$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/17E76F7A9EA811EC95EBD87CC4F9AE02.roa File: 17E76F7A9EA811EC95EBD87CC4F9AE02.roa (raw, json) Hash identifier: SOC6XE9By1QI4JQN2RyA705PCeM+wsTG+RoYjKvMyu4= Subject key identifier: F2:94:67:29:4C:A3:4A:34:3D:1F:6F:6B:6F:1F:3D:43:6A:05:5B:6E Certificate issuer: /CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Certificate serial: 2588 Authority key identifier: 4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/17E76F7A9EA811EC95EBD87CC4F9AE02.roa Signing time: Tue 23 May 2023 03:13:24 +0000 ROA not before: Tue 23 May 2023 03:13:24 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 9386 IP address blocks: 202.8.224.0/19 maxlen: 19 202.128.32.0/19 maxlen: 19 202.128.32.0/22 maxlen: 22 202.128.36.0/22 maxlen: 22 202.128.40.0/22 maxlen: 22 202.128.44.0/22 maxlen: 22 202.128.48.0/22 maxlen: 22 202.128.52.0/22 maxlen: 22 202.128.56.0/22 maxlen: 22 202.128.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9608 (0x2588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Validity Not Before: May 23 03:13:24 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646c2f54-7d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:72:65:f7:b5:51:22:10:d1:44:cb:a6:f6:73: e6:f2:d0:fc:81:3a:56:5f:9d:0b:90:86:62:c0:6c: 6d:4c:ab:86:f7:39:96:31:a3:f5:ea:e1:12:79:7b: 25:66:b5:2e:c0:1a:79:c6:93:b3:01:29:26:5e:b9: 91:b0:75:ca:c5:ec:3a:4b:df:8e:08:eb:f9:fc:61: 44:23:48:15:41:78:79:be:88:ae:86:59:77:a3:0b: 18:8e:8c:f5:f0:75:f7:f3:f9:96:a9:de:b6:39:16: 1d:80:d2:a3:c4:71:c9:bd:b5:bf:02:49:64:0b:6f: 3c:c6:92:32:5c:a1:ea:c1:fb:31:65:25:27:e4:e8: 79:b4:d5:80:8a:66:6c:58:44:3b:c1:08:27:d1:46: 69:c8:60:5a:9b:ed:fc:5c:ae:95:6c:3f:de:ad:98: 65:fc:35:13:9c:6f:7f:99:c8:82:b6:91:ff:7a:6e: 32:2c:f0:a3:2e:c4:e3:99:21:ee:b6:ea:d8:52:da: 6b:98:bf:7f:5e:ea:a2:91:52:b0:9b:be:61:be:03: b5:9f:d5:1b:ed:f0:86:6d:d0:a6:a5:13:50:2d:71: 83:d6:8a:47:6d:48:b0:3c:b2:38:9b:70:ec:6d:e5: b3:0d:da:ea:91:21:81:41:3b:c7:21:7b:d4:ac:77: 69:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:94:67:29:4C:A3:4A:34:3D:1F:6F:6B:6F:1F:3D:43:6A:05:5B:6E X509v3 Authority Key Identifier: keyid:4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/17E76F7A9EA811EC95EBD87CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.8.224.0/19 202.128.32.0/19 Signature Algorithm: sha256WithRSAEncryption 91:a8:ae:c4:cb:41:d6:85:80:6c:a5:e9:9f:9e:72:54:e1:d1: 