$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa File: F008FF08C22111ECB9FFB964C4F9AE02.roa (raw, json) Hash identifier: cXjBvsRtIl+svOWf/EyRWnjN1gNAqB+MSWIrUrqj+AE= Subject key identifier: EB:A2:95:F0:C4:80:38:55:F4:EB:45:12:82:5F:8F:07:C0:12:69:8B Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 0553 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:15:31 +0000 ROA not before: Tue 03 Sep 2024 01:15:31 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45758 IP address blocks: 14.207.0.0/16 maxlen: 17 27.130.0.0/16 maxlen: 17 43.245.144.0/22 maxlen: 23 49.48.0.0/15 maxlen: 17 103.16.204.0/22 maxlen: 23 110.164.0.0/16 maxlen: 17 110.164.11.0/24 maxlen: 24 110.164.14.0/24 maxlen: 24 110.164.17.0/24 maxlen: 24 110.164.21.0/24 maxlen: 24 110.164.28.0/24 maxlen: 24 171.4.0.0/14 maxlen: 17 180.183.0.0/16 maxlen: 17 183.88.0.0/15 maxlen: 17 223.204.0.0/14 maxlen: 17 2403:6200::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1363 (0x553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Sep 3 01:15:31 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d66333-18ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:db:d2:41:6a:bc:7c:20:0d:e6:6d:4d:c3:b2: 9f:be:2a:d0:1a:16:26:32:58:af:80:f0:80:64:df: 82:80:14:3c:c1:65:6f:8a:98:9f:ba:b4:06:19:ca: 51:39:75:65:cc:10:8e:c1:9f:23:1e:49:8a:c6:8d: e8:3c:37:d4:ea:93:9d:b5:78:3c:cd:26:ce:42:78: ad:47:85:44:0b:05:34:2a:41:0f:da:2d:b4:06:a9: 83:cc:17:29:2a:76:6a:49:37:12:77:57:59:b8:83: 8f:d9:62:80:a4:88:fc:cb:09:e8:2d:68:a3:f2:80: b8:8a:19:3f:1c:d9:1c:5f:9c:46:ad:9c:88:8f:79: 8a:7a:0a:22:97:5f:1d:e8:50:a2:f4:a2:f0:58:09: 5c:1a:73:65:6b:0b:15:b3:93:51:cf:c2:6c:0a:53: ec:cb:4c:4b:33:bb:8e:d4:ae:d9:a5:33:af:a4:5d: e6:ef:a4:ff:1f:d2:d9:f1:95:2d:10:1d:c3:6f:75: 5a:e8:11:d8:ea:4e:27:bd:94:7c:fa:56:bb:e1:b7: e4:ad:99:95:1b:7d:a9:64:02:43:84:52:54:d2:93: 6b:c2:5b:dc:7c:2f:26:7e:3f:fc:83:3b:13:d5:36: 3d:a1:b9:99:84:98:63:04:16:c4:ed:bc:3a:94:56: ed:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A2:95:F0:C4:80:38:55:F4:EB:45:12:82:5F:8F:07:C0:12:69:8B X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.207.0.0/16 27.130.0.0/16 43.245.144.0/22 49.48.0.0/15 103.16.204.0/22 110.164.0.0/16 171.4.0.0/14 180.183.0.0/16 183.88.0.0/15 223.204.0.0/14 IPv6: 2403:6200::/32 Signature Algorithm: sha256WithRSAEncryption a8:03:c9:c5:90:0f:5d:7c:7e:5b:2b:5e:8c:f5:8e:88:67:0d: c2:d3:40:94:56:b8:76:eb:e7:04:05:51:92:3f:b6:c2:08:ed: 50:56:ae:d8:70:c3:4b:b8:1a:52:07:13:47:be:5d:7c:bc:ce: 35:20:a6:5b:3b:fc:24:45:8e:42:ef:54:d2:42:e0:8c:ac:43: 6d:90:4b:9b:7d:59:a1:37:a2:9d:89:51:2e:8d:42:8a:6c:67: f9:04:26:67:84:14:db:11:ee:b7:00:a6:50:58:e2:f2:1f:52: 91:fe:4a:ee:4b:3e:45:d7:41:45:08:62:3a:34:fa:4e:ae:ef: 35:2c:62:85:3b:c5:e4:07:9b:00:c7:c4:b7:a1:92:a5:f1:89: 39:ae:27:a1:b8:34:4f:cb:ea:2e:1b:17:0b:16:3e:e3:93:b1: ef:e1:1b:24:9b:fb:45:af:bf:82:0b:7e:26:44:7b:a4:4f:64: 06:16:e6:9a:39:15:d2:03:c4:65:a2:0a:bf:e3:a2:16:e8:c0: 1a:f5:98:eb:a4:33:68:e6:c1:60:f0:fe:82:4b:8d:09:bd:31: 6c:48:f7:32:a0:1e:2a:8d:5b:73:2e:98:84:08:45:8c:4c:05: ee:96:ec:70:98:dd:d7:f3:b7:ad:74:f5:2c:8d:10:0e:54:05: 4d:5a:87:cf -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgICBVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjQwOTAzMDExNTMxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMzMy0xOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5dvSQWq8fCAN5m1Nw7KfvirQGhYmMlivgPCAZN+CgBQ8wWVvipifurQGGcpR OXVlzBCOwZ8jHkmKxo3oPDfU6pOdtXg8zSbOQnitR4VECwU0KkEP2i20BqmDzBcp KnZqSTcSd1dZuIOP2WKApIj8ywnoLWij8oC4ihk/HNkcX5xGrZyIj3mKegoil18d 6FCi9KLwWAlcGnNlawsVs5NRz8JsClPsy0xLM7uO1K7ZpTOvpF3m76T/H9LZ8ZUt EB3Db3Va6BHY6k4nvZR8+la74bfkrZmVG32pZAJDhFJU0pNrwlvcfC8mfj/8gzsT 1TY9obmZhJhjBBbE7bw6lFbtwwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFOuilfDE gDhV9OtFEoJfjwfAEmmLMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvRjAwOEZGMDhD MjIxMTFFQ0I5RkZCOTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXAYIKwYBBQUHAQcBAf8E TTBLMDoEAgABMDQDAwAOzwMDABuCAwQCK/WQAwMBMTADBAJnEMwDAwBupAMDAqsE AwMAtLcDAwG3WAMDAt/MMA0EAgACMAcDBQAkA2IAMA0GCSqGSIb3DQEBCwUAA4IB AQCoA8nFkA9dfH5bK16M9Y6IZw3C00CUVrh26+cEBVGSP7bCCO1QVq7YcMNLuBpS BxNHvl18vM41IKZbO/wkRY5C71TSQuCMrENtkEubfVmhN6KdiVEujUKKbGf5BCZn hBTbEe63AKZQWOLyH1KR/kruSz5F10FFCGI6NPpOru81LGKFO8XkB5sAx8S3oZKl 8Yk5riehuDRPy+ouGxcLFj7jk7Hv4Rskm/tFr7+CC34mRHukT2QGFuaaORXSA8Rl ogq/46IW6MAa9ZjrpDNo5sFg8P6CS40JvTFsSPcyoB4qjVtzLpiECEWMTAXuluxw mN3X87etdPUsjRAOVAVNWofP -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:06 2024 by rpki-client on console-ams.rpki-client.org