$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/5428E56AF53911EEB8A4592AC4F9AE02.roa File: 5428E56AF53911EEB8A4592AC4F9AE02.roa (raw, json) Hash identifier: Aq1JlVXJRzqmFz4VHNBMaSKmpAr0QcCWZM/igkQ/8TI= Subject key identifier: DD:23:A6:4E:D9:58:29:33:FF:7C:93:47:4E:0E:CD:A5:1D:F2:D9:96 Certificate issuer: /CN=A91139AB/serialNumber=D10BAF7AA8DB734B952D036087783C6437843C8F Certificate serial: 58 Authority key identifier: D1:0B:AF:7A:A8:DB:73:4B:95:2D:03:60:87:78:3C:64:37:84:3C:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/5428E56AF53911EEB8A4592AC4F9AE02.roa Signing time: Sun 07 Apr 2024 23:48:27 +0000 ROA not before: Sun 07 Apr 2024 23:48:27 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 4857 IP address blocks: 202.147.96.0/20 maxlen: 20 202.147.112.0/20 maxlen: 24 203.82.160.0/20 maxlen: 24 203.82.176.0/20 maxlen: 24 203.201.64.0/20 maxlen: 24 203.201.80.0/20 maxlen: 24 203.201.96.0/20 maxlen: 20 203.201.112.0/20 maxlen: 24 221.120.128.0/20 maxlen: 24 221.120.144.0/24 maxlen: 24 221.120.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 23:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB/serialNumber=D10BAF7AA8DB734B952D036087783C6437843C8F Validity Not Before: Apr 7 23:48:27 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=661330cb-9365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1b:22:56:2a:2f:f5:31:bc:03:23:b6:52:f5: e2:29:c1:21:17:62:60:e7:21:2c:c3:b7:4e:9c:7f: 74:2d:bc:c9:c1:9b:92:5f:b4:b5:e5:77:48:da:a2: f5:e2:67:f7:00:05:23:91:9b:16:55:6b:4b:11:e9: 0d:f6:f0:0a:c4:d2:b5:29:90:11:54:7d:a7:eb:b8: 62:a8:66:27:8f:a9:82:2c:1f:52:5f:b2:1d:65:77: 57:34:d3:19:64:e9:71:d2:34:b6:08:f4:54:53:5f: 64:ae:4b:36:75:5b:c9:a4:02:68:cb:98:19:07:a3: a7:6f:db:d8:17:ae:74:e2:88:2c:d5:cf:3f:70:83: 3f:d6:b8:07:ab:84:3e:93:8b:9d:6c:f8:b3:2d:19: 66:b4:f0:07:75:8a:f2:15:5f:df:fd:82:a0:cf:2d: 41:6d:45:5b:dd:25:6e:a9:06:ae:47:9e:15:d1:7a: 89:f3:e7:31:5e:8d:c7:c6:a0:98:d1:16:3b:0b:99: 5c:5a:95:b9:ae:85:93:08:71:9d:15:31:bb:b6:f5: 69:b4:92:9f:16:98:b4:f9:3d:f1:b8:7f:26:d5:17: 8c:87:94:88:fb:8e:d8:cc:15:cf:18:02:0e:3f:91: 7c:54:c4:e9:00:10:f1:f0:06:e8:fe:9b:49:72:52: 9c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:23:A6:4E:D9:58:29:33:FF:7C:93:47:4E:0E:CD:A5:1D:F2:D9:96 X509v3 Authority Key Identifier: keyid:D1:0B:AF:7A:A8:DB:73:4B:95:2D:03:60:87:78:3C:64:37:84:3C:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/5428E56AF53911EEB8A4592AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.147.96.0/19 203.82.160.0/19 203.201.64.0/18 