$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B24078AA6A8D11EB82AF1144C4F9AE02.roa File: B24078AA6A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: Y1TPcrGEzpM0bIqILQ4C9ALw9AKgLR1RhSk1o0bH0yw= Subject key identifier: DE:8F:8F:CF:C8:62:45:85:CD:87:E6:21:C0:F3:54:CA:C8:C3:B0:CF Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 061C Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B24078AA6A8D11EB82AF1144C4F9AE02.roa Signing time: Fri 10 Nov 2023 23:31:34 +0000 ROA not before: Fri 10 Nov 2023 23:31:34 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 10103 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 00:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1564 (0x61c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Nov 10 23:31:34 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654ebd55-b85d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:42:64:ac:31:ba:ea:bb:77:cb:b7:8d:50:cd: 4f:53:73:ec:f6:3f:a5:06:8e:86:c5:57:8d:cc:65: c0:e2:79:72:1c:7c:94:b2:ca:9a:29:17:6d:ae:12: d4:76:fe:7f:09:27:bb:65:17:e1:e2:a7:85:fe:28: d1:4c:78:65:f5:1f:d9:ee:04:c0:5a:91:2b:a7:2f: ab:60:45:fc:86:aa:44:a5:3b:9f:af:8a:a1:67:00: ec:fc:fe:36:86:7e:78:04:47:5d:cf:46:9a:06:bc: 2e:6d:c1:24:12:4d:27:db:86:79:40:c2:6f:9e:07: 91:b1:c1:25:2a:9e:25:2b:71:f0:01:4a:6a:f0:20: b5:c3:97:c0:4e:4b:78:53:6f:61:a9:95:4e:a3:f6: e2:e9:b2:c3:e3:62:81:e6:5a:b2:ef:c2:8d:66:f7: d7:22:33:32:91:0c:8f:6b:6e:8a:1a:47:dc:d4:ca: 6e:64:8e:9d:62:ab:08:27:d5:44:3b:7b:1d:17:c8: b5:80:7b:c5:2c:98:2f:70:c9:96:5a:87:3d:64:5f: 22:5a:ac:ef:34:a5:bb:2e:6d:7c:8d:6c:5c:e7:85: 80:aa:fb:5e:c9:69:51:9d:df:91:5a:50:1a:e4:8a: ab:c6:18:1d:64:e7:27:d9:48:c2:f1:77:e6:ef:8d: 47:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:8F:8F:CF:C8:62:45:85:CD:87:E6:21:C0:F3:54:CA:C8:C3:B0:CF X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B24078AA6A8D11EB82AF1144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 4f:ac:fc:bc:08:16:fa:c5:9a:07:10:c8:ea:47:cc:ef:47:c0: 1c:6a:c1:00:7e:a3:bb:59:47:f7:b5:0d:29:4b:cc:1b:1c:f6: 87:5b:b6:a9:39:7b:e4:4f:15:44:53:c0:0e:4e:49:d2:6f:d1: 2b:b5:56:18:39:1d:2b:59:ed:e6:00:e7:18:60:3f:99:f6:89: d2:0a:46:b1:62:ff:45:93:b3:13:36:eb:5d:87:0a:a9:15:13: 14:44:56:04:e7:0b:55:8c:82:43:f8:15:9f:d2:fa:65:54:4a: e2:b8:9a:98:be:2c:d4:e2:0d:4c:60:bc:06:5e:d0:24:e8:6f: 1d:31:df:10:cc:d5:a2:58:ec:29:59:fa:62:88:3b:ca:4e:56: 84:33:f8:e9:b7:2f:eb:9e:8b:ec:36:8c:03:10:5d:a2:61:c6: 67:a5:59:3e:16:a9:20:b2:10:47:ea:5f:e7:be:73:b4:01:30: 79:2e:dc:a3:13:59:25:8f:b4:e8:58:71:ee:a9:28:19:9b:d4: 43:2f:3d:48:74:0d:79:08:5c:14:55:7d:4d:30:3d:e4:df:5b: 41:40:0e:ff:2c:03:70:25:1c:d9:ab:05:2a:3f:fc:5b:3b:c0: 39:61:0b:05:3e:bc:54:41:b4:c0:f5:a5:9c:a2:17:f8:0a:be: c2:11:14:bf -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICBhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjMxMTEwMjMzMTM0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRlYmQ1NS1iODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkJkrDG66rt3y7eNUM1PU3Ps9j+lBo6GxVeNzGXA4nlyHHyUssqaKRdtrhLU dv5/CSe7ZRfh4qeF/ijRTHhl9R/Z7gTAWpErpy+rYEX8hqpEpTufr4qhZwDs/P42 hn54BEddz0aaBrwubcEkEk0n24Z5QMJvngeRscElKp4lK3HwAUpq8CC1w5fATkt4 U29hqZVOo/bi6bLD42KB5lqy78KNZvfXIjMykQyPa26KGkfc1MpuZI6dYqsIJ9VE O3sdF8i1gHvFLJgvcMmWWoc9ZF8iWqzvNKW7Lm18jWxc54WAqvteyWlRnd+RWlAa 5IqrxhgdZOcn2UjC8Xfm741H4wIDAQABo4IC3zCCAtswHQYDVR0OBBYEFN6Pj8/I YkWFzYfmIcDzVMrIw7DPMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjI0MDc4QUE2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMEcEAgABMEEDBAc6QIADAwA7vAMEAmdUIAMEB3EKgAMEB3sBgAMEAcC8UgME AcoEogMEBstigAMEBsuwwAMEBtLRQAMEB9L1gDANBAIAAjAHAwUAJAFKADANBgkq hkiG9w0BAQsFAAOCAQEAT6z8vAgW+sWaBxDI6kfM70fAHGrBAH6ju1lH97UNKUvM Gxz2h1u2qTl75E8VRFPADk5J0m/RK7VWGDkdK1nt5gDnGGA/mfaJ0gpGsWL/RZOz EzbrXYcKqRUTFERWBOcLVYyCQ/gVn9L6ZVRK4riamL4s1OINTGC8Bl7QJOhvHTHf EMzVoljsKVn6Yog7yk5WhDP46bcv656L7DaMAxBdomHGZ6VZPhapILIQR+pf575z tAEweS7coxNZJY+06Fhx7qkoGZvUQy89SHQNeQhcFFV9TTA95N9bQUAO/ywDcCUc 2asFKj/8WzvAOWELBT68VEG0wPWlnKIX+Aq+whEUvw== -----END CERTIFICATE-----Generated at Fri Jun 7 02:20:47 2024 by rpki-client on console-fra.rpki-client.org