$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa File: 5C154406988911E991B10838C4F9AE02.roa (raw, json) Hash identifier: E68+HsJGCOP2CrbeVqGVn23zDN97LBirmeW+EzG4LF0= Subject key identifier: 4D:C4:41:0D:AC:37:ED:EA:62:1F:F6:8F:99:ED:AA:9E:67:1D:B7:05 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0D85 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa Signing time: Tue 16 Jan 2024 18:36:15 +0000 ROA not before: Tue 16 Jan 2024 18:36:15 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 23881 IP address blocks: 23.226.0.0/24 maxlen: 24 23.226.1.0/24 maxlen: 24 23.226.2.0/24 maxlen: 24 23.226.3.0/24 maxlen: 24 23.226.4.0/24 maxlen: 24 23.226.5.0/24 maxlen: 24 23.226.6.0/24 maxlen: 24 23.226.7.0/24 maxlen: 24 23.226.8.0/24 maxlen: 24 23.226.9.0/24 maxlen: 24 23.226.10.0/24 maxlen: 24 23.226.11.0/24 maxlen: 24 23.226.12.0/24 maxlen: 24 23.226.13.0/24 maxlen: 24 23.226.14.0/24 maxlen: 24 23.226.15.0/24 maxlen: 24 162.247.0.0/24 maxlen: 24 162.247.1.0/24 maxlen: 24 162.247.2.0/24 maxlen: 24 162.247.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Jan 16 18:36:15 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a6cc9f-afd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:29:d8:c8:ac:f7:47:b5:73:ff:db:f3:c0:a3: c6:96:0d:b3:8a:e4:70:3c:e9:5c:3a:95:f6:22:76: 17:ea:da:18:4d:cf:bf:21:96:4f:96:bb:ac:f9:7d: 24:30:3a:b3:ba:15:47:c9:78:fe:5a:59:90:ef:1c: 78:8a:c9:2d:25:2a:68:78:d5:89:ea:95:a0:ab:0b: 56:50:4f:89:80:38:42:ae:1e:c2:c0:60:3d:ac:bb: 52:6f:f4:0a:eb:1c:3e:56:d3:91:50:6e:90:37:df: 68:dc:a6:c2:c7:0e:47:b0:3a:04:7c:81:c0:0a:0b: 71:5a:73:36:56:15:f9:b9:a5:f6:58:a9:dc:01:cd: 33:1f:7b:c3:4e:65:26:f2:83:17:c8:43:19:af:29: c2:49:54:10:1d:a5:f4:a9:38:91:8e:9f:9d:08:68: 06:23:11:b0:e3:47:86:48:c0:7b:cc:91:ff:c7:c6: ee:5b:7b:ee:6e:9c:14:08:ba:56:81:67:89:a5:c6: 27:8d:40:bc:35:54:0f:9c:02:42:5c:69:b7:49:89: 83:21:43:ef:b9:38:0b:94:9d:14:dc:c6:1e:bb:9d: e2:de:fa:60:5c:90:35:9e:02:5e:f6:5e:80:01:cb: 9e:7e:dc:76:ec:79:9c:a7:59:c4:f4:c2:24:68:a6: 95:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C4:41:0D:AC:37:ED:EA:62:1F:F6:8F:99:ED:AA:9E:67:1D:B7:05 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 23.226.0.0/20 162.247.0.0/22 Signature Algorithm: sha256WithRSAEncryption 12:fe:74:1d:09:9a:c4:87:45:fd:85:9d:14:1e:f3:6d:5a:5f: a2:e9:51:bc:cf:d3:5e:63:af:40:9a:b0:cf:74:78:b3:ca:34: 02:3b:25:bf:04:54:ff:18:a4:d5:ba:7a:1d:30:7a:3f:68:85: 5b:8b:53:14:10:1d:cc:ac:41:be:44:68:66:08:06:3d:d5:98: 23:2a:02:f0:be:aa:40:93:7c:78:fd:3c:b9:c5:2e:4c:dd:fc: 02:a4:c0:25:e0:12:24:49:a3:4d:0c:e3:9e:bf:62:ba:88:27: f7:f8:cb:d3:5c:bd:ef:dd:3a:4c:f3:25:fc:d1:f3:99:85:b4: e5:96:f6:aa:c1:a1:c5:4a:45:e8:40:e7:17:f6:a6:16:4c:d5: bd:eb:e9:92:06:d3:c7:14:e3:a6:2d:5b:7e:63:e8:1d:a1:88: d2:90:93:f9:85:bf:80:5a:24:86:70:ec:f7:1b:9c:73:0a:1d: fc:8d:81:ca:4e:9a:fe:33:f8:19:9d:c2:d9:57:48:a9:81:b8: 74:11:de:f7:3d:76:5c:9b:79:12:f2:9e:f0:24:32:60:7f:32: 1a:dc:d4:3f:ac:7d:e0:f2:27:d6:02:19:05:08:3a:de:b5:e2: 40:34:22:28:5b:59:38:4b:85:86:53:7d:66:ea:7f:af:fb:b5: 01:96:cd:bd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjQwMTE2MTgzNjE1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE2Y2M5Zi1hZmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxinYyKz3R7Vz/9vzwKPGlg2ziuRwPOlcOpX2InYX6toYTc+/IZZPlrus+X0k MDqzuhVHyXj+WlmQ7xx4isktJSpoeNWJ6pWgqwtWUE+JgDhCrh7CwGA9rLtSb/QK 6xw+VtORUG6QN99o3KbCxw5HsDoEfIHACgtxWnM2VhX5uaX2WKncAc0zH3vDTmUm 8oMXyEMZrynCSVQQHaX0qTiRjp+dCGgGIxGw40eGSMB7zJH/x8buW3vubpwUCLpW gWeJpcYnjUC8NVQPnAJCXGm3SYmDIUPvuTgLlJ0U3MYeu53i3vpgXJA1ngJe9l6A Acueftx27Hmcp1nE9MIkaKaVnwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFE3EQQ2s N+3qYh/2j5ntqp5nHbcFMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VGM0UvQ0I3NENGNkU5ODdCMTFFOTgzRUNDRjEzQzRGOUFFMDIvNUMxNTQ0MDY5 ODg5MTFFOTkxQjEwODM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAQX4gADBAKi9wAwDQYJKoZIhvcNAQELBQADggEBABL+dB0J msSHRf2FnRQe821aX6LpUbzP015jr0CasM90eLPKNAI7Jb8EVP8YpNW6eh0wej9o hVuLUxQQHcysQb5EaGYIBj3VmCMqAvC+qkCTfHj9PLnFLkzd/AKkwCXgEiRJo00M 456/YrqIJ/f4y9Ncve/dOkzzJfzR85mFtOWW9qrBocVKRehA5xf2phZM1b3r6ZIG 08cU46YtW35j6B2hiNKQk/mFv4BaJIZw7PcbnHMKHfyNgcpOmv4z+BmdwtlXSKmB uHQR3vc9dlybeRLynvAkMmB/Mhrc1D+sfeDyJ9YCGQUIOt614kA0IihbWThLhYZT fWbqf6/7tQGWzb0= -----END CERTIFICATE-----Generated at Fri May 31 20:34:15 2024 by rpki-client on console-ams.rpki-client.org