$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa File: 064D129A56EA11EA84DC982BC4F9AE02.roa (raw, json) Hash identifier: xXMoWckO51I4mArTtMuq39Mlgrtlx9fnP9Y8culZBac= Subject key identifier: B6:E2:13:7A:D5:85:4C:D5:5E:85:28:AC:51:A6:82:4A:11:49:A1:09 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0C10 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa Signing time: Fri 24 Nov 2023 02:38:55 +0000 ROA not before: Fri 24 Nov 2023 02:38:55 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 38566 IP address blocks: 45.116.216.0/22 maxlen: 24 103.246.24.0/22 maxlen: 24 116.68.144.0/20 maxlen: 23 116.68.144.0/21 maxlen: 24 116.68.152.0/22 maxlen: 24 116.68.156.0/24 maxlen: 24 116.68.158.0/24 maxlen: 24 180.222.144.0/20 maxlen: 24 2403:2800:e15::/48 maxlen: 48 2403:2800:e16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Nov 24 02:38:55 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65600cbe-8762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ef:ea:1b:c6:25:aa:a5:ae:46:27:a1:5b:66: 8e:b6:a5:61:51:84:73:8d:59:eb:a7:07:3b:d6:c3: 42:05:cd:c1:59:df:35:1b:20:95:ec:0a:59:eb:19: 02:8f:cd:97:61:28:11:1e:ae:a3:34:e4:6c:20:f3: 7d:69:7a:30:55:3c:9d:01:50:a4:4c:49:4a:ec:8a: 31:37:f3:e7:44:70:86:70:a6:14:4d:30:86:24:c7: 84:7b:63:78:cb:5d:85:00:8e:00:e9:67:1b:17:ab: b2:0d:ae:b8:9a:c8:fe:44:80:ce:58:1f:ed:b5:be: 74:35:8b:a3:bf:00:d9:d8:e3:7a:70:b1:c6:ac:44: 74:3e:4f:a3:7b:d0:f8:ab:e9:cb:6a:a4:5d:15:a5: 75:7e:de:fb:8a:d9:68:bc:8b:63:f2:3e:18:a7:e0: a1:da:d3:cf:3c:09:b3:16:45:8a:df:b3:d9:16:4d: e0:17:5d:8a:a6:59:4b:10:78:99:56:8c:26:68:88: fb:29:a3:4b:56:ce:0a:34:40:5c:4f:f7:0d:34:1e: 21:4f:c1:79:4a:5f:46:c9:fe:e9:61:81:54:62:3f: ee:e7:16:ae:5f:c1:85:89:00:d6:51:c9:23:03:e0: c2:91:8a:24:1b:94:34:6f:e9:c7:64:e9:3f:fc:48: 67:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:E2:13:7A:D5:85:4C:D5:5E:85:28:AC:51:A6:82:4A:11:49:A1:09 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.216.0/22 103.246.24.0/22 116.68.144.0/20 180.222.144.0/20 IPv6: 2403:2800:e15::-2403:2800:e16:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3a:bd:ab:30:da:5d:72:7f:68:d4:39:9c:78:7d:36:71:b3:58: 2f:08:bb:51:d3:76:0a:b8:b5:34:ce:9d:cc:a1:40:1e:23:72: 2b:75:6b:c7:d7:da:bb:86:f8:26:e4:bb:39:15:d9:7c:3b:04: 08:6e:eb:9c:59:da:5e:94:33:cf:c6:31:b6:46:48:d6:32:03: 45:e3:a6:d1:02:5d:8b:cd:1a:42:90:2c:3e:e9:0b:d5:b7:59: 84:12:4c:66:0f:03:18:8f:53:5a:0b:f8:14:98:d2:2c:6c:76: a2:3b:fc:47:1e:d9:54:3a:2b:fe:d1:46:85:43:ac:57:35:1b: 68:80:b0:25:e1:95:3a:36:be:3d:1d:65:88:80:b9:18:49:8a: bc:2f:da:15:24:d6:29:c0:64:a9:ec:b7:41:84:9f:63:b0:27: c8:62:22:1b:0d:19:7c:72:20:93:78:3c:41:b4:e7:22:97:bd: 8d:af:04:d5:d9:d2:ec:e8:6d:a0:de:18:dd:8c:01:c9:fb:25: 74:cf:46:05:68:0f:91:e6:f5:41:96:65:6c:6c:27:94:27:f9: 94:bb:e1:df:cf:2f:ee:da:fc:10:d9:b8:9f:7e:f8:65:c6:37: f3:1b:6c:b7:d5:d8:d8:bb:ca:c2:c2:e2:8b:44:94:36:9e:68: 94:a5:ef:e6 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjMxMTI0MDIzODU1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYwMGNiZS04NzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtu/qG8YlqqWuRiehW2aOtqVhUYRzjVnrpwc71sNCBc3BWd81GyCV7ApZ6xkC j82XYSgRHq6jNORsIPN9aXowVTydAVCkTElK7IoxN/PnRHCGcKYUTTCGJMeEe2N4 y12FAI4A6WcbF6uyDa64msj+RIDOWB/ttb50NYujvwDZ2ON6cLHGrER0Pk+je9D4 q+nLaqRdFaV1ft77itlovItj8j4Yp+Ch2tPPPAmzFkWK37PZFk3gF12KpllLEHiZ VowmaIj7KaNLVs4KNEBcT/cNNB4hT8F5Sl9Gyf7pYYFUYj/u5xauX8GFiQDWUckj A+DCkYokG5Q0b+nHZOk//EhnGQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFLbiE3rV hUzVXoUorFGmgkoRSaEJMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY2QTAvNjI1RkY3MjZEOUU3MTFFOTg4MDU0MDE2QzRGOUFFMDIvMDY0RDEyOUE1 NkVBMTFFQTg0REM5ODJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MB4EAgABMBgDBAItdNgDBAJn9hgDBAR0RJADBAS03pAwGgQCAAIwFDASAwcA JAMoAA4VAwcAJAMoAA4WMA0GCSqGSIb3DQEBCwUAA4IBAQA6vasw2l1yf2jUOZx4 fTZxs1gvCLtR03YKuLU0zp3MoUAeI3IrdWvH19q7hvgm5Ls5Fdl8OwQIbuucWdpe lDPPxjG2RkjWMgNF46bRAl2LzRpCkCw+6QvVt1mEEkxmDwMYj1NaC/gUmNIsbHai O/xHHtlUOiv+0UaFQ6xXNRtogLAl4ZU6Nr49HWWIgLkYSYq8L9oVJNYpwGSp7LdB hJ9jsCfIYiIbDRl8ciCTeDxBtOcil72NrwTV2dLs6G2g3hjdjAHJ+yV0z0YFaA+R 5vVBlmVsbCeUJ/mUu+Hfzy/u2vwQ2biffvhlxjfzG2y31djYu8rCwuKLRJQ2nmiU pe/m -----END CERTIFICATE-----Generated at Sat May 18 20:16:06 2024 by rpki-client on console-ams.rpki-client.org