$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/00604F929CA811EFAD010A87C4F9AE02.roa File: 00604F929CA811EFAD010A87C4F9AE02.roa (raw, json) Hash identifier: FeOK4PuukB5Ot4HcsblydVqxS5gNaNVVygmdsE3Q9Eg= Subject key identifier: F2:93:4B:6B:1A:F9:ED:D4:08:C8:61:54:C2:68:CC:24:F8:E5:51:B0 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 3501 Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/00604F929CA811EFAD010A87C4F9AE02.roa Signing time: Thu 07 Nov 2024 01:31:25 +0000 ROA not before: Thu 07 Nov 2024 01:31:25 +0000 ROA not after: Mon 31 Mar 2031 00:00:00 +0000 asID: 4608 IP address blocks: 202.12.29.0/24 maxlen: 24 203.119.76.0/23 maxlen: 24 203.119.100.0/22 maxlen: 24 203.119.104.0/21 maxlen: 24 2001:dc0::/32 maxlen: 32 2001:dc0:2000::/35 maxlen: 35 2001:dc0:4000::/34 maxlen: 35 2001:dc0:8000::/33 maxlen: 33 2001:dc0:8000::/34 maxlen: 35 2001:dc0:e000::/35 maxlen: 35 2001:dd8:8::/45 maxlen: 45 2001:dd8:8::/48 maxlen: 48 2001:dd8:9::/48 maxlen: 48 2001:dd8:a::/48 maxlen: 48 2001:dd8:b::/48 maxlen: 48 2001:dd8:c::/48 maxlen: 48 2001:dd8:d::/48 maxlen: 48 2001:dd8:e::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13569 (0x3501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Nov 7 01:31:25 2024 GMT Not After : Mar 31 00:00:00 2031 GMT Subject: CN=672c186c-f099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:54:09:f8:8c:c4:73:3b:4e:32:82:db:e1:40: f3:a7:4c:61:59:4f:9f:41:f2:c1:56:f3:5a:fc:26: 8c:15:bc:9d:47:c1:cc:36:00:95:ec:81:e5:71:50: 03:13:9a:a2:69:b0:43:74:39:54:d0:fd:6f:eb:98: 18:32:5c:f5:0d:cd:c6:ea:71:41:1a:7c:68:a3:b5: 13:23:c6:19:1b:da:81:cd:58:ec:76:08:d4:bc:20: 9e:94:0a:e6:9e:2d:80:76:60:bc:e4:73:71:a1:af: 61:0f:2a:f7:85:59:d3:e6:01:48:38:be:a5:b9:9f: 46:d9:5f:48:0a:69:69:2a:d1:95:ba:2e:d7:91:a4: e9:91:e2:9c:a2:cf:df:2e:a6:13:d5:eb:f0:71:43: 3d:5e:d9:7c:53:08:24:a9:b5:33:3a:de:5b:c0:d7: 32:e4:14:4d:ea:4b:f6:7a:34:8a:94:fc:92:d6:6f: ed:a6:b7:7e:07:8c:ae:86:fc:30:27:1a:da:48:54: 37:aa:aa:61:80:f5:52:df:fe:75:e9:c1:ff:ce:4c: f4:8f:06:21:9b:17:3e:b9:8c:e5:bf:7a:2d:1a:a5: 0b:7a:35:a0:91:a8:44:ec:77:09:1d:46:07:9f:d6: 11:cf:b4:78:5d:1c:10:85:7d:14:f6:d4:22:55:38: 8a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:93:4B:6B:1A:F9:ED:D4:08:C8:61:54:C2:68:CC:24:F8:E5:51:B0 X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/00604F929CA811EFAD010A87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.29.0/24 