$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ACFAE180970E11EF9CC7623CC4F9AE02.roa File: ACFAE180970E11EF9CC7623CC4F9AE02.roa (raw, json) Hash identifier: XLFFyTyQ5aTiK8WXu9gtf2R7+dyEwOo/BwutuE+hG+o= Subject key identifier: A7:36:DB:2B:30:A1:BC:9E:75:AE:42:63:9A:A0:A9:FC:54:E7:C8:FF Certificate issuer: /CN=A91F6FC3/serialNumber=66025976B75F5C29F42C1D80CF4888F7D46058D7 Certificate serial: 3453 Authority key identifier: 66:02:59:76:B7:5F:5C:29:F4:2C:1D:80:CF:48:88:F7:D4:60:58:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ACFAE180970E11EF9CC7623CC4F9AE02.roa Signing time: Wed 30 Oct 2024 22:31:16 +0000 ROA not before: Wed 30 Oct 2024 22:31:16 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 9301 IP address blocks: 122.200.164.0/24 maxlen: 24 122.200.165.0/24 maxlen: 24 122.200.168.0/24 maxlen: 24 122.200.169.0/24 maxlen: 24 122.200.173.0/24 maxlen: 24 203.4.162.0/24 maxlen: 24 203.5.127.0/24 maxlen: 24 203.31.57.0/24 maxlen: 24 203.31.101.0/24 maxlen: 24 203.33.71.0/24 maxlen: 24 203.57.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.crl rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13395 (0x3453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6FC3/serialNumber=66025976B75F5C29F42C1D80CF4888F7D46058D7 Validity Not Before: Oct 30 22:31:16 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6722b3b4-6fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:79:72:ef:25:d3:f5:7c:ce:68:4c:a9:ac:00: 68:a4:f2:9c:be:9b:a3:c3:a0:c6:8e:fb:78:e8:41: 43:1a:68:56:7b:dd:15:ad:fd:06:62:8b:b9:fa:d4: e4:1f:ec:06:db:c8:b1:8a:67:af:46:de:9d:e7:41: 86:bc:8b:f4:fd:1b:e7:90:5d:14:19:a8:cf:f0:2f: 66:da:f3:38:56:15:d2:4c:6f:61:63:d2:f7:b7:60: 78:a4:68:e1:35:30:ab:68:9c:68:71:c9:5d:7e:2e: 34:9e:58:6b:8a:52:83:eb:f8:9a:28:d6:0d:75:e2: 51:99:ea:9f:f2:fc:78:d3:d6:1f:73:fc:bc:2a:48: 07:15:46:0b:fb:99:59:83:88:7f:7e:bb:e0:f2:3d: 98:a4:2e:32:e0:50:c9:49:6e:12:6f:4a:58:9e:0a: 2e:d8:cd:53:1e:f6:76:ab:0b:d0:02:db:9e:ad:97: cc:21:fe:4d:ec:68:9d:57:75:5b:4e:bc:55:d0:0e: 7d:de:07:68:30:cf:4e:aa:e3:7f:e5:87:80:f9:5c: ef:af:5a:e7:1b:1e:99:02:f9:eb:15:ae:c1:be:22: 70:96:dc:68:e8:da:f7:df:ea:95:bf:ec:ad:be:18: bb:31:12:30:48:81:40:c4:10:7c:0a:9a:85:53:e7: 08:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:36:DB:2B:30:A1:BC:9E:75:AE:42:63:9A:A0:A9:FC:54:E7:C8:FF X509v3 Authority Key Identifier: keyid:66:02:59:76:B7:5F:5C:29:F4:2C:1D:80:CF:48:88:F7:D4:60:58:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ACFAE180970E11EF9CC7623CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.200.164.0/23 122.200.168.0/23 122.200.173.0/24 203.4.162.0/24 203.5.127.0/24 203.31.57.0/24 203.31.101.0/24 203.33.71.0/24 203.57.79.