$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/E9DE96C44C3611EEA9D59630C4F9AE02.roa File: E9DE96C44C3611EEA9D59630C4F9AE02.roa (raw, json) Hash identifier: uVlM8HNY3NDmZuTJ/98xK6ucMIdX8gkJyRYRKke/tSI= Subject key identifier: 02:CE:97:E0:02:BA:08:6C:66:49:19:26:2A:0C:F2:8A:8D:D4:38:D4 Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 20AF Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/E9DE96C44C3611EEA9D59630C4F9AE02.roa Signing time: Tue 12 Mar 2024 01:03:38 +0000 ROA not before: Tue 12 Mar 2024 01:03:38 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 55811 IP address blocks: 27.124.96.0/20 maxlen: 20 45.113.196.0/22 maxlen: 22 103.53.116.0/22 maxlen: 22 103.53.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8367 (0x20af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: Mar 12 01:03:38 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65efa9e9-7136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c4:a4:e4:f1:98:a5:44:5f:b9:0d:c8:47:27: 16:be:47:a3:48:58:37:9f:f3:07:a5:e1:b0:63:2c: d5:ba:48:16:17:c0:47:ac:a0:cc:71:1c:d4:e0:a0: 79:75:e0:b9:33:6f:db:69:59:a2:7e:bb:c3:ad:c4: 1c:a9:f0:84:a6:1b:d8:4d:7e:72:c8:b2:e1:a9:7c: 51:b2:e7:ff:24:72:20:bf:a3:2b:a9:35:83:8c:9f: 29:cc:86:a2:f7:e8:35:6a:29:a8:61:9b:ad:b9:1a: 62:ff:20:46:ef:37:d7:29:58:da:5d:a3:27:ee:28: e2:7b:8f:7a:89:b1:ab:4f:47:b3:ca:b9:e0:d3:b6: 1c:f8:8a:91:21:a0:fc:45:9e:de:8d:d3:25:b0:17: f8:b6:e4:c0:05:ba:89:a1:6b:4a:c3:31:a1:d5:85: cb:fa:40:ac:c5:15:af:41:3a:87:38:b1:17:60:f2: 4d:eb:5a:53:03:c5:0c:b0:1c:66:40:b5:3f:8f:df: 72:f9:21:8b:7b:23:09:29:ab:f1:7d:b8:fa:8b:1f: e3:4e:16:d6:54:19:9d:5b:1d:dd:a7:ab:47:03:5f: a1:db:d4:61:12:b0:e0:96:ee:d5:dc:c5:a3:a6:4b: 5b:26:7d:75:bf:17:8a:d7:33:a9:ab:00:ac:e7:ef: 35:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CE:97:E0:02:BA:08:6C:66:49:19:26:2A:0C:F2:8A:8D:D4:38:D4 X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/E9DE96C44C3611EEA9D59630C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.124.96.0/20 45.113.196.0/22 103.53.116.0/22 Signature Algorithm: sha256WithRSAEncryption 83:4e:20:25:64:84:e3:65:49:76:01:76:34:4a:67:33:3f:b1: 47:98:9b:c1:30:5c:ba:be:ab:b4:b3:f4:59:6e:33:52:7c:dc: e7:c9:04:03:cc:b9:6e:e7:5b:23:69:7e:9a:5f:ee:14:a1:ca: 47:fd:2b:26:b8:e6:df:57:1b:eb:17:e9:a7:67:f8:6d:19:59: 91:6d:bc:b3:a5:f1:43:05:c2:2d:c0:d1:cf:bd:c8:9a:69:b5: 2f:56:eb:2c:1f:2e:a1:d0:aa:d7:b5:0f:13:b1:a0:15:df:b9: 0e:f2:fe:57:16:ec:a8:0e:f6:d6:5e:64:05:40:22:fb:ca:1a: 1b:29:98:71:ee:c0:8e:6f:0d:4d:28:94:2b:34:99:ad:22:70: 00:28:2e:d4:2c:60:84:c9:d3:94:66:ee:63:5e:f7:03:38:ce: dc:09:8c:49:1f:09:a9:3d:66:40:2d:c4:b2:16:8c:ff:5d:d6: 26:4e:d2:50:eb:e6:67:3d:ea:e8:a1:e9:7a:d1:64:52:8a:1c: f8:de:98:90:64:fa:0d:ec:74:e0:0a:e4:18:ab:7f:07:f6:0d: 8c:60:ef:20:1b:74:8b:76:59:4f:83:8b:03:8a:37:8a:2c:0c: c5:39:cf:d5:e2:71:28:3c:2c:3b:48:6b:0f:d4:ac:99:2e:f4: b4:db:7f:1e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICIK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjQwMzEyMDEwMzM4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWVmYTllOS03MTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMSk5PGYpURfuQ3IRycWvkejSFg3n/MHpeGwYyzVukgWF8BHrKDMcRzU4KB5 deC5M2/baVmifrvDrcQcqfCEphvYTX5yyLLhqXxRsuf/JHIgv6MrqTWDjJ8pzIai 9+g1aimoYZutuRpi/yBG7zfXKVjaXaMn7ijie496ibGrT0ezyrng07Yc+IqRIaD8 RZ7ejdMlsBf4tuTABbqJoWtKwzGh1YXL+kCsxRWvQTqHOLEXYPJN61pTA8UMsBxm QLU/j99y+SGLeyMJKavxfbj6ix/jThbWVBmdWx3dp6tHA1+h29RhErDglu7V3MWj pktbJn11vxeK1zOpqwCs5+81owIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFALOl+AC ughsZkkZJioM8oqN1DjUMB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRENEQvQkFFMTA4QzRFQTYwMTFFNTg4MTU3NzBDQzRGOUFFMDIvRTlERTk2QzQ0 QzM2MTFFRUE5RDU5NjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAQbfGADBAItccQDBAJnNXQwDQYJKoZIhvcNAQELBQADggEB AINOICVkhONlSXYBdjRKZzM/sUeYm8EwXLq+q7Sz9FluM1J83OfJBAPMuW7nWyNp fppf7hShykf9Kya45t9XG+sX6adn+G0ZWZFtvLOl8UMFwi3A0c+9yJpptS9W6ywf LqHQqte1DxOxoBXfuQ7y/lcW7KgO9tZeZAVAIvvKGhspmHHuwI5vDU0olCs0ma0i cAAoLtQsYITJ05Rm7mNe9wM4ztwJjEkfCak9ZkAtxLIWjP9d1iZO0lDr5mc96uih 6XrRZFKKHPjemJBk+g3sdOAK5Birfwf2DYxg7yAbdIt2WU+DiwOKN4osDMU5z9Xi cSg8LDtIaw/UrJku9LTbfx4= -----END CERTIFICATE-----Generated at Fri May 31 17:44:53 2024 by rpki-client on console-fra.rpki-client.org