$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/99C5A4CC201211EC8520994EC4F9AE02.roa File: 99C5A4CC201211EC8520994EC4F9AE02.roa (raw, json) Hash identifier: z66+1lPfe2iKYHWapE3bg9lGWW5L9dGBakRNIKeqUAw= Subject key identifier: CE:32:26:EA:C2:E3:8C:AF:06:D0:D2:9A:12:D6:22:8F:3D:2A:1A:6A Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 0550 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/99C5A4CC201211EC8520994EC4F9AE02.roa Signing time: Tue 03 Sep 2024 01:15:28 +0000 ROA not before: Tue 03 Sep 2024 01:15:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 37992 IP address blocks: 110.164.61.0/24 maxlen: 24 110.164.62.0/24 maxlen: 24 110.164.83.0/24 maxlen: 24 110.164.84.0/24 maxlen: 24 110.164.178.0/24 maxlen: 24 110.164.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1360 (0x550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Sep 3 01:15:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d6632f-927b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a3:ed:b8:84:f2:de:e3:f1:df:48:79:67:12: e8:c6:a9:61:08:be:2c:b9:78:4a:9a:09:5d:e3:25: 15:0f:18:69:3a:df:be:4c:da:73:36:36:73:cb:fa: 93:5e:13:bd:b8:73:09:26:75:df:d9:0e:34:e4:a8: e1:52:ce:f8:79:9d:46:07:2f:6c:b0:bf:a1:be:f0: 52:b9:7e:14:1e:9c:03:fd:dd:dd:cd:fe:58:ff:51: b1:ab:76:51:02:6d:9e:75:e4:fe:16:62:b5:75:72: 38:35:c6:01:e3:27:7f:ea:f8:4c:63:8e:55:65:91: 4f:e1:2f:99:bc:4a:4b:86:d2:60:07:33:04:fa:1f: cb:f1:c6:c2:3c:d5:36:4b:2b:15:11:8f:5f:db:3a: 38:4a:4d:a8:02:32:46:85:ed:09:ef:94:04:e8:d7: 17:35:31:a7:e1:9a:24:aa:06:e8:c5:2b:e7:3b:39: 78:37:54:ca:05:7f:2f:46:77:49:eb:91:10:83:0f: 0e:cd:29:19:91:f9:4c:67:cc:5a:2d:8e:81:ad:12: 5d:c1:2b:b3:fc:82:a0:0c:a4:31:0b:33:a7:ff:23: ab:e0:9e:90:cd:c9:78:67:e2:aa:ec:d7:53:aa:1f: 24:b8:f4:94:fa:34:0a:29:66:11:e9:31:21:fa:34: 4b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:32:26:EA:C2:E3:8C:AF:06:D0:D2:9A:12:D6:22:8F:3D:2A:1A:6A X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/99C5A4CC201211EC8520994EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.164.61.0-110.164.62.255 110.164.83.0-110.164.84.255 110.164.178.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:dc:b9:9b:05:66:47:7f:1c:bd:44:0a:8b:73:7a:1e:c3:a5: 46:5a:2d:f0:00:21:7d:0d:56:2f:ad:14:39:c3:42:49:67:29: 1f:22:ae:43:36:37:77:56:ec:12:b9:42:fc:e0:3e:27:d3:b0: 6d:1a:df:2d:f1:a7:c6:04:b1:27:57:1f:31:f8:3b:cf:e1:6c: 8a:25:df:38:f2:17:de:57:2d:88:52:67:48:62:c5:e7:71:93: 42:db:cc:66:70:4b:9f:5a:fb:c3:46:89:cb:d7:a9:91:ac:e3: f3:50:d7:3e:88:5f:f4:4d:a9:c3:0c:0e:35:2f:25:3b:a5:ca: 54:da:b6:96:a3:9d:a0:55:a8:56:dd:90:4a:80:79:ac:6a:56: ea:cb:59:c3:50:83:8b:32:84:0b:73:66:1a:42:e1:ca:a8:4f: 02:cd:9b:f2:5e:01:b1:29:7d:c9:a2:91:3d:f7:b3:95:0a:df: cf:8d:cd:f8:2a:ad:2b:95:5b:e4:47:73:1f:a8:9d:c7:30:91: af:90:a2:94:b2:cb:e2:da:ca:62:e0:16:e2:bc:bc:de:64:f6: 75:fd:f5:6d:b8:f7:5d:82:18:76:49:a2:0d:50:e2:8c:eb:20: 7f:67:c8:e3:3d:69:7b:41:53:17:3a:6e:12:5e:36:9a:8c:22: 3d:cc:2f:62 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICBVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjQwOTAzMDExNTI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMyZi05MjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6PtuITy3uPx30h5ZxLoxqlhCL4suXhKmgld4yUVDxhpOt++TNpzNjZzy/qT XhO9uHMJJnXf2Q405KjhUs74eZ1GBy9ssL+hvvBSuX4UHpwD/d3dzf5Y/1Gxq3ZR Am2edeT+FmK1dXI4NcYB4yd/6vhMY45VZZFP4S+ZvEpLhtJgBzME+h/L8cbCPNU2 SysVEY9f2zo4Sk2oAjJGhe0J75QE6NcXNTGn4ZokqgboxSvnOzl4N1TKBX8vRndJ 65EQgw8OzSkZkflMZ8xaLY6BrRJdwSuz/IKgDKQxCzOn/yOr4J6Qzcl4Z+Kq7NdT qh8kuPSU+jQKKWYR6TEh+jRLxQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFM4yJurC 44yvBtDSmhLWIo89KhpqMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvOTlDNUE0Q0My MDEyMTFFQzg1MjA5OTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAG6kPQMEAG6kPjAMAwQAbqRTAwQAbqRUAwQBbqSyMA0G CSqGSIb3DQEBCwUAA4IBAQA93LmbBWZHfxy9RAqLc3oew6VGWi3wACF9DVYvrRQ5 w0JJZykfIq5DNjd3VuwSuUL84D4n07BtGt8t8afGBLEnVx8x+DvP4WyKJd848hfe Vy2IUmdIYsXncZNC28xmcEufWvvDRonL16mRrOPzUNc+iF/0TanDDA41LyU7pcpU 2raWo52gVahW3ZBKgHmsalbqy1nDUIOLMoQLc2YaQuHKqE8CzZvyXgGxKX3JopE9 97OVCt/Pjc34Kq0rlVvkR3MfqJ3HMJGvkKKUssvi2spi4BbivLzeZPZ1/fVtuPdd ghh2SaINUOKM6yB/Z8jjPWl7QVMXOm4SXjaajCI9zC9i -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org