$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/909F94F070F911EDBA42F056C4F9AE02.roa File: 909F94F070F911EDBA42F056C4F9AE02.roa (raw, json) Hash identifier: pVK0XdTrjBptKJEy8yW+YdDJrksJGkGUiYH7tSYKlBw= Subject key identifier: BB:D1:40:45:17:82:1A:8C:BC:6C:20:51:F2:01:43:AA:A7:BD:AD:30 Certificate issuer: /CN=A91F2B47/serialNumber=E11896B00C9486E43EE74802D21969F888EE4E2D Certificate serial: 0142 Authority key identifier: E1:18:96:B0:0C:94:86:E4:3E:E7:48:02:D2:19:69:F8:88:EE:4E:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RiWsAyUhuQ-50gC0hlp-IjuTi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/909F94F070F911EDBA42F056C4F9AE02.roa Signing time: Thu 29 Feb 2024 04:47:12 +0000 ROA not before: Thu 29 Feb 2024 04:47:12 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 9426 IP address blocks: 110.5.80.0/21 maxlen: 24 110.5.88.0/21 maxlen: 24 203.10.111.0/24 maxlen: 24 203.16.39.0/24 maxlen: 24 203.23.44.0/24 maxlen: 24 203.24.0.0/22 maxlen: 24 203.24.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.crl rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RiWsAyUhuQ-50gC0hlp-IjuTi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B47/serialNumber=E11896B00C9486E43EE74802D21969F888EE4E2D Validity Not Before: Feb 29 04:47:12 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e00c4f-0917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:77:41:f8:5c:9a:8e:aa:eb:af:86:bb:17:7c: c1:b1:6c:c8:f9:d7:0d:00:73:fe:3b:fd:f4:0e:28: 31:e8:db:20:ff:c3:9f:67:02:26:33:95:13:7f:13: 4f:91:82:48:02:bf:a5:73:0f:4b:92:2a:4d:9b:57: cd:fc:43:7e:de:23:56:48:b5:e0:92:b0:26:0d:a0: 0f:c2:cb:10:75:ef:cb:fd:22:c8:b1:10:5f:fc:bc: cb:af:fa:3d:44:2f:ca:51:fc:42:4b:7f:d5:1d:44: fa:44:a9:46:d0:45:0a:d3:d3:0d:8d:b6:b6:67:92: cd:65:ba:ce:3b:7c:f3:f1:db:a7:e7:36:eb:04:70: b4:55:db:92:f1:10:88:94:6a:c9:f5:fd:59:bc:4d: 92:b0:16:ae:9d:3e:5b:21:5a:bf:52:05:b3:29:34: bd:02:fd:ca:3f:fb:9d:11:e5:b5:2f:5b:ff:ee:40: dc:d7:fe:63:66:44:f9:7f:6d:77:c5:b4:c1:29:36: 26:c9:8a:7d:51:c9:ba:dd:4c:cc:41:8c:67:80:a1: a8:b1:3d:8f:46:ab:a1:d3:a8:16:f4:d0:21:28:4b: a3:e0:57:3b:81:94:89:17:f6:41:6d:22:48:28:88: 2f:fb:4a:42:36:e2:2e:9b:97:38:ee:27:ee:20:da: 98:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D1:40:45:17:82:1A:8C:BC:6C:20:51:F2:01:43:AA:A7:BD:AD:30 X509v3 Authority Key Identifier: keyid:E1:18:96:B0:0C:94:86:E4:3E:E7:48:02:D2:19:69:F8:88:EE:4E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RiWsAyUhuQ-50gC0hlp-IjuTi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/909F94F070F911EDBA42F056C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.5.80.0/20 