$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F17169E244A311E9AEF6F25AC4F9AE02.roa File: F17169E244A311E9AEF6F25AC4F9AE02.roa (raw, json) Hash identifier: trqgTWC4tB8OEFQCOyGU4o4Wfg1S5a/haJyZw5F9aCE= Subject key identifier: 38:7A:EE:ED:07:9B:A3:4A:71:46:71:16:1D:47:22:08:81:80:00:5D Certificate issuer: /CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Certificate serial: 2578 Authority key identifier: 4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F17169E244A311E9AEF6F25AC4F9AE02.roa Signing time: Tue 02 May 2023 16:32:50 +0000 ROA not before: Tue 02 May 2023 16:32:50 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 45622 IP address blocks: 111.68.56.0/24 maxlen: 24 114.108.205.0/24 maxlen: 24 114.108.216.0/24 maxlen: 24 114.108.236.0/24 maxlen: 24 182.18.200.0/24 maxlen: 24 182.18.201.0/24 maxlen: 24 182.18.238.0/24 maxlen: 24 182.18.246.0/24 maxlen: 24 182.18.247.0/24 maxlen: 24 182.18.248.0/24 maxlen: 24 182.18.249.0/24 maxlen: 24 182.18.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9592 (0x2578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Validity Not Before: May 2 16:32:50 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64513b32-2b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:25:d6:23:fa:8c:fe:2e:af:9f:e2:50:0a:a1: e2:8b:29:c3:66:10:5d:5a:31:6b:c3:64:48:e9:54: 97:91:57:9a:61:f3:c6:96:22:3f:94:7c:68:9b:ed: 6d:c0:5d:ce:2a:3a:58:03:b2:2f:e2:04:64:6f:0d: a5:5a:02:4e:41:d6:1e:1c:f1:6b:1a:ed:6a:99:25: 99:b5:34:b1:2e:d5:03:8f:2c:c1:d5:46:30:cd:0a: ef:7b:75:68:43:f5:d5:39:a4:3a:6a:cd:02:ab:9c: 2a:41:76:78:25:de:15:2b:53:25:b0:5e:32:33:ee: 1a:ec:c2:f4:ea:b1:d3:5d:ad:8b:91:18:37:4d:fb: 53:eb:48:e1:d7:9c:b3:d5:51:c7:6e:af:a1:ac:ae: 4d:10:5a:ec:99:af:c9:92:d8:d8:33:0f:80:cd:cb: 45:8d:6e:0e:fd:95:c4:77:f0:e6:95:33:0a:59:21: 50:49:73:c6:2e:6a:3a:c0:c6:03:22:ec:71:ac:57: e5:96:2a:ff:d3:9c:0c:99:49:72:de:73:57:7a:cb: 32:55:47:a0:ac:eb:2e:e7:5a:51:f5:aa:dc:fe:69: 3c:d4:e4:27:c4:e0:da:1c:f4:8f:3a:06:81:e2:7e: ae:80:fb:2c:5d:43:25:e4:55:d1:af:dd:bd:0e:a2: db:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7A:EE:ED:07:9B:A3:4A:71:46:71:16:1D:47:22:08:81:80:00:5D X509v3 Authority Key Identifier: keyid:4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F17169E244A311E9AEF6F25AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.68.56.0/24 114.108.205.0/24 114.108.216.0/24 114.108.236.0/24 182.18.200.0/23 182.18.238.0/24 182.18.246.0-182.18.250.255 Signature Algorithm: sha256WithRSAEncryption 