$ rpki-client -vvf rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/D00FC228F46111ECA631AC55C4F9AE02.roa File: D00FC228F46111ECA631AC55C4F9AE02.roa (raw, json) Hash identifier: N/IK4l9L83s8U5dGpeXFymDYnkY5mAHFGvsvPCstQRk= Subject key identifier: 1C:B4:55:2E:AD:51:A2:A5:A0:74:94:D7:2B:15:91:21:E2:42:E4:1B Certificate issuer: /CN=A91D112B/serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Certificate serial: 05D8 Authority key identifier: F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/D00FC228F46111ECA631AC55C4F9AE02.roa Signing time: Thu 22 Jun 2023 23:55:27 +0000 ROA not before: Thu 22 Jun 2023 23:55:27 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 134236 IP address blocks: 45.120.96.0/22 maxlen: 22 45.120.96.0/23 maxlen: 23 45.120.96.0/24 maxlen: 24 45.120.97.0/24 maxlen: 24 45.120.98.0/23 maxlen: 23 45.120.98.0/24 maxlen: 24 45.120.99.0/24 maxlen: 24 103.60.160.0/22 maxlen: 22 103.60.160.0/23 maxlen: 23 103.60.160.0/24 maxlen: 24 103.60.161.0/24 maxlen: 24 103.60.162.0/23 maxlen: 23 103.60.162.0/24 maxlen: 24 103.60.163.0/24 maxlen: 24 2406:cc40::/32 maxlen: 32 2406:cc40:1::/48 maxlen: 48 2406:cc40:2::/48 maxlen: 48 2406:cc40:a::/48 maxlen: 48 2406:cc40:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D112B/serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Validity Not Before: Jun 22 23:55:27 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6494df6f-4ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7c:d0:6e:d4:20:97:37:85:53:03:9c:03:b8: 03:18:7d:1f:c6:ff:45:1d:51:49:78:48:9a:de:6f: 29:22:f2:2c:41:91:69:d2:e5:7f:14:87:37:b8:09: 13:f2:c0:86:e7:ab:b4:68:98:0d:59:83:dc:35:5f: ec:0c:0b:62:6f:93:a0:fd:d9:77:ff:0c:c4:58:aa: 49:3e:9d:c9:56:c6:fc:45:ba:5a:33:be:cd:98:a2: d6:ba:91:17:4a:7c:31:af:a5:87:d4:79:5b:b6:fc: b6:d6:da:06:fc:a9:21:11:f1:a0:93:5b:2e:49:58: 4e:a5:ad:a0:04:32:b0:82:a8:08:ea:92:7b:14:dd: da:83:fc:f7:f9:67:6e:88:dd:75:00:cc:3a:98:3a: 42:b2:47:66:51:99:9d:b3:f7:1d:9c:16:b4:b3:80: a0:05:32:ae:71:ff:c6:63:bc:7f:72:9d:61:31:19: 85:a4:c2:d2:10:3a:3f:c1:f7:3a:c1:3f:78:fc:dd: 87:e7:dc:2f:63:50:fd:99:3d:19:61:b3:38:05:54: 43:78:cd:98:33:dc:b4:bc:19:dd:92:8d:f5:7b:01: 41:0b:c4:82:33:b3:12:e7:84:2f:85:77:ae:c3:2f: 17:e5:9e:39:2a:44:f0:74:ff:34:3d:44:c4:0c:ee: 8a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B4:55:2E:AD:51:A2:A5:A0:74:94:D7:2B:15:91:21:E2:42:E4:1B X509v3 Authority Key Identifier: keyid:F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/D00FC228F46111ECA631AC55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.96.0/22 