$ rpki-client -vvf rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/C1B929B4682B11E9AE87C117C4F9AE02.roa File: C1B929B4682B11E9AE87C117C4F9AE02.roa (raw, json) Hash identifier: E5fRK4tWefT188aIUYNU5UCVMde5+DWGZ9E6YNxsBBA= Subject key identifier: 23:9A:3C:AA:C7:BC:D6:E9:70:13:6F:15:18:41:8B:A5:10:C2:BB:E5 Certificate issuer: /CN=A91302B0/serialNumber=C08EC70A5B79742FC55F910536CA065C6CFB7CB5 Certificate serial: 252D Authority key identifier: C0:8E:C7:0A:5B:79:74:2F:C5:5F:91:05:36:CA:06:5C:6C:FB:7C:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wI7HClt5dC_FX5EFNsoGXGz7fLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/C1B929B4682B11E9AE87C117C4F9AE02.roa Signing time: Fri 02 Feb 2024 19:22:54 +0000 ROA not before: Fri 02 Feb 2024 19:22:54 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 23688 IP address blocks: 27.147.128.0/17 maxlen: 24 103.197.152.0/22 maxlen: 24 103.232.100.0/22 maxlen: 24 123.200.0.0/19 maxlen: 24 163.47.32.0/22 maxlen: 24 203.76.96.0/19 maxlen: 24 2400:ca00::/28 maxlen: 36 2400:ca00::/40 maxlen: 48 2400:ca00:100::/48 maxlen: 48 2400:ca00:1fb::/48 maxlen: 48 2400:ca00:1fb:fb01::/64 maxlen: 64 2400:ca00:1fb:fc01::/64 maxlen: 64 2400:ca00:1fb:fd01::/64 maxlen: 64 2400:ca00:1fb:fe01::/64 maxlen: 64 2400:ca00:1fb:ff01::/64 maxlen: 64 2400:ca00:1fc::/48 maxlen: 48 2400:ca00:1fd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/wI7HClt5dC_FX5EFNsoGXGz7fLU.crl rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/wI7HClt5dC_FX5EFNsoGXGz7fLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wI7HClt5dC_FX5EFNsoGXGz7fLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 16:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9517 (0x252d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91302B0/serialNumber=C08EC70A5B79742FC55F910536CA065C6CFB7CB5 Validity Not Before: Feb 2 19:22:54 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65bd410e-daef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:84:bf:17:33:74:8c:9c:0c:1f:e9:2b:53:7d: 64:b7:ab:01:c8:16:44:be:0a:51:43:fb:d4:4d:61: 34:0f:44:26:b8:40:59:3e:bf:10:38:16:93:fc:a1: 12:19:95:35:c7:66:a6:af:76:18:9c:24:c0:db:a5: b0:14:95:55:ab:8d:73:c4:65:66:23:58:e9:42:ec: 25:be:56:94:f1:dc:b2:c5:8b:4d:74:54:9f:ed:39: e2:26:3a:34:99:c8:1a:8e:2b:77:7a:81:e0:f0:7c: 3f:3b:31:0a:13:03:2f:78:93:1a:ad:b6:58:bb:1f: a9:44:43:20:0b:00:86:d6:bc:d2:75:27:7b:7b:20: c2:51:5c:ae:d1:aa:e3:90:f1:e3:0a:d4:04:f4:94: cc:2c:7a:5e:73:15:56:b3:a7:37:16:69:68:b2:58: 11:10:7c:8e:ac:a5:91:10:2a:40:c8:42:b4:f9:85: da:8b:0f:02:e0:30:a7:c8:37:8a:f4:88:70:aa:84: 92:f8:6e:a6:f8:6b:13:90:fe:77:a3:3e:99:74:11: fb:9b:24:09:f1:b0:5c:6f:7d:3b:74:3e:ab:19:5b: 56:48:cd:3a:3e:b3:23:35:fc:e7:cc:c9:e6:92:de: e3:36:86:df:48:47:a9:60:a8:28:01:5d:e8:a9:06: d0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9A:3C:AA:C7:BC:D6:E9:70:13:6F:15:18:41:8B:A5:10:C2:BB:E5 X509v3 Authority Key Identifier: