$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/1468305C31A811EE939F1D33C4F9AE02.roa File: 1468305C31A811EE939F1D33C4F9AE02.roa (raw, json) Hash identifier: 1xnY6B+ihtKNFeda/C+KH6kcOQxbxRjXJYhmnpsXspM= Subject key identifier: D8:98:8D:CE:E8:84:04:24:16:E0:A3:0E:F4:89:6E:11:D7:A1:90:09 Certificate issuer: /CN=A917EFA9/serialNumber=7B91A8B011D619C4271D45203A0E33D9185EF781 Certificate serial: 0B Authority key identifier: 7B:91:A8:B0:11:D6:19:C4:27:1D:45:20:3A:0E:33:D9:18:5E:F7:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5GosBHWGcQnHUUgOg4z2Rhe94E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/1468305C31A811EE939F1D33C4F9AE02.roa Signing time: Sun 13 Aug 2023 05:45:25 +0000 ROA not before: Sun 13 Aug 2023 05:45:25 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 23878 IP address blocks: 182.16.152.0/22 maxlen: 22 182.16.152.0/24 maxlen: 24 182.16.153.0/24 maxlen: 24 182.16.154.0/24 maxlen: 24 182.16.155.0/24 maxlen: 24 202.62.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/e5GosBHWGcQnHUUgOg4z2Rhe94E.crl rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/e5GosBHWGcQnHUUgOg4z2Rhe94E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5GosBHWGcQnHUUgOg4z2Rhe94E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EFA9/serialNumber=7B91A8B011D619C4271D45203A0E33D9185EF781 Validity Not Before: Aug 13 05:45:25 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d86df5-f959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:33:ce:49:c6:21:f1:37:08:d7:5b:8c:1b:1f: ce:a7:5a:7f:56:1b:d2:e5:8c:0f:79:c0:d6:e6:10: f4:0c:b3:b5:70:35:81:d5:bd:e8:06:d3:7a:6b:76: 7b:43:e2:e8:e0:f5:ab:62:5a:a8:09:d6:80:cc:b0: e3:ae:00:63:39:c1:f3:0f:a0:31:13:09:46:27:e5: 77:81:0f:af:76:b8:d4:d9:3a:17:3f:31:a2:2d:e3: e4:82:76:a6:b5:3a:b3:db:6f:1d:56:66:e1:de:46: 1e:7c:b2:16:ee:67:83:63:f8:85:31:c3:57:42:53: 15:18:c5:c2:81:59:6c:30:9b:58:82:db:3a:43:8c: 25:07:af:f8:e1:bf:c1:7e:32:3c:80:e4:1f:71:89: 19:bd:84:68:5a:0f:50:59:0f:bb:30:af:53:97:85: 1d:93:f1:a0:13:6e:96:69:84:0f:a1:13:4c:ad:1b: 03:2b:b0:1c:51:28:3e:d1:a4:b7:31:01:85:5a:2e: 3e:31:33:1a:98:15:05:ec:cb:ba:25:86:9e:48:ee: 24:fe:96:bd:a7:f9:09:37:d5:60:bb:8b:c8:72:55: 8a:05:85:63:b5:6b:24:1d:40:34:8e:6e:72:e2:27: 18:7d:d9:b6:74:a1:d7:64:18:2a:42:0d:f0:a1:b5: 17:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:98:8D:CE:E8:84:04:24:16:E0:A3:0E:F4:89:6E:11:D7:A1:90:09 X509v3 Authority Key Identifier: keyid:7B:91:A8:B0:11:D6:19:C4:27:1D:45:20:3A:0E:33:D9:18:5E:F7:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/e5GosBHWGcQnHUUgOg4z2Rhe94E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5GosBHWGcQnHUUgOg4z2Rhe94E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/1468305C31A811EE939F1D33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.16.152.0/22 