$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/FACC58F855C411E9A0FEF781C4F9AE02.roa File: FACC58F855C411E9A0FEF781C4F9AE02.roa (raw, json) Hash identifier: xRVsw1KmS2w+1EDgE8BbroBgIAZxNI85/W3Lxxz+NyE= Subject key identifier: 44:57:FE:CF:6C:13:6C:1B:0B:66:FA:0B:E9:2C:17:88:A1:4A:4B:E6 Certificate issuer: /CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Certificate serial: 340F Authority key identifier: 2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/FACC58F855C411E9A0FEF781C4F9AE02.roa Signing time: Tue 02 Jul 2024 14:40:27 +0000 ROA not before: Tue 02 Jul 2024 14:40:27 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 7575 IP address blocks: 113.197.0.0/20 maxlen: 24 182.255.96.0/19 maxlen: 24 202.0.98.0/24 maxlen: 24 202.6.112.0/24 maxlen: 24 202.158.192.0/19 maxlen: 24 203.5.76.0/24 maxlen: 24 203.13.161.0/24 maxlen: 24 203.19.110.0/24 maxlen: 24 203.21.37.0/24 maxlen: 24 2001:388::/32 maxlen: 40 2001:388:cf85::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13327 (0x340f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Validity Not Before: Jul 2 14:40:27 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6684115a-0049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:dc:e1:cf:97:f9:0d:e4:14:e0:dd:ef:60:7b: 29:73:55:bd:31:a2:9c:08:7e:21:a4:5c:a9:78:85: 2e:a2:a1:4a:0a:5d:5b:d8:89:ca:d9:ca:4e:ed:da: 5d:e9:28:36:50:61:5a:6d:3f:19:c7:1f:2c:93:f5: a6:4e:dd:b1:33:d2:34:1b:12:36:d0:38:cc:77:0d: eb:77:16:36:10:5e:75:e6:bf:a1:8e:ff:a8:f2:c7: fc:12:6b:6a:3c:32:3c:53:59:58:79:be:9a:e6:10: 02:81:02:39:22:33:be:29:33:27:01:9d:28:9b:b4: ba:c9:9b:0e:55:b1:5b:0d:27:7a:7f:0f:dc:3b:46: 3f:78:8c:94:99:c4:63:c1:b7:48:f2:08:ff:37:2b: 82:56:f6:28:67:fe:20:3a:9a:0a:67:96:7f:a8:5b: b6:4b:04:38:fd:27:ec:44:ea:47:ca:43:df:cb:f6: 0c:c1:0f:2a:18:a2:8e:33:8a:42:88:37:28:0b:e0: 7f:66:7a:53:12:38:f6:a7:d3:ab:84:a7:5d:8c:bf: 1f:3e:3c:a7:8b:9c:fe:ae:99:b9:fe:7c:9e:ef:8e: 52:a0:60:9b:20:b2:e0:00:ba:7c:70:90:77:ef:e3: 38:f8:f4:83:5f:44:fc:43:53:a4:68:57:24:7e:d2: 53:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:57:FE:CF:6C:13:6C:1B:0B:66:FA:0B:E9:2C:17:88:A1:4A:4B:E6 X509v3 Authority Key Identifier: keyid:2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/FACC58F855C411E9A0FEF781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.197.0.0/20 182.255.96.0/19 202.0.98.0/24 202.6.112.0/24 202.158.192.0/19 203.5.76.0/24 203.13.161.0/24 203.19.110.0/24 203.21.37.0/24 IPv6: 2001:388::/32 Signature Algorithm: sha256WithRSAEncryption 42:6c:8b:f7:5a:75:28:e0:b4:27:b9:78:99:6d:df:98:3e:6d: