$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/6C523164E03F11EE87838439C4F9AE02.roa File: 6C523164E03F11EE87838439C4F9AE02.roa (raw, json) Hash identifier: mv/1q1fWNxrhkEN9Y113u0N7l2VES4hsApUz5cCFDX8= Subject key identifier: 49:41:02:E9:6D:17:03:D2:BF:E2:9C:CE:E7:76:C5:D3:AC:60:45:B5 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: 0A Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/6C523164E03F11EE87838439C4F9AE02.roa Signing time: Tue 12 Mar 2024 07:09:10 +0000 ROA not before: Tue 12 Mar 2024 07:09:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152637 IP address blocks: 202.37.52.0/23 maxlen: 23 202.37.52.0/24 maxlen: 24 202.37.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: Mar 12 07:09:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65efff96-6380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b2:49:e3:64:ca:82:87:e9:34:50:7e:e7:7d: 50:1f:6f:25:f6:8f:58:f5:46:4b:a3:ad:28:b3:66: 7a:e6:bc:bb:84:48:17:9d:b4:b5:f7:e8:4f:d7:be: 34:23:ed:f2:1a:ab:c1:c4:4b:a5:08:13:a0:55:ed: 62:38:ff:13:b4:e6:9b:bb:c3:d0:73:ad:09:97:e9: 24:09:cb:87:7a:de:10:f0:29:ed:47:a2:dc:f8:54: d8:b0:07:9b:85:95:59:f0:f4:09:8c:bf:35:e9:ba: 19:ae:10:2d:b6:3b:85:9b:79:8c:40:7a:27:c9:42: 04:fc:86:a1:0d:b1:78:eb:f1:26:52:a3:75:bf:99: 9b:46:08:2e:e7:e5:c3:ad:ab:d3:78:a6:6f:a1:20: 07:4d:b0:17:1e:9a:78:8b:ee:6e:a7:0a:f9:55:fb: 13:73:de:b1:e2:ca:34:91:9f:10:e3:9c:7c:00:cd: 2b:a9:5e:84:d6:45:4b:3b:aa:97:3a:bf:bd:3f:37: f3:5e:6d:24:bd:6c:b3:65:bc:66:2e:80:51:41:5c: a5:39:67:e0:af:08:63:4a:a3:cf:e1:be:e5:c0:da: 62:9f:b8:a2:bd:88:34:54:52:04:04:b9:99:e7:ff: 20:90:f6:cf:3d:be:83:f5:7a:03:d6:8b:48:91:c2: 1b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:41:02:E9:6D:17:03:D2:BF:E2:9C:CE:E7:76:C5:D3:AC:60:45:B5 X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/6C523164E03F11EE87838439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.52.0/23 Signature Algorithm: sha256WithRSAEncryption 73:96:75:85:ee:ba:c1:d1:06:c7:4c:d9:42:56:c8:9b:99:72: d0:56:55:e7:12:56:cf:de:8e:47:37:fd:a4:02:ff:26:ed:94: 51:4d:d9:3f:b2:ae:56:f0:db:2a:a3:ba:59:a8:f8:99:82:d4: 92:0c:b5:00:f1:62:de:0a:75:5a:dd:50:76:ef:c2:98:92:f1: 80:0f:d3:c1:04:6f:6b:73:fb:bc:cb:99:d0:5d:5f:5d:af:8e: 96:b2:90:05:04:b4:5d:cd:f4:db:05:b4:53:ab:01:23:12:ab: 7c:52:51:f2:41:eb:7f:e3:22:60:57:f7:88:e2:b9:e4:07:28: 79:b6:bf:47:76:fc:78:7d:9f:08:2b:d2:71:cf:8e:8f:83:20: 99:a8:dc:6f:3f:dd:2c:3d:ab:35:bc:9c:d2:48:18:c8:50:15: d5:8d:1b:11:d1:ec:74:0a:70:88:6a:1e:37:81:59:52:a9:57: 1a:ab:03:b0:42:96:90:c9:7e:7e:6a:ff:3a:1f:a9:d6:c6:8f: 13:c2:a5:59:c6:af:f1:e0:c3:1d:ee:b5:ea:07:31:a5:33:2e: 73:93:c9:9f:f2:69:ff:23:68:63:26:15:c9:ea:91:f5:c5:ca: 9e:1b:39:16:35:94:84:b3:22:9f:e5:1c:a2:51:1f:39:7c:ce: 9f:0f:68:3f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTQ5ODExMC8GA1UEBRMoQURDRDVBNERCNTk5QzcxQUVEOTNEMDk2QUIxNENBRkEw ODE1RTYxNzAeFw0yNDAzMTIwNzA5MTBaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZWZmZjk2LTYzODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHsknjZMqCh+k0UH7nfVAfbyX2j1j1RkujrSizZnrmvLuESBedtLX36E/XvjQj 7fIaq8HES6UIE6BV7WI4/xO05pu7w9BzrQmX6SQJy4d63hDwKe1Hotz4VNiwB5uF lVnw9AmMvzXpuhmuEC22O4WbeYxAeifJQgT8hqENsXjr8SZSo3W/mZtGCC7n5cOt q9N4pm+hIAdNsBcemniL7m6nCvlV+xNz3rHiyjSRnxDjnHwAzSupXoTWRUs7qpc6 v70/N/NebSS9bLNlvGYugFFBXKU5Z+CvCGNKo8/hvuXA2mKfuKK9iDRUUgQEuZnn /yCQ9s89voP1egPWi0iRwhtzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSUEC6W0X A9K/4pzO53bF06xgRbUwHwYDVR0jBBgwFoAUrc1aTbWZxxrtk9CWqxTK+ggV5hcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNDk4L0IzQzhBOTdDREZC NTExRUVCN0FEOEYyRUM0RjlBRTAyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcmMxYVRiV1p4eHJ0azlDV3F4VEstZ2dWNWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTQ5OC9CM0M4QTk3Q0RGQjUxMUVFQjdBRDhGMkVDNEY5QUUwMi82QzUyMzE2NEUw M0YxMUVFODc4Mzg0MzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcolNDANBgkqhkiG9w0BAQsFAAOCAQEAc5Z1he66wdEGx0zZ QlbIm5ly0FZV5xJWz96ORzf9pAL/Ju2UUU3ZP7KuVvDbKqO6Waj4mYLUkgy1APFi 3gp1Wt1Qdu/CmJLxgA/TwQRva3P7vMuZ0F1fXa+OlrKQBQS0Xc302wW0U6sBIxKr fFJR8kHrf+MiYFf3iOK55Acoeba/R3b8eH2fCCvScc+Oj4Mgmajcbz/dLD2rNbyc 0kgYyFAV1Y0bEdHsdApwiGoeN4FZUqlXGqsDsEKWkMl+fmr/Oh+p1saPE8KlWcav 8eDDHe616gcxpTMuc5PJn/Jp/yNoYyYVyeqR9cXKnhs5FjWUhLMin+UcolEfOXzO nw9oPw== -----END CERTIFICATE-----Generated at Fri Jun 7 11:02:56 2024 by rpki-client on console-fra.rpki-client.org