$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/53B6182C213611EAB9F02B49C4F9AE02.roa File: 53B6182C213611EAB9F02B49C4F9AE02.roa (raw, json) Hash identifier: hz7JujBPhWg7oUnjV7Ikxd7ut5BtUg3hGIQE+2Imghk= Subject key identifier: 1D:FD:92:69:3F:95:3B:AB:B3:D1:4A:02:D4:53:92:EA:7B:63:B7:80 Certificate issuer: /CN=A9185CF3/serialNumber=A7A2674E8484603920779A352C55804E55365014 Certificate serial: 0A7A Authority key identifier: A7:A2:67:4E:84:84:60:39:20:77:9A:35:2C:55:80:4E:55:36:50:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p6JnToSEYDkgd5o1LFWATlU2UBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/53B6182C213611EAB9F02B49C4F9AE02.roa Signing time: Sun 24 Sep 2023 19:37:29 +0000 ROA not before: Sun 24 Sep 2023 19:37:29 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58983 IP address blocks: 45.119.160.0/22 maxlen: 22 45.119.160.0/23 maxlen: 23 45.119.162.0/23 maxlen: 23 103.240.176.0/22 maxlen: 22 103.240.176.0/23 maxlen: 23 103.240.176.0/24 maxlen: 24 103.240.177.0/24 maxlen: 24 103.240.178.0/23 maxlen: 23 103.240.178.0/24 maxlen: 24 103.240.179.0/24 maxlen: 24 2400:5880::/33 maxlen: 33 2400:5880:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/p6JnToSEYDkgd5o1LFWATlU2UBQ.crl rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/p6JnToSEYDkgd5o1LFWATlU2UBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p6JnToSEYDkgd5o1LFWATlU2UBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 19:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2682 (0xa7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CF3/serialNumber=A7A2674E8484603920779A352C55804E55365014 Validity Not Before: Sep 24 19:37:29 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65108ff8-7c05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f2:ac:7d:bc:07:bf:81:ea:8a:a3:7e:1a:82: 2a:83:b7:5d:cd:cc:ab:fa:55:5f:f6:a8:7a:7e:3c: cc:4f:ba:41:b2:43:9a:53:5b:f5:8e:43:e9:63:db: cd:dd:b8:45:5a:af:9a:63:20:64:6a:7b:aa:ec:fc: 56:53:13:52:a6:2f:fa:fb:8b:1f:d9:98:22:45:d0: 68:73:0c:0d:33:d6:0b:cb:33:b7:e4:11:73:c5:1d: 8e:2f:07:48:bf:59:ed:9a:7b:77:46:fd:03:08:33: 35:1a:55:b7:68:6c:6d:7d:47:c8:77:90:a2:5b:ab: fb:c8:71:cc:80:0c:9f:a1:01:b3:ac:09:e7:df:8b: f0:76:1e:bd:71:65:2a:43:43:a6:aa:1a:69:19:76: 0d:0d:60:ec:ec:93:dc:d6:82:83:52:e3:62:5f:b9: 9a:cb:18:9d:6a:25:fc:5b:2f:bd:13:1d:c0:a8:ef: b5:1e:b0:e8:48:cc:29:4e:e2:e7:54:ac:50:67:b3: 76:9d:37:fb:c4:7b:6e:a2:a8:65:5b:ba:5f:0a:48: de:20:b1:8d:41:ae:05:78:d4:da:3b:27:11:51:31: f8:f1:e2:5a:87:aa:70:9b:1c:f1:d0:c1:a3:69:dd: 4d:03:f4:31:c3:3e:cf:d3:90:df:cd:27:61:01:e8: 0f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:FD:92:69:3F:95:3B:AB:B3:D1:4A:02:D4:53:92:EA:7B:63:B7:80 X509v3 Authority Key Identifier: keyid:A7:A2:67:4E:84:84:60:39:20:77:9A:35:2C:55:80:4E:55:36:50:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/p6JnToSEYDkgd5o1LFWATlU2UBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p6JnToSEYDkgd5o1LFWATlU2UBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/53B6182C213611EAB9F02B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.160.0/22 103.240.176.0/22 IPv6: 2400:5880::/32 Signature Algorithm: sha256WithRSAEncryption 1f:7e:f8:c8:1b:83:97:08:0e:90:21:2b:0f:c5:ac:5b:aa:04: 19:26:4c:eb:8b:f7:49:64:63:08:cd:50:1c:fe:60:71:09:92: 15:39:2b:dd:7a:7d:6f:f7:d3:d1:3b:7e:19:45:e3:ce:59:52: c0:25:3c:c3:64:92:7a:93:b6:16:59:7a:c0:6a:6a:9a:0f:86: 83:fd:0b:ce:ef:d1:87:8d:60:47:5b:81:0a:b4:de:fd:c0:16: 5a:c1:bb:17:d8:78:e9:b1:65:66:7e:9d:2e:ba:6f:13:6f:3d: f7:40:8f:d6:74:33:0e:31:11:23:ed:c3:1e:d2:31:cc:de:57: f6:2f:9b:b5:88:11:68:c8:15:47:9d:8a:a6:c1:2e:02:fb:72: 03:d3:2f:e5:6d:ff:28:06:f9:48:8e:1b:d9:d1:a5:8d:ff:55: 29:07:0f:9b:ed:7b:f4:8d:d6:87:9a:25:b0:e8:f1:6c:c3:18: 74:a1:86:62:f0:a3:61:e1:f6:e0:ff:9a:33:ac:9c:0d:99:5c: 0d:cf:60:5a:69:14:c2:40:71:f2:75:30:38:7f:2c:fb:b3:d2: 92:2a:83:9c:cd:f3:b0:10:68:2c:6b:74:7e:ca:8b:53:75:b2: d6:1f:44:ce:b5:0f:e9:04:5b:1e:cc:4e:53:6b:50:ba:54:81: 86:05:26:9c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRjMxMTAvBgNVBAUTKEE3QTI2NzRFODQ4NDYwMzkyMDc3OUEzNTJDNTU4MDRF NTUzNjUwMTQwHhcNMjMwOTI0MTkzNzI5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEwOGZmOC03YzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/KsfbwHv4HqiqN+GoIqg7ddzcyr+lVf9qh6fjzMT7pBskOaU1v1jkPpY9vN 3bhFWq+aYyBkanuq7PxWUxNSpi/6+4sf2ZgiRdBocwwNM9YLyzO35BFzxR2OLwdI v1ntmnt3Rv0DCDM1GlW3aGxtfUfId5CiW6v7yHHMgAyfoQGzrAnn34vwdh69cWUq Q0OmqhppGXYNDWDs7JPc1oKDUuNiX7mayxidaiX8Wy+9Ex3AqO+1HrDoSMwpTuLn VKxQZ7N2nTf7xHtuoqhlW7pfCkjeILGNQa4FeNTaOycRUTH48eJah6pwmxzx0MGj ad1NA/Qxwz7P05DfzSdhAegPGwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFB39kmk/ lTurs9FKAtRTkup7Y7eAMB8GA1UdIwQYMBaAFKeiZ06EhGA5IHeaNSxVgE5VNlAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNGMy80QkRENTE4RTIx MzUxMUVBQkU0ODg3NDdDNEY5QUUwMi9wNkpuVG9TRVlEa2dkNW8xTEZXQVRsVTJV QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A2Sm5Ub1NFWURrZ2Q1bzFMRldBVGxVMlVCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVDRjMvNEJERDUxOEUyMTM1MTFFQUJFNDg4NzQ3QzRGOUFFMDIvNTNCNjE4MkMy MTM2MTFFQUI5RjAyQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItd6ADBAJn8LAwDQQCAAIwBwMFACQAWIAwDQYJKoZIhvcN AQELBQADggEBAB9++Mgbg5cIDpAhKw/FrFuqBBkmTOuL90lkYwjNUBz+YHEJkhU5 K916fW/309E7fhlF485ZUsAlPMNkknqTthZZesBqapoPhoP9C87v0YeNYEdbgQq0 3v3AFlrBuxfYeOmxZWZ+nS66bxNvPfdAj9Z0Mw4xESPtwx7SMczeV/Yvm7WIEWjI FUediqbBLgL7cgPTL+Vt/ygG+UiOG9nRpY3/VSkHD5vte/SN1oeaJbDo8WzDGHSh hmLwo2Hh9uD/mjOsnA2ZXA3PYFppFMJAcfJ1MDh/LPuz0pIqg5zN87AQaCxrdH7K i1N1stYfRM61D+kEWx7MTlNrULpUgYYFJpw= -----END CERTIFICATE-----Generated at Thu Jun 6 21:06:53 2024 by rpki-client on console-fra.rpki-client.org