b9:c0:8e:26:a3:1f:ed:18:8e:63:dd:fa:e3:b8:48:d9:4c:85: 27:dd:29:f3:b1:e6:b9:c6:dc:c8:6b:4b:5c:e0:1d:f0:3a:3a: 6e:af:e7:a7:70:c7:62:51:7e:cd:13:58:14:f2:7b:44:cf:d3: a1:8c:5c:d5:4c:eb:f9:5b:60:81:a1:ce:16:6f:f6:94:33:0e: f7:f1:f2:98:dd:ae:a3:aa:57:be:c9:20:05:5a:00:47:bd:95: 6e:06:73:d2:aa:9f:51:4a:22:eb:4e:db:1c:c5:f9:74:00:19: dd:51:a0:34:d1:d0:0b:25:2e:03:64:2a:4d:39:9e:05:34:b3: d3:ab:17:0a:4a:70:14:b7:8c:d1:ec:d2:42:43:ac:af:0d:7e: 50:60:e7:69:b6:1d:6f:8a:29:1e:50:d0:48:58:f8:26:a6:b9: b0:8a:29:90:dd:b3:14:b4:16:a0:3c:9f:97:9e:41:14:13:cb: 5a:97:0a:b6:94:96:0e:c2:d2:12:68:cc:dd:15:b1:5b:7e:24: 70:13:1b:7b:6c:1b:9f:96:e7:46:5e:54:4c:57:0a:29:2a:bd: ff:42:d6:53:e4:74:72:e2:89:dc:b8:47:58:38:d5:6c:f9:f6: ee:d9:e8:d8 -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICNA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDJCNTM3NUYyRDA2MDc1NDZENTFGNjUxMUY2MUJDNEEx ODk3NEZERTIwHhcNMjQwNzAyMTQ0MDI3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0MTE1YS0wMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudzhz5f5DeQU4N3vYHspc1W9MaKcCH4hpFypeIUuoqFKCl1b2InK2cpO7dpd 6Sg2UGFabT8Zxx8sk/WmTt2xM9I0GxI20DjMdw3rdxY2EF515r+hjv+o8sf8Emtq PDI8U1lYeb6a5hACgQI5IjO+KTMnAZ0om7S6yZsOVbFbDSd6fw/cO0Y/eIyUmcRj wbdI8gj/NyuCVvYoZ/4gOpoKZ5Z/qFu2SwQ4/SfsROpHykPfy/YMwQ8qGKKOM4pC iDcoC+B/ZnpTEjj2p9OrhKddjL8fPjyni5z+rpm5/nye745SoGCbILLgALp8cJB3 7+M4+PSDX0T8Q1OkaFckftJTHwIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFERX/s9s E2wbC2b6C+ksF4ihSkvmMB8GA1UdIwQYMBaAFCtTdfLQYHVG1R9lEfYbxKGJdP3i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS8wNUM0QzBBNDFE ODQxMUUyQjBDNUEzRDkwOEIwMkNEMi9LMU4xOHRCZ2RVYlZIMlVSOWh2RW9ZbDBf ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTjE4dEJnZFViVkgyVVI5aHZFb1lsMF9lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYxOUUvMDVDNEMwQTQxRDg0MTFFMkIwQzVBM0Q5MDhCMDJDRDIvRkFDQzU4Rjg1 NUM0MTFFOUEwRkVGNzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMDwEAgABMDYDBARxxQADBAW2/2ADBADKAGIDBADKBnADBAXKnsADBADLBUwD BADLDaEDBADLE24DBADLFSUwDQQCAAIwBwMFACABA4gwDQYJKoZIhvcNAQELBQAD ggEBAEJsi/dadSjgtCe5eJlt35g+bbnAjiajH+0YjmPd+uO4SNlMhSfdKfOx5rnG 3MhrS1zgHfA6Om6v56dwx2JRfs0TWBTye0TP06GMXNVM6/lbYIGhzhZv9pQzDvfx 8pjdrqOqV77JIAVaAEe9lW4Gc9Kqn1FKIutO2xzF+XQAGd1RoDTR0AslLgNkKk05 ngU0s9OrFwpKcBS3jNHs0kJDrK8NflBg52m2HW+KKR5Q0EhY+CamubCKKZDdsxS0 FqA8n5eeQRQTy1qXCraUlg7C0hJozN0VsVt+JHATG3tsG5+W50ZeVExXCikqvf9C 1lPkdHLiidy4R1g41Wz59u7Z6Ng= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:06 2024 by rpki-client on console-ams.rpki-client.org