$ rpki-client -vvf rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa File: 3E730FA28E8111EAB2038B6BC4F9AE02.roa (raw, json) Hash identifier: L0mS4wob8uYeqyIh2zngdWdPiGJkyvyMSBMfCc/SXKE= Subject key identifier: E8:5D:D0:5B:77:A2:CF:CB:26:17:CA:9E:A9:A7:0B:7D:F0:26:CC:11 Certificate issuer: /CN=A91293F4/serialNumber=E6A54BAD7D176E4447A9E94F24480327C1B40C9E Certificate serial: 0855 Authority key identifier: E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa Signing time: Mon 16 Oct 2023 21:08:50 +0000 ROA not before: Mon 16 Oct 2023 21:08:50 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45355 IP address blocks: 45.117.244.0/22 maxlen: 22 103.1.180.0/22 maxlen: 22 202.129.228.0/22 maxlen: 22 2400:6d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2133 (0x855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91293F4/serialNumber=E6A54BAD7D176E4447A9E94F24480327C1B40C9E Validity Not Before: Oct 16 21:08:50 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652da662-4335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4f:d2:9e:d0:1e:d0:99:19:08:bc:7a:a7:39: 40:6d:e4:a9:05:70:cb:97:16:04:50:2f:96:eb:48: 32:a9:ef:ed:1c:14:74:38:ae:97:eb:90:80:23:0c: 35:23:a3:37:0b:1f:7b:d4:f5:77:8f:ab:9c:c7:e7: 4f:6f:82:55:6c:b0:8a:05:75:36:fa:c3:05:a9:16: c2:d8:c5:9a:5a:6e:eb:25:75:78:e9:0f:6e:84:56: 49:3b:98:0e:69:68:2f:b2:95:56:97:2e:f5:da:01: 53:9c:a3:b9:4d:69:3c:cb:b0:6b:f9:9f:17:14:46: 00:f0:cb:af:74:54:8f:92:a9:29:1f:8b:ea:6a:79: b3:44:47:84:5a:e1:83:c7:41:6b:51:d2:c9:8d:72: 1d:e8:1d:16:6b:e4:3a:85:fd:dd:39:4c:6e:27:2e: be:fe:e6:71:b0:ae:0e:f4:e7:4f:39:96:ad:18:13: 6b:30:bb:44:48:c2:9f:57:6b:68:af:b8:14:14:a6: b2:82:8f:ba:ab:3c:f0:e2:2d:4f:ef:d3:80:8e:ea: d9:56:8f:69:22:cb:18:dc:58:9a:90:9e:5a:1d:d0: a0:77:c3:73:18:f6:aa:46:1a:e6:3c:bb:30:24:aa: 4e:af:14:4e:1a:4f:46:56:bc:09:bc:9a:24:8a:2c: 47:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5D:D0:5B:77:A2:CF:CB:26:17:CA:9E:A9:A7:0B:7D:F0:26:CC:11 X509v3 Authority Key Identifier: keyid:E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.244.0/22 103.1.180.0/22 202.129.228.0/22 IPv6: 2400:6d00::/32 Signature Algorithm: sha256WithRSAEncryption 7e:b7:96:72:11:c8:79:dd:90:b7:43:c2:11:7c:fd:e1:06:2a: 2c:05:f4:09:be:e2:10:b3:1e:f4:73:6d:d8:64:cf:3a:6c:51: 90:6c:94:ff:b0:2d:99:21:58:a1:8c:50:b7:97:9d:a7:94:d3: ba:ef:32:c5:4b:fd:b3:20:92:37:a5:89:bd:bd:20:3e:cf:d7: 05:8b:0d:cb:fa:10:17:25:b2:ff:ff:9c:2e:36:9b:87:d9:24: dc:8e:d9:8d:65:41:f7:03:4f:71:39:44:06:1c:d5:2a:ec:c7: 44:b7:a2:63:86:f2:20:7f:7a:01:b5:2d:56:62:96:53:35:09: 86:5c:05:df:50:6a:1b:f8:99:68:2d:83:dd:0c:cf:09:2e:e5: de:24:1b:90:7f:14:3e:00:d0:bf:0a:2e:99:4f:0c:e5:eb:9a: 80:18:02:b8:2c:57:fd:52:da:83:b8:ce:6b:db:7e:b7:e7:23: 0c:c0:6d:0f:98:0b:4b:46:f7:75:79:1e:d3:ec:07:2a:76:a3: a4:8a:0e:a3:59:7f:fa:27:b6:a8:fd:1d:ca:cb:4a:41:02:29: 8c:d4:33:20:04:cf:ff:c3:f1:59:9e:ee:48:1e:5f:ca:d5:3d: f0:56:a7:5e:16:1e:17:0b:f1:07:9f:6f:0f:ab:39:7e:aa:ea: 14:a8:bf:9b -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkzRjQxMTAvBgNVBAUTKEU2QTU0QkFEN0QxNzZFNDQ0N0E5RTk0RjI0NDgwMzI3 QzFCNDBDOUUwHhcNMjMxMDE2MjEwODUwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkYTY2Mi00MzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4E/SntAe0JkZCLx6pzlAbeSpBXDLlxYEUC+W60gyqe/tHBR0OK6X65CAIww1 I6M3Cx971PV3j6ucx+dPb4JVbLCKBXU2+sMFqRbC2MWaWm7rJXV46Q9uhFZJO5gO aWgvspVWly712gFTnKO5TWk8y7Br+Z8XFEYA8MuvdFSPkqkpH4vqanmzREeEWuGD x0FrUdLJjXId6B0Wa+Q6hf3dOUxuJy6+/uZxsK4O9OdPOZatGBNrMLtESMKfV2to r7gUFKaygo+6qzzw4i1P79OAjurZVo9pIssY3FiakJ5aHdCgd8NzGPaqRhrmPLsw JKpOrxROGk9GVrwJvJokiixHQwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFOhd0Ft3 os/LJhfKnqmnC33wJswRMB8GA1UdIwQYMBaAFOalS619F25ER6npTyRIAyfBtAye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTNGNC8xRjY5NUVFQzhF N0YxMUVBQTk1ODRDNjdDNEY5QUUwMi81cVZMclgwWGJrUkhxZWxQSkVnREo4RzBE SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVxVkxyWDBYYmtSSHFlbFBKRWdESjhHMERKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjkzRjQvMUY2OTVFRUM4RTdGMTFFQUE5NTg0QzY3QzRGOUFFMDIvM0U3MzBGQTI4 RTgxMTFFQUIyMDM4QjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItdfQDBAJnAbQDBALKgeQwDQQCAAIwBwMFACQAbQAwDQYJ KoZIhvcNAQELBQADggEBAH63lnIRyHndkLdDwhF8/eEGKiwF9Am+4hCzHvRzbdhk zzpsUZBslP+wLZkhWKGMULeXnaeU07rvMsVL/bMgkjelib29ID7P1wWLDcv6EBcl sv//nC42m4fZJNyO2Y1lQfcDT3E5RAYc1Srsx0S3omOG8iB/egG1LVZillM1CYZc Bd9Qahv4mWgtg90Mzwku5d4kG5B/FD4A0L8KLplPDOXrmoAYArgsV/1S2oO4zmvb frfnIwzAbQ+YC0tG93V5HtPsByp2o6SKDqNZf/ontqj9HcrLSkECKYzUMyAEz//D 8Vme7kgeX8rVPfBWp14WHhcL8Qefbw+rOX6q6hSov5s= -----END CERTIFICATE-----Generated at Thu May 16 22:23:36 2024 by rpki-client on console-fra.rpki-client.org