6b:be:e7:03:18:26:27:18:d0:e3:d2:20:76:6d:a8:f5:8a:18: 8e:8e:54:7b:de:4e:a7:b0:d5:7e:50:0b:93:c0:2e:8c:c4:34: b8:a4:18:18:e6:85:29:87:5e:5f:20:7d:76:d9:5d:86:9b:eb: d9:80:92:3b:03:ef:f6:73:d8:e5:da:7b:c5:a4:1e:59:73:74: 55:d3:f5:d8:ce:66:39:34:69:f6:98:bd:4d:96:d7:f8:3e:c8: 66:34:a2:e6:59:06:e0:ff:83:7b:06:39:8e:23:f7:a3:d6:cc: 1e:26:10:bb:30:02:9b:2c:30:1d:be:21:c9:89:60:d2:c4:ea: 07:fd:41:c9:7a:91:b8:ca:4c:af:e8:6d:79:55:9d:f6:32:e6: b8:ef:68:dc:51:53:61:83:23:3c:e7:c8:67:f1:f2:3d:1b:8c: 5d:00:ba:0c:86:3a:4c:23:41:a0:b9:15:53:e2:b0:92:f2:12: 79:d0:8e:33:bf:ae:da:73:20:29:bf:e1:74:a1:8d:52:55:42: 7e:ef:87:e6:10:fa:bb:1c:19:7a:84:2a:cc:bd:09:f5:98:e4: 81:af:40:15:3a:f3:e8:43:47:5d:0c:bc:79:6a:d9:d8:c9:6d: 28:95:17:67 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkQxMTAvBgNVBAUTKDRFMTBGMTNGMjk1RkJGMkIzNTlDODREREQxNjUxQkM4 NTFBQThBRjUwHhcNMjMwNTIzMDMxMzI0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZjMmY1NC03ZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXJl97VRIhDRRMum9nPm8tD8gTpWX50LkIZiwGxtTKuG9zmWMaP16uESeXsl ZrUuwBp5xpOzASkmXrmRsHXKxew6S9+OCOv5/GFEI0gVQXh5voiuhll3owsYjoz1 8HX38/mWqd62ORYdgNKjxHHJvbW/AklkC288xpIyXKHqwfsxZSUn5Oh5tNWAimZs WEQ7wQgn0UZpyGBam+38XK6VbD/erZhl/DUTnG9/mciCtpH/em4yLPCjLsTjmSHu turYUtprmL9/XuqikVKwm75hvgO1n9Ub7fCGbdCmpRNQLXGD1opHbUiwPLI4m3Ds beWzDdrqkSGBQTvHIXvUrHdp8wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPKUZylM o0o0PR9va28fPUNqBVtuMB8GA1UdIwQYMBaAFE4Q8T8pX78rNZyE3dFlG8hRqor1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9FMUVGRDlCNkRF Q0UxMUU0QTE0RjAwNjhDNEY5QUUwMi9UaER4UHlsZnZ5czFuSVRkMFdVYnlGR3Fp dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RoRHhQeWxmdnlzMW5JVGQwV1VieUZHcWl2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1RkQvRTFFRkQ5QjZERUNFMTFFNEExNEYwMDY4QzRGOUFFMDIvMTdFNzZGN0E5 RUE4MTFFQzk1RUJEODdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAXKCOADBAXKgCAwDQYJKoZIhvcNAQELBQADggEBAJGorsTL QdaFgGyl6Z+eclTh0Wu+5wMYJicY0OPSIHZtqPWKGI6OVHveTqew1X5QC5PALozE NLikGBjmhSmHXl8gfXbZXYab69mAkjsD7/Zz2OXae8WkHllzdFXT9djOZjk0afaY vU2W1/g+yGY0ouZZBuD/g3sGOY4j96PWzB4mELswApssMB2+IcmJYNLE6gf9Qcl6 kbjKTK/obXlVnfYy5rjvaNxRU2GDIzznyGfx8j0bjF0AugyGOkwjQaC5FVPisJLy EnnQjjO/rtpzICm/4XShjVJVQn7vh+YQ+rscGXqEKsy9CfWY5IGvQBU68+hDR10M vHlq2djJbSiVF2c= -----END CERTIFICATE-----Generated at Thu May 2 17:43:03 2024 by rpki-client on console-fra.rpki-client.org