$ rpki-client -vvf rpki.apnic.net/member_repository/A91308E4/130A1CB0650511EB9089F180C4F9AE02/801F61DCC1E111EBB27A0812C4F9AE02.roa File: 801F61DCC1E111EBB27A0812C4F9AE02.roa (raw, json) Hash identifier: qOu1SsdqxnSEtLbLa6C30u3ruMqxic76gb8BT2aG5qQ= Subject key identifier: C4:95:AC:DE:97:FA:86:BC:8C:84:64:1E:0E:AE:45:AE:10:93:AE:78 Certificate issuer: /CN=A91308E4/serialNumber=C63892FDAD943F25FA396841BB773DA15F700684 Certificate serial: 05F3 Authority key identifier: C6:38:92:FD:AD:94:3F:25:FA:39:68:41:BB:77:3D:A1:5F:70:06:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjiS_a2UPyX6OWhBu3c9oV9wBoQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91308E4/130A1CB0650511EB9089F180C4F9AE02/801F61DCC1E111EBB27A0812C4F9AE02.roa Signing time: Sat 27 Apr 2024 00:13:08 +0000 ROA not before: Sat 27 Apr 2024 00:13:08 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 21859 IP address blocks: 45.251.136.0/24 maxlen: 24 45.251.137.0/24 maxlen: 24 45.251.138.0/24 maxlen: 24 45.251.139.0/24 maxlen: 24 103.225.84.0/24 maxlen: 24 103.225.85.0/24 maxlen: 24 103.225.86.0/24 maxlen: 24 103.225.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91308E4/130A1CB0650511EB9089F180C4F9AE02/xjiS_a2UPyX6OWhBu3c9oV9wBoQ.crl rsync://rpki.apnic.net/member_repository/A91308E4/130A1CB0650511EB9089F180C4F9AE02/xjiS_a2UPyX6OWhBu3c9oV9wBoQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjiS_a2UPyX6OWhBu3c9oV9wBoQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 00:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1523 (0x5f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91308E4/serialNumber=C63892FDAD943F25FA396841BB773DA15F700684 Validity Not Before: Apr 27 00:13:08 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=662c4314-b287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2a:e5:08:79:12:91:ee:8e:6b:6d:e0:fb:e0: 57:70:7a:c4:8e:ef:7a:f6:81:65:00:a6:b0:db:9f: f3:3e:55:3f:36:8e:0d:ba:62:39:2e:f1:c2:79:d0: f8:b2:e2:ed:fc:d3:37:f1:93:0f:9f:ae:82:15:99: 0e:9a:86:aa:a5:40:cb:bd:29:29:18:98:68:c9:d7: ea:b8:fc:1a:e3:73:f7:84:df:9a:56:01:fe:e9:b7: cd:cf:53:2c:29:38:0f:b3:f0:1e:ea:bc:54:9b:37: 3f:6f:e3:5d:d9:ae:5a:75:f7:70:8c:ad:5c:2f:e4: 65:4d:5d:d8:13:15:c4:35:47:d1:3e:e5:1d:1c:9b: 40:32:a8:b7:7a:07:bb:d4:b7:37:34:38:dc:cb:f7: 94:97:41:1d:b0:30:bd:51:77:dc:55:5a:c5:c7:df: b0:0f:47:b6:97:31:1c:e8:86:38:80:7a:14:51:80: 5e:e3:83:c5:4a:d7:dc:db:61:1e:30:db:8d:0f:83: 58:fb:e0:d3:da:a3:26:47:c1:b9:fd:f5:45:41:03: 28:21:75:10:69:12:82:99:a6:a3:19:39:bb:09:2a: 40:29:f0:82:65:42:5c:73:dd:69:21:51:f0:49:c3: bf:90:ea:e0:d6:70:db:df:8a:03:6c:fb:e1:d9:da: 27:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:95:AC:DE:97:FA:86:BC:8C:84:64:1E:0E:AE:45:AE:10:93:AE:78 X509v3 Authority Key Identifier: keyid:C6:38:92:FD:AD:94:3F:25:FA:39:68:41:BB:77:3D:A1:5F:70:06:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91308E4/130A1CB0650511EB9089F180C4F9AE02/xjiS_a2UPyX6OWhBu3c9oV9wBoQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjiS_a2UPyX6OWhBu3c9oV9wBoQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91308E4/130A1CB0650511EB9089F180C4F9AE02/801F61DCC1E111EBB27A0812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.251.136.0/22 103.225.84.0/22 Signature Algorithm: sha256WithRSAEncryption ae:32:33:61:69:bb:22:7c:ce:88:f8:84:4a:0a:56:35:be:12: dd:1e:e7:34:af:37:59:45:c0:2d:5f:9d:ae:82:9c:0c:44:72: 30:0d:9e:89:b0:14:63:ff:c1:76:21:32:83:d5:27:e5:39:8d: f7:e6:53:97:5e:4d:8f:5e:bc:c2:70:d2:c1:3a:93:17:49:76: b3:23:7b:3f:5d:17:a1:59:23:91:71:fa:ce:18:dd:e8:f9:88: 29:bb:da:bb:ec:2a:b7:ab:bb:5e:4a:78:02:84:bc:87:3a:c9: 7b:e1:94:b3:06:dc:f8:05:a0:85:2c:d1:44:df:6c:e5:93:d4: b0:0d:f3:19:22:f9:26:98:e3:ad:5f:bd:9a:70:36:97:fd:3a: 09:39:0f:49:e4:24:61:56:fd:fa:4f:09:d4:35:c8:0e:d0:36: db:4a:90:41:fd:99:63:17:15:65:64:29:34:78:7d:fa:9e:07: 25:0c:13:d7:8e:9b:03:99:5d:ae:66:95:b3:64:c4:12:4c:bd: 93:c0:7b:3d:ce:cf:10:cd:0b:3b:50:13:7c:ef:58:92:05:29: 2a:99:07:a5:9a:3d:04:38:4d:cc:39:3c:80:7e:e1:0f:fd:f1: 00:e3:2c:07:e0:f1:66:36:9b:39:7b:ba:84:6c:e8:9d:c6:c4: bd:b8:df:65 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4RTQxMTAvBgNVBAUTKEM2Mzg5MkZEQUQ5NDNGMjVGQTM5Njg0MUJCNzczREEx NUY3MDA2ODQwHhcNMjQwNDI3MDAxMzA4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJjNDMxNC1iMjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsirlCHkSke6Oa23g++BXcHrEju969oFlAKaw25/zPlU/No4NumI5LvHCedD4 suLt/NM38ZMPn66CFZkOmoaqpUDLvSkpGJhoydfquPwa43P3hN+aVgH+6bfNz1Ms KTgPs/Ae6rxUmzc/b+Nd2a5adfdwjK1cL+RlTV3YExXENUfRPuUdHJtAMqi3ege7 1Lc3NDjcy/eUl0EdsDC9UXfcVVrFx9+wD0e2lzEc6IY4gHoUUYBe44PFStfc22Ee MNuND4NY++DT2qMmR8G5/fVFQQMoIXUQaRKCmaajGTm7CSpAKfCCZUJcc91pIVHw ScO/kOrg1nDb34oDbPvh2dongQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMSVrN6X +oa8jIRkHg6uRa4Qk654MB8GA1UdIwQYMBaAFMY4kv2tlD8l+jloQbt3PaFfcAaE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDhFNC8xMzBBMUNCMDY1 MDUxMUVCOTA4OUYxODBDNEY5QUUwMi94amlTX2EyVVB5WDZPV2hCdTNjOW9WOXdC b1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hqaVNfYTJVUHlYNk9XaEJ1M2M5b1Y5d0JvUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzA4RTQvMTMwQTFDQjA2NTA1MTFFQjkwODlGMTgwQzRGOUFFMDIvODAxRjYxREND MUUxMTFFQkIyN0EwODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+4gDBAJn4VQwDQYJKoZIhvcNAQELBQADggEBAK4yM2Fp uyJ8zoj4hEoKVjW+Et0e5zSvN1lFwC1fna6CnAxEcjANnomwFGP/wXYhMoPVJ+U5 jffmU5deTY9evMJw0sE6kxdJdrMjez9dF6FZI5Fx+s4Y3ej5iCm72rvsKreru15K eAKEvIc6yXvhlLMG3PgFoIUs0UTfbOWT1LAN8xki+SaY461fvZpwNpf9Ogk5D0nk JGFW/fpPCdQ1yA7QNttKkEH9mWMXFWVkKTR4ffqeByUME9eOmwOZXa5mlbNkxBJM vZPAez3OzxDNCztQE3zvWJIFKSqZB6WaPQQ4Tcw5PIB+4Q/98QDjLAfg8WY2mzl7 uoRs6J3GxL2432U= -----END CERTIFICATE-----Generated at Fri Jun 7 03:18:09 2024 by rpki-client on console-ams.rpki-client.org