$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6D457B6E5E0B11EE80A52770C4F9AE02.roa File: 6D457B6E5E0B11EE80A52770C4F9AE02.roa (raw, json) Hash identifier: 8Ct2oCrX1aYgujtTf/cP0SjGxCH1jvVE8dLZbkdmEWc= Subject key identifier: A0:40:69:97:61:E5:6D:DF:7F:F9:E8:F3:E2:1E:DB:27:96:3B:16:4E Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 1263 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6D457B6E5E0B11EE80A52770C4F9AE02.roa Signing time: Fri 24 May 2024 22:32:42 +0000 ROA not before: Fri 24 May 2024 22:32:42 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 7018 IP address blocks: 43.254.12.0/22 maxlen: 24 115.167.68.0/22 maxlen: 24 115.167.108.0/22 maxlen: 24 175.110.76.0/22 maxlen: 24 175.110.92.0/22 maxlen: 24 175.110.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4707 (0x1263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: May 24 22:32:42 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6651158a-9c50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1c:15:40:07:5e:27:b2:3c:77:c5:e1:33:6b: a2:95:53:31:b2:8f:11:0f:9f:c0:47:ce:b3:08:71: ed:ce:15:e5:2a:38:54:b5:62:99:a2:c5:13:9d:07: 4f:dc:69:c4:f6:bf:c6:ca:cf:f7:a8:17:5b:a3:de: ec:3b:74:df:6a:09:73:d3:b1:f7:92:b4:6a:8f:ed: 3d:43:a7:55:01:af:27:f1:65:6e:a0:7e:ed:d2:43: 7c:5d:1c:78:bc:90:dc:f8:8d:39:f8:54:13:1e:d6: 51:0a:39:c0:25:03:f9:11:cd:f0:11:5d:4d:1e:71: a7:75:ad:6c:51:54:d1:39:ea:56:dc:8c:ef:8c:db: 79:94:64:60:90:ab:de:99:fd:d7:52:b2:fa:95:b5: dd:dd:75:9c:50:c0:42:17:6d:bc:df:0b:60:d5:b2: 15:09:3d:bd:56:e5:fc:a0:0e:60:1f:f0:2e:ad:cb: a9:3e:fa:7d:b1:c3:1e:f3:63:59:56:4c:16:50:18: 70:51:2a:36:09:09:5f:63:1b:50:eb:9e:1c:6e:64: c7:cf:ce:f3:cd:24:0b:ff:8c:62:a3:cd:0b:e6:66: 6c:65:2b:87:8e:34:de:98:21:c0:0b:08:31:14:2f: 4d:2d:23:a7:5c:89:c9:03:97:c6:f9:00:81:74:a1: 31:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:40:69:97:61:E5:6D:DF:7F:F9:E8:F3:E2:1E:DB:27:96:3B:16:4E X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6D457B6E5E0B11EE80A52770C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.12.0/22 115.167.68.0/22 115.167.108.0/22 175.110.76.0/22 175.110.92.0/22 175.110.98.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:1f:1b:d6:d2:50:5f:58:09:6e:29:f4:6c:e1:df:aa:34:1e: 15:7b:b4:e9:33:0d:ef:d5:1b:ea:46:06:95:b3:57:c8:05:7e: 86:ed:5d:86:aa:1d:8f:08:52:ce:af:36:f6:57:f3:16:f2:9f: 4a:39:52:7b:b5:3c:91:36:b0:f6:d7:53:f3:cf:df:f6:b2:d2: 37:ae:de:97:68:ae:be:1d:2a:31:ec:59:a9:62:d9:db:53:55: 60:46:54:83:68:54:e1:19:3a:ae:56:bd:90:24:82:89:84:13: 58:d6:30:b0:88:9f:4b:b8:38:7d:33:68:b4:11:2c:5e:43:86: 17:5b:cd:d7:91:53:e4:a9:41:17:da:5f:fa:47:6f:7b:38:45: 2b:3f:e4:38:f7:45:92:98:a1:93:43:58:fe:9c:c4:0e:5a:37: 99:ac:96:22:59:28:1a:3c:76:5c:b5:23:54:0a:d4:5b:ee:e1: 54:6b:da:4d:d1:89:6a:5b:0a:b4:ed:e7:ff:24:79:69:ca:fc: 32:96:e9:7c:88:7b:52:84:eb:fe:e6:29:41:ff:cd:9d:f4:72: ad:ec:17:85:0b:54:3e:b2:b5:9a:8f:8f:6d:49:42:64:e8:95: bd:8d:5d:2a:2a:b8:42:9b:9f:77:56:c5:9e:7b:33:d1:8d:ea: 17:88:d1:99 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICEmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjQwNTI0MjIzMjQyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUxMTU4YS05YzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RwVQAdeJ7I8d8XhM2uilVMxso8RD5/AR86zCHHtzhXlKjhUtWKZosUTnQdP 3GnE9r/Gys/3qBdbo97sO3Tfaglz07H3krRqj+09Q6dVAa8n8WVuoH7t0kN8XRx4 vJDc+I05+FQTHtZRCjnAJQP5Ec3wEV1NHnGnda1sUVTROepW3IzvjNt5lGRgkKve mf3XUrL6lbXd3XWcUMBCF2283wtg1bIVCT29VuX8oA5gH/AurcupPvp9scMe82NZ VkwWUBhwUSo2CQlfYxtQ654cbmTHz87zzSQL/4xio80L5mZsZSuHjjTemCHACwgx FC9NLSOnXInJA5fG+QCBdKExGwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFKBAaZdh 5W3ff/no8+Ie2yeWOxZOMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNkQ0NTdCNkU1 RTBCMTFFRTgwQTUyNzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAIr/gwDBAJzp0QDBAJzp2wDBAKvbkwDBAKvblwDBACvbmIw DQYJKoZIhvcNAQELBQADggEBAI8fG9bSUF9YCW4p9Gzh36o0HhV7tOkzDe/VG+pG BpWzV8gFfobtXYaqHY8IUs6vNvZX8xbyn0o5Unu1PJE2sPbXU/PP3/ay0jeu3pdo rr4dKjHsWali2dtTVWBGVINoVOEZOq5WvZAkgomEE1jWMLCIn0u4OH0zaLQRLF5D hhdbzdeRU+SpQRfaX/pHb3s4RSs/5Dj3RZKYoZNDWP6cxA5aN5msliJZKBo8dly1 I1QK1Fvu4VRr2k3RiWpbCrTt5/8keWnK/DKW6XyIe1KE6/7mKUH/zZ30cq3sF4UL VD6ytZqPj21JQmTolb2NXSoquEKbn3dWxZ57M9GN6heI0Zk= -----END CERTIFICATE-----Generated at Thu Jun 13 10:59:52 2024 by rpki-client on console-ams.rpki-client.org