$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/9507A58E66CC11EB8CD9533AC4F9AE02.roa File: 9507A58E66CC11EB8CD9533AC4F9AE02.roa (raw, json) Hash identifier: mw0tfPfPL7FKi2Yof+LC4zjkegn0Gmah4wfaxap8CoE= Subject key identifier: 9D:40:43:BD:4F:C2:20:64:D3:6A:34:B4:90:AB:63:9D:A8:1B:FB:FE Certificate issuer: /CN=A91F1AD0/serialNumber=4302125EFB149E451560C7495B7D43CD9E9ACFF7 Certificate serial: 0643 Authority key identifier: 43:02:12:5E:FB:14:9E:45:15:60:C7:49:5B:7D:43:CD:9E:9A:CF:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwISXvsUnkUVYMdJW31DzZ6az_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/9507A58E66CC11EB8CD9533AC4F9AE02.roa Signing time: Sat 26 Oct 2024 22:33:54 +0000 ROA not before: Sat 26 Oct 2024 22:33:54 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 137236 IP address blocks: 43.226.12.0/22 maxlen: 24 103.101.80.0/22 maxlen: 24 202.8.72.0/22 maxlen: 24 2401:ccc0::/33 maxlen: 33 2401:ccc0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/QwISXvsUnkUVYMdJW31DzZ6az_c.crl rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/QwISXvsUnkUVYMdJW31DzZ6az_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwISXvsUnkUVYMdJW31DzZ6az_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1AD0/serialNumber=4302125EFB149E451560C7495B7D43CD9E9ACFF7 Validity Not Before: Oct 26 22:33:54 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671d6e51-ad80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0d:ce:e3:e0:44:37:39:4c:78:72:48:ec:2c: 88:b2:c0:fe:e5:17:b5:a7:82:ab:a3:db:80:3e:21: e8:2a:ff:30:95:cf:55:73:6e:62:2c:7e:6f:b0:d8: 27:db:60:32:28:90:75:fa:ee:fc:1a:ce:ba:9e:fd: e0:9a:6a:92:a6:76:af:a4:b2:e0:1d:4e:50:1b:8e: 12:75:52:f0:e2:11:3c:06:7d:52:22:75:57:c7:95: 8c:08:c8:48:85:ee:ed:9a:f2:68:4a:fe:6d:54:41: 33:cd:51:41:a0:a0:55:c1:37:71:92:51:5d:b5:5b: fd:f0:c3:4b:8b:85:e7:3a:29:4e:04:bc:1e:0f:e7: 37:0d:f4:05:41:fd:b0:ee:f7:c1:f8:e2:11:7e:7b: b3:21:b6:e0:24:8b:59:41:b1:6b:5f:8a:4d:58:c5: c5:ca:46:1c:34:7b:17:b1:21:fb:e9:37:b4:db:c7: 4e:39:fb:c3:f5:40:78:65:76:22:9a:65:b9:42:58: bb:17:60:84:dc:b7:ec:70:72:f4:7d:48:ef:8e:4a: 10:f4:38:c5:e1:e6:59:45:0d:64:e5:cc:44:3b:cf: 0e:e3:53:de:64:b2:dc:6b:1e:9c:7e:7f:c1:60:3a: 08:f1:14:0b:1f:58:0a:c3:b3:88:47:b6:93:4d:dd: d7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:40:43:BD:4F:C2:20:64:D3:6A:34:B4:90:AB:63:9D:A8:1B:FB:FE X509v3 Authority Key Identifier: keyid:43:02:12:5E:FB:14:9E:45:15:60:C7:49:5B:7D:43:CD:9E:9A:CF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/QwISXvsUnkUVYMdJW31DzZ6az_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwISXvsUnkUVYMdJW31DzZ6az_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/9507A58E66CC11EB8CD9533AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.12.0/22 