$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/BB62FBD82AEC11EA972CB627C4F9AE02.roa File: BB62FBD82AEC11EA972CB627C4F9AE02.roa (raw, json) Hash identifier: LsnjeTUuxOLKtM5budZzebjO2SOXU+50cZfWesTYy6k= Subject key identifier: 45:31:12:65:F7:DA:FC:58:9E:44:FD:07:18:77:61:2C:F6:EB:FF:B4 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 218E Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/BB62FBD82AEC11EA972CB627C4F9AE02.roa Signing time: Thu 04 Apr 2024 16:23:32 +0000 ROA not before: Thu 04 Apr 2024 16:23:32 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9497 IP address blocks: 115.146.136.0/21 maxlen: 21 115.146.144.0/20 maxlen: 24 2405:b800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 16:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8590 (0x218e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Apr 4 16:23:32 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660ed403-b6e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:07:a4:dd:0e:7a:ae:c5:5f:2a:24:48:ce:07: d8:f6:87:69:0e:33:f5:e4:1a:a4:d2:4b:75:8c:51: ec:26:59:bb:75:5d:c6:5b:55:e8:91:76:31:ed:c2: a0:67:03:cf:54:6e:51:20:cb:49:6d:79:de:76:19: 41:80:6a:f8:8a:00:6a:a3:ff:8c:27:06:56:05:0c: 3a:6d:b9:10:07:66:c4:c8:f0:95:26:18:c7:4a:e3: 0f:8f:a3:79:2f:b0:ad:8b:a2:10:9d:74:f9:7f:a3: a8:15:f9:68:19:a9:f2:37:af:cb:c9:e0:56:ed:42: 98:0c:2e:7e:e8:ed:ce:d0:55:06:12:60:90:6d:10: e8:be:b1:a2:a2:e2:36:bb:d2:60:32:36:41:1c:30: dd:e2:ad:f9:49:6b:01:b7:97:37:5b:2d:4c:2f:6b: 51:1f:10:76:32:54:99:40:de:56:f0:d2:13:11:eb: 37:ba:db:8f:11:90:0c:22:77:76:77:65:62:36:de: 6b:d0:38:99:5b:0b:09:2b:a3:49:ec:f0:6f:86:b9: 36:01:8f:96:b8:9e:f6:52:40:a2:5a:f2:a2:63:ec: d3:96:92:c8:8f:4e:f0:db:b6:1c:c7:3f:f0:6f:8f: e5:9d:07:7c:d6:54:24:14:45:2a:b0:ba:f7:cc:93: fd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:31:12:65:F7:DA:FC:58:9E:44:FD:07:18:77:61:2C:F6:EB:FF:B4 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/BB62FBD82AEC11EA972CB627C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.146.136.0-115.146.159.255 IPv6: 2405:b800::/32 Signature Algorithm: sha256WithRSAEncryption 2e:aa:5b:eb:62:25:4b:d3:84:4e:b7:e7:5a:19:30:90:74:de: f8:d7:e8:f2:fc:0a:dd:f2:43:b4:f6:21:1c:ef:f8:1a:80:de: 04:c8:71:74:f7:08:aa:ba:95:1f:c2:5d:1e:62:d6:eb:55:85: 5c:54:eb:92:7b:d3:7e:a4:48:5c:1a:1b:8a:23:bb:56:8f:c7: 87:97:10:d3:40:27:a7:d6:a3:21:48:9a:db:49:2b:39:79:5a: 1f:f9:d0:0a:1e:68:ef:26:cf:af:40:39:69:36:a4:99:e6:81: 18:c8:eb:4e:ec:3b:84:a3:c8:77:ff:43:1d:55:fe:fc:a7:fc: 00:47:02:3b:04:e5:1c:d2:2e:d9:c2:32:58:e4:5a:2c:28:1b: 60:2b:35:a2:7a:ef:56:63:69:21:e9:f8:70:96:c3:2c:2b:6b: 13:a2:2d:be:16:f0:18:ea:75:42:b6:f5:7f:5a:f1:ae:6e:20: a8:0d:82:d5:94:83:b6:f2:36:e7:1d:d5:aa:e3:6b:7a:97:6a: 48:26:90:cb:b1:47:41:6d:43:a4:5e:ae:d9:18:9a:66:9e:68: 6b:86:9a:23:bd:d5:7b:07:5f:0a:45:f7:18:e9:67:04:b4:28: eb:2c:19:75:3d:61:68:a4:bd:16:df:ab:1f:05:f3:a4:97:23: 5a:c1:5b:4a -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICIY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjQwNDA0MTYyMzMyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlZDQwMy1iNmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAek3Q56rsVfKiRIzgfY9odpDjP15Bqk0kt1jFHsJlm7dV3GW1XokXYx7cKg ZwPPVG5RIMtJbXnedhlBgGr4igBqo/+MJwZWBQw6bbkQB2bEyPCVJhjHSuMPj6N5 L7Cti6IQnXT5f6OoFfloGanyN6/LyeBW7UKYDC5+6O3O0FUGEmCQbRDovrGiouI2 u9JgMjZBHDDd4q35SWsBt5c3Wy1ML2tRHxB2MlSZQN5W8NITEes3utuPEZAMInd2 d2ViNt5r0DiZWwsJK6NJ7PBvhrk2AY+WuJ72UkCiWvKiY+zTlpLIj07w27Ycxz/w b4/lnQd81lQkFEUqsLr3zJP9dQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEUxEmX3 2vxYnkT9Bxh3YSz26/+0MB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4RDYvMjg5OTA1MzBCRTU0MTFFNThEQ0M0MzU3QzRGOUFFMDIvQkI2MkZCRDgy QUVDMTFFQTk3MkNCNjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEA3OSiAMEBXOSgDANBAIAAjAHAwUAJAW4ADANBgkqhkiG 9w0BAQsFAAOCAQEALqpb62IlS9OETrfnWhkwkHTe+Nfo8vwK3fJDtPYhHO/4GoDe BMhxdPcIqrqVH8JdHmLW61WFXFTrknvTfqRIXBobiiO7Vo/Hh5cQ00Anp9ajIUia 20krOXlaH/nQCh5o7ybPr0A5aTakmeaBGMjrTuw7hKPId/9DHVX+/Kf8AEcCOwTl HNIu2cIyWORaLCgbYCs1onrvVmNpIen4cJbDLCtrE6ItvhbwGOp1Qrb1f1rxrm4g qA2C1ZSDtvI25x3VquNrepdqSCaQy7FHQW1DpF6u2RiaZp5oa4aaI73VewdfCkX3 GOlnBLQo6ywZdT1haKS9Ft+rHwXzpJcjWsFbSg== -----END CERTIFICATE-----Generated at Fri May 24 17:56:31 2024 by rpki-client on console-fra.rpki-client.org