$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/163AF95074D011ECA22BB248C4F9AE02.roa File: 163AF95074D011ECA22BB248C4F9AE02.roa (raw, json) Hash identifier: hmFZEklS7232HSEBl5X/5WIBk5f8ooZ9kl7W3a5q2xk= Subject key identifier: CC:23:35:C5:0A:8D:3C:6C:71:BC:9F:9F:20:00:9D:4C:8D:45:FE:10 Certificate issuer: /CN=A91FAEE4/serialNumber=73C0E01890FF3067601062A12E54BD54379091B6 Certificate serial: 0430 Authority key identifier: 73:C0:E0:18:90:FF:30:67:60:10:62:A1:2E:54:BD:54:37:90:91:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8DgGJD_MGdgEGKhLlS9VDeQkbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/163AF95074D011ECA22BB248C4F9AE02.roa Signing time: Thu 05 Sep 2024 01:33:40 +0000 ROA not before: Thu 05 Sep 2024 01:33:40 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9336 IP address blocks: 45.64.56.0/22 maxlen: 24 103.18.124.0/22 maxlen: 24 103.233.224.0/22 maxlen: 24 118.127.96.0/19 maxlen: 24 203.153.192.0/20 maxlen: 24 218.185.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/c8DgGJD_MGdgEGKhLlS9VDeQkbY.crl rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/c8DgGJD_MGdgEGKhLlS9VDeQkbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8DgGJD_MGdgEGKhLlS9VDeQkbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1072 (0x430) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAEE4/serialNumber=73C0E01890FF3067601062A12E54BD54379091B6 Validity Not Before: Sep 5 01:33:40 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d90a74-2101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cc:e4:b2:32:9d:a8:f5:9e:37:54:69:6e:8e: b5:66:4e:e0:75:97:fd:56:4a:9d:4b:f6:96:8f:cb: 16:f8:99:97:69:38:42:d0:2e:d8:a0:33:f0:9d:94: 05:93:03:ac:97:6d:e3:de:10:21:81:89:c7:7f:6d: 43:35:ff:95:b5:f5:fb:05:83:2d:cc:5f:7c:00:03: d9:6e:59:c9:c5:8c:48:15:2f:21:7d:84:25:f6:71: cf:83:81:78:db:0a:7a:b5:fc:3c:db:b5:79:37:a2: 7b:3f:f2:c0:52:07:66:1b:2a:ce:c7:ea:e4:56:f0: 87:c4:8f:ef:42:e5:60:64:ca:e5:74:94:9f:18:ed: cf:12:40:4f:bb:52:42:01:44:a6:45:10:90:13:d1: c7:75:c9:41:41:60:6a:0a:06:07:dc:89:19:0f:47: b1:7a:d5:6e:9d:c4:3a:59:49:93:86:d2:64:8f:c4: 65:56:bf:2c:b7:01:c6:8c:3f:06:bb:d6:fc:9c:3d: 44:2d:16:0b:5a:6c:0e:d9:86:ac:78:80:0e:c9:11: 15:c4:a2:59:ba:43:60:36:9c:2a:ca:69:63:4e:94: b5:f3:9a:ec:49:2e:02:df:36:0d:98:4f:f4:05:f9: ca:a6:8e:9d:c0:9d:7d:c3:e2:93:79:94:0b:30:71: 5c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:23:35:C5:0A:8D:3C:6C:71:BC:9F:9F:20:00:9D:4C:8D:45:FE:10 X509v3 Authority Key Identifier: keyid:73:C0:E0:18:90:FF:30:67:60:10:62:A1:2E:54:BD:54:37:90:91:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/c8DgGJD_MGdgEGKhLlS9VDeQkbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8DgGJD_MGdgEGKhLlS9VDeQkbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/163AF95074D011ECA22BB248C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.56.0/22 