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:60:3f:d1:85:6a:45:05:ab:85:6b:86:a6:c0:c8:fa:6c:79: e6:f9:cf:5b:42:fc:db:bd:cf:9b:53:99:46:5b:26:be:8e:c6: 24:24:bd:b8:0b:25:70:23:fa:8d:fb:5c:f4:c4:5b:f8:3e:21: e7:d3:d0:4c:2c:87:58:d1:dc:1b:30:98:61:56:bf:c8:ff:91: 89:3a:1b:15:3d:f9:ff:93:15:f3:11:72:0f:02:48:01:26:07: 25:1c:cb:72:e8:e1:4d:b7:5d:3a:c1:67:7a:88:48:dd:8f:3b: 7a:22:35:4b:35:19:c5:3a:28:6e:26:fa:a5:5f:99:fb:57:e5: 71:0e:12:7f:e2:ea:85:58:44:ba:3e:8b:d3:cc:65:da:be:70: f5:0f:f1:61:33:e4:07:03:6b:02:ea:10:69:92:3b:d1:0c:55: 17:59:72:fb:04:03:f1:80:76:0b:c7:a7:54:55:ca:f6:0c:5e: 59:d8:b5:ee:cb:af:ec:1d:10:f2:f5:4c:e1:e5:54:f5:7c:ae: 33:c9:51:2d:16:67:26:86:42:20:2f:6d:a3:7a:ff:b4:25:38: 51:5b:39:34:20:24:f5:d6:52:02:51:dc:af:45:1c:43:bc:6e: 0b:9a:91:1c:4a:a3:20:8a:f5:53:90:23:9a:c8:ef:d2:1b:b2: de:57:b5:7c -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgICNFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZGQzMxMTAvBgNVBAUTKDY2MDI1OTc2Qjc1RjVDMjlGNDJDMUQ4MENGNDg4OEY3 RDQ2MDU4RDcwHhcNMjQxMDMwMjIzMTE2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIyYjNiNC02ZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHly7yXT9XzOaEyprABopPKcvpujw6DGjvt46EFDGmhWe90Vrf0GYou5+tTk H+wG28iximevRt6d50GGvIv0/RvnkF0UGajP8C9m2vM4VhXSTG9hY9L3t2B4pGjh NTCraJxoccldfi40nlhrilKD6/iaKNYNdeJRmeqf8vx409Yfc/y8KkgHFUYL+5lZ g4h/frvg8j2YpC4y4FDJSW4Sb0pYngou2M1THvZ2qwvQAtuerZfMIf5N7GidV3Vb TrxV0A593gdoMM9OquN/5YeA+Vzvr1rnGx6ZAvnrFa7BviJwltxo6Nr33+qVv+yt vhi7MRIwSIFAxBB8CpqFU+cIkwIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFKc22ysw obyeda5CY5qgqfxU58j/MB8GA1UdIwQYMBaAFGYCWXa3X1wp9CwdgM9IiPfUYFjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkZDMy9GQzkwNzgwMjFE OTIxMUUyQjNCQzJDRjYwOEIwMkNEMi9aZ0paZHJkZlhDbjBMQjJBejBpSTk5UmdX TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnSlpkcmRmWENuMExCMkF6MGlJOTlSZ1dOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZGQzMvRkM5MDc4MDIxRDkyMTFFMkIzQkMyQ0Y2MDhCMDJDRDIvQUNGQUUxODA5 NzBFMTFFRjlDQzc2MjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E QDA+MDwEAgABMDYDBAF6yKQDBAF6yKgDBAB6yK0DBADLBKIDBADLBX8DBADLHzkD BADLH2UDBADLIUcDBADLOU8wDQYJKoZIhvcNAQELBQADggEBAFxgP9GFakUFq4Vr hqbAyPpseeb5z1tC/Nu9z5tTmUZbJr6OxiQkvbgLJXAj+o37XPTEW/g+IefT0Ews h1jR3BswmGFWv8j/kYk6GxU9+f+TFfMRcg8CSAEmByUcy3Lo4U23XTrBZ3qISN2P O3oiNUs1GcU6KG4m+qVfmftX5XEOEn/i6oVYRLo+i9PMZdq+cPUP8WEz5AcDawLq EGmSO9EMVRdZcvsEA/GAdgvHp1RVyvYMXlnYte7Lr+wdEPL1TOHlVPV8rjPJUS0W ZyaGQiAvbaN6/7QlOFFbOTQgJPXWUgJR3K9FHEO8bguakRxKoyCK9VOQI5rI79Ib st5XtXw= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:06 2024 by rpki-client on console-ams.rpki-client.org