$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/44A5887E974011EF8FD14F42C4F9AE02.roa File: 44A5887E974011EF8FD14F42C4F9AE02.roa (raw, json) Hash identifier: XDgfDVSO7Gnjq2fHLozwYtS7v1j4tWJk/8XrPXX6330= Subject key identifier: 4A:08:E9:DF:13:5F:A7:AC:0A:E6:B4:D5:59:D1:78:A0:EC:1F:51:5D Certificate issuer: /CN=A91F6FC3/serialNumber=66025976B75F5C29F42C1D80CF4888F7D46058D7 Certificate serial: 345E Authority key identifier: 66:02:59:76:B7:5F:5C:29:F4:2C:1D:80:CF:48:88:F7:D4:60:58:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/44A5887E974011EF8FD14F42C4F9AE02.roa Signing time: Thu 31 Oct 2024 04:26:16 +0000 ROA not before: Thu 31 Oct 2024 04:26:16 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 10083 IP address blocks: 122.200.172.0/24 maxlen: 24 122.200.175.0/24 maxlen: 24 203.5.127.0/24 maxlen: 24 203.33.71.0/24 maxlen: 24 203.55.18.0/24 maxlen: 24 203.57.78.0/24 maxlen: 24 2402:5600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.crl rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13406 (0x345e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6FC3/serialNumber=66025976B75F5C29F42C1D80CF4888F7D46058D7 Validity Not Before: Oct 31 04:26:16 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=672306e7-2207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:32:35:d2:aa:6b:de:0b:69:41:91:6c:17:f2: 32:99:dd:d0:1c:d8:44:ac:8b:3f:33:13:cc:9a:71: 61:19:c2:c3:01:c4:d7:fc:ea:0a:60:c6:29:fb:1a: 03:95:d5:b4:90:5c:ca:95:33:54:74:49:73:29:d2: 38:68:e7:c3:3d:03:a0:de:ba:91:ca:04:f8:62:07: b7:42:e7:56:7a:ee:f4:3a:6a:af:b5:34:a1:01:18: f3:bb:c7:fd:a0:56:35:20:73:88:67:63:be:6c:d7: 43:1c:bc:e4:b5:b4:b2:7c:d8:cf:ff:6a:f3:14:c6: aa:bf:28:c3:4f:78:d4:30:c0:51:4a:54:07:22:de: 38:c1:3e:3d:9c:f0:f0:3f:98:07:0f:a9:86:35:9e: 10:df:90:2e:9d:84:14:99:34:7a:24:d0:c1:0d:de: 72:2f:ec:c3:77:f6:7f:22:4a:58:a8:c8:3a:d5:61: 09:07:03:e0:1d:28:e2:d6:d7:22:5a:c9:b4:0e:f2: 03:b0:11:dd:b4:9e:b6:6b:03:7a:9d:ea:76:cb:12: e1:e1:04:59:d4:13:1d:39:84:62:e7:67:20:4a:30: b3:7e:1b:a4:83:86:1b:db:25:60:3f:93:7a:ab:60: 8a:71:c1:5e:d7:73:4e:ff:5c:12:e2:bf:22:69:fb: 16:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:08:E9:DF:13:5F:A7:AC:0A:E6:B4:D5:59:D1:78:A0:EC:1F:51:5D X509v3 Authority Key Identifier: keyid:66:02:59:76:B7:5F:5C:29:F4:2C:1D:80:CF:48:88:F7:D4:60:58:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/44A5887E974011EF8FD14F42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.200.172.0/24 122.200.175.0/24 203.5.127.0/24 203.33.71.0/24 203.55.18.0/24 203.57.78.0/24 IPv6: 2402:5600::/32 Signature Algorithm: