$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/93C20720C45311EBB305C97FC4F9AE02.roa File: 93C20720C45311EBB305C97FC4F9AE02.roa (raw, json) Hash identifier: efoVrlwph3wjC2Fb2an2QQWzvRgiWgBpMq00Etpa2eo= Subject key identifier: 32:A0:50:4A:C2:39:CB:16:4D:11:D5:3F:45:EF:67:C4:E0:05:22:32 Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Certificate serial: 1189 Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/93C20720C45311EBB305C97FC4F9AE02.roa Signing time: Tue 12 Sep 2023 17:55:18 +0000 ROA not before: Tue 12 Sep 2023 17:55:18 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38861 IP address blocks: 111.223.96.0/19 maxlen: 24 113.10.64.0/18 maxlen: 24 117.20.128.0/18 maxlen: 24 122.11.128.0/17 maxlen: 24 171.207.0.0/16 maxlen: 24 182.19.128.0/17 maxlen: 24 182.55.0.0/16 maxlen: 24 183.90.0.0/17 maxlen: 24 203.116.0.0/16 maxlen: 24 203.117.0.0/16 maxlen: 24 203.118.0.0/18 maxlen: 24 2406:3000:4::/48 maxlen: 48 2406:3001::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4489 (0x1189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Validity Not Before: Sep 12 17:55:18 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6500a606-5615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5a:ee:32:5f:cf:cb:1e:39:26:cc:06:e2:fc: 50:80:d2:1d:ba:c7:d4:04:77:a7:0c:2b:f2:92:5a: d7:c6:43:28:a6:4b:d7:03:3c:fb:c4:10:28:0e:af: 4e:3b:63:18:88:03:2d:15:74:7e:52:3c:12:e1:22: e5:a1:48:31:1d:e9:cc:9c:a5:4e:5b:7a:a7:d8:40: 3a:1f:13:c6:87:ba:03:42:16:2e:f5:40:dd:10:4c: ea:0d:0a:c8:fe:c7:ae:bf:9a:67:10:9b:79:6c:9c: 18:93:cd:fb:ba:c0:24:2b:c5:f5:d3:88:28:d6:e8: 9d:26:02:f8:dc:68:f1:db:79:ee:a4:b9:ab:02:a3: 65:88:f9:6a:bb:4d:d2:33:86:54:0c:44:f0:9b:a9: 1c:74:81:6f:17:9c:6a:fb:9a:95:aa:70:00:a3:87: 6c:ad:f6:8a:7c:d8:c4:cf:9b:9d:94:38:2f:e5:e6: bb:2b:0b:47:c2:45:33:79:83:df:49:58:50:66:a7: 93:d4:af:5d:d2:8a:62:9c:f5:59:e5:37:09:b0:cd: f4:2c:bd:0e:36:b1:dd:2e:e6:b1:90:ae:1f:6f:7f: a7:2b:b1:e0:03:4f:a6:74:44:5e:0a:56:ee:55:35: 00:60:11:3a:22:0f:6a:08:9f:d6:14:79:60:a2:22: bf:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A0:50:4A:C2:39:CB:16:4D:11:D5:3F:45:EF:67:C4:E0:05:22:32 X509v3 Authority Key Identifier: keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/93C20720C45311EBB305C97FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.223.96.0/19 113.10.64.0/18 117.20.128.0/18 122.11.128.0/17 171.207.0.0/16 182.19.128.0/17 182.55.0.0/16 183.90.0.0/17 203.116.0.0-203.118.63.255 IPv6: 2406:3000:4::/48 2406:3001::/32 Signature Algorithm: sha256WithRSAEncryption a7:4b:00:67:06:c6:40:0c:aa:79:83:d2:0b:c0:a2:38:57:78: 