$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/AB988312177211EBAC79CC7EC4F9AE02.roa File: AB988312177211EBAC79CC7EC4F9AE02.roa (raw, json) Hash identifier: 1/waXuRUn1IGSXVfPONWMa3UyJu0JHRxsD7xIflOWMg= Subject key identifier: 86:A8:C8:3D:44:D3:F2:0C:64:A5:DA:CA:83:31:D7:68:46:82:7F:ED Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0A23 Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/AB988312177211EBAC79CC7EC4F9AE02.roa Signing time: Mon 18 Mar 2024 20:49:05 +0000 ROA not before: Mon 18 Mar 2024 20:49:05 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 45166 IP address blocks: 58.145.227.0/24 maxlen: 24 58.145.229.0/24 maxlen: 24 58.145.230.0/24 maxlen: 24 210.24.208.0/23 maxlen: 24 210.24.210.0/23 maxlen: 23 210.24.210.0/24 maxlen: 24 210.24.211.0/24 maxlen: 24 210.24.236.0/23 maxlen: 23 210.24.236.0/24 maxlen: 24 210.24.237.0/24 maxlen: 24 2400:1700:300::/48 maxlen: 48 2400:1700:301::/48 maxlen: 48 2400:1700:302::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 21:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2595 (0xa23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Validity Not Before: Mar 18 20:49:05 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f8a8c1-4fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:40:47:3b:05:0f:d2:35:d2:09:c0:6a:cd:91: 3d:42:8f:08:bd:76:3c:6a:c7:dd:ca:e7:e2:e0:97: a8:a8:d0:18:d9:fa:e9:83:6a:67:9c:43:42:0f:ac: 10:3a:bd:af:71:4c:11:b0:50:30:20:70:d6:d8:6c: fb:17:99:42:7d:36:e3:b0:89:ae:61:25:1c:7a:a2: be:f5:a5:b4:56:e3:0c:7b:eb:5b:58:c4:d5:a4:80: fd:50:6c:1c:8a:a3:77:6d:73:b6:0f:d2:d9:91:9f: d0:9c:35:25:21:be:f6:b1:11:b6:2a:24:66:52:73: 70:6d:83:35:b3:ee:66:71:f1:b7:0a:98:e3:c2:69: 2a:9e:a6:e6:c0:92:a0:e4:14:94:89:1d:5e:84:ca: cb:65:e2:e7:ed:dd:cf:c3:b0:76:8c:78:e2:29:10: d8:a7:74:ba:33:87:6b:05:10:da:0a:87:fc:7f:ed: 32:10:32:ae:5f:d2:b0:c8:71:d7:67:bd:93:7c:df: a9:62:97:23:18:70:ba:50:a3:dd:89:0e:f2:34:96: 65:db:5c:48:21:52:0e:b4:b5:c8:b5:50:da:11:d3: 9c:cb:8b:f9:a9:42:d8:4d:8f:2f:6a:eb:96:1a:45: a0:13:fa:38:f4:1d:6e:2d:c4:f0:82:e2:54:72:a0: 34:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A8:C8:3D:44:D3:F2:0C:64:A5:DA:CA:83:31:D7:68:46:82:7F:ED X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/AB988312177211EBAC79CC7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.145.227.0/24 58.145.229.0-58.145.230.255 210.24.208.0/22 210.24.236.0/23 IPv6: 2400:1700:300::-2400:1700:302:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 10:36:a4:c3:d4:7c:9d:22:c6:0d:03:51:1b:d2:9a:57:aa:50: 37:96:4f:1e:8a:1e:56:a4:00:75:ee:26:37:6a:3e:4b:0f:0a: d1:2e:f4:01:49:fb:13:3f:41:4b:88:91:a2:86:69:87:9a:5a: fa:07:26:d6:d1:36:3d:dc:a2:0c:c9:91:56:9d:31:1f:2b:a2: 29:a8:70:2e:c7:5f:08:9a:da:85:2c:fd:ac:ea:05:52:39:87: 61:4c:ba:95:1d:f5:57:6a:a2:d0:b4:c0:17:0a:34:e3:05:34: 77:c3:20:4e:b8:48:9d:34:ec:99:b5:b0:d2:49:aa:29:ef:8e: 67:31:c9:22:9d:42:f9:b2:04:ea:7d:3f:45:b9:72:cf:a7:fb: b3:bf:27:97:82:e1:bf:96:f3:77:8b:bb:fb:93:81:0b:8d:59: ef:dd:f3:57:29:e0:5c:96:0a:19:3b:49:6c:2b:67:45:10:1e: a2:55:a7:9b:62:7c:f5:cb:6a:ca:3f:b6:d8:0a:74:c4:eb:cb: 33:cf:e9:0d:39:a2:96:f4:2f:c2:11:ea:ca:14:a0:50:01:0f: 58:53:af:80:d1:b0:2a:91:31:0a:30:65:32:df:c9:13:7b:c8: c6:2c:6f:04:b4:7d:14:7f:ce:3b:91:ac:69:8b:41:a4:fd:cc: 48:eb:aa:74 -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgICCiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjQwMzE4MjA0OTA1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWY4YThjMS00ZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukBHOwUP0jXSCcBqzZE9Qo8IvXY8asfdyufi4JeoqNAY2frpg2pnnENCD6wQ Or2vcUwRsFAwIHDW2Gz7F5lCfTbjsImuYSUceqK+9aW0VuMMe+tbWMTVpID9UGwc iqN3bXO2D9LZkZ/QnDUlIb72sRG2KiRmUnNwbYM1s+5mcfG3CpjjwmkqnqbmwJKg 5BSUiR1ehMrLZeLn7d3Pw7B2jHjiKRDYp3S6M4drBRDaCof8f+0yEDKuX9KwyHHX Z72TfN+pYpcjGHC6UKPdiQ7yNJZl21xIIVIOtLXItVDaEdOcy4v5qULYTY8vauuW GkWgE/o49B1uLcTwguJUcqA01QIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFIaoyD1E 0/IMZKXayoMx12hGgn/tMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ3QTIvQjU3NzNBQUM1OTQyMTFFQTkzNkZDRTQzQzRGOUFFMDIvQUI5ODgzMTIx NzcyMTFFQkFDNzlDQzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVAYIKwYBBQUHAQcBAf8E RTBDMCYEAgABMCADBAA6keMwDAMEADqR5QMEADqR5gMEAtIY0AMEAdIY7DAZBAIA AjATMBEDBgAkABcAAwMHACQAFwADAjANBgkqhkiG9w0BAQsFAAOCAQEAEDakw9R8 nSLGDQNRG9KaV6pQN5ZPHooeVqQAde4mN2o+Sw8K0S70AUn7Ez9BS4iRooZph5pa +gcm1tE2PdyiDMmRVp0xHyuiKahwLsdfCJrahSz9rOoFUjmHYUy6lR31V2qi0LTA Fwo04wU0d8MgTrhInTTsmbWw0kmqKe+OZzHJIp1C+bIE6n0/Rblyz6f7s78nl4Lh v5bzd4u7+5OBC41Z793zVyngXJYKGTtJbCtnRRAeolWnm2J89ctqyj+22Ap0xOvL M8/pDTmilvQvwhHqyhSgUAEPWFOvgNGwKpExCjBlMt/JE3vIxixvBLR9FH/OO5Gs aYtBpP3MSOuqdA== -----END CERTIFICATE-----Generated at Fri Jun 7 00:12:08 2024 by rpki-client on console-ams.rpki-client.org