$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D91A51FE753E11ED91728868C4F9AE02.roa File: D91A51FE753E11ED91728868C4F9AE02.roa (raw, json) Hash identifier: mOnjRlVNTPH/FbmiefAQg31QHa6rQylJT85D/8IZ0KE= Subject key identifier: 37:CC:A4:7C:86:13:A5:11:28:C3:27:1D:9C:47:33:FB:F2:CC:04:03 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3EFA Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D91A51FE753E11ED91728868C4F9AE02.roa Signing time: Tue 12 Sep 2023 02:43:30 +0000 ROA not before: Tue 12 Sep 2023 02:43:30 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38244 IP address blocks: 45.127.252.0/22 maxlen: 24 49.213.64.0/18 maxlen: 24 58.84.0.0/22 maxlen: 24 61.28.224.0/19 maxlen: 24 103.196.236.0/22 maxlen: 24 103.245.248.0/22 maxlen: 24 118.102.0.0/21 maxlen: 24 120.138.64.0/20 maxlen: 24 122.201.8.0/21 maxlen: 24 2001:df0:13::/48 maxlen: 48 2001:df0:1a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 14:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16122 (0x3efa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:43:30 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffd052-b526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ca:fb:b9:93:75:25:ba:55:f0:da:58:8d:81: 1c:8a:19:5e:e4:91:53:53:f1:5d:eb:13:ee:68:d7: b2:eb:86:ca:a5:3e:8b:f7:e2:28:c2:06:01:aa:76: 93:c8:6d:2a:bd:9c:2c:13:f3:ba:a6:c0:cd:b4:e8: f4:6d:b9:46:e0:81:dc:a3:a5:40:15:9f:19:b9:cc: 13:67:41:3a:84:3d:e4:62:c0:5f:ab:61:be:b5:22: 25:d6:d4:59:2c:ae:3a:18:5c:4b:e1:da:a1:86:bd: 3b:1e:6f:64:78:22:5d:c5:45:e9:75:c6:fe:c1:b0: ee:f3:50:56:99:40:5f:3b:a6:e2:a4:f7:41:09:63: af:8d:d7:79:72:9e:69:80:b6:88:bb:00:f2:68:ca: 98:0f:c3:08:8f:86:32:9a:e5:7e:98:f4:8c:d1:55: 93:31:21:c0:45:5c:c1:5d:83:55:ac:82:95:1b:51: 9c:60:25:ae:cf:aa:b0:ae:d8:e5:f3:83:c8:b5:a0: 60:4a:82:e6:dc:29:42:c6:0b:c3:8b:41:bb:4f:a8: f6:32:0b:93:db:cd:c7:16:bc:7f:ec:de:eb:54:0e: b4:06:0f:0a:b3:49:39:74:c9:ee:72:f6:52:f2:82: 29:50:c7:7c:f8:b8:7c:f2:d1:f3:6b:7d:ec:01:a0: 02:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:CC:A4:7C:86:13:A5:11:28:C3:27:1D:9C:47:33:FB:F2:CC:04:03 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D91A51FE753E11ED91728868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.252.0/22 49.213.64.0/18 58.84.0.0/22 61.28.224.0/19 103.196.236.0/22 103.245.248.0/22 118.102.0.0/21 120.138.64.0/20 122.201.8.0/21 IPv6: 2001:df0:13::/48 2001:df0:1a::/48 Signature Algorithm: sha256WithRSAEncryption 97:65:a2:e0:cc:78:b4:94:ae:ef:aa:e1:c7:06:7f:92:27:20: 47:83:f4:98:e6:01:23:f0:b4:87:a8:8f:e0:a3:10:62:9f:ec: 65:22:73:c3:e6:1c:ad:cc:29:54:77:b7:0e:ad:84:d6:a3:59: 43:0e:86:48:aa:17:f7:ce:43:35:b7:18:4f:fe:98:7b:2e:f1: 97:e3:00:7c:a1:de:05:3c:40:be:63:dc:33:ad:51:65:30:8e: 40:60:9d:c9:95:66:d2:33:cb:82:34:d0:80:7e:9a:e8:b1:ef: 17:25:07:3f:9f:5b:b8:b5:84:00:8f:d1:3e:ce:f1:08:d5:62: 6a:ff:3d:94:b4:ce:95:0e:24:8e:e4:51:45:7c:6d:26:2e:4c: e1:d6:3b:e7:37:9d:96:c6:d8:88:29:80:a8:45:56:2c:7a:ed: e8:2d:e5:c9:c1:4c:8e:bd:3a:87:a9:dd:b8:a5:85:ef:2a:57: 65:b9:05:50:05:b6:a7:bf:57:52:02:e6:a3:87:d6:96:98:32: 9a:8e:db:0e:fc:98:15:b3:34:80:d6:4d:90:7d:7a:1a:43:88: 50:92:8e:2f:2e:81:4e:5a:5e:57:07:7a:a2:53:e2:1e:d0:f6: 25:f1:67:fd:9c:d4:64:74:43:14:1e:1f:73:4d:f6:c6:96:f7: e2:3a:e8:51 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICPvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MzMwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmZDA1Mi1iNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7cr7uZN1JbpV8NpYjYEcihle5JFTU/Fd6xPuaNey64bKpT6L9+IowgYBqnaT yG0qvZwsE/O6psDNtOj0bblG4IHco6VAFZ8ZucwTZ0E6hD3kYsBfq2G+tSIl1tRZ LK46GFxL4dqhhr07Hm9keCJdxUXpdcb+wbDu81BWmUBfO6bipPdBCWOvjdd5cp5p gLaIuwDyaMqYD8MIj4YymuV+mPSM0VWTMSHARVzBXYNVrIKVG1GcYCWuz6qwrtjl 84PItaBgSoLm3ClCxgvDi0G7T6j2MguT283HFrx/7N7rVA60Bg8Ks0k5dMnucvZS 8oIpUMd8+Lh88tHza33sAaAC+wIDAQABo4IC3zCCAtswHQYDVR0OBBYEFDfMpHyG E6URKMMnHZxHM/vyzAQDMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRDkxQTUxRkU3 NTNFMTFFRDkxNzI4ODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMDwEAgABMDYDBAItf/wDBAYx1UADBAI6VAADBAU9HOADBAJnxOwDBAJn9fgD BAN2ZgADBAR4ikADBAN6yQgwGAQCAAIwEgMHACABDfAAEwMHACABDfAAGjANBgkq hkiG9w0BAQsFAAOCAQEAl2Wi4Mx4tJSu76rhxwZ/kicgR4P0mOYBI/C0h6iP4KMQ Yp/sZSJzw+YcrcwpVHe3Dq2E1qNZQw6GSKoX985DNbcYT/6Yey7xl+MAfKHeBTxA vmPcM61RZTCOQGCdyZVm0jPLgjTQgH6a6LHvFyUHP59buLWEAI/RPs7xCNViav89 lLTOlQ4kjuRRRXxtJi5M4dY75zedlsbYiCmAqEVWLHrt6C3lycFMjr06h6nduKWF 7ypXZbkFUAW2p79XUgLmo4fWlpgymo7bDvyYFbM0gNZNkH16GkOIUJKOLy6BTlpe Vwd6olPiHtD2JfFn/ZzUZHRDFB4fc032xpb34jroUQ== -----END CERTIFICATE-----Generated at Fri Jun 14 16:49:42 2024 by rpki-client on console-fra.rpki-client.org