$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa File: E26173CE050611EAA0470B49C4F9AE02.roa (raw, json) Hash identifier: Xn8UFabkBh7C11XTNFuqVWX0DQ3YtKdO4oP8X6zIrEU= Subject key identifier: 01:4B:16:C5:1D:1B:EF:2F:DE:29:7B:E4:8C:DA:CC:16:43:F5:35:E8 Certificate issuer: /CN=A91B3CB5/serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Certificate serial: 0C0B Authority key identifier: 13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa Signing time: Mon 25 Nov 2024 04:15:49 +0000 ROA not before: Mon 25 Nov 2024 04:15:49 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 56132 IP address blocks: 43.246.232.0/22 maxlen: 22 49.127.0.0/16 maxlen: 16 59.191.208.0/20 maxlen: 20 59.191.220.0/22 maxlen: 22 103.35.228.0/22 maxlen: 22 118.138.0.0/16 maxlen: 16 118.138.232.0/21 maxlen: 21 118.138.240.0/21 maxlen: 21 118.139.0.0/17 maxlen: 17 203.6.141.0/24 maxlen: 24 2404:2400::/32 maxlen: 32 2404:2400::/40 maxlen: 40 2404:2400::/44 maxlen: 44 2404:2400::/48 maxlen: 48 2404:2400:100::/40 maxlen: 40 2404:2400:100::/44 maxlen: 44 2404:2400:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5, serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Validity Not Before: Nov 25 04:15:49 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6743f9f5-d5c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:de:ec:27:3c:a9:2e:38:7c:47:c5:67:ea:7a: 1c:cc:89:36:3f:92:3b:be:e6:f9:ad:94:37:62:3f: e8:f8:c9:f7:32:f1:02:db:0f:14:6b:c3:4c:14:b5: 31:9b:ec:be:77:ac:7b:7e:de:a4:47:69:0f:04:23: 17:eb:bf:f4:c9:99:dc:2b:69:18:7b:0e:dd:69:8a: e9:1d:b0:58:7d:f3:e9:55:5a:95:ac:7f:10:9f:36: e0:6a:94:08:7f:c2:af:62:ea:6e:23:30:40:8c:27: 37:29:7a:4c:09:25:1f:56:19:05:55:bf:39:91:0b: 11:82:27:5f:c1:68:e0:10:14:bc:47:53:69:80:95: 5f:5d:b7:80:50:9c:82:e5:75:19:32:99:0c:59:d5: ab:da:16:a4:08:ac:a1:1a:60:bf:12:c0:0a:c6:ff: 1f:bd:8c:21:a3:ad:c6:60:9e:53:f9:6c:12:e7:d1: a2:f6:3f:74:2c:3f:71:6f:25:36:58:20:e9:89:26: ea:fe:89:e8:82:ae:f1:08:0b:60:ec:32:71:16:f9: 6d:a8:b6:38:5c:99:a6:8b:03:4d:3d:93:2e:48:d2: 74:9c:3b:d7:dd:3c:35:64:58:21:eb:f8:34:f3:4b: 67:a1:2d:b5:2c:25:65:a3:39:76:51:4c:88:92:89: da:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:4B:16:C5:1D:1B:EF:2F:DE:29:7B:E4:8C:DA:CC:16:43:F5:35:E8 X509v3 Authority Key Identifier: keyid:13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.232.0/22 49.127.0.0/16 59.191.208.0/20 103.35.228.0/22 118.138.0.0-118.139.127.255 203.6.141.0/24 IPv6: 2404:2400::/32 Signature Algorithm: sha256WithRSAEncryption