$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa File: DA504F0E175911EC87322F85C4F9AE02.roa (raw, json) Hash identifier: onR4BcVzscYjRh49036MeIEMTa3C2J/F1uQNu49Opr8= Subject key identifier: EE:0A:91:2A:35:EB:85:B8:0D:BF:DE:F1:EF:D6:60:36:86:4A:CB:99 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 0446 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa Signing time: Thu 03 Aug 2023 01:02:11 +0000 ROA not before: Thu 03 Aug 2023 01:02:11 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 4804 IP address blocks: 1.44.0.0/21 maxlen: 21 1.44.8.0/21 maxlen: 21 1.44.16.0/21 maxlen: 21 1.44.24.0/21 maxlen: 21 1.44.32.0/21 maxlen: 21 1.44.40.0/21 maxlen: 21 1.44.48.0/21 maxlen: 21 1.44.56.0/21 maxlen: 21 61.88.184.0/24 maxlen: 24 61.88.185.0/24 maxlen: 24 61.88.186.0/24 maxlen: 24 61.88.190.0/24 maxlen: 24 119.225.240.0/21 maxlen: 21 119.225.248.0/21 maxlen: 21 202.139.72.0/22 maxlen: 22 203.202.52.0/24 maxlen: 24 203.202.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1094 (0x446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 01:02:11 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cafc93-7a30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ef:13:e4:c9:87:22:b5:53:ca:b4:5d:04:1d: f9:49:d0:5b:0c:93:3d:99:c1:6f:f4:6a:2e:db:d2: 47:8a:32:06:1b:c5:02:f9:94:54:20:50:51:31:d1: 43:3a:06:e9:21:b5:ed:f1:e8:8d:04:de:7f:fe:93: a6:b4:1d:db:03:a6:4c:c5:54:da:0d:86:25:00:a4: a8:1b:21:bd:ca:25:a6:7b:cd:d7:8e:45:b5:c7:6e: 69:6c:d6:51:da:ed:ca:ec:bb:4b:d3:b6:79:ea:c9: 83:36:62:56:fc:a0:3e:35:e5:23:31:fd:24:2c:b2: f1:36:eb:9e:27:48:fa:fc:f3:65:ca:db:f0:cf:30: 89:20:47:30:9a:b1:00:e8:4a:88:86:af:c3:61:e5: c9:11:1b:44:aa:ff:7e:b4:8e:eb:22:ab:d6:a2:18: 0c:34:11:f6:10:e7:b9:6b:64:db:80:11:62:f9:e4: b4:22:bd:44:bf:e7:9c:ba:3a:5f:4c:5c:35:33:0d: 00:cb:66:1f:b1:40:d5:01:43:11:b0:1a:7d:de:05: c0:d2:e0:0e:08:02:9c:ee:c6:aa:c4:57:e1:2f:da: 56:0c:d9:9b:3e:2d:92:35:cc:36:15:ab:3d:6f:b0: 25:67:24:cb:ba:d5:d2:7e:af:83:58:9f:72:54:0e: d7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:0A:91:2A:35:EB:85:B8:0D:BF:DE:F1:EF:D6:60:36:86:4A:CB:99 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.44.0.0/18 61.88.184.0-61.88.186.255 61.88.190.0/24 119.225.240.0/20 202.139.72.0/22 203.202.52.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:8c:4a:5a:6e:86:82:f2:b8:86:80:d8:fa:85:a0:9a:89:fe: 90:7b:a3:7d:eb:f9:a3:ff:b4:9a:58:30:f4:c5:8a:64:66:df: 5d:60:75:7b:a7:c9:f5:b4:1c:c1:ae:38:96:99:e5:7d:b3:98: 82:c6:98:22:31:6e:b1:0e:10:ed:92:d0:4d:f7:e9:a9:e6:2a: b3:a3:ec:fc:dc:45:61:10:21:a3:9f:73:f9:fa:b8:aa:19:0f: 38:e1:a1:67:fe:34:c4:93:ae:f7:4f:7d:16:64:90:fa:34:f7: 07:e2:f6:f1:c7:46:39:ac:1b:70:40:82:c2:e5:47:78:cb:a5: 9f:12:3b:e3:58:21:7d:e8:72:79:6b:1d:e0:6e:8d:ff:5d:75: 14:19:fe:6c:9c:a1:a2:4a:c8:8a:e5:51:32:ca:a1:06:ad:3a: 8b:30:b0:11:a2:72:36:32:ac:81:1f:85:24:16:2c:f3:ab:23: 3a:26:80:4a:b0:12:a7:05:56:ff:8c:59:3d:4e:82:6a:87:85: 90:65:8a:a6:de:ba:4a:7a:e2:12:f6:a0:c6:d5:47:1f:06:0a: a1:a6:c7:79:e5:8a:ec:e4:9f:f0:94:9f:21:3f:c5:d0:9a:24: fd:74:3c:83:46:a1:fe:52:1f:42:d4:1b:be:96:44:53:8b:c0: ce:2b:00:9d -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICBEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjMwODAzMDEwMjExWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmM5My03YTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2u8T5MmHIrVTyrRdBB35SdBbDJM9mcFv9Gou29JHijIGG8UC+ZRUIFBRMdFD OgbpIbXt8eiNBN5//pOmtB3bA6ZMxVTaDYYlAKSoGyG9yiWme83XjkW1x25pbNZR 2u3K7LtL07Z56smDNmJW/KA+NeUjMf0kLLLxNuueJ0j6/PNlytvwzzCJIEcwmrEA 6EqIhq/DYeXJERtEqv9+tI7rIqvWohgMNBH2EOe5a2TbgBFi+eS0Ir1Ev+ecujpf TFw1Mw0Ay2YfsUDVAUMRsBp93gXA0uAOCAKc7saqxFfhL9pWDNmbPi2SNcw2Fas9 b7AlZyTLutXSfq+DWJ9yVA7X0wIDAQABo4ICuzCCArcwHQYDVR0OBBYEFO4KkSo1 64W4Db/e8e/WYDaGSsuZMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvREE1MDRGMEUx NzU5MTFFQzg3MzIyRjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAYBLAAwDAMEAz1YuAMEAD1YugMEAD1YvgMEBHfh8AMEAsqL SAMEAcvKNDANBgkqhkiG9w0BAQsFAAOCAQEAioxKWm6GgvK4hoDY+oWgmon+kHuj fev5o/+0mlgw9MWKZGbfXWB1e6fJ9bQcwa44lpnlfbOYgsaYIjFusQ4Q7ZLQTffp qeYqs6Ps/NxFYRAho59z+fq4qhkPOOGhZ/40xJOu9099FmSQ+jT3B+L28cdGOawb cECCwuVHeMulnxI741ghfehyeWsd4G6N/111FBn+bJyhokrIiuVRMsqhBq06izCw EaJyNjKsgR+FJBYs86sjOiaASrASpwVW/4xZPU6CaoeFkGWKpt66SnriEvagxtVH HwYKoabHeeWK7OSf8JSfIT/F0Jok/XQ8g0ah/lIfQtQbvpZEU4vAzisAnQ== -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:01 2024 by rpki-client on console-fra.rpki-client.org