$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/5B917C28A2E011E9A98B0235C4F9AE02.roa File: 5B917C28A2E011E9A98B0235C4F9AE02.roa (raw, json) Hash identifier: YOPUecX2A28pnWwhHGiq0o0Qvv7Y8K91kQfSlv4cAX8= Subject key identifier: 55:8D:77:1C:6D:42:5C:DC:31:06:8A:41:CB:20:F2:FE:74:90:1C:CA Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 3494 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/5B917C28A2E011E9A98B0235C4F9AE02.roa Signing time: Thu 11 Apr 2024 08:12:57 +0000 ROA not before: Thu 11 Apr 2024 08:12:57 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 17478 IP address blocks: 58.181.227.0/24 maxlen: 24 203.155.220.0/24 maxlen: 24 203.155.221.0/24 maxlen: 24 203.155.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13460 (0x3494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Apr 11 08:12:57 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=66179b89-7625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:3e:be:13:97:50:ce:44:d5:60:1c:89:84:53: a0:9e:cf:58:e1:77:35:a4:ab:11:ec:e1:91:73:61: 7e:18:f4:1c:e2:f2:59:16:73:a3:22:73:f3:61:0c: 9b:e0:28:a6:96:f5:c1:91:50:62:24:2b:49:c1:8c: c6:e9:f8:c1:74:14:0f:c5:69:d4:10:86:48:e6:33: 21:76:9a:28:78:67:87:2b:11:94:04:48:fb:26:0c: 93:1c:c1:59:8a:17:c3:a9:a5:c5:24:73:95:c5:39: a1:9b:5f:80:66:5b:e1:16:17:a9:83:59:98:c7:60: f1:98:42:97:46:e9:a1:d8:74:35:01:df:9a:95:c1: 5c:9e:ae:ae:11:84:30:f0:1e:32:26:e9:d9:92:72: 7e:e6:28:ba:14:65:ee:11:c2:4c:a6:47:ae:87:f6: 0a:f3:4c:71:92:8b:d1:55:92:b2:ef:4e:d5:bd:95: 2e:f3:56:35:2c:b5:50:f1:ad:92:b0:4a:63:b0:cb: 7f:3a:3a:20:fa:fb:b1:e1:21:e2:8a:8f:5d:e8:61: f3:a3:e1:26:a8:e1:4d:92:a1:18:21:db:50:f6:6b: f6:30:b3:14:6a:60:5a:69:93:57:ce:5e:34:38:d2: 97:a2:7b:18:77:7b:56:e7:bc:c1:2f:e0:55:54:02: a8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:8D:77:1C:6D:42:5C:DC:31:06:8A:41:CB:20:F2:FE:74:90:1C:CA X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/5B917C28A2E011E9A98B0235C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.227.0/24 203.155.220.0-203.155.222.255 Signature Algorithm: sha256WithRSAEncryption 76:11:bc:2c:0c:34:0e:f9:16:df:98:52:a3:a9:86:01:f7:3a: fd:53:f4:19:4a:a6:a7:28:19:ad:77:15:3f:0d:7d:05:fe:07: d2:b2:94:da:d6:33:c4:c4:ca:bb:4c:a7:62:c0:e1:50:9c:c2: d6:7e:b1:fe:c5:3e:50:40:a2:7c:5e:2d:b2:e2:a0:9e:c8:32: a0:f6:0b:5f:e7:0a:e9:7f:45:dd:9a:ec:a7:42:60:2d:cc:63: b6:8c:a8:34:ac:67:ab:1d:4e:0d:fa:09:e1:63:27:eb:bc:21: 98:df:81:9b:ca:96:60:be:0a:a8:da:61:c8:3f:dd:05:84:72: 29:39:29:4b:2e:69:bb:dc:f5:bb:00:53:0f:89:93:63:cc:9d: d3:93:0d:28:3e:6c:9e:15:10:11:7b:85:65:cd:a2:03:a9:9f: 88:97:4a:e5:d7:41:33:36:ae:5e:d6:fc:54:79:75:bb:37:62: 97:f0:6f:83:bd:f4:39:35:a1:28:43:df:86:0c:82:a3:f9:25: dd:f7:3a:ff:9f:92:15:ea:2b:98:79:6d:25:6a:5f:79:7d:6d: 23:80:42:fb:90:eb:59:76:f0:3a:cc:f4:e6:34:b9:e6:20:32: 5e:0d:d5:ab:21:c7:79:94:22:60:62:14:c2:12:51:f6:e0:07: 9e:fd:ba:65 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjQwNDExMDgxMjU3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3OWI4OS03NjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5z6+E5dQzkTVYByJhFOgns9Y4Xc1pKsR7OGRc2F+GPQc4vJZFnOjInPzYQyb 4CimlvXBkVBiJCtJwYzG6fjBdBQPxWnUEIZI5jMhdpooeGeHKxGUBEj7JgyTHMFZ ihfDqaXFJHOVxTmhm1+AZlvhFhepg1mYx2DxmEKXRumh2HQ1Ad+alcFcnq6uEYQw 8B4yJunZknJ+5ii6FGXuEcJMpkeuh/YK80xxkovRVZKy707VvZUu81Y1LLVQ8a2S sEpjsMt/Ojog+vux4SHiio9d6GHzo+EmqOFNkqEYIdtQ9mv2MLMUamBaaZNXzl40 ONKXonsYd3tW57zBL+BVVAKo4wIDAQABo4ICozCCAp8wHQYDVR0OBBYEFFWNdxxt QlzcMQaKQcsg8v50kBzKMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvNUI5MTdDMjhB MkUwMTFFOUE5OEIwMjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAA6teMwDAMEAsub3AMEAMub3jANBgkqhkiG9w0BAQsFAAOC AQEAdhG8LAw0DvkW35hSo6mGAfc6/VP0GUqmpygZrXcVPw19Bf4H0rKU2tYzxMTK u0ynYsDhUJzC1n6x/sU+UECifF4tsuKgnsgyoPYLX+cK6X9F3Zrsp0JgLcxjtoyo NKxnqx1ODfoJ4WMn67whmN+Bm8qWYL4KqNphyD/dBYRyKTkpSy5pu9z1uwBTD4mT Y8yd05MNKD5snhUQEXuFZc2iA6mfiJdK5ddBMzauXtb8VHl1uzdil/Bvg730OTWh KEPfhgyCo/kl3fc6/5+SFeormHltJWpfeX1tI4BC+5DrWXbwOsz05jS55iAyXg3V qyHHeZQiYGIUwhJR9uAHnv26ZQ== -----END CERTIFICATE-----Generated at Thu Jun 6 14:59:01 2024 by rpki-client on console-fra.rpki-client.org