c1:2c:2b:0b:d8:b3:a4:85:9e:7f:a0:01:0e:97:2a:91:af:85: 7d:27:82:e7:d5:fb:7f:c5:55:d8:19:e6:f9:1c:c8:c2:bc:25: 3a:ad:34:ad:48:98:b7:4a:36:75:db:59:66:41:4c:4f:7a:46: 60:1d:fd:d5:3b:d1:f0:48:da:10:4b:e1:e4:5b:01:92:44:64: 15:b9:6e:d6:67:1f:9b:43:88:e4:af:cd:f7:a5:0f:11:3a:c4: 41:e5:6d:7c:e2:af:f5:c7:45:af:6d:6f:2c:5e:41:0d:1e:08: 14:e2:46:40:81:7d:70:f8:89:58:ef:57:b0:e6:75:81:3e:33: d5:1d:4d:3b:20:f4:3b:0a:a1:79:7d:be:c2:e5:11:ce:7f:15: b4:54:5c:06:ed:5f:61:c5:92:e3:48:a3:ee:bf:7e:90:5c:ea: dd:29:bb:bf:8d:b2:78:5b:79:b4:dd:0e:8e:47:e8:6e:89:54: e2:a4:42:c8:9d:b4:ee:da:39:57:12:92:dd:0e:9d:42:48:e4: b7:bf:d2:d9:6a:11:62:87:77:d8:20:7f:c0:ad:70:8f:49:21: 17:59:f3:4e:5d:9e:31:36:4b:4d:04:4d:91:6b:58:2f:49:9e: a2:5d:0f:4c:b8:4c:9e:62:45:55:b3:5e:6a:e0:ef:2c:58:ca: f9:f2:d3:3c -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQjUxMTAvBgNVBAUTKDEzNTVENTE4N0QyRTYzRDdFNkQ0OTA3OEQ4RTcxRkEw NTFDNDU2RTMwHhcNMjQxMTI1MDQxNTQ5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQzZjlmNS1kNWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4N7sJzypLjh8R8Vn6noczIk2P5I7vub5rZQ3Yj/o+Mn3MvEC2w8Ua8NMFLUx m+y+d6x7ft6kR2kPBCMX67/0yZncK2kYew7daYrpHbBYffPpVVqVrH8QnzbgapQI f8KvYupuIzBAjCc3KXpMCSUfVhkFVb85kQsRgidfwWjgEBS8R1NpgJVfXbeAUJyC 5XUZMpkMWdWr2hakCKyhGmC/EsAKxv8fvYwho63GYJ5T+WwS59Gi9j90LD9xbyU2 WCDpiSbq/onogq7xCAtg7DJxFvltqLY4XJmmiwNNPZMuSNJ0nDvX3Tw1ZFgh6/g0 80tnoS21LCVlozl2UUyIkonaOQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFAFLFsUd G+8v3il75IzazBZD9TXoMB8GA1UdIwQYMBaAFBNV1Rh9LmPX5tSQeNjnH6BRxFbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NCNS82MzI2NTBGODA1 MDUxMUVBQUE5MzRDNDNDNEY5QUUwMi9FMVhWR0gwdVk5Zm0xSkI0Mk9jZm9GSEVW dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UxWFZHSDB1WTlmbTFKQjQyT2Nmb0ZIRVZ1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQjUvNjMyNjUwRjgwNTA1MTFFQUFBOTM0QzQzQzRGOUFFMDIvRTI2MTczQ0Uw NTA2MTFFQUEwNDcwQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIr9ugDAwAxfwMEBDu/0AMEAmcj5DALAwMBdooDBAd2iwAD BADLBo0wDQQCAAIwBwMFACQEJAAwDQYJKoZIhvcNAQELBQADggEBAMEsKwvYs6SF nn+gAQ6XKpGvhX0ngufV+3/FVdgZ5vkcyMK8JTqtNK1ImLdKNnXbWWZBTE96RmAd /dU70fBI2hBL4eRbAZJEZBW5btZnH5tDiOSvzfelDxE6xEHlbXzir/XHRa9tbyxe QQ0eCBTiRkCBfXD4iVjvV7DmdYE+M9UdTTsg9DsKoXl9vsLlEc5/FbRUXAbtX2HF kuNIo+6/fpBc6t0pu7+NsnhbebTdDo5H6G6JVOKkQsidtO7aOVcSkt0OnUJI5Le/ 0tlqEWKHd9ggf8CtcI9JIRdZ805dnjE2S00ETZFrWC9JnqJdD0y4TJ5iRVWzXmrg 7yxYyvny0zw= -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:41 2025 by rpki-client