221.120.128.0-221.120.145.255 Signature Algorithm: sha256WithRSAEncryption 43:f4:7d:22:8d:7c:70:10:df:ac:b7:02:e3:ca:a8:ad:74:35: d6:49:1c:dd:ae:84:5e:69:1a:0f:e8:f8:0e:d3:1b:01:77:34: 6e:b5:8d:2d:b5:d7:04:5b:ec:e8:62:54:27:3b:ea:8d:6c:ee: 66:23:a9:50:d1:8f:5e:68:12:41:40:ad:47:ff:1d:84:bf:5a: 8f:84:04:f4:51:63:7c:ee:c0:ac:07:49:38:1a:23:d4:1d:01: 4a:8d:ac:9a:36:ef:e2:8f:47:fb:9f:69:db:7e:43:19:58:0d: fa:0c:33:94:05:79:3c:ba:63:78:46:b2:82:0e:8f:78:72:47: 49:fb:66:8d:a7:34:f4:91:93:56:4f:fd:bc:8c:82:b4:cd:bb: f6:fe:9a:5b:29:11:6f:2f:aa:f9:fc:67:01:d8:73:d9:d5:f7: 86:e5:60:36:37:32:c2:6f:4d:e7:57:d2:09:9d:fb:26:93:73: 4c:3b:c2:22:00:a8:e7:f6:ea:e5:a8:1f:58:88:ef:0d:c8:0e: 46:cf:54:96:38:70:d3:e8:63:0f:a0:2c:50:10:93:0b:33:c2: 10:22:09:f1:41:ae:4f:3a:c3:c8:3d:86:b1:51:24:aa:0a:4d: fe:e0:33:0e:7c:7f:9b:0a:75:75:78:a1:2f:e3:6e:11:d6:73: d1:7a:a4:b7 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MzlBQjExMC8GA1UEBRMoRDEwQkFGN0FBOERCNzM0Qjk1MkQwMzYwODc3ODNDNjQz Nzg0M0M4RjAeFw0yNDA0MDcyMzQ4MjdaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTMzMGNiLTkzNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEGyJWKi/1MbwDI7ZS9eIpwSEXYmDnISzDt06cf3QtvMnBm5JftLXld0jaovXi Z/cABSORmxZVa0sR6Q328ArE0rUpkBFUfafruGKoZiePqYIsH1Jfsh1ld1c00xlk 6XHSNLYI9FRTX2SuSzZ1W8mkAmjLmBkHo6dv29gXrnTiiCzVzz9wgz/WuAerhD6T i51s+LMtGWa08Ad1ivIVX9/9gqDPLUFtRVvdJW6pBq5HnhXReonz5zFejcfGoJjR FjsLmVxalbmuhZMIcZ0VMbu29Wm0kp8WmLT5PfG4fybVF4yHlIj7jtjMFc8YAg4/ kXxUxOkAEPHwBuj+m0lyUpxnAgMBAAGjggKvMIICqzAdBgNVHQ4EFgQU3SOmTtlY KTP/fJNHTg7NpR3y2ZYwHwYDVR0jBBgwFoAU0Quveqjbc0uVLQNgh3g8ZDeEPI8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzOUFCLzE1OEQ0OTA2MjU1 QjExRUJBOUY1NjAxQUM0RjlBRTAyLzBRdXZlcWpiYzB1VkxRTmdoM2c4WkRlRVBJ OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFF1dmVxamJjMHVWTFFOZ2gzZzhaRGVFUEk4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi81NDI4RTU2QUY1 MzkxMUVFQjhBNDU5MkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA5BggrBgEFBQcBBwEB/wQq MCgwJgQCAAEwIAMEBcqTYAMEBctSoAMEBsvJQDAMAwQH3XiAAwQB3XiQMA0GCSqG SIb3DQEBCwUAA4IBAQBD9H0ijXxwEN+stwLjyqitdDXWSRzdroReaRoP6PgO0xsB dzRutY0ttdcEW+zoYlQnO+qNbO5mI6lQ0Y9eaBJBQK1H/x2Ev1qPhAT0UWN87sCs B0k4GiPUHQFKjayaNu/ij0f7n2nbfkMZWA36DDOUBXk8umN4RrKCDo94ckdJ+2aN pzT0kZNWT/28jIK0zbv2/ppbKRFvL6r5/GcB2HPZ1feG5WA2NzLCb03nV9IJnfsm k3NMO8IiAKjn9urlqB9YiO8NyA5Gz1SWOHDT6GMPoCxQEJMLM8IQIgnxQa5POsPI PYaxUSSqCk3+4DMOfH+bCnV1eKEv424R1nPReqS3 -----END CERTIFICATE-----Generated at Wed May 15 01:43:40 2024 by rpki-client on console-ams.rpki-client.org