103.101.80.0/22 202.8.72.0/22 IPv6: 2401:ccc0::/32 Signature Algorithm: sha256WithRSAEncryption b3:ef:a2:98:91:28:c6:1b:cc:66:0e:3b:78:53:1d:8d:a4:74: 52:f7:e9:6a:d3:22:12:27:f1:03:90:c4:9a:39:69:76:51:b0: f6:f1:5c:38:b8:a9:7c:3a:32:a9:11:2f:82:48:53:86:11:f9: 58:79:22:0f:12:2d:7a:7e:a9:69:3e:81:3d:31:2e:7b:13:2b: ba:12:7e:0c:99:5e:56:b8:48:26:d9:1e:74:dc:6a:7b:d1:9e: 07:84:c8:0b:75:55:2f:c1:85:2b:e9:17:c3:e2:42:b5:78:dd: 2d:8a:94:dd:dd:f0:ab:ce:8a:47:da:6b:4c:5e:51:f6:48:1d: 68:21:ad:0c:87:e6:32:ee:ca:f1:71:23:ba:16:90:02:64:c1: 71:80:ec:88:38:fe:a4:92:a4:19:9f:d6:bc:d9:a8:97:42:73: c0:f1:2c:cc:48:46:2d:7a:f0:3b:4f:c0:53:c0:7a:55:c6:e9: d6:ec:6e:66:9a:71:91:c0:ef:26:67:83:6d:dc:dc:2b:98:7f: 45:9d:fe:74:16:69:fc:7a:c2:ef:ee:1c:ef:ff:70:3e:b0:c5: b9:5f:4b:dd:fa:50:c7:fd:33:46:a0:cc:35:e6:78:62:cf:2b: 60:81:75:a2:1e:f9:56:84:ff:0a:fb:5c:c8:71:ea:78:d6:c0: 4b:d4:28:5f -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFBRDAxMTAvBgNVBAUTKDQzMDIxMjVFRkIxNDlFNDUxNTYwQzc0OTVCN0Q0M0NE OUU5QUNGRjcwHhcNMjQxMDI2MjIzMzU0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkNmU1MS1hZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6A3O4+BENzlMeHJI7CyIssD+5Re1p4Kro9uAPiHoKv8wlc9Vc25iLH5vsNgn 22AyKJB1+u78Gs66nv3gmmqSpnavpLLgHU5QG44SdVLw4hE8Bn1SInVXx5WMCMhI he7tmvJoSv5tVEEzzVFBoKBVwTdxklFdtVv98MNLi4XnOilOBLweD+c3DfQFQf2w 7vfB+OIRfnuzIbbgJItZQbFrX4pNWMXFykYcNHsXsSH76Te028dOOfvD9UB4ZXYi mmW5Qli7F2CE3LfscHL0fUjvjkoQ9DjF4eZZRQ1k5cxEO88O41PeZLLcax6cfn/B YDoI8RQLH1gKw7OIR7aTTd3XRwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFJ1AQ71P wiBk02o0tJCrY52oG/v+MB8GA1UdIwQYMBaAFEMCEl77FJ5FFWDHSVt9Q82ems/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUFEMC84NkVGNEJERTY2 Q0ExMUVCQUM2NDI3MzVDNEY5QUUwMi9Rd0lTWHZzVW5rVVZZTWRKVzMxRHpaNmF6 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F3SVNYdnNVbmtVVllNZEpXMzFEelo2YXpfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFBRDAvODZFRjRCREU2NkNBMTFFQkFDNjQyNzM1QzRGOUFFMDIvOTUwN0E1OEU2 NkNDMTFFQjhDRDk1MzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAIr4gwDBAJnZVADBALKCEgwDQQCAAIwBwMFACQBzMAwDQYJ KoZIhvcNAQELBQADggEBALPvopiRKMYbzGYOO3hTHY2kdFL36WrTIhIn8QOQxJo5 aXZRsPbxXDi4qXw6MqkRL4JIU4YR+Vh5Ig8SLXp+qWk+gT0xLnsTK7oSfgyZXla4 SCbZHnTcanvRngeEyAt1VS/BhSvpF8PiQrV43S2KlN3d8KvOikfaa0xeUfZIHWgh rQyH5jLuyvFxI7oWkAJkwXGA7Ig4/qSSpBmf1rzZqJdCc8DxLMxIRi168DtPwFPA elXG6dbsbmaacZHA7yZng23c3CuYf0Wd/nQWafx6wu/uHO//cD6wxblfS936UMf9 M0agzDXmeGLPK2CBdaIe+VaE/wr7XMhx6njWwEvUKF8= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:37 2024 by rpki-client on console-fra.rpki-client.org