$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/C699F452FDF711E8B5A6725EC4F9AE02.roa File: C699F452FDF711E8B5A6725EC4F9AE02.roa (raw, json) Hash identifier: UbOXED618tStSjFlAzjrQflu3ENuLqp4AcV54ODtPg4= Subject key identifier: B7:F3:05:9B:72:FE:20:85:AF:EC:F9:ED:FA:0F:1A:58:22:E6:E4:5B Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Certificate serial: 118A Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/C699F452FDF711E8B5A6725EC4F9AE02.roa Signing time: Tue 12 Sep 2023 17:55:19 +0000 ROA not before: Tue 12 Sep 2023 17:55:18 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45474 IP address blocks: 122.11.181.0/24 maxlen: 24 122.11.182.0/24 maxlen: 24 122.11.183.0/24 maxlen: 24 122.11.184.0/24 maxlen: 24 122.11.185.0/24 maxlen: 24 122.11.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4490 (0x118a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Validity Not Before: Sep 12 17:55:18 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6500a606-f0bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d9:90:12:6c:64:9a:8a:15:6b:80:01:69:88: 2d:e6:94:12:a4:46:e4:7a:f1:da:67:22:2f:12:a7: 19:5d:e5:1e:4a:9a:41:ed:0b:ed:9b:d5:8a:eb:e1: 9f:db:58:e7:84:97:88:23:26:59:ed:ee:e7:65:74: bc:0c:78:2a:69:ae:49:9d:76:58:08:0c:a3:8e:c3: ea:4b:9b:b8:04:20:bd:32:6f:85:11:ae:a6:51:21: 20:ef:69:92:4e:0a:a0:89:3a:ac:de:af:2c:cb:6f: 35:ef:bf:d9:61:dd:2f:52:03:0a:71:8f:d4:fe:d1: b7:4e:0f:ce:32:c9:ec:14:5f:97:96:47:83:f0:a9: 0b:98:7d:4f:72:8d:a0:2f:c4:fa:bf:94:13:5c:6e: f2:8b:22:47:2e:a6:22:3d:30:7c:c2:f4:36:07:17: 42:27:5e:94:8d:d7:08:ae:1e:9c:ed:15:9a:29:b0: c7:55:e0:49:a0:fa:72:58:3a:8b:e7:8d:ec:25:24: 40:dc:6b:ba:9b:d6:de:90:e5:13:68:20:21:e5:78: ad:fe:c1:87:c2:6a:d1:d6:be:03:f4:e9:33:c7:f7: 73:35:10:bc:b7:0b:8d:e5:c1:16:59:b7:d2:90:46: 67:5f:6a:03:db:d2:a3:24:b6:2e:2b:8a:09:f1:cb: f3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F3:05:9B:72:FE:20:85:AF:EC:F9:ED:FA:0F:1A:58:22:E6:E4:5B X509v3 Authority Key Identifier: keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/C699F452FDF711E8B5A6725EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.11.181.0-122.11.186.255 Signature Algorithm: sha256WithRSAEncryption 85:eb:e1:b7:a5:c6:3d:62:49:22:3e:1d:14:4b:c1:6a:61:9c: ab:c8:8a:c4:3d:26:f4:6e:ac:ed:7c:43:20:d8:2d:63:63:79: e5:b9:b7:86:9a:dd:5e:21:dd:f6:d8:04:d6:c3:d1:d0:30:d7: ab:a8:4a:d6:d6:e9:87:35:10:1b:d9:32:50:ee:f5:70:b6:bc: b3:a6:ed:57:5f:d6:6a:21:27:b1:97:72:57:e0:4d:09:50:b0: 88:37:f1:14:d6:2f:9e:61:33:b7:2d:53:68:a9:02:a7:1d:30: bd:70:0b:f3:c2:30:fe:32:0d:9f:6a:3e:9f:a3:3e:06:8d:fa: f3:cf:06:a5:9d:af:04:f6:b6:9e:48:84:ac:62:e3:25:d6:de: 56:a1:b3:3c:8c:89:e1:5c:56:4f:bf:01:4c:bf:2a:65:13:ce: d7:84:60:d7:ee:c0:2e:91:05:fe:31:66:b6:13:38:85:3c:42: 98:52:9a:88:88:01:6d:13:fe:9d:5f:e0:d7:73:0c:f0:0e:0b: b3:6d:ed:8f:d8:03:1c:73:53:25:de:83:5b:16:89:82:c7:2f: 8c:b4:52:56:56:13:c5:55:e6:62:c7:28:06:36:3c:93:6e:fa: 31:74:81:a0:04:80:1c:89:3f:82:6d:9b:f0:23:bd:60:0e:ef: ee:02:2e:d7 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICEYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyREMxMTAvBgNVBAUTKEMyQjlGNUYzQzY4QzU3NjcyNzIzOUI5MkE5M0IzNjI5 N0QxQjE2NTMwHhcNMjMwOTEyMTc1NTE4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwYTYwNi1mMGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmtmQEmxkmooVa4ABaYgt5pQSpEbkevHaZyIvEqcZXeUeSppB7Qvtm9WK6+Gf 21jnhJeIIyZZ7e7nZXS8DHgqaa5JnXZYCAyjjsPqS5u4BCC9Mm+FEa6mUSEg72mS TgqgiTqs3q8sy28177/ZYd0vUgMKcY/U/tG3Tg/OMsnsFF+XlkeD8KkLmH1Pco2g L8T6v5QTXG7yiyJHLqYiPTB8wvQ2BxdCJ16UjdcIrh6c7RWaKbDHVeBJoPpyWDqL 543sJSRA3Gu6m9bekOUTaCAh5Xit/sGHwmrR1r4D9Okzx/dzNRC8twuN5cEWWbfS kEZnX2oD29KjJLYuK4oJ8cvzIQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFLfzBZty /iCFr+z57foPGlgi5uRbMB8GA1UdIwQYMBaAFMK59fPGjFdnJyObkqk7Nil9GxZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDJEQy8yRDUxQUY0MkZE M0UxMUU4ODhDNTM5NDRDNEY5QUUwMi93cm4xODhhTVYyY25JNXVTcVRzMktYMGJG bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dybjE4OGFNVjJjbkk1dVNxVHMyS1gwYkZsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAyREMvMkQ1MUFGNDJGRDNFMTFFODg4QzUzOTQ0QzRGOUFFMDIvQzY5OUY0NTJG REY3MTFFOEI1QTY3MjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAHoLtQMEAHoLujANBgkqhkiG9w0BAQsFAAOCAQEAhevh t6XGPWJJIj4dFEvBamGcq8iKxD0m9G6s7XxDINgtY2N55bm3hprdXiHd9tgE1sPR 0DDXq6hK1tbphzUQG9kyUO71cLa8s6btV1/WaiEnsZdyV+BNCVCwiDfxFNYvnmEz ty1TaKkCpx0wvXAL88Iw/jINn2o+n6M+Bo36888GpZ2vBPa2nkiErGLjJdbeVqGz PIyJ4VxWT78BTL8qZRPO14Rg1+7ALpEF/jFmthM4hTxCmFKaiIgBbRP+nV/g13MM 8A4Ls23tj9gDHHNTJd6DWxaJgscvjLRSVlYTxVXmYscoBjY8k276MXSBoASAHIk/ gm2b8CO9YA7v7gIu1w== -----END CERTIFICATE-----Generated at Thu May 2 20:50:22 2024 by rpki-client on console-fra.rpki-client.org