$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/660C8B72D03511EC9D87A00DC4F9AE02.roa File: 660C8B72D03511EC9D87A00DC4F9AE02.roa (raw, json) Hash identifier: qb8MX4u8771iM7kVKYATE+EVVzqMQundAvnbZMuiY8k= Subject key identifier: 53:26:F7:65:E7:39:D5:28:BD:06:45:0E:90:84:F4:9C:53:A8:8B:FE Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Certificate serial: 1186 Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/660C8B72D03511EC9D87A00DC4F9AE02.roa Signing time: Tue 12 Sep 2023 17:55:15 +0000 ROA not before: Tue 12 Sep 2023 17:55:15 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139690 IP address blocks: 45.65.2.0/23 maxlen: 24 124.155.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4486 (0x1186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Validity Not Before: Sep 12 17:55:15 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6500a603-1c7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:20:64:1b:d4:16:76:b6:bd:07:e1:85:89:b2: 94:4f:bf:52:da:27:16:b5:61:9c:fe:c7:93:3d:09: 88:c8:0f:31:e3:57:64:d7:cb:04:af:fa:48:09:24: 0a:30:13:7f:b5:ee:9d:1e:79:8c:98:c3:e1:99:21: eb:26:3a:48:41:30:1e:c2:c5:7d:60:5f:db:1e:18: 00:a2:08:b0:91:e5:cd:e1:7a:0e:83:b1:37:96:71: b6:f4:80:7b:4b:23:77:49:4d:48:a8:20:5e:39:89: 21:1e:8f:0f:30:6b:54:c3:d4:5c:f3:94:5b:63:11: be:e4:29:6a:21:c8:a4:67:b0:9d:fb:e1:ef:ef:5d: 67:a8:7f:5d:18:af:2f:64:01:22:cb:55:4d:25:e1: 5a:ea:db:52:ff:a2:3c:ce:cc:d2:c3:7d:75:55:7a: d6:16:80:7c:34:10:26:75:16:32:46:a4:10:7a:49: 62:14:1e:20:1e:0f:16:81:5b:0e:b9:09:bb:05:cf: 2f:62:a0:39:13:c6:75:60:f3:a2:e6:20:b5:12:c2: 04:8a:ed:06:13:9c:fb:d0:65:af:7e:5b:17:29:4a: b4:80:81:e2:10:ca:f0:c0:6a:57:1f:8f:71:49:b0: 84:13:4e:c1:ad:f9:97:2c:3d:37:18:2c:68:0b:c5: fb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:26:F7:65:E7:39:D5:28:BD:06:45:0E:90:84:F4:9C:53:A8:8B:FE X509v3 Authority Key Identifier: keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/660C8B72D03511EC9D87A00DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.65.2.0/23 124.155.216.0/24 Signature Algorithm: sha256WithRSAEncryption a5:29:f5:ae:11:77:87:8c:75:00:cb:41:5f:ad:8c:2e:7e:a8: a9:d2:89:36:a1:a2:30:b6:89:58:35:d8:73:08:1e:89:53:24: 08:f8:93:16:82:7f:cf:f8:84:a1:71:56:61:c5:b4:de:bc:36: 6b:c7:bd:2b:76:66:ad:57:97:1e:cd:5b:ee:f5:98:47:d3:e4: e5:df:5a:ab:64:7a:dd:af:3e:50:e5:57:7b:fc:8c:16:31:a6: 27:16:08:e9:ed:b2:cd:ae:c7:96:ee:a3:af:49:63:ae:c5:a4: 66:cc:36:b9:06:1d:52:27:20:5d:d7:4d:b3:02:19:49:93:60: eb:b9:ea:01:f9:01:f7:3f:c8:0c:f5:d7:3a:4e:2d:60:c2:c9: cb:ab:b4:08:34:5d:df:d8:09:40:b9:af:a2:97:81:71:4a:f0: a7:e4:70:02:c4:60:09:ff:6d:e4:90:53:e5:aa:be:33:72:e0: 11:c5:ae:36:34:5b:27:fa:ab:be:f5:26:20:54:b9:5b:80:30: 36:bf:d5:4a:c4:23:d6:32:02:42:b9:23:95:7c:9b:d1:35:bc: c1:aa:0a:ab:c9:72:a3:60:56:b9:9d:bb:3b:e5:da:fd:a9:bf: 06:8e:18:43:fc:30:d1:91:18:98:05:b9:16:51:57:9e:89:45: 5b:09:7a:e4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyREMxMTAvBgNVBAUTKEMyQjlGNUYzQzY4QzU3NjcyNzIzOUI5MkE5M0IzNjI5 N0QxQjE2NTMwHhcNMjMwOTEyMTc1NTE1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwYTYwMy0xYzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyBkG9QWdra9B+GFibKUT79S2icWtWGc/seTPQmIyA8x41dk18sEr/pICSQK MBN/te6dHnmMmMPhmSHrJjpIQTAewsV9YF/bHhgAogiwkeXN4XoOg7E3lnG29IB7 SyN3SU1IqCBeOYkhHo8PMGtUw9Rc85RbYxG+5ClqIcikZ7Cd++Hv711nqH9dGK8v ZAEiy1VNJeFa6ttS/6I8zszSw311VXrWFoB8NBAmdRYyRqQQekliFB4gHg8WgVsO uQm7Bc8vYqA5E8Z1YPOi5iC1EsIEiu0GE5z70GWvflsXKUq0gIHiEMrwwGpXH49x SbCEE07BrfmXLD03GCxoC8X7jQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFMm92Xn OdUovQZFDpCE9JxTqIv+MB8GA1UdIwQYMBaAFMK59fPGjFdnJyObkqk7Nil9GxZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDJEQy8yRDUxQUY0MkZE M0UxMUU4ODhDNTM5NDRDNEY5QUUwMi93cm4xODhhTVYyY25JNXVTcVRzMktYMGJG bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dybjE4OGFNVjJjbkk1dVNxVHMyS1gwYkZsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAyREMvMkQ1MUFGNDJGRDNFMTFFODg4QzUzOTQ0QzRGOUFFMDIvNjYwQzhCNzJE MDM1MTFFQzlEODdBMDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEtQQIDBAB8m9gwDQYJKoZIhvcNAQELBQADggEBAKUp9a4R d4eMdQDLQV+tjC5+qKnSiTahojC2iVg12HMIHolTJAj4kxaCf8/4hKFxVmHFtN68 NmvHvSt2Zq1Xlx7NW+71mEfT5OXfWqtket2vPlDlV3v8jBYxpicWCOntss2ux5bu o69JY67FpGbMNrkGHVInIF3XTbMCGUmTYOu56gH5Afc/yAz11zpOLWDCycurtAg0 Xd/YCUC5r6KXgXFK8KfkcALEYAn/beSQU+WqvjNy4BHFrjY0Wyf6q771JiBUuVuA MDa/1UrEI9YyAkK5I5V8m9E1vMGqCqvJcqNgVrmduzvl2v2pvwaOGEP8MNGRGJgF uRZRV56JRVsJeuQ= -----END CERTIFICATE-----Generated at Thu May 16 19:10:54 2024 by rpki-client on console-fra.rpki-client.org