$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa File: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (raw, json) Hash identifier: s2LHLmQDm4bghJSqToFgkKw4rMJHe8iqXLGWEpGomPM= Subject key identifier: 25:3A:4A:36:22:22:4F:8A:4F:05:12:E5:EF:3E:78:43:63:9E:A9:DE Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 350B Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa Signing time: Fri 07 Jun 2024 04:26:14 +0000 ROA not before: Fri 07 Jun 2024 04:26:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141215 IP address blocks: 116.90.119.0/24 maxlen: 24 202.142.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 14:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13579 (0x350b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Jun 7 04:26:14 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66628be5-cdbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:31:72:f5:34:3d:16:0f:e4:61:9b:d4:4c:89: 7a:28:b2:f8:c4:1e:6d:18:cc:12:0b:0e:ef:d6:c6: c1:57:27:ea:9a:f8:a0:f1:3a:95:40:7a:da:45:38: b5:67:a7:af:eb:b7:6a:01:8f:d8:b5:74:d2:e7:65: 14:d1:de:08:a2:8d:7e:72:5d:64:0d:e5:0c:4f:27: 78:24:12:a7:31:4e:40:07:be:96:0f:d1:4c:eb:d2: da:a3:ad:91:8d:74:f5:a5:9c:f1:54:64:aa:17:91: f7:8a:b6:6e:c8:b0:17:62:dd:11:b8:89:3d:b9:95: ba:e5:69:25:d6:07:5b:80:1a:43:25:b1:8c:34:aa: 83:3e:04:e5:3b:4f:0f:15:a6:b4:ff:5f:18:3b:f0: 6d:b1:75:03:f3:62:b4:16:fe:67:d4:88:90:0e:07: 7e:e2:1d:f4:41:57:f7:2a:c9:46:d2:98:b7:7f:4e: 7b:99:1c:7e:66:4d:50:0e:a8:1f:a2:4a:e4:1a:5b: 8f:80:c3:13:de:33:6f:59:43:79:3e:76:72:68:74: 1a:3b:16:9c:f3:40:e7:41:65:33:16:52:58:1d:27: 58:8b:aa:d2:b9:e5:42:10:58:b1:40:c7:10:27:e6: f6:9b:8a:e4:bd:58:2d:d4:16:ba:d1:55:ad:37:36: 94:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3A:4A:36:22:22:4F:8A:4F:05:12:E5:EF:3E:78:43:63:9E:A9:DE X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.119.0/24 202.142.155.0/24 Signature Algorithm: sha256WithRSAEncryption 48:45:a7:63:89:0a:60:e9:a7:58:e4:a5:d1:2c:8b:3d:40:a6: e7:fb:86:3c:51:a1:1e:d8:57:51:62:66:cc:29:fd:8a:be:56: 3d:43:47:58:44:05:8c:76:e9:cf:34:a4:56:6b:5c:bc:a8:f5: 41:80:1e:42:a8:b9:23:09:4f:5f:96:ab:0b:ba:55:53:ee:bb: f8:78:41:a7:2a:f9:f1:a2:3c:9a:7b:71:f5:b6:0a:11:9f:85: c3:17:93:73:0e:b5:bd:88:9f:86:c7:dc:f0:de:20:4f:dc:16: ac:a3:e0:55:a0:1a:03:a8:03:bf:e6:0a:75:f4:a0:6a:37:eb: 6e:38:81:c9:58:e6:c5:12:74:aa:3b:23:c9:41:02:fd:26:0f: 21:4a:61:74:2a:ed:ac:9f:31:31:8c:e7:d7:6c:8d:54:c2:b0: d7:0f:15:be:38:d9:1d:b4:9f:e4:58:b7:82:66:00:cd:91:db: e4:51:5a:15:f0:f6:26:56:0d:ff:24:1a:98:91:ea:fe:55:c1: 5b:d3:7c:aa:32:04:e5:e9:29:2e:7f:cb:b9:e1:5b:9b:ba:13: 1b:d0:1a:09:e4:af:1e:68:45:9b:6a:cd:c1:4e:b8:bc:42:16: 65:9f:ae:ba:36:91:98:e4:26:a8:66:34:bf:37:f6:42:0b:ac: 32:8d:f3:58 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQwNjA3MDQyNjE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyOGJlNS1jZGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6DFy9TQ9Fg/kYZvUTIl6KLL4xB5tGMwSCw7v1sbBVyfqmvig8TqVQHraRTi1 Z6ev67dqAY/YtXTS52UU0d4Ioo1+cl1kDeUMTyd4JBKnMU5AB76WD9FM69Lao62R jXT1pZzxVGSqF5H3irZuyLAXYt0RuIk9uZW65Wkl1gdbgBpDJbGMNKqDPgTlO08P Faa0/18YO/BtsXUD82K0Fv5n1IiQDgd+4h30QVf3KslG0pi3f057mRx+Zk1QDqgf okrkGluPgMMT3jNvWUN5PnZyaHQaOxac80DnQWUzFlJYHSdYi6rSueVCEFixQMcQ J+b2m4rkvVgt1Ba60VWtNzaUIwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCU6SjYi Ik+KTwUS5e8+eENjnqneMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvNEIyQUZENTRB QkE2MTFFRUE0QjU5QTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB0WncDBADKjpswDQYJKoZIhvcNAQELBQADggEBAEhFp2OJ CmDpp1jkpdEsiz1Apuf7hjxRoR7YV1FiZswp/Yq+Vj1DR1hEBYx26c80pFZrXLyo 9UGAHkKouSMJT1+Wqwu6VVPuu/h4Qacq+fGiPJp7cfW2ChGfhcMXk3MOtb2In4bH 3PDeIE/cFqyj4FWgGgOoA7/mCnX0oGo36244gclY5sUSdKo7I8lBAv0mDyFKYXQq 7ayfMTGM59dsjVTCsNcPFb442R20n+RYt4JmAM2R2+RRWhXw9iZWDf8kGpiR6v5V wVvTfKoyBOXpKS5/y7nhW5u6ExvQGgnkrx5oRZtqzcFOuLxCFmWfrro2kZjkJqhm NL839kILrDKN81g= -----END CERTIFICATE-----Generated at Fri Jun 14 19:10:35 2024 by rpki-client on console-ams.rpki-client.org