$ rpki-client -vvf rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/538866F6E44B11EAA31DD984C4F9AE02.roa File: 538866F6E44B11EAA31DD984C4F9AE02.roa (raw, json) Hash identifier: a8HUGnnGAgvYA0ZsnxVyx+ccDXeZU118Vt4IZK+roOM= Subject key identifier: 86:20:85:4E:2F:73:C1:01:5F:8D:A3:54:87:A5:DC:AF:D9:D0:CB:89 Certificate issuer: /CN=A91936BE/serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Certificate serial: 06EA Authority key identifier: 80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/538866F6E44B11EAA31DD984C4F9AE02.roa Signing time: Tue 14 Nov 2023 22:30:24 +0000 ROA not before: Tue 14 Nov 2023 22:30:24 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 24183 IP address blocks: 45.125.168.0/22 maxlen: 22 103.226.32.0/22 maxlen: 22 103.226.32.0/23 maxlen: 23 103.226.34.0/24 maxlen: 24 103.226.35.0/24 maxlen: 24 202.20.0.0/21 maxlen: 21 202.68.80.0/20 maxlen: 20 202.174.176.0/20 maxlen: 20 202.174.176.0/23 maxlen: 23 2402:9e00::/32 maxlen: 32 2402:9e00:400::/48 maxlen: 48 2402:9e00:401::/48 maxlen: 48 2402:9e00:402::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1770 (0x6ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91936BE/serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Validity Not Before: Nov 14 22:30:24 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6553f500-99ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:19:a6:b0:44:fe:d2:18:d1:f1:11:e3:43:cd: 86:cb:15:08:b3:d9:94:b2:46:77:f4:79:5e:8c:80: b6:db:b6:93:a1:4f:94:c9:e1:21:0d:93:26:3a:24: 7d:f3:b9:36:7b:75:09:39:aa:46:ea:83:60:ab:40: d1:2b:60:1e:c4:37:71:77:4c:91:c1:53:e4:7f:e6: 78:49:68:3f:6e:5f:32:9d:c5:01:e9:24:90:04:6a: 63:08:51:1e:39:2d:21:22:c2:db:2c:d9:69:fb:c1: c4:de:37:3c:a2:ab:f5:4d:ec:5e:1b:e4:ca:ea:a4: 37:64:a8:3e:08:0b:c0:10:03:e9:12:9c:e9:1b:46: c7:5b:0a:26:61:7c:cf:29:d5:a5:a4:2c:ff:b0:f9: d6:36:6d:cc:85:2e:71:32:4a:82:48:42:82:ed:77: 91:9c:f5:4d:e8:34:ea:53:9a:6b:2a:a3:fe:4a:d6: 05:4e:2b:c2:05:92:80:34:3d:b3:0c:f2:d4:fa:88: 1c:b8:cc:5b:2e:c7:91:18:b6:64:66:d9:04:8b:c6: 59:96:32:17:b9:f9:7d:bb:3b:02:ce:9f:f3:08:6a: 8d:6e:ae:5c:25:cc:a7:c5:c7:f2:df:15:5b:1e:95: b4:0f:48:49:e8:5e:b0:ad:6f:ef:ca:23:2a:29:23: e4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:20:85:4E:2F:73:C1:01:5F:8D:A3:54:87:A5:DC:AF:D9:D0:CB:89 X509v3 Authority Key Identifier: keyid:80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/538866F6E44B11EAA31DD984C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.168.0/22 103.226.32.0/22 202.20.0.0/21 202.68.80.0/20 202.174.176.0/20 IPv6: 2402:9e00::/32 Signature Algorithm: sha256WithRSAEncryption b3:17:4e:ca:03:67:19:7c:f4:ea:ee:62:f6:d5:91:19:9a:a2: 6d:24:94:00:1a:a5:d3:7a:9b:77:6b:81:db:1b:af:d5:23:b1: d6:59:fc:4d:53:8d:2e:58:bf:d4:4b:e9:a0:d9:18:d6:4d:10: a3:aa:10:3c:06:0d:36:37:53:b6:07:66:3f:14:87:fa:60:10: ed:c9:96:9c:54:1b:35:49:0b:17:4e:9e:bb:27:0c:92:45:2a: e9:88:fd:27:c3:bd:9f:9b:65:bc:a6:86:d5:95:0a:02:ea:28: 1f:3d:61:30:01:73:29:d1:17:e4:8a:c9:9a:e7:fb:00:ef:3f: fc:93:b2:2d:52:be:77:16:4a:b1:4d:65:12:de:1f:fd:19:9a: 09:87:c7:fb:9d:d5:89:b7:d7:0d:eb:40:02:05:0d:a1:f3:47: 16:a8:b2:8e:49:f4:fe:7a:db:2b:84:f3:85:e4:86:b7:9d:9d: 1e:eb:5c:10:d0:46:c5:39:17:77:4f:60:ba:2e:79:f8:a7:12: 8e:15:dd:c5:9d:64:9a:25:f9:02:fc:df:ae:28:1b:ce:d9:c1: 96:d2:b2:a7:b7:b4:d2:28:53:49:22:b3:7f:fe:87:68:5a:b7: c4:77:86:6b:81:f6:0f:09:cb:64:a4:55:b2:cf:32:6a:e7:82: 8d:02:fd:52 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICBuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM2QkUxMTAvBgNVBAUTKDgwMjFCMTZCOTI0MjFGNzdCNzI2MEU5N0U2QUQ4QzFE MjRCRDI5OUEwHhcNMjMxMTE0MjIzMDI0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTUzZjUwMC05OWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hmmsET+0hjR8RHjQ82GyxUIs9mUskZ39HlejIC227aToU+UyeEhDZMmOiR9 87k2e3UJOapG6oNgq0DRK2AexDdxd0yRwVPkf+Z4SWg/bl8yncUB6SSQBGpjCFEe OS0hIsLbLNlp+8HE3jc8oqv1TexeG+TK6qQ3ZKg+CAvAEAPpEpzpG0bHWwomYXzP KdWlpCz/sPnWNm3MhS5xMkqCSEKC7XeRnPVN6DTqU5prKqP+StYFTivCBZKAND2z DPLU+ogcuMxbLseRGLZkZtkEi8ZZljIXufl9uzsCzp/zCGqNbq5cJcynxcfy3xVb HpW0D0hJ6F6wrW/vyiMqKSPkBwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFIYghU4v c8EBX42jVIel3K/Z0MuJMB8GA1UdIwQYMBaAFIAhsWuSQh93tyYOl+atjB0kvSma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzZCRS9DQTA2NjY4Q0U0 NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gzZTNKZzZYNXEyTUhTUzlL Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDR3hhNUpDSDNlM0pnNlg1cTJNSFNTOUtaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTM2QkUvQ0EwNjY2OENFNDQ4MTFFQTgxMEIwMzgwQzRGOUFFMDIvNTM4ODY2RjZF NDRCMTFFQUEzMUREOTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAItfagDBAJn4iADBAPKFAADBATKRFADBATKrrAwDQQCAAIw BwMFACQCngAwDQYJKoZIhvcNAQELBQADggEBALMXTsoDZxl89OruYvbVkRmaom0k lAAapdN6m3drgdsbr9UjsdZZ/E1TjS5Yv9RL6aDZGNZNEKOqEDwGDTY3U7YHZj8U h/pgEO3JlpxUGzVJCxdOnrsnDJJFKumI/SfDvZ+bZbymhtWVCgLqKB89YTABcynR F+SKyZrn+wDvP/yTsi1SvncWSrFNZRLeH/0ZmgmHx/ud1Ym31w3rQAIFDaHzRxao so5J9P562yuE84XkhrednR7rXBDQRsU5F3dPYLouefinEo4V3cWdZJol+QL8364o G87ZwZbSsqe3tNIoU0kis3/+h2hat8R3hmuB9g8Jy2SkVbLPMmrngo0C/VI= -----END CERTIFICATE-----Generated at Fri May 31 23:53:07 2024 by rpki-client on console-fra.rpki-client.org