203.10.111.0/24 203.16.39.0/24 203.23.44.0/24 203.24.0.0/21 Signature Algorithm: sha256WithRSAEncryption 2e:21:68:23:e9:ef:cd:9c:20:1e:93:85:ab:74:1d:38:e9:54: de:a2:2b:3e:ce:5c:4f:58:3e:b4:6e:72:3c:97:d7:8f:e7:00: 71:ef:8d:09:55:19:57:dd:44:3d:b5:35:e5:f8:45:25:48:da: 18:dd:73:e6:c3:1f:07:d7:be:24:b9:b2:cd:5d:b8:87:77:09: 71:42:f4:92:cd:02:15:39:04:99:2a:61:63:39:a6:cf:90:20: f6:11:90:a4:52:64:2a:dd:71:f2:5a:a3:37:78:b2:82:ff:83: 94:f8:81:4e:06:b2:49:95:a9:ab:24:4c:1a:60:ed:71:d1:5a: 71:46:ed:f4:2b:06:76:d3:6b:01:fd:43:7c:6e:03:0d:b8:ea: cf:52:b0:eb:8c:79:97:07:2f:85:4f:3a:bc:ca:8e:bc:dd:d8: 3a:e9:9b:18:85:29:17:4e:8d:b1:25:76:09:15:58:05:4a:6e: 73:a5:d9:f3:77:53:6f:76:dc:49:0f:4b:ce:ac:5f:73:f6:20: 62:5a:0f:e0:30:4c:85:6d:39:80:b7:05:4c:84:37:13:c4:b7: ea:3d:1f:5a:26:29:79:d9:cb:2f:0b:ad:f8:b4:d8:3c:7a:a4: c3:36:c9:9e:65:de:f8:60:6b:44:74:da:fe:1f:01:6f:7f:0c: 8c:ef:ee:c6 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNDcxMTAvBgNVBAUTKEUxMTg5NkIwMEM5NDg2RTQzRUU3NDgwMkQyMTk2OUY4 ODhFRTRFMkQwHhcNMjQwMjI5MDQ0NzEyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwMGM0Zi0wOTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HdB+Fyajqrrr4a7F3zBsWzI+dcNAHP+O/30Digx6Nsg/8OfZwImM5UTfxNP kYJIAr+lcw9LkipNm1fN/EN+3iNWSLXgkrAmDaAPwssQde/L/SLIsRBf/LzLr/o9 RC/KUfxCS3/VHUT6RKlG0EUK09MNjba2Z5LNZbrOO3zz8dun5zbrBHC0VduS8RCI lGrJ9f1ZvE2SsBaunT5bIVq/UgWzKTS9Av3KP/udEeW1L1v/7kDc1/5jZkT5f213 xbTBKTYmyYp9Ucm63UzMQYxngKGosT2PRquh06gW9NAhKEuj4Fc7gZSJF/ZBbSJI KIgv+0pCNuIum5c47ifuINqY/QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFLvRQEUX ghqMvGwgUfIBQ6qnva0wMB8GA1UdIwQYMBaAFOEYlrAMlIbkPudIAtIZafiI7k4t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI0Ny9GMUZFMzJCQTMz QUYxMUVEQjYxMDc0MzRDNEY5QUUwMi80UmlXc0F5VWh1US01MGdDMGhscC1JanVU aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSaVdzQXlVaHVRLTUwZ0MwaGxwLUlqdVRpMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJCNDcvRjFGRTMyQkEzM0FGMTFFREI2MTA3NDM0QzRGOUFFMDIvOTA5Rjk0RjA3 MEY5MTFFREJBNDJGMDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBARuBVADBADLCm8DBADLECcDBADLFywDBAPLGAAwDQYJKoZI hvcNAQELBQADggEBAC4haCPp782cIB6That0HTjpVN6iKz7OXE9YPrRucjyX14/n AHHvjQlVGVfdRD21NeX4RSVI2hjdc+bDHwfXviS5ss1duId3CXFC9JLNAhU5BJkq YWM5ps+QIPYRkKRSZCrdcfJaozd4soL/g5T4gU4GskmVqaskTBpg7XHRWnFG7fQr BnbTawH9Q3xuAw246s9SsOuMeZcHL4VPOrzKjrzd2DrpmxiFKRdOjbEldgkVWAVK bnOl2fN3U2923EkPS86sX3P2IGJaD+AwTIVtOYC3BUyENxPEt+o9H1omKXnZyy8L rfi02Dx6pMM2yZ5l3vhga0R02v4fAW9/DIzv7sY= -----END CERTIFICATE-----Generated at Mon Nov 25 03:00:29 2024 by rpki-client on console-fra.rpki-client.org