09:2b:b3:fc:d7:35:c9:a4:6d:6a:a4:0c:29:3c:8b:16:b3:1d: fe:e2:72:0a:f8:30:6e:fe:67:b6:29:40:43:8f:85:13:05:84: 7e:3e:cc:94:98:ea:93:86:22:fc:f0:b5:f8:da:2f:06:12:1d: f8:0b:f3:a2:e1:f1:68:7f:10:6d:b9:da:9f:f8:56:11:98:ed: 52:a1:85:63:bf:ca:13:79:25:2f:df:96:92:fb:86:b2:5d:ec: 03:19:f1:1c:98:ea:ca:34:52:48:c5:f9:98:46:14:cf:28:8b: 41:d2:a1:da:57:85:37:8c:48:c0:44:3c:4c:61:d5:59:fe:8b: bd:42:15:f6:36:39:44:dd:87:4b:85:9e:2c:0a:87:76:c3:40: f9:23:d9:f0:dd:d7:ff:eb:69:a4:70:b0:93:3c:41:46:3f:ff: 63:da:d1:ec:47:9e:b7:cb:d9:bd:2c:63:7e:3c:a0:91:8c:53: a9:63:50:fc:ff:28:22:69:ba:58:f5:af:f2:b1:72:8b:b1:6a: 46:1a:22:40:3d:b4:c9:ac:ff:a9:be:ba:97:d1:35:9d:78:21: fa:17:df:3e:97:09:d1:e8:c9:8c:8a:0f:84:d1:a1:09:b3:50: 39:7a:1f:1d:ec:f9:0f:bb:21:ce:70:18:83:6d:23:50:35:1c: 1f:54:4d:f9 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICJXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkQxMTAvBgNVBAUTKDRFMTBGMTNGMjk1RkJGMkIzNTlDODREREQxNjUxQkM4 NTFBQThBRjUwHhcNMjMwNTAyMTYzMjUwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxM2IzMi0yYjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9yXWI/qM/i6vn+JQCqHiiynDZhBdWjFrw2RI6VSXkVeaYfPGliI/lHxom+1t wF3OKjpYA7Iv4gRkbw2lWgJOQdYeHPFrGu1qmSWZtTSxLtUDjyzB1UYwzQrve3Vo Q/XVOaQ6as0Cq5wqQXZ4Jd4VK1MlsF4yM+4a7ML06rHTXa2LkRg3TftT60jh15yz 1VHHbq+hrK5NEFrsma/JktjYMw+AzctFjW4O/ZXEd/DmlTMKWSFQSXPGLmo6wMYD IuxxrFfllir/05wMmUly3nNXessyVUegrOsu51pR9arc/mk81OQnxODaHPSPOgaB 4n6ugPssXUMl5FXRr929DqLb0wIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFDh67u0H m6NKcUZxFh1HIgiBgABdMB8GA1UdIwQYMBaAFE4Q8T8pX78rNZyE3dFlG8hRqor1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9FMUVGRDlCNkRF Q0UxMUU0QTE0RjAwNjhDNEY5QUUwMi9UaER4UHlsZnZ5czFuSVRkMFdVYnlGR3Fp dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RoRHhQeWxmdnlzMW5JVGQwV1VieUZHcWl2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1RkQvRTFFRkQ5QjZERUNFMTFFNEExNEYwMDY4QzRGOUFFMDIvRjE3MTY5RTI0 NEEzMTFFOUFFRjZGMjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBABvRDgDBABybM0DBABybNgDBABybOwDBAG2EsgDBAC2Eu4w DAMEAbYS9gMEALYS+jANBgkqhkiG9w0BAQsFAAOCAQEACSuz/Nc1yaRtaqQMKTyL FrMd/uJyCvgwbv5ntilAQ4+FEwWEfj7MlJjqk4Yi/PC1+NovBhId+AvzouHxaH8Q bbnan/hWEZjtUqGFY7/KE3klL9+WkvuGsl3sAxnxHJjqyjRSSMX5mEYUzyiLQdKh 2leFN4xIwEQ8TGHVWf6LvUIV9jY5RN2HS4WeLAqHdsNA+SPZ8N3X/+tppHCwkzxB Rj//Y9rR7Eeet8vZvSxjfjygkYxTqWNQ/P8oImm6WPWv8rFyi7FqRhoiQD20yaz/ qb66l9E1nXgh+hffPpcJ0ejJjIoPhNGhCbNQOXofHez5D7shznAYg20jUDUcH1RN +Q== -----END CERTIFICATE-----Generated at Thu May 2 17:18:26 2024 by rpki-client on console-ams.rpki-client.org