$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa File: 665497A2AC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: 5cknTz/azpX9sHHI7VxRFMrA+eqmREBfLXzZWKlWnBA= Subject key identifier: AE:3F:77:2F:71:DE:E1:7A:DB:34:90:B7:7C:43:96:81:25:D6:9A:E6 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0141 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa Signing time: Tue 03 Sep 2024 04:47:04 +0000 ROA not before: Tue 03 Sep 2024 04:47:04 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24006 IP address blocks: 202.160.48.0/21 maxlen: 21 202.160.56.0/21 maxlen: 21 2400:b400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Sep 3 04:47:04 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d694c8-3ff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4f:1e:6c:23:22:8e:6a:5f:e7:91:24:5f:5f: 54:d7:69:0d:40:1b:16:29:dd:b4:be:7f:a7:ec:81: 54:5d:53:da:28:4c:f2:8b:ad:2a:4b:b8:ac:2a:cf: 9d:78:b9:64:91:08:57:b5:96:fe:43:dd:d0:d8:7c: 52:e9:34:0d:1f:d3:00:30:23:7a:45:c8:fe:cc:aa: ef:aa:df:d1:c8:72:d3:a2:c3:92:5f:d3:c1:f1:59: e2:dc:88:2a:92:57:f6:a1:f2:76:40:db:60:2b:86: 09:94:cb:f8:59:da:59:ea:eb:86:e3:17:34:00:4e: 0e:7f:27:e6:79:4b:22:58:6a:2a:ba:c1:a9:45:21: e0:06:de:ae:36:cb:a7:71:83:a8:d9:74:0f:80:3f: 05:87:45:1a:b3:dc:26:47:53:41:2c:4c:34:a6:98: cf:f2:d5:3f:c1:2d:ef:c3:15:a2:8e:33:3d:a3:88: 95:9d:a2:5e:bc:c9:18:09:18:10:83:81:7e:6d:79: ed:5c:59:d4:d0:bb:e2:55:2b:93:b0:48:55:b7:b5: d4:88:9e:1a:2d:65:5d:54:15:08:02:54:11:a6:73: f9:de:bd:b6:f2:36:cb:50:0d:5e:35:a6:6e:93:f4: 9f:81:e7:e2:96:b4:89:d5:26:80:dc:63:b8:01:51: 65:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:3F:77:2F:71:DE:E1:7A:DB:34:90:B7:7C:43:96:81:25:D6:9A:E6 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.48.0/20 IPv6: 2400:b400::/32 Signature Algorithm: sha256WithRSAEncryption bb:9d:eb:b7:64:4d:95:aa:e3:96:7c:ce:35:b5:29:8d:9f:62: 0f:4e:fd:46:2f:57:b4:04:1d:95:89:6e:2d:72:e2:74:73:79: 0d:e8:c6:c0:e4:e8:bd:88:ac:e8:76:8b:ac:07:06:69:56:f3: bf:52:4b:b3:f9:fc:86:64:88:b0:81:eb:5f:4a:77:a8:3b:35: 5d:b4:dd:c1:ee:dd:95:e6:0f:4b:da:96:a1:bf:b5:11:55:66: 61:fe:da:64:9a:72:54:fd:69:38:54:27:c1:1d:e3:2b:8b:27: f0:3c:d9:89:77:f3:16:1f:bf:4e:c5:ec:fd:d8:9b:eb:2f:da: 62:95:c8:79:58:4f:02:fb:c8:8f:9e:c1:54:fa:57:06:96:0a: f0:48:b0:c5:d7:44:49:7e:73:44:f7:a3:89:dc:33:3c:cb:01: 58:f7:68:63:b1:36:c3:0c:a2:fa:7d:17:ff:b1:d5:5d:39:f8: 1a:4a:0c:2f:82:9a:b3:bb:05:5f:de:f7:7f:46:7a:1b:68:4a: fd:56:5e:a8:2b:a0:b1:8a:c6:5c:45:4b:b5:f9:10:87:30:3b: a8:20:ce:6d:59:bd:63:e2:cd:63:b3:69:17:2a:e3:a7:b4:bc: 9d:e6:8a:6a:0f:83:aa:e7:cd:04:fc:9a:12:bc:ae:59:99:60: 76:9c:cc:3a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjQwOTAzMDQ0NzA0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2OTRjOC0zZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnE8ebCMijmpf55EkX19U12kNQBsWKd20vn+n7IFUXVPaKEzyi60qS7isKs+d eLlkkQhXtZb+Q93Q2HxS6TQNH9MAMCN6Rcj+zKrvqt/RyHLTosOSX9PB8Vni3Igq klf2ofJ2QNtgK4YJlMv4WdpZ6uuG4xc0AE4OfyfmeUsiWGoqusGpRSHgBt6uNsun cYOo2XQPgD8Fh0Uas9wmR1NBLEw0ppjP8tU/wS3vwxWijjM9o4iVnaJevMkYCRgQ g4F+bXntXFnU0LviVSuTsEhVt7XUiJ4aLWVdVBUIAlQRpnP53r228jbLUA1eNaZu k/SfgefilrSJ1SaA3GO4AVFlCQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK4/dy9x 3uF62zSQt3xDloEl1prmMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFOUIvNjlFQjQyQzA5NjBFMTFFRDlBNENFQTY1QzRGOUFFMDIvNjY1NDk3QTJB QzEwMTFFRDg1OTI2OTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBATKoDAwDQQCAAIwBwMFACQAtAAwDQYJKoZIhvcNAQELBQAD ggEBALud67dkTZWq45Z8zjW1KY2fYg9O/UYvV7QEHZWJbi1y4nRzeQ3oxsDk6L2I rOh2i6wHBmlW879SS7P5/IZkiLCB619Kd6g7NV203cHu3ZXmD0valqG/tRFVZmH+ 2mSaclT9aThUJ8Ed4yuLJ/A82Yl38xYfv07F7P3Ym+sv2mKVyHlYTwL7yI+ewVT6 VwaWCvBIsMXXREl+c0T3o4ncMzzLAVj3aGOxNsMMovp9F/+x1V05+BpKDC+CmrO7 BV/e939GehtoSv1WXqgroLGKxlxFS7X5EIcwO6ggzm1ZvWPizWOzaRcq46e0vJ3m imoPg6rnzQT8mhK8rlmZYHaczDo= -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org