keyid:C0:8E:C7:0A:5B:79:74:2F:C5:5F:91:05:36:CA:06:5C:6C:FB:7C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/wI7HClt5dC_FX5EFNsoGXGz7fLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wI7HClt5dC_FX5EFNsoGXGz7fLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/C1B929B4682B11E9AE87C117C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.147.128.0/17 103.197.152.0/22 103.232.100.0/22 123.200.0.0/19 163.47.32.0/22 203.76.96.0/19 IPv6: 2400:ca00::/28 Signature Algorithm: sha256WithRSAEncryption 14:e0:a4:89:06:2d:63:67:39:c7:e8:06:6f:5b:6e:9e:ec:3e: 72:0b:7b:89:10:40:ee:a9:b6:09:43:91:b5:5d:71:8c:d0:39: 2c:f5:38:df:71:46:8f:9c:8c:df:ce:be:2b:9c:12:a4:e1:6d: fd:9c:a1:c1:d5:6d:3d:38:b4:37:d6:3a:b3:a7:10:8f:50:5a: 5e:f5:4a:de:70:e8:cf:52:f8:10:7c:d7:08:04:1f:10:89:f6: 58:14:6f:2f:dd:7e:66:0c:b5:e1:eb:e7:16:5d:18:f9:0e:b0: cb:83:37:19:07:27:be:55:b0:a8:f8:32:7f:2e:a5:cd:fb:01: d0:16:df:3e:0a:37:5d:df:32:47:2f:c5:5a:c8:2b:30:6c:89: 40:50:46:d0:e3:70:8e:95:2b:bf:9d:4c:79:ff:22:f9:e0:09: 8e:5f:71:5f:cb:2d:60:58:05:41:c6:fb:40:25:3c:fb:c4:46: 9f:99:4e:42:ef:fc:74:e2:6f:42:77:d5:39:76:b7:03:46:11: b8:37:4e:56:7b:48:9b:39:11:bb:31:f8:66:84:18:d5:62:09: 85:11:ca:9e:64:b6:c6:0f:81:3c:27:85:13:cd:f3:a8:cc:56: 35:6c:69:0e:8e:76:d2:87:b2:05:80:00:e1:ac:3c:6b:3e:c8: 2b:a4:22:22 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICJS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyQjAxMTAvBgNVBAUTKEMwOEVDNzBBNUI3OTc0MkZDNTVGOTEwNTM2Q0EwNjVD NkNGQjdDQjUwHhcNMjQwMjAyMTkyMjU0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkNDEwZS1kYWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YS/FzN0jJwMH+krU31kt6sByBZEvgpRQ/vUTWE0D0QmuEBZPr8QOBaT/KES GZU1x2amr3YYnCTA26WwFJVVq41zxGVmI1jpQuwlvlaU8dyyxYtNdFSf7TniJjo0 mcgajit3eoHg8Hw/OzEKEwMveJMarbZYux+pREMgCwCG1rzSdSd7eyDCUVyu0arj kPHjCtQE9JTMLHpecxVWs6c3FmloslgREHyOrKWRECpAyEK0+YXaiw8C4DCnyDeK 9IhwqoSS+G6m+GsTkP53oz6ZdBH7myQJ8bBcb307dD6rGVtWSM06PrMjNfznzMnm kt7jNobfSEepYKgoAV3oqQbQfQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFCOaPKrH vNbpcBNvFRhBi6UQwrvlMB8GA1UdIwQYMBaAFMCOxwpbeXQvxV+RBTbKBlxs+3y1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDJCMC82NTcyQkU5NEZG OTQxMUU0ODc2Qjk0NURDNEY5QUUwMi93STdIQ2x0NWRDX0ZYNUVGTnNvR1hHejdm TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dJN0hDbHQ1ZENfRlg1RUZOc29HWEd6N2ZMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAyQjAvNjU3MkJFOTRGRjk0MTFFNDg3NkI5NDVEQzRGOUFFMDIvQzFCOTI5QjQ2 ODJCMTFFOUFFODdDMTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAcbk4ADBAJnxZgDBAJn6GQDBAV7yAADBAKjLyADBAXLTGAw DQQCAAIwBwMFBCQAygAwDQYJKoZIhvcNAQELBQADggEBABTgpIkGLWNnOcfoBm9b bp7sPnILe4kQQO6ptglDkbVdcYzQOSz1ON9xRo+cjN/OviucEqThbf2cocHVbT04 tDfWOrOnEI9QWl71St5w6M9S+BB81wgEHxCJ9lgUby/dfmYMteHr5xZdGPkOsMuD NxkHJ75VsKj4Mn8upc37AdAW3z4KN13fMkcvxVrIKzBsiUBQRtDjcI6VK7+dTHn/ IvngCY5fcV/LLWBYBUHG+0AlPPvERp+ZTkLv/HTib0J31Tl2twNGEbg3TlZ7SJs5 Ebsx+GaEGNViCYURyp5ktsYPgTwnhRPN86jMVjVsaQ6OdtKHsgWAAOGsPGs+yCuk IiI= -----END CERTIFICATE-----Generated at Tue May 28 17:50:52 2024 by rpki-client on console-fra.rpki-client.org