9b:1f:4c:59:a8:38:de:ce:a4:e9:44:8c:fd:b3:f3:85:9f:9b: 86:f5:8f:01:c3:99:ca:15:74:eb:34:43:16:29:4b:d0:50:e3: 73:97:45:04:58:52:4e:34:7e:b1:c8:23:df:06:ac:b6:d6:0d: 5e:3f:67:7e:58:3b:5f:a5:91:59:ea:cf:f8:7c:f6:78:56:45: 2b:fb:98:1e:34:50:72:55:37:d6:4e:90:8b:b2:58:ed:01:fc: 37:7a:2b:20:a9:84:5c:42:1d:1b:ec:7f:ad:8a:a1:e4:62:3e: 41:af:da:c5:25:e8:71:d1:9c:d8:20:29:10:cd:4a:bb:f7:8b: cc:cc:11:ed:c7:52:90:d2:ca:ee:5a:0b:42:6e:b7:5f:51:44: b8:b8:ce:13:aa:e1:bb:3b:62:76:93:7c:d8:43:5a:b5:11:8e: 60:a5:bf:9a:4c:a3:0e:cf:ff:2f:75:09:23:68:81:22:a9:10: b7:ca:e9:54:62:a7:df:f4:d6:64:07:4e:49:89:30:e3:69:0b: 7c:b8:6c:ba:b2:a8:f4:d5:fe:1f:79:f3:59:79:ea:a3:dd:90: fd:6a:07:24:e5:47:ee:ee:43:79:c9:ad:e5:28:dd:22:95:d4: e4:c8:a1:72 -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgICEYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyREMxMTAvBgNVBAUTKEMyQjlGNUYzQzY4QzU3NjcyNzIzOUI5MkE5M0IzNjI5 N0QxQjE2NTMwHhcNMjMwOTEyMTc1NTE4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwYTYwNi01NjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFruMl/Pyx45JswG4vxQgNIdusfUBHenDCvyklrXxkMopkvXAzz7xBAoDq9O O2MYiAMtFXR+UjwS4SLloUgxHenMnKVOW3qn2EA6HxPGh7oDQhYu9UDdEEzqDQrI /seuv5pnEJt5bJwYk837usAkK8X104go1uidJgL43Gjx23nupLmrAqNliPlqu03S M4ZUDETwm6kcdIFvF5xq+5qVqnAAo4dsrfaKfNjEz5udlDgv5ea7KwtHwkUzeYPf SVhQZqeT1K9d0opinPVZ5TcJsM30LL0ONrHdLuaxkK4fb3+nK7HgA0+mdEReClbu VTUAYBE6Ig9qCJ/WFHlgoiK/ZQIDAQABo4IC4jCCAt4wHQYDVR0OBBYEFDKgUErC OcsWTRHVP0XvZ8TgBSIyMB8GA1UdIwQYMBaAFMK59fPGjFdnJyObkqk7Nil9GxZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDJEQy8yRDUxQUY0MkZE M0UxMUU4ODhDNTM5NDRDNEY5QUUwMi93cm4xODhhTVYyY25JNXVTcVRzMktYMGJG bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dybjE4OGFNVjJjbkk1dVNxVHMyS1gwYkZsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAyREMvMkQ1MUFGNDJGRDNFMTFFODg4QzUzOTQ0QzRGOUFFMDIvOTNDMjA3MjBD NDUzMTFFQkIzMDVDOTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbAYIKwYBBQUHAQcBAf8E XTBbMEEEAgABMDsDBAVv32ADBAZxCkADBAZ1FIADBAd6C4ADAwCrzwMEB7YTgAMD ALY3AwQHt1oAMAsDAwLLdAMEBst2ADAWBAIAAjAQAwcAJAYwAAAEAwUAJAYwATAN BgkqhkiG9w0BAQsFAAOCAQEAp0sAZwbGQAyqeYPSC8CiOFd4mx9MWag43s6k6USM /bPzhZ+bhvWPAcOZyhV06zRDFilL0FDjc5dFBFhSTjR+scgj3wasttYNXj9nflg7 X6WRWerP+Hz2eFZFK/uYHjRQclU31k6Qi7JY7QH8N3orIKmEXEIdG+x/rYqh5GI+ Qa/axSXocdGc2CApEM1Ku/eLzMwR7cdSkNLK7loLQm63X1FEuLjOE6rhuztidpN8 2ENatRGOYKW/mkyjDs//L3UJI2iBIqkQt8rpVGKn3/TWZAdOSYkw42kLfLhsurKo 9NX+H3nzWXnqo92Q/WoHJOVH7u5Decmt5SjdIpXU5Mihcg== -----END CERTIFICATE-----Generated at Thu May 16 20:25:40 2024 by rpki-client on console-ams.rpki-client.org