103.18.124.0/22 103.233.224.0/22 118.127.96.0/19 203.153.192.0/20 218.185.232.0/21 Signature Algorithm: sha256WithRSAEncryption 2f:4b:52:bb:6e:bf:ef:0b:10:14:cf:53:65:71:a3:ac:39:20: fe:1a:f6:fe:92:8e:5f:df:38:22:88:4a:8a:f7:6e:1c:cf:88: 9c:8d:54:0b:01:4c:f6:c0:6a:17:08:bf:34:19:1b:aa:ef:85: 25:93:1f:a1:95:bf:81:56:ea:09:67:99:02:57:8b:37:b0:27: 16:02:08:74:b5:81:4e:9e:8f:91:17:22:71:64:dd:ca:64:b6: 39:1e:7c:c1:2c:40:0a:08:e2:ed:31:5b:d6:53:c6:c8:92:fd: 08:f1:8a:73:5d:53:58:4d:15:8a:bc:73:25:79:04:23:c9:e8: 1f:8c:a1:57:b4:06:e5:95:db:11:a6:ed:ce:7c:49:d5:d9:9b: de:f6:da:59:64:a9:ce:bd:ac:b8:7a:be:ff:c6:82:22:30:c9: 81:82:b7:ce:d5:df:cc:a1:40:6e:43:85:90:6a:71:e0:6f:41: 08:ed:42:5a:e0:e9:c5:bb:99:96:eb:3e:98:68:26:58:3c:d4: 47:fc:7e:e5:7a:2f:d1:c6:63:b9:6b:a6:ba:91:31:67:7d:f1: f0:f3:73:f8:13:95:6a:fe:37:5c:84:34:a7:1e:16:65:13:1d: c2:0b:84:eb:12:59:42:f9:9d:78:38:08:a0:37:ef:69:24:c1: 41:f2:d0:aa -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICBDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRTQxMTAvBgNVBAUTKDczQzBFMDE4OTBGRjMwNjc2MDEwNjJBMTJFNTRCRDU0 Mzc5MDkxQjYwHhcNMjQwOTA1MDEzMzQwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MGE3NC0yMTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18zksjKdqPWeN1Rpbo61Zk7gdZf9VkqdS/aWj8sW+JmXaThC0C7YoDPwnZQF kwOsl23j3hAhgYnHf21DNf+VtfX7BYMtzF98AAPZblnJxYxIFS8hfYQl9nHPg4F4 2wp6tfw827V5N6J7P/LAUgdmGyrOx+rkVvCHxI/vQuVgZMrldJSfGO3PEkBPu1JC AUSmRRCQE9HHdclBQWBqCgYH3IkZD0exetVuncQ6WUmThtJkj8RlVr8stwHGjD8G u9b8nD1ELRYLWmwO2YaseIAOyREVxKJZukNgNpwqymljTpS185rsSS4C3zYNmE/0 BfnKpo6dwJ19w+KTeZQLMHFcgQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFMwjNcUK jTxscbyfnyAAnUyNRf4QMB8GA1UdIwQYMBaAFHPA4BiQ/zBnYBBioS5UvVQ3kJG2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVFNC85QzI2RTZDODJG REUxMUVDQUQ3NDdGNjhDNEY5QUUwMi9jOERnR0pEX01HZGdFR0toTGxTOVZEZVFr YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M4RGdHSkRfTUdkZ0VHS2hMbFM5VkRlUWtiWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFFRTQvOUMyNkU2QzgyRkRFMTFFQ0FENzQ3RjY4QzRGOUFFMDIvMTYzQUY5NTA3 NEQwMTFFQ0EyMkJCMjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAItQDgDBAJnEnwDBAJn6eADBAV2f2ADBATLmcADBAPauegw DQYJKoZIhvcNAQELBQADggEBAC9LUrtuv+8LEBTPU2Vxo6w5IP4a9v6Sjl/fOCKI Sor3bhzPiJyNVAsBTPbAahcIvzQZG6rvhSWTH6GVv4FW6glnmQJXizewJxYCCHS1 gU6ej5EXInFk3cpktjkefMEsQAoI4u0xW9ZTxsiS/QjxinNdU1hNFYq8cyV5BCPJ 6B+MoVe0BuWV2xGm7c58SdXZm9722llkqc69rLh6vv/GgiIwyYGCt87V38yhQG5D hZBqceBvQQjtQlrg6cW7mZbrPphoJlg81Ef8fuV6L9HGY7lrprqRMWd98fDzc/gT lWr+N1yENKceFmUTHcILhOsSWUL5nXg4CKA372kkwUHy0Ko= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:39 2024 by rpki-client on console-fra.rpki-client.org