sha256WithRSAEncryption 5e:37:ae:2f:6d:7e:a4:79:ab:0b:4f:a2:c0:eb:f5:6b:4e:cc: 1c:fc:b8:92:cb:9c:3c:92:9a:33:80:1c:1a:ae:ed:05:99:5e: d3:5a:69:27:be:9a:b3:ab:9c:ae:7d:d3:9c:b2:fa:61:25:45: 0b:73:a7:59:31:d9:91:52:6d:0e:2c:1c:99:9c:6f:3c:f9:4f: ba:c5:26:f5:ff:8a:37:7f:1f:4b:1c:7b:21:f3:c2:1c:32:c4: 09:d7:ce:0b:a9:18:c9:96:9d:48:7d:e3:58:f2:95:be:d8:90: fd:93:fe:1a:d8:ac:72:9d:26:22:d2:02:e6:d8:b1:4f:13:c5: 7e:a1:39:f2:01:aa:65:fa:1e:27:3c:7e:da:c4:31:4f:65:ca: fe:8d:90:81:b8:d9:b2:45:1e:59:b2:8c:fa:70:28:bc:ec:e0: 81:11:e6:7e:70:ee:ef:fe:3e:ee:e4:7c:4f:8f:31:a7:b2:87: 09:d0:45:7f:dc:10:33:79:b5:e7:ca:f3:c8:08:58:35:ec:23: 57:28:c9:9f:86:20:d5:4d:8d:99:86:d8:b4:8f:6f:16:5c:ac: 0d:94:1d:81:e7:24:91:37:05:a3:64:50:b4:64:b2:3b:99:38: 52:0b:4f:2e:4c:80:52:8a:00:0c:e4:13:d0:07:a2:9d:a1:da: e4:e2:24:95 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICNF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZGQzMxMTAvBgNVBAUTKDY2MDI1OTc2Qjc1RjVDMjlGNDJDMUQ4MENGNDg4OEY3 RDQ2MDU4RDcwHhcNMjQxMDMxMDQyNjE2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIzMDZlNy0yMjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTI10qpr3gtpQZFsF/Iymd3QHNhErIs/MxPMmnFhGcLDAcTX/OoKYMYp+xoD ldW0kFzKlTNUdElzKdI4aOfDPQOg3rqRygT4Yge3QudWeu70OmqvtTShARjzu8f9 oFY1IHOIZ2O+bNdDHLzktbSyfNjP/2rzFMaqvyjDT3jUMMBRSlQHIt44wT49nPDw P5gHD6mGNZ4Q35AunYQUmTR6JNDBDd5yL+zDd/Z/IkpYqMg61WEJBwPgHSji1tci Wsm0DvIDsBHdtJ62awN6nep2yxLh4QRZ1BMdOYRi52cgSjCzfhukg4Yb2yVgP5N6 q2CKccFe13NO/1wS4r8iafsWJQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFEoI6d8T X6esCua01VnReKDsH1FdMB8GA1UdIwQYMBaAFGYCWXa3X1wp9CwdgM9IiPfUYFjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkZDMy9GQzkwNzgwMjFE OTIxMUUyQjNCQzJDRjYwOEIwMkNEMi9aZ0paZHJkZlhDbjBMQjJBejBpSTk5UmdX TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnSlpkcmRmWENuMExCMkF6MGlJOTlSZ1dOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZGQzMvRkM5MDc4MDIxRDkyMTFFMkIzQkMyQ0Y2MDhCMDJDRDIvNDRBNTg4N0U5 NzQwMTFFRjhGRDE0RjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAB6yKwDBAB6yK8DBADLBX8DBADLIUcDBADLNxIDBADLOU4w DQQCAAIwBwMFACQCVgAwDQYJKoZIhvcNAQELBQADggEBAF43ri9tfqR5qwtPosDr 9WtOzBz8uJLLnDySmjOAHBqu7QWZXtNaaSe+mrOrnK5905yy+mElRQtzp1kx2ZFS bQ4sHJmcbzz5T7rFJvX/ijd/H0sceyHzwhwyxAnXzgupGMmWnUh941jylb7YkP2T /hrYrHKdJiLSAubYsU8TxX6hOfIBqmX6Hic8ftrEMU9lyv6NkIG42bJFHlmyjPpw KLzs4IER5n5w7u/+Pu7kfE+PMaeyhwnQRX/cEDN5tefK88gIWDXsI1coyZ+GINVN jZmG2LSPbxZcrA2UHYHnJJE3BaNkULRksjuZOFILTy5MgFKKAAzkE9AHop2h2uTi JJU= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:06 2024 by rpki-client on console-ams.rpki-client.org