$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/6549AD3EAC1011ED8592693FC4F9AE02.roa File: 6549AD3EAC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: ksp6qBpZ5kB0EysEaPobcR9QCXbiquNMVXrarPKPN4A= Subject key identifier: 44:8F:2D:13:3F:D7:1D:EB:A3:B3:A4:DE:BE:BA:E2:7B:74:E7:F4:A3 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0143 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/6549AD3EAC1011ED8592693FC4F9AE02.roa Signing time: Tue 03 Sep 2024 04:47:06 +0000 ROA not before: Tue 03 Sep 2024 04:47:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24324 IP address blocks: 202.160.48.0/21 maxlen: 21 202.160.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Sep 3 04:47:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d694ca-962a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cd:ab:e3:f3:b8:c5:de:33:7f:a3:53:7e:96: bc:e5:6b:78:92:c2:c4:5c:b1:d1:b8:04:ff:e8:b9: f0:32:f5:7b:3b:d5:24:8a:65:7b:93:97:7a:45:19: ea:01:f8:1c:16:17:9b:f2:fb:18:35:03:76:d8:1a: d6:72:a5:fa:a9:f3:3e:62:0e:99:3a:a2:66:04:69: 38:b6:f2:8b:7a:85:7d:bd:35:17:23:f7:e3:7a:2c: ab:06:95:bc:6c:10:9e:ec:06:a4:43:a1:4e:85:ef: 6c:0d:0a:bc:fd:5f:91:4b:c3:47:6a:b2:07:87:5a: a8:c7:6b:f9:ce:d6:94:42:1c:3f:8d:9a:c7:13:74: d5:83:6a:01:4c:7d:d7:55:fd:ab:6f:9c:93:a0:4a: 41:2b:b7:47:ac:32:aa:53:2a:fa:91:c4:35:88:b4: b2:57:bb:64:69:f7:a3:b8:d0:68:0d:84:86:c4:86: 1e:7a:bb:b5:55:7c:3d:0d:bf:5f:fb:8f:53:c8:ab: 81:35:8b:97:ba:a8:5a:7d:fd:36:01:12:59:65:69: 17:95:da:40:a1:29:bc:d2:c8:7f:14:8b:02:ff:f3: 0f:8e:be:a2:f4:e7:a6:ee:92:ea:7b:98:7a:11:1c: 32:7f:6f:ad:11:98:b1:f6:3a:d1:a4:4c:26:f6:8b: d3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:8F:2D:13:3F:D7:1D:EB:A3:B3:A4:DE:BE:BA:E2:7B:74:E7:F4:A3 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/6549AD3EAC1011ED8592693FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.48.0/20 Signature Algorithm: sha256WithRSAEncryption ad:11:c1:36:97:d0:57:cb:7f:b3:85:03:29:38:f1:10:b3:9d: 06:f3:45:3f:25:24:e4:6c:88:63:4b:84:b9:21:df:62:03:e4: 2f:8a:29:af:09:ab:e8:3c:40:ea:8e:d5:03:89:df:03:e7:67: b1:88:f2:10:5e:d1:a3:fa:52:80:61:dc:e1:d6:f0:b9:15:ff: 8a:07:6b:cd:12:a6:b4:ea:c2:4c:42:31:d7:2d:15:0e:60:d2: c7:40:e1:74:ad:cf:a5:31:07:3f:ff:55:fe:da:a3:cf:f1:80: fa:83:5f:81:29:1a:e7:41:de:0a:46:26:78:51:92:4c:27:c9: 06:56:41:3e:1b:44:8e:f0:88:11:a6:8f:49:b6:97:25:f6:e6: 5c:fb:e8:ff:95:72:d9:4b:74:9e:94:b4:8d:6d:37:1d:e9:97: c4:19:f0:b0:ee:4e:85:44:e5:a3:56:25:5a:f0:5a:25:7d:92: fc:e8:5d:64:79:cb:af:57:89:15:f7:ee:df:07:51:73:ac:5d: e4:34:fa:e3:b9:1c:f1:ff:33:8b:f7:8f:3d:ce:53:16:44:74: 6d:f2:81:e6:af:c7:78:91:f5:13:98:77:59:7f:77:23:0a:19: 69:34:8f:e5:76:00:08:83:0d:de:a8:c2:6b:e0:20:43:53:fb: 02:ee:3c:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjQwOTAzMDQ0NzA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2OTRjYS05NjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAys2r4/O4xd4zf6NTfpa85Wt4ksLEXLHRuAT/6LnwMvV7O9UkimV7k5d6RRnq AfgcFheb8vsYNQN22BrWcqX6qfM+Yg6ZOqJmBGk4tvKLeoV9vTUXI/fjeiyrBpW8 bBCe7AakQ6FOhe9sDQq8/V+RS8NHarIHh1qox2v5ztaUQhw/jZrHE3TVg2oBTH3X Vf2rb5yToEpBK7dHrDKqUyr6kcQ1iLSyV7tkafejuNBoDYSGxIYeeru1VXw9Db9f +49TyKuBNYuXuqhaff02ARJZZWkXldpAoSm80sh/FIsC//MPjr6i9Oem7pLqe5h6 ERwyf2+tEZix9jrRpEwm9ovT9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFESPLRM/ 1x3ro7Ok3r664nt05/SjMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFOUIvNjlFQjQyQzA5NjBFMTFFRDlBNENFQTY1QzRGOUFFMDIvNjU0OUFEM0VB QzEwMTFFRDg1OTI2OTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKoDAwDQYJKoZIhvcNAQELBQADggEBAK0RwTaX0FfLf7OF Ayk48RCznQbzRT8lJORsiGNLhLkh32ID5C+KKa8Jq+g8QOqO1QOJ3wPnZ7GI8hBe 0aP6UoBh3OHW8LkV/4oHa80SprTqwkxCMdctFQ5g0sdA4XStz6UxBz//Vf7ao8/x gPqDX4EpGudB3gpGJnhRkkwnyQZWQT4bRI7wiBGmj0m2lyX25lz76P+VctlLdJ6U tI1tNx3pl8QZ8LDuToVE5aNWJVrwWiV9kvzoXWR5y69XiRX37t8HUXOsXeQ0+uO5 HPH/M4v3jz3OUxZEdG3ygeavx3iR9ROYd1l/dyMKGWk0j+V2AAiDDd6owmvgIENT +wLuPFA= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:09 2024 by rpki-client on console-fra.rpki-client.org