$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/1A0B540E3AA711EA83682876C4F9AE02.roa File: 1A0B540E3AA711EA83682876C4F9AE02.roa (raw, json) Hash identifier: TwxJnemh0iNdVKVtR3GahtsGerzIj0R9I0LA0/p1nqE= Subject key identifier: A9:AA:CD:CA:58:98:6A:35:1D:9B:98:1F:31:06:03:05:FD:B1:59:68 Certificate issuer: /CN=A91BD9C2/serialNumber=6F9AC04CE5AC71A7C2B7AFB1A55727A10E5B06EE Certificate serial: 09E2 Authority key identifier: 6F:9A:C0:4C:E5:AC:71:A7:C2:B7:AF:B1:A5:57:27:A1:0E:5B:06:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5rATOWscafCt6-xpVcnoQ5bBu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/1A0B540E3AA711EA83682876C4F9AE02.roa Signing time: Fri 04 Aug 2023 19:57:16 +0000 ROA not before: Fri 04 Aug 2023 19:57:16 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38210 IP address blocks: 202.72.232.0/22 maxlen: 22 202.72.232.0/24 maxlen: 24 202.72.233.0/24 maxlen: 24 202.72.234.0/24 maxlen: 24 202.72.235.0/24 maxlen: 24 202.72.236.0/22 maxlen: 22 202.72.236.0/24 maxlen: 24 202.72.237.0/24 maxlen: 24 202.72.238.0/24 maxlen: 24 202.72.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/b5rATOWscafCt6-xpVcnoQ5bBu4.crl rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/b5rATOWscafCt6-xpVcnoQ5bBu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5rATOWscafCt6-xpVcnoQ5bBu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 20:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2530 (0x9e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD9C2/serialNumber=6F9AC04CE5AC71A7C2B7AFB1A55727A10E5B06EE Validity Not Before: Aug 4 19:57:16 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cd581c-479a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:95:6c:ec:c2:78:98:b7:03:5d:b0:0f:cf:67: ac:c1:0b:bd:62:31:4d:7b:53:40:93:96:4a:3f:62: d0:c5:8b:a0:ff:1e:e0:29:c3:fe:0d:e8:26:79:1b: ff:e2:ea:a6:62:56:56:dc:f9:0e:ef:e2:41:7d:48: 73:34:a9:fa:93:53:9e:89:77:a4:7e:72:44:80:9d: 7f:c5:e7:97:19:e0:c1:ba:2e:0c:85:2e:0e:8c:dd: 3e:7a:c1:ae:d2:6a:e9:b0:84:fc:fe:e5:01:9d:a3: da:0b:98:09:fd:c4:81:44:4d:6d:a2:94:e7:3e:29: ae:b1:3c:df:bf:e6:62:e4:23:cd:ab:47:db:b1:d8: 57:50:9d:ac:e1:d3:51:65:e5:57:76:3a:95:e9:8a: 66:94:6f:7d:1e:cf:d2:13:5f:7e:ed:87:0e:48:35: ff:cd:d9:62:df:68:cb:2d:6b:6a:62:9a:fe:21:48: af:2c:19:95:68:0c:da:47:b0:30:02:45:a2:ed:70: a9:14:04:c0:e2:12:8c:19:1e:62:1e:8f:3a:ac:bd: 4f:e4:d9:be:4a:6b:99:ea:01:de:42:6e:76:de:ce: ef:56:4a:6b:c9:00:75:eb:4f:40:68:ea:3f:ee:35: e4:d3:4d:67:b1:5e:d6:5b:b4:b5:0d:a0:25:35:b2: 35:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:AA:CD:CA:58:98:6A:35:1D:9B:98:1F:31:06:03:05:FD:B1:59:68 X509v3 Authority Key Identifier: