$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa File: 665497A2AC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: qaqh2gmAH0q0AVhnqHVnbULHtQ39NeqtniJ4X0tiZyw= Subject key identifier: 00:06:6E:34:33:20:30:61:6E:86:40:A5:90:72:C4:A1:FA:CD:B8:43 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 7E Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa Signing time: Thu 31 Aug 2023 04:54:09 +0000 ROA not before: Thu 31 Aug 2023 04:54:09 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 24006 IP address blocks: 202.160.48.0/21 maxlen: 21 202.160.56.0/21 maxlen: 21 2400:b400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Aug 31 04:54:09 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f01cf1-4aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:38:b1:da:b3:d6:03:9e:e8:90:b2:5b:4b:59: 11:2e:6f:b6:b4:33:4b:5b:d9:9a:93:f7:31:4e:c9: 22:4e:64:f6:6b:20:7d:56:dc:ac:2b:46:70:fe:f1: 52:69:9a:62:3a:63:06:d8:38:12:98:5e:75:9c:f8: 07:ab:37:6a:4c:f8:7b:6b:e8:d9:b5:de:d2:5d:9f: 78:15:93:ee:5e:28:c1:96:ae:26:d7:e9:b7:66:1b: 09:63:75:ca:53:0e:5d:16:5b:8d:d6:24:92:5d:42: 11:9f:fd:8a:e8:e0:88:41:24:39:93:96:4a:78:3b: 1b:5d:53:35:25:cb:a0:e2:63:51:86:b5:ff:61:b5: 36:f0:03:ff:cb:67:14:16:ec:58:68:35:e0:93:ec: 62:8f:c2:ca:c1:6d:e8:f8:9c:22:c0:88:9a:0e:90: c2:a2:f3:f1:03:4e:ea:90:db:fe:f1:43:89:c1:6c: 65:1a:f5:2b:42:4e:5d:12:42:f9:dd:c6:00:d4:5a: d8:35:24:06:ec:f5:da:e9:01:3e:3a:15:21:41:b7: 42:2b:e1:4a:a2:0b:74:67:ba:d2:ee:34:bf:bc:2d: 5f:6b:2a:80:27:f5:b8:f6:72:dc:4a:9e:89:2f:3e: 07:95:76:b8:72:19:15:72:1f:6c:ab:6a:07:41:d7: 7c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:06:6E:34:33:20:30:61:6E:86:40:A5:90:72:C4:A1:FA:CD:B8:43 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.48.0/20 IPv6: 2400:b400::/32 Signature Algorithm: sha256WithRSAEncryption 40:14:19:5a:8b:6d:06:1c:e2:27:d1:c0:27:bb:49:da:ad:7f: af:78:26:9d:be:9c:af:c3:6f:89:5d:ed:a1:ef:e8:99:06:10: f6:be:30:62:6c:fc:f4:5e:53:35:ef:78:82:a4:bd:43:66:92: 88:c1:0c:72:c6:10:2a:b7:9e:99:5b:93:02:33:e9:81:9e:ff: 27:54:3e:82:c6:31:20:d4:6b:0c:c0:46:b0:08:c0:36:b5:b3: 62:3f:94:fc:2e:d2:0c:91:7e:49:89:c7:89:6b:f0:d2:8f:63: fe:1b:86:78:69:8d:fe:93:ab:7b:3d:4b:44:f4:8f:3d:83:f9: 96:35:c3:63:71:cc:e5:6b:0f:0f:d1:1e:5c:df:87:c7:c9:e9: 4b:1c:19:2a:00:85:31:08:2e:1b:49:a5:e5:99:52:e4:3a:26: 30:b4:92:12:b7:fd:78:f9:70:e9:00:26:97:2c:71:06:24:91: 2d:f2:f2:50:49:65:26:b2:01:9a:ed:e1:d2:9d:3f:43:39:02: e7:18:d8:e3:40:b8:80:9d:11:e9:3b:1d:80:15:79:bb:e7:ed: 9e:68:78:e5:4c:88:be:89:60:2e:52:bc:76:21:d3:48:88:55: f9:88:54:93:10:57:4e:b3:c7:55:43:01:ae:ca:1d:90:28:cb: bb:a8:90:fa -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OEU5QjExMC8GA1UEBRMoNDQ2NzkyNDM5MjU4MTgyQTdBMUU0REE0QjJDMDZGQUQy QUFFRTRCOTAeFw0yMzA4MzEwNDU0MDlaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZjAxY2YxLTRhZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMOLHas9YDnuiQsltLWREub7a0M0tb2ZqT9zFOySJOZPZrIH1W3KwrRnD+8VJp mmI6YwbYOBKYXnWc+AerN2pM+Htr6Nm13tJdn3gVk+5eKMGWribX6bdmGwljdcpT Dl0WW43WJJJdQhGf/Yro4IhBJDmTlkp4OxtdUzUly6DiY1GGtf9htTbwA//LZxQW 7FhoNeCT7GKPwsrBbej4nCLAiJoOkMKi8/EDTuqQ2/7xQ4nBbGUa9StCTl0SQvnd xgDUWtg1JAbs9drpAT46FSFBt0Ir4UqiC3RnutLuNL+8LV9rKoAn9bj2ctxKnokv PgeVdrhyGRVyH2yragdB13z3AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUAAZuNDMg MGFuhkClkHLEofrNuEMwHwYDVR0jBBgwFoAURGeSQ5JYGCp6Hk2kssBvrSqu5Lkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4RTlCLzY5RUI0MkMwOTYw RTExRUQ5QTRDRUE2NUM0RjlBRTAyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVM ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUkdlU1E1SllHQ3A2SGsya3NzQnZyU3F1NUxrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEU5Qi82OUVCNDJDMDk2MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi82NjU0OTdBMkFD MTAxMUVEODU5MjY5M0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEBMqgMDANBAIAAjAHAwUAJAC0ADANBgkqhkiG9w0BAQsFAAOC AQEAQBQZWottBhziJ9HAJ7tJ2q1/r3gmnb6cr8NviV3toe/omQYQ9r4wYmz89F5T Ne94gqS9Q2aSiMEMcsYQKreemVuTAjPpgZ7/J1Q+gsYxINRrDMBGsAjANrWzYj+U /C7SDJF+SYnHiWvw0o9j/huGeGmN/pOrez1LRPSPPYP5ljXDY3HM5WsPD9EeXN+H x8npSxwZKgCFMQguG0ml5ZlS5DomMLSSErf9ePlw6QAmlyxxBiSRLfLyUEllJrIB mu3h0p0/QzkC5xjY40C4gJ0R6TsdgBV5u+ftnmh45UyIvolgLlK8diHTSIhV+YhU kxBXTrPHVUMBrsodkCjLu6iQ+g== -----END CERTIFICATE-----Generated at Mon May 27 06:19:24 2024 by rpki-client on console-fra.rpki-client.org