$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa File: B46F239C6A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: 6x2ixsBSMwiLEmIA6O0wGTbXHcweHfzX1rid15t/l5o= Subject key identifier: 21:E8:9B:D5:F6:23:8D:3E:FC:C2:EE:25:08:FC:26:A6:A4:80:A8:92 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 0620 Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa Signing time: Fri 10 Nov 2023 23:31:37 +0000 ROA not before: Fri 10 Nov 2023 23:31:37 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 9269 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 00:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1568 (0x620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Nov 10 23:31:37 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654ebd59-f9ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5b:7b:2a:2e:fb:ea:9a:37:c6:ca:92:a5:dd: f0:6b:98:26:f9:c0:c2:cc:09:50:99:0f:e8:60:5c: a3:7d:68:40:2b:5e:9f:f9:d6:48:c1:5d:72:46:7f: fe:0b:6c:8f:23:b9:ac:f4:ce:f0:e5:c5:6d:2b:f9: 96:fb:5b:5d:f0:92:75:47:44:f3:49:2d:4e:10:11: 4c:bb:e6:8f:12:32:0e:12:e4:9c:c7:62:e2:62:ec: e6:62:09:8a:6b:ff:0a:f1:58:ab:e2:3e:11:97:27: bb:10:cc:4e:56:f5:95:ad:80:13:02:88:ae:61:53: 9a:11:1b:82:f3:eb:c7:52:b0:e6:0b:cf:85:2e:d1: 51:f5:12:59:41:52:9e:45:5b:24:ef:8b:ee:93:29: 23:3b:8a:19:ea:21:df:7a:51:0f:57:88:d9:0f:c2: 3f:f9:9e:5a:25:82:d6:4b:32:6f:f7:01:6f:e4:44: e3:c1:88:dd:bc:e8:48:d2:dd:5d:a4:4c:52:9b:5c: 32:d2:6b:7c:02:c4:ea:47:f1:59:f5:93:05:a4:ea: a2:0d:91:19:7d:3d:53:1b:64:cb:3d:98:9b:34:1b: e7:79:b8:15:90:06:d5:ce:41:c3:f0:fe:ca:54:02: e4:60:a8:33:54:5b:0e:a3:92:56:89:b6:85:cd:47: 02:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E8:9B:D5:F6:23:8D:3E:FC:C2:EE:25:08:FC:26:A6:A4:80:A8:92 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 9b:3d:ba:e4:d4:ce:4d:6f:cc:bd:17:95:9f:11:38:ea:d2:ee: de:12:8a:6e:4a:3e:07:b8:23:26:20:ec:be:df:48:09:cf:e9: ca:36:c1:8e:a9:ca:62:d2:ad:30:bb:2d:5f:bf:9a:b6:c0:f2: 24:97:7c:8f:25:e9:2a:c1:08:bb:8a:29:a5:5f:22:ce:d5:10: 8a:2f:38:e4:3a:ae:5a:3e:41:fa:f5:a8:45:09:d6:65:64:4b: f4:bc:0a:21:ca:8c:59:00:0a:67:6d:21:1c:58:41:02:b5:e5: 5d:1a:ef:aa:92:37:32:69:f5:30:d0:98:3c:9c:6f:dd:83:38: 53:85:a8:d9:17:46:04:5d:1c:41:76:26:ca:ae:ea:bb:51:30: 0c:38:17:2f:75:21:1e:3d:01:7a:76:13:49:32:f8:e4:0d:d5: 50:30:06:41:80:c9:34:a9:4d:0a:3e:60:0d:97:77:ed:95:3c: 19:cf:0f:43:f0:64:34:b3:6c:0d:06:08:c3:6f:3f:88:17:7c: 63:b5:a4:f7:8b:9f:6e:78:a1:15:6b:95:85:3c:3a:22:5b:7b: 36:ca:22:c7:fe:35:fd:6d:c1:ea:62:d6:56:70:ee:60:01:63: 99:c5:e5:a1:0e:07:8e:8d:7d:fb:46:a9:ef:dd:33:40:62:13: cd:7a:3b:1b -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICBiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjMxMTEwMjMzMTM3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRlYmQ1OS1mOWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11t7Ki776po3xsqSpd3wa5gm+cDCzAlQmQ/oYFyjfWhAK16f+dZIwV1yRn/+ C2yPI7ms9M7w5cVtK/mW+1td8JJ1R0TzSS1OEBFMu+aPEjIOEuScx2LiYuzmYgmK a/8K8Vir4j4Rlye7EMxOVvWVrYATAoiuYVOaERuC8+vHUrDmC8+FLtFR9RJZQVKe RVsk74vukykjO4oZ6iHfelEPV4jZD8I/+Z5aJYLWSzJv9wFv5ETjwYjdvOhI0t1d pExSm1wy0mt8AsTqR/FZ9ZMFpOqiDZEZfT1TG2TLPZibNBvnebgVkAbVzkHD8P7K VALkYKgzVFsOo5JWibaFzUcCnwIDAQABo4IC3zCCAtswHQYDVR0OBBYEFCHom9X2 I40+/MLuJQj8JqakgKiSMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjQ2RjIzOUM2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMEcEAgABMEEDBAc6QIADAwA7vAMEAmdUIAMEB3EKgAMEB3sBgAMEAcC8UgME AcoEogMEBstigAMEBsuwwAMEBtLRQAMEB9L1gDANBAIAAjAHAwUAJAFKADANBgkq hkiG9w0BAQsFAAOCAQEAmz265NTOTW/MvReVnxE46tLu3hKKbko+B7gjJiDsvt9I Cc/pyjbBjqnKYtKtMLstX7+atsDyJJd8jyXpKsEIu4oppV8iztUQii845DquWj5B +vWoRQnWZWRL9LwKIcqMWQAKZ20hHFhBArXlXRrvqpI3Mmn1MNCYPJxv3YM4U4Wo 2RdGBF0cQXYmyq7qu1EwDDgXL3UhHj0BenYTSTL45A3VUDAGQYDJNKlNCj5gDZd3 7ZU8Gc8PQ/BkNLNsDQYIw28/iBd8Y7Wk94ufbnihFWuVhTw6Ilt7Nsoix/41/W3B 6mLWVnDuYAFjmcXloQ4Hjo19+0ap790zQGITzXo7Gw== -----END CERTIFICATE-----Generated at Fri Jun 7 03:18:08 2024 by rpki-client on console-ams.rpki-client.org