keyid:6F:9A:C0:4C:E5:AC:71:A7:C2:B7:AF:B1:A5:57:27:A1:0E:5B:06:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/b5rATOWscafCt6-xpVcnoQ5bBu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5rATOWscafCt6-xpVcnoQ5bBu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/1A0B540E3AA711EA83682876C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.72.232.0/21 Signature Algorithm: sha256WithRSAEncryption b4:41:4e:1b:0f:4a:af:21:af:e4:d1:e9:6a:a8:d7:5a:ab:6f: 51:13:a0:65:99:1b:bb:2b:e0:9c:00:63:cd:8b:1e:ac:60:3b: 99:87:f0:18:89:b5:fe:0e:55:12:fd:ea:a1:fa:bb:96:12:aa: b3:2a:eb:98:7f:e3:38:3f:b9:13:1f:b9:41:42:97:a8:59:16: cc:1a:3b:ac:eb:54:e9:89:bf:a8:ca:f8:60:a5:af:84:c6:a2: aa:35:8b:a2:9b:40:80:da:fc:9f:c7:14:32:b9:e1:2b:f1:24: 38:65:30:06:af:56:6e:f3:c6:7f:ab:a1:ac:08:4d:fa:27:1e: be:6e:4e:97:49:30:22:ed:52:b2:97:9e:35:25:f0:18:9d:ab: 70:4a:11:ec:f9:03:3c:68:90:09:f0:a7:c3:1e:0d:73:15:0d: 36:15:6f:82:52:0a:d8:5f:fb:dc:5e:aa:cf:b6:08:c2:e0:63: 63:86:7f:91:31:f3:6f:a6:01:cf:7a:8d:56:4c:e9:e3:0e:1d: 4b:af:91:13:a8:b9:8f:e8:c4:16:21:04:c8:65:06:71:9f:27: 47:0a:fc:2d:13:e2:56:cd:5b:a6:e1:5c:28:69:72:f2:95:04: bf:6e:de:9e:2e:de:43:05:7f:c0:67:c5:ac:4f:38:e5:0f:c2: d8:a6:a9:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ5QzIxMTAvBgNVBAUTKDZGOUFDMDRDRTVBQzcxQTdDMkI3QUZCMUE1NTcyN0Ex MEU1QjA2RUUwHhcNMjMwODA0MTk1NzE2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkNTgxYy00NzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpVs7MJ4mLcDXbAPz2eswQu9YjFNe1NAk5ZKP2LQxYug/x7gKcP+DegmeRv/ 4uqmYlZW3PkO7+JBfUhzNKn6k1OeiXekfnJEgJ1/xeeXGeDBui4MhS4OjN0+esGu 0mrpsIT8/uUBnaPaC5gJ/cSBRE1topTnPimusTzfv+Zi5CPNq0fbsdhXUJ2s4dNR ZeVXdjqV6YpmlG99Hs/SE19+7YcOSDX/zdli32jLLWtqYpr+IUivLBmVaAzaR7Aw AkWi7XCpFATA4hKMGR5iHo86rL1P5Nm+SmuZ6gHeQm523s7vVkpryQB1609AaOo/ 7jXk001nsV7WW7S1DaAlNbI1PwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKmqzcpY mGo1HZuYHzEGAwX9sVloMB8GA1UdIwQYMBaAFG+awEzlrHGnwrevsaVXJ6EOWwbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDlDMi9BQjBERjRGMjNB QTIxMUVBQTc5RTZBNjlDNEY5QUUwMi9iNXJBVE9Xc2NhZkN0Ni14cFZjbm9RNWJC dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I1ckFUT1dzY2FmQ3Q2LXhwVmNub1E1YkJ1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQ5QzIvQUIwREY0RjIzQUEyMTFFQUE3OUU2QTY5QzRGOUFFMDIvMUEwQjU0MEUz QUE3MTFFQTgzNjgyODc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKSOgwDQYJKoZIhvcNAQELBQADggEBALRBThsPSq8hr+TR 6Wqo11qrb1EToGWZG7sr4JwAY82LHqxgO5mH8BiJtf4OVRL96qH6u5YSqrMq65h/ 4zg/uRMfuUFCl6hZFswaO6zrVOmJv6jK+GClr4TGoqo1i6KbQIDa/J/HFDK54Svx JDhlMAavVm7zxn+roawITfonHr5uTpdJMCLtUrKXnjUl8Bidq3BKEez5AzxokAnw p8MeDXMVDTYVb4JSCthf+9xeqs+2CMLgY2OGf5Ex82+mAc96jVZM6eMOHUuvkROo uY/oxBYhBMhlBnGfJ0cK/C0T4lbNW6bhXChpcvKVBL9u3p4u3kMFf8BnxaxPOOUP wtimqXs= -----END CERTIFICATE-----Generated at Fri Jun 7 00:12:13 2024 by rpki-client on console-ams.rpki-client.org