$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/2EF3EBF0E0CD11ECB03A892AC4F9AE02.roa File: 2EF3EBF0E0CD11ECB03A892AC4F9AE02.roa (raw, json) Hash identifier: DuErZ2H5kLgV6hyVxduSgUmA2vQujhzU2TecN3XYbnc= Subject key identifier: E4:48:53:B5:F6:9F:DD:22:24:36:19:18:26:DA:88:5F:03:A0:8F:7B Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 039F Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/2EF3EBF0E0CD11ECB03A892AC4F9AE02.roa Signing time: Thu 27 Jul 2023 02:04:32 +0000 ROA not before: Thu 27 Jul 2023 02:04:32 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 7568 IP address blocks: 202.183.136.0/22 maxlen: 22 2404:b0:f::/48 maxlen: 48 2404:b0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 927 (0x39f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Jul 27 02:04:32 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1d0af-2141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:01:e2:0a:6a:df:70:36:35:70:41:4e:a7:81: ff:81:ed:a3:66:2d:a9:3a:78:b6:42:f5:8e:fc:18: 73:1f:e2:68:c4:5d:cb:cb:29:0b:05:fd:70:83:bd: 8a:7d:2f:14:3b:7e:9e:66:bc:23:2c:6e:b5:96:be: d9:42:0f:dd:a4:1f:e2:4e:c7:79:a6:12:ef:e6:34: 95:f8:c2:ad:45:b6:d1:6a:17:5d:6a:ef:91:6c:5f: 09:69:41:75:1a:b8:f0:2b:ee:74:1d:dc:c7:81:41: 2e:69:b3:96:36:29:ae:c1:69:d0:a1:cb:0d:ff:ba: f9:4f:c5:32:c1:94:fb:29:9a:0a:62:3a:28:df:72: 90:0c:54:b8:cf:1a:40:9d:70:73:f8:49:5d:fc:f3: e2:0c:50:43:94:e9:42:34:a4:9e:f2:e1:ad:38:4f: e0:fb:40:65:b4:58:57:dc:2d:b5:97:78:17:16:ee: f3:48:91:71:ee:83:23:24:23:49:2b:35:d9:fb:49: 2c:d9:69:27:be:c1:e9:32:a8:b0:03:f1:c9:ce:7f: 9e:17:2d:58:e3:90:f9:2e:1e:d9:1a:96:45:b6:34: ea:b0:86:3c:2e:1a:50:bd:29:8c:2d:a4:9e:d1:23: b1:41:e6:e7:f1:85:40:52:9c:7c:90:e4:41:ab:31: f4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:48:53:B5:F6:9F:DD:22:24:36:19:18:26:DA:88:5F:03:A0:8F:7B X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/2EF3EBF0E0CD11ECB03A892AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.183.136.0/22 IPv6: 2404:b0:f::-2404:b0:10:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 16:68:19:dd:3b:c8:f7:f3:be:2d:c9:75:97:57:7e:0a:88:90: 57:94:11:64:06:15:62:6c:c7:27:c9:ee:cc:bc:54:5c:fa:68: 50:e2:df:e3:ca:d1:a9:2c:ed:23:a4:9e:56:07:69:2b:07:e9: 0c:7e:17:84:59:ce:43:ed:21:74:16:07:ef:6e:3e:5b:08:0f: b1:63:bb:11:e7:83:d8:b6:b3:ec:2a:5e:ca:80:70:20:3d:98: 0f:a7:68:0c:dc:99:f5:dc:67:3f:5a:f6:d3:57:a1:59:b1:66: fe:4c:ad:4f:82:6d:58:6f:1b:d5:2e:36:0b:3a:dd:3f:39:ff: 15:99:33:4a:83:a5:e4:3c:16:3e:00:12:14:1e:27:35:3a:dd: be:c4:46:c5:0c:3c:48:a7:5a:89:9a:0b:b2:51:b1:af:16:fe: 42:68:22:8e:c6:1a:ea:04:f0:3e:1e:10:de:79:b5:aa:61:60: 33:c8:3a:47:e8:20:76:24:92:68:12:0a:9b:e9:d4:6c:f2:67: 9e:ea:17:92:dc:61:10:77:c6:d3:89:82:27:5b:a5:6d:fe:94: 99:97:7c:13:41:34:e7:ab:ba:60:8c:6a:9a:b0:d0:bb:58:79: 9d:69:47:82:98:fd:e4:37:17:10:e7:83:d3:33:8c:2b:bd:03: 69:74:e1:20 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICA58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjMwNzI3MDIwNDMyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxZDBhZi0yMTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QHiCmrfcDY1cEFOp4H/ge2jZi2pOni2QvWO/BhzH+JoxF3LyykLBf1wg72K fS8UO36eZrwjLG61lr7ZQg/dpB/iTsd5phLv5jSV+MKtRbbRahddau+RbF8JaUF1 GrjwK+50HdzHgUEuabOWNimuwWnQocsN/7r5T8UywZT7KZoKYjoo33KQDFS4zxpA nXBz+Eld/PPiDFBDlOlCNKSe8uGtOE/g+0BltFhX3C21l3gXFu7zSJFx7oMjJCNJ KzXZ+0ks2WknvsHpMqiwA/HJzn+eFy1Y45D5Lh7ZGpZFtjTqsIY8LhpQvSmMLaSe 0SOxQebn8YVAUpx8kORBqzH0FwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFORIU7X2 n90iJDYZGCbaiF8DoI97MB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvMkVGM0VCRjBF MENEMTFFQ0IwM0E4OTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBALKt4gwGgQCAAIwFDASAwcAJAQAsAAPAwcAJAQAsAAQMA0G CSqGSIb3DQEBCwUAA4IBAQAWaBndO8j3874tyXWXV34KiJBXlBFkBhVibMcnye7M vFRc+mhQ4t/jytGpLO0jpJ5WB2krB+kMfheEWc5D7SF0Fgfvbj5bCA+xY7sR54PY trPsKl7KgHAgPZgPp2gM3Jn13Gc/WvbTV6FZsWb+TK1Pgm1YbxvVLjYLOt0/Of8V mTNKg6XkPBY+ABIUHic1Ot2+xEbFDDxIp1qJmguyUbGvFv5CaCKOxhrqBPA+HhDe ebWqYWAzyDpH6CB2JJJoEgqb6dRs8mee6heS3GEQd8bTiYInW6Vt/pSZl3wTQTTn q7pgjGqasNC7WHmdaUeCmP3kNxcQ54PTM4wrvQNpdOEg -----END CERTIFICATE-----Generated at Sun May 19 03:48:51 2024 by rpki-client on console-fra.rpki-client.org