$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/05163DEADD8711EC9BF56E5BC4F9AE02.roa File: 05163DEADD8711EC9BF56E5BC4F9AE02.roa (raw, json) Hash identifier: pB5foXk5THZu3RTM2e2YUP0XDpy1QPsxbStheWqSZEo= Subject key identifier: 99:15:05:18:01:28:C8:9E:0D:5A:E6:A1:60:AA:EF:1B:E5:B7:D5:6F Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 02C3 Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/05163DEADD8711EC9BF56E5BC4F9AE02.roa Signing time: Thu 27 Jul 2023 02:03:33 +0000 ROA not before: Thu 27 Jul 2023 02:03:33 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142299 IP address blocks: 147.50.229.0/24 maxlen: 24 147.50.240.0/24 maxlen: 24 147.50.242.0/24 maxlen: 24 147.50.243.0/24 maxlen: 24 147.50.244.0/24 maxlen: 24 147.50.252.0/23 maxlen: 23 147.50.252.0/24 maxlen: 24 147.50.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Jul 27 02:03:33 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1d074-04d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ed:d0:1c:97:79:c8:b7:17:a8:83:80:82:95: 73:f4:91:27:39:40:33:9f:b1:b8:b7:4e:40:fa:52: fa:c8:9a:e1:20:36:6c:a0:6e:c9:17:64:d8:fb:6e: 3e:0b:b2:1e:4e:00:c5:fe:7e:86:4e:e3:82:fd:ff: 25:ac:72:b1:a9:8a:d5:91:f2:b4:69:09:fd:20:b0: a0:75:68:82:2d:26:b8:9a:e8:5d:75:7a:fb:99:95: 57:1c:4c:3b:71:03:9a:e2:43:69:a4:db:57:54:97: a1:0a:88:94:49:7e:a6:f4:f7:a9:db:37:78:de:92: 7b:d0:46:5f:18:d6:1b:4a:77:9d:bd:5d:f6:53:7a: c3:46:f0:6a:a9:cb:eb:fd:7f:f4:ca:e9:f3:f4:6e: 0e:f1:4b:dd:2d:77:02:c6:d5:00:66:5a:8b:2c:83: 4d:23:40:1b:e1:1c:42:49:b6:8f:42:a7:62:6c:fe: 87:37:58:6c:8e:80:cd:d1:90:1c:5b:f8:0c:d5:ed: b1:a7:d8:3d:45:12:a6:d6:e2:e9:30:6e:c1:24:4d: b4:17:42:7f:e0:de:f1:5a:e9:10:0a:49:9b:84:0c: 78:b3:dc:f8:d2:04:45:aa:eb:46:3f:4e:ef:9e:c7: 18:23:0c:37:42:12:2d:9a:74:a3:fe:39:83:35:c2: de:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:15:05:18:01:28:C8:9E:0D:5A:E6:A1:60:AA:EF:1B:E5:B7:D5:6F X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/05163DEADD8711EC9BF56E5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.229.0/24 147.50.240.0/24 147.50.242.0-147.50.244.255 147.50.252.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:c2:57:ea:71:24:00:40:21:6f:ef:31:4a:eb:af:0b:40:aa: a4:7a:4a:ba:62:9b:34:1f:f1:1f:07:3b:2f:58:ff:a5:de:ad: cc:8a:4b:0f:0c:e1:a5:5b:6c:8e:a1:3d:a4:ec:07:1c:ed:d0: 93:77:c5:38:91:ac:d2:47:33:16:6f:89:a5:65:32:f7:22:4f: dd:d7:b0:ef:43:d6:20:79:7c:d7:49:4c:59:d7:a8:56:4d:17: 0e:b3:e1:f7:cc:2c:93:d2:1d:79:8b:8e:15:ba:2b:b7:2e:9d: a0:f8:a4:8e:4e:81:97:3c:d5:1a:19:b9:ec:42:90:0c:6f:65: e7:ea:4d:10:08:78:f2:f6:6b:4a:4d:47:8e:3b:1c:f9:db:df: b1:ae:77:86:9e:16:44:da:03:e3:4c:dd:aa:ae:d7:65:84:f9: 30:70:b6:22:7e:1a:a0:26:c3:79:f0:52:15:c4:4a:1d:a8:4f: 5f:69:74:2b:78:d3:04:12:1b:90:4c:6e:2a:7d:bb:a8:ab:15: 2f:24:95:d7:c7:1d:1c:d5:d2:8f:f6:9e:fa:bd:01:12:04:d6: c2:d0:59:bd:5f:2a:ff:a4:55:48:e4:2a:51:45:63:38:af:75: 48:ac:6c:21:ca:f5:d8:6e:cc:bd:a0:dc:57:cd:0a:cf:bf:51: 42:17:f7:92 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjMwNzI3MDIwMzMzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxZDA3NC0wNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqu3QHJd5yLcXqIOAgpVz9JEnOUAzn7G4t05A+lL6yJrhIDZsoG7JF2TY+24+ C7IeTgDF/n6GTuOC/f8lrHKxqYrVkfK0aQn9ILCgdWiCLSa4muhddXr7mZVXHEw7 cQOa4kNppNtXVJehCoiUSX6m9Pep2zd43pJ70EZfGNYbSnedvV32U3rDRvBqqcvr /X/0yunz9G4O8UvdLXcCxtUAZlqLLINNI0Ab4RxCSbaPQqdibP6HN1hsjoDN0ZAc W/gM1e2xp9g9RRKm1uLpMG7BJE20F0J/4N7xWukQCkmbhAx4s9z40gRFqutGP07v nscYIww3QhItmnSj/jmDNcLetwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFJkVBRgB KMieDVrmoWCq7xvlt9VvMB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRUMxRUU2NTI4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvMDUxNjNERUFE RDg3MTFFQzlCRjU2RTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBACTMuUDBACTMvAwDAMEAZMy8gMEAJMy9AMEAZMy/DANBgkq hkiG9w0BAQsFAAOCAQEATcJX6nEkAEAhb+8xSuuvC0CqpHpKumKbNB/xHwc7L1j/ pd6tzIpLDwzhpVtsjqE9pOwHHO3Qk3fFOJGs0kczFm+JpWUy9yJP3dew70PWIHl8 10lMWdeoVk0XDrPh98wsk9IdeYuOFborty6doPikjk6BlzzVGhm57EKQDG9l5+pN EAh48vZrSk1Hjjsc+dvfsa53hp4WRNoD40zdqq7XZYT5MHC2In4aoCbDefBSFcRK HahPX2l0K3jTBBIbkExuKn27qKsVLySV18cdHNXSj/ae+r0BEgTWwtBZvV8q/6RV SOQqUUVjOK91SKxsIcr12G7MvaDcV80Kz79RQhf3kg== -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:00 2024 by rpki-client on console-fra.rpki-client.org