103.60.160.0/22 IPv6: 2406:cc40::/32 Signature Algorithm: sha256WithRSAEncryption 01:7b:7d:db:ae:a9:54:a3:85:12:b9:5d:d2:da:2e:4b:79:7a: 8a:22:61:b7:10:a7:3e:b0:44:7d:bf:dc:7f:c2:ea:b0:ff:da: 2c:16:b3:21:63:89:6b:13:d1:d6:af:65:67:18:19:ed:54:8e: 09:5b:37:f9:35:0d:69:4a:0e:0d:9a:3c:45:b8:23:c8:aa:58: 5b:d8:17:ed:37:11:b9:52:eb:e2:2c:7f:09:3b:bc:64:5d:51: 6b:e5:c5:ea:62:0e:4a:c7:84:f3:8a:ed:64:3b:d9:16:42:c4: 4a:f6:ea:16:a2:53:39:01:1e:ad:45:b9:9b:b2:9d:85:cb:ff: 23:9a:82:26:bd:36:78:0a:48:e9:87:b0:3e:71:2e:98:0b:3f: ed:0d:a8:a0:2d:87:e2:68:2d:ca:8c:dc:aa:4f:b7:6e:fe:4e: 71:43:c1:42:7c:eb:0e:de:31:3a:62:c2:bb:0f:14:16:72:6d: 4d:71:8c:a2:c6:72:08:2b:d2:bf:2c:f7:e6:ae:9a:c2:be:f7: fc:db:29:06:1d:77:0e:59:5b:1e:5e:88:45:62:ed:fa:b5:ff: ca:48:f6:e5:1a:c8:e3:20:de:9e:a4:ef:d9:f4:4a:67:62:02: c7:1b:4a:8b:44:7a:e0:40:d5:ff:4b:9b:19:10:a0:ee:fd:35: e0:00:d7:a4 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMkIxMTAvBgNVBAUTKEYwNEIyNEQyNDgyRUYwMUY4OEI3RDBENjJBNTM5MjI3 MzlCNzg4MEQwHhcNMjMwNjIyMjM1NTI3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0ZGY2Zi00YmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHzQbtQglzeFUwOcA7gDGH0fxv9FHVFJeEia3m8pIvIsQZFp0uV/FIc3uAkT 8sCG56u0aJgNWYPcNV/sDAtib5Og/dl3/wzEWKpJPp3JVsb8RbpaM77NmKLWupEX Snwxr6WH1Hlbtvy21toG/KkhEfGgk1suSVhOpa2gBDKwgqgI6pJ7FN3ag/z3+Wdu iN11AMw6mDpCskdmUZmds/cdnBa0s4CgBTKucf/GY7x/cp1hMRmFpMLSEDo/wfc6 wT94/N2H59wvY1D9mT0ZYbM4BVRDeM2YM9y0vBndko31ewFBC8SCM7MS54QvhXeu wy8X5Z45KkTwdP80PUTEDO6KBwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBy0VS6t UaKloHSU1ysVkSHiQuQbMB8GA1UdIwQYMBaAFPBLJNJILvAfiLfQ1ipTkic5t4gN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEyQi8xQ0QwRTA1MDJG MzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThCLUl0OURXS2xPU0p6bTNp QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFc2swa2d1OEItSXQ5RFdLbE9TSnptM2lBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDExMkIvMUNEMEUwNTAyRjM0MTFFQjk3RkUxNzg2QzRGOUFFMDIvRDAwRkMyMjhG NDYxMTFFQ0E2MzFBQzU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIteGADBAJnPKAwDQQCAAIwBwMFACQGzEAwDQYJKoZIhvcN AQELBQADggEBAAF7fduuqVSjhRK5XdLaLkt5eooiYbcQpz6wRH2/3H/C6rD/2iwW syFjiWsT0davZWcYGe1UjglbN/k1DWlKDg2aPEW4I8iqWFvYF+03EblS6+Isfwk7 vGRdUWvlxepiDkrHhPOK7WQ72RZCxEr26haiUzkBHq1FuZuynYXL/yOagia9NngK SOmHsD5xLpgLP+0NqKAth+JoLcqM3KpPt27+TnFDwUJ86w7eMTpiwrsPFBZybU1x jKLGcggr0r8s9+aumsK+9/zbKQYddw5ZWx5eiEVi7fq1/8pI9uUayOMg3p6k79n0 SmdiAscbSotEeuBA1f9LmxkQoO79NeAA16Q= -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:46 2024 by rpki-client on console-fra.rpki-client.org