202.62.245.0/24 Signature Algorithm: sha256WithRSAEncryption 72:18:3f:74:03:4f:27:81:c8:1b:1d:d6:84:97:71:71:b9:31: cd:c9:8d:3c:5e:9d:33:1b:90:ce:54:fe:96:e4:9f:1e:14:e0: 04:da:8a:1a:07:ac:d8:46:53:dd:ee:b6:d3:7f:ad:c6:8e:f2: 9a:55:27:38:27:ed:ed:dc:f4:66:ef:ca:35:26:f8:35:9a:6f: c6:7a:5a:66:f2:c8:d0:b0:dc:40:83:bf:52:a2:70:4a:a5:4a: eb:53:76:a3:23:54:46:30:bb:61:36:cf:7d:f2:55:f3:af:16: 87:25:a4:7d:f6:e0:fa:2c:4c:15:b3:03:50:97:c0:f9:90:68: eb:b1:42:d1:b9:7e:7d:0a:97:5d:65:fd:df:07:d1:02:2f:a9: 56:43:62:36:9a:e0:35:76:a4:27:0b:b3:15:3c:4b:2e:a0:16: 76:14:c2:d1:ad:fe:a4:3c:a0:5e:92:e6:ee:60:94:aa:4d:ea: f2:5c:43:d8:9e:e6:cd:0a:a4:ac:55:c4:c5:a5:a8:ae:eb:bf: a8:67:16:b0:8d:83:11:c0:5f:ed:68:48:d2:9e:f5:61:93:7b: 42:1c:33:36:65:18:84:0f:5e:8d:a4:82:9c:90:fb:1d:6d:ea: d2:3e:ef:b0:c1:0a:09:88:2e:a4:61:46:3f:3d:47:cd:0a:72: a9:27:9b:cc -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RUZBOTExMC8GA1UEBRMoN0I5MUE4QjAxMUQ2MTlDNDI3MUQ0NTIwM0EwRTMzRDkx ODVFRjc4MTAeFw0yMzA4MTMwNTQ1MjVaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZDg2ZGY1LWY5NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzM85JxiHxNwjXW4wbH86nWn9WG9LljA95wNbmEPQMs7VwNYHVvegG03prdntD 4ujg9atiWqgJ1oDMsOOuAGM5wfMPoDETCUYn5XeBD692uNTZOhc/MaIt4+SCdqa1 OrPbbx1WZuHeRh58shbuZ4Nj+IUxw1dCUxUYxcKBWWwwm1iC2zpDjCUHr/jhv8F+ MjyA5B9xiRm9hGhaD1BZD7swr1OXhR2T8aATbpZphA+hE0ytGwMrsBxRKD7RpLcx AYVaLj4xMxqYFQXsy7olhp5I7iT+lr2n+Qk31WC7i8hyVYoFhWO1ayQdQDSObnLi Jxh92bZ0oddkGCpCDfChtRc5AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU2JiNzuiE BCQW4KMO9IluEdehkAkwHwYDVR0jBBgwFoAUe5GosBHWGcQnHUUgOg4z2Rhe94Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFRkE5L0VENjhCNUYwMzFB NTExRUVCRUY4QkQyQUM0RjlBRTAyL2U1R29zQkhXR2NRbkhVVWdPZzR6MlJoZTk0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZTVHb3NCSFdHY1FuSFVVZ09nNHoyUmhlOTRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUZBOS9FRDY4QjVGMDMxQTUxMUVFQkVGOEJEMkFDNEY5QUUwMi8xNDY4MzA1QzMx QTgxMUVFOTM5RjFEMzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEArYQmAMEAMo+9TANBgkqhkiG9w0BAQsFAAOCAQEAchg/dANP J4HIGx3WhJdxcbkxzcmNPF6dMxuQzlT+luSfHhTgBNqKGges2EZT3e6203+txo7y mlUnOCft7dz0Zu/KNSb4NZpvxnpaZvLI0LDcQIO/UqJwSqVK61N2oyNURjC7YTbP ffJV868WhyWkffbg+ixMFbMDUJfA+ZBo67FC0bl+fQqXXWX93wfRAi+pVkNiNprg NXakJwuzFTxLLqAWdhTC0a3+pDygXpLm7mCUqk3q8lxD2J7mzQqkrFXExaWoruu/ qGcWsI2DEcBf7WhI0p71YZN7QhwzNmUYhA9ejaSCnJD7HW3q0j7vsMEKCYgupGFG Pz1HzQpyqSebzA== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:33 2024 by rpki-client on console-fra.rpki-client.org