$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/A84D830AA54511EAA942C683C4F9AE02.roa File: A84D830AA54511EAA942C683C4F9AE02.roa (raw, json) Hash identifier: UigApkOojUwOo8nb0us8ljezcY34l9CMcN9uCrvOT6g= Subject key identifier: E0:27:F3:96:B2:51:CB:F8:DB:2D:D2:EC:08:B2:0B:2D:EC:EC:F4:07 Certificate issuer: /CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Certificate serial: 0805 Authority key identifier: 8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/A84D830AA54511EAA942C683C4F9AE02.roa Signing time: Thu 02 Nov 2023 21:48:51 +0000 ROA not before: Thu 02 Nov 2023 21:48:51 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139750 IP address blocks: 45.253.248.0/24 maxlen: 24 45.253.249.0/24 maxlen: 24 45.253.250.0/24 maxlen: 24 45.253.251.0/24 maxlen: 24 45.253.252.0/24 maxlen: 24 45.253.253.0/24 maxlen: 24 45.253.254.0/24 maxlen: 24 45.253.255.0/24 maxlen: 24 103.144.140.0/24 maxlen: 24 103.144.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Validity Not Before: Nov 2 21:48:51 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65441942-94aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6a:f7:3e:b3:a9:0b:25:12:f3:8a:cd:6f:da: be:20:0f:f7:8f:d9:9b:69:93:fb:de:82:68:d5:73: 64:f8:e5:c0:70:2c:02:2f:26:b3:09:b2:af:36:28: 9d:3a:d8:5c:bb:a6:52:40:56:a2:b8:a1:e8:33:1c: 30:b2:07:dd:80:89:33:37:93:36:3b:c7:bc:de:50: 24:33:6b:e0:ee:20:0b:a1:af:09:2d:68:d4:4e:f4: b9:bc:ca:f5:03:c6:77:14:3f:14:a5:bc:ec:10:8f: 82:ce:c8:81:9b:e3:e3:e6:ef:b1:af:45:b6:21:73: 2d:35:f7:65:81:a5:f7:01:5c:a5:e5:74:f9:9e:56: 7b:4f:b5:4a:da:f0:57:e6:a5:6d:56:f7:a5:6d:ec: f9:92:ea:43:55:ea:29:85:f4:95:0a:12:c1:00:68: 05:c7:ec:62:94:3b:ef:bb:c2:34:01:a7:53:fd:de: c0:83:fc:68:b7:64:5e:3b:d8:44:f2:c2:b8:28:bd: 79:9b:cc:05:6a:7f:bd:72:dc:d7:ac:ed:98:cf:6d: bd:c8:dd:a7:69:fc:ca:1d:0e:58:91:0b:9f:0e:b3: f2:48:e3:6f:53:ee:80:ef:2d:36:e5:54:2d:31:5a: 31:aa:b1:bd:27:eb:5e:17:97:53:87:2e:c5:3b:7d: d1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:27:F3:96:B2:51:CB:F8:DB:2D:D2:EC:08:B2:0B:2D:EC:EC:F4:07 X509v3 Authority Key Identifier: keyid:8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/A84D830AA54511EAA942C683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.253.248.0/21 103.144.140.0/23 Signature Algorithm: sha256WithRSAEncryption 37:f8:33:33:49:dd:8c:0d:bc:11:7b:23:f5:41:23:b2:bc:14: eb:d5:a8:ab:24:95:5c:85:be:6d:7c:33:bd:9b:7e:05:6f:a8: c3:12:e9:fb:ff:7e:cc:e4:49:de:f2:0c:25:63:c7:04:e1:79: d7:d5:7b:9d:38:95:4b:3a:f0:49:c7:be:c0:ee:92:45:86:5f: bc:d4:3e:24:32:cf:70:63:f6:8d:9e:5c:00:2c:e8:30:de:f3: d5:cb:cb:24:5b:6c:31:d6:2e:26:df:55:8c:a1:e0:66:5d:94: d8:bb:be:51:a8:ca:fa:f0:36:c1:35:da:1b:1f:3f:5e:fd:bf: df:28:e1:c8:50:47:7c:69:fd:77:bf:f4:cd:39:9f:53:3e:eb: 7d:71:5a:df:f0:fc:b1:38:38:6a:71:fe:25:88:c6:88:10:28: 43:8d:47:1d:6d:58:d1:84:6b:cb:b4:b7:41:1d:43:a2:3f:a8: d3:ce:3c:a4:c4:b2:6b:89:bf:ca:c4:f0:fd:5c:52:4a:76:83: e9:6c:34:ae:a2:e3:18:29:4e:55:6a:da:94:ec:b6:3a:c1:19: c8:a0:20:67:a0:c4:3c:b9:c0:a0:d0:02:5e:10:ee:ae:c5:09: 64:cd:f8:34:48:f3:34:96:59:7f:00:18:6f:ce:62:57:8f:a6: d9:8f:c1:14 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDhFNzg0MzQ5RUYyRERGNzg1NzVGRDU0Q0M3OEVEOEM0 NUM5NzZDQkYwHhcNMjMxMTAyMjE0ODUxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MTk0Mi05NGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2r3PrOpCyUS84rNb9q+IA/3j9mbaZP73oJo1XNk+OXAcCwCLyazCbKvNiid Othcu6ZSQFaiuKHoMxwwsgfdgIkzN5M2O8e83lAkM2vg7iALoa8JLWjUTvS5vMr1 A8Z3FD8UpbzsEI+CzsiBm+Pj5u+xr0W2IXMtNfdlgaX3AVyl5XT5nlZ7T7VK2vBX 5qVtVvelbez5kupDVeophfSVChLBAGgFx+xilDvvu8I0AadT/d7Ag/xot2ReO9hE 8sK4KL15m8wFan+9ctzXrO2Yz229yN2nafzKHQ5YkQufDrPySONvU+6A7y025VQt MVoxqrG9J+teF5dThy7FO33RbwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOAn85ay Ucv42y3S7AiyCy3s7PQHMB8GA1UdIwQYMBaAFI54Q0nvLd94V1/VTMeO2MRcl2y/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi9DQThFN0Y3RUE1 NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMzaFhYOVZNeDQ3WXhGeVhi TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puaERTZTh0MzNoWFg5Vk14NDdZeEZ5WGJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQwRDYvQ0E4RTdGN0VBNTQ0MTFFQTk0REEzNjgzQzRGOUFFMDIvQTg0RDgzMEFB NTQ1MTFFQUE5NDJDNjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAMt/fgDBAFnkIwwDQYJKoZIhvcNAQELBQADggEBADf4MzNJ 3YwNvBF7I/VBI7K8FOvVqKsklVyFvm18M72bfgVvqMMS6fv/fszkSd7yDCVjxwTh edfVe504lUs68EnHvsDukkWGX7zUPiQyz3Bj9o2eXAAs6DDe89XLyyRbbDHWLibf VYyh4GZdlNi7vlGoyvrwNsE12hsfP179v98o4chQR3xp/Xe/9M05n1M+631xWt/w /LE4OGpx/iWIxogQKEONRx1tWNGEa8u0t0EdQ6I/qNPOPKTEsmuJv8rE8P1cUkp2 g+lsNK6i4xgpTlVq2pTstjrBGcigIGegxDy5wKDQAl4Q7q7FCWTN+DRI8zSWWX8A GG/OYlePptmPwRQ= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:27 2024 by rpki-client on console-ams.rpki-client.org