABMDoDBAR7MoADBAJ7MpQDBAF9/m4wDAMEAX3+dgMEB33+AAMEAMqp FjAMAwQF0jjgAwQB0jjkAwQB0jj+MA0GCSqGSIb3DQEBCwUAA4IBAQBc7jIz3jSL abnNwbjOOS47Mp6LTEBoj8brl3kKvWTqe1GbVtlFix4oEd3oEWgqTynUrXqA6IjZ 8n6KX2a4UXftDUWiTvGbZbzX3V956S+31sLHxq+LjrhBXox+2xrxcp1NHUcHdIAq DjiBAoNJzJxwQYTczzf1cl/TTDHhNewKkCiAvJQ/7cqgULGgi37qCKYfCMcCEQnt nlzT8DCh88pJhaGifAOc9Xdwkj62bUjjzC5rGdTEnLueU+zrR+yF2fHP3WnKXxuz 7tZSbaMHNFdCccItCe9NPXx5gbgMrjnWx1BgVj87f0XZTwYC6dktIK4D/KZoPVs0 W19s94V3U7ss -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:46 2024 by rpki-client on console-fra.rpki-client.org