203.119.76.0/23 203.119.100.0-203.119.111.255 IPv6: 2001:dc0::/32 2001:dd8:8::/45 Signature Algorithm: sha256WithRSAEncryption a6:9a:e6:5f:90:92:81:e2:c4:fa:f9:7a:33:a0:52:19:ef:07: 14:89:74:34:4a:c2:81:d3:60:fc:1a:e5:a9:af:f5:ed:8b:c1: ab:72:ba:8f:c3:91:20:d3:ab:94:24:46:78:8c:e2:1a:36:64: c9:b8:ee:0e:04:07:6e:f3:a1:d3:29:75:06:42:96:b2:2f:78: f5:ae:18:27:cb:f2:ef:6a:04:e5:65:2f:e7:23:63:c5:e0:76: 93:f1:8c:3d:19:45:27:51:57:3b:09:07:19:c8:b3:15:9e:70: ab:37:80:da:12:97:be:7c:e2:2d:c0:1c:08:d0:46:6a:21:1d: f1:aa:02:e0:d8:e5:5a:be:ad:c8:a8:df:e2:29:f6:64:49:63: 0c:5f:20:c9:23:9d:60:00:82:f7:2f:82:77:3e:9c:0c:b7:d4: ae:63:04:0e:51:67:bc:ad:c2:60:e5:52:b6:58:1e:dc:a5:59: bd:99:60:bb:0b:bf:74:14:8f:57:31:9a:ee:a6:86:0c:b5:66: cc:31:e1:65:8b:2d:a7:fb:27:8c:4b:41:32:a4:c5:72:ff:3e: ea:1f:97:48:62:14:95:3b:4c:e4:22:eb:e1:57:67:b0:ce:37: 6a:08:06:54:3b:50:de:67:21:5d:37:16:db:4e:40:c8:f7:98: ae:ce:68:e4 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICNQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjQxMTA3MDEzMTI1WhcNMzEwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjMTg2Yy1mMDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmVQJ+IzEcztOMoLb4UDzp0xhWU+fQfLBVvNa/CaMFbydR8HMNgCV7IHlcVAD E5qiabBDdDlU0P1v65gYMlz1Dc3G6nFBGnxoo7UTI8YZG9qBzVjsdgjUvCCelArm ni2AdmC85HNxoa9hDyr3hVnT5gFIOL6luZ9G2V9ICmlpKtGVui7XkaTpkeKcos/f LqYT1evwcUM9Xtl8UwgkqbUzOt5bwNcy5BRN6kv2ejSKlPyS1m/tprd+B4yuhvww JxraSFQ3qqphgPVS3/516cH/zkz0jwYhmxc+uYzlv3otGqULejWgkahE7HcJHUYH n9YRz7R4XRwQhX0U9tQiVTiK+wIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFPKTS2sa +e3UCMhhVMJozCT45VGwMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM1QkUvRDQwMTYxOUExRDY5MTFFMkFGQjY0RUE3MDhCMDJDRDIvMDA2MDRGOTI5 Q0E4MTFFRkFEMDEwQTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MCAEAgABMBoDBADKDB0DBAHLd0wwDAMEAst3ZAMEBMt3YDAWBAIAAjAQAwUA IAENwAMHAyABDdgACDANBgkqhkiG9w0BAQsFAAOCAQEApprmX5CSgeLE+vl6M6BS Ge8HFIl0NErCgdNg/Brlqa/17YvBq3K6j8ORINOrlCRGeIziGjZkybjuDgQHbvOh 0yl1BkKWsi949a4YJ8vy72oE5WUv5yNjxeB2k/GMPRlFJ1FXOwkHGcizFZ5wqzeA 2hKXvnziLcAcCNBGaiEd8aoC4NjlWr6tyKjf4in2ZEljDF8gySOdYACC9y+Cdz6c DLfUrmMEDlFnvK3CYOVStlge3KVZvZlguwu/dBSPVzGa7qaGDLVmzDHhZYstp/sn jEtBMqTFcv8+6h+XSGIUlTtM5CLr4VdnsM43aggGVDtQ3mchXTcW205AyPeYrs5o 5A== -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org