$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/3558D5DC1F1711EC924DB151C4F9AE02.roa File: 3558D5DC1F1711EC924DB151C4F9AE02.roa (raw, json) Hash identifier: vmKL9ES/41qaf2G6CmnaR/4nRFQxh8c6uQBzQEPSeKk= Subject key identifier: 7E:2C:4D:C7:DF:D0:46:20:DB:8D:71:87:9D:B0:39:4F:17:95:1A:B2 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 05B5 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/3558D5DC1F1711EC924DB151C4F9AE02.roa Signing time: Wed 04 Oct 2023 23:41:29 +0000 ROA not before: Wed 04 Oct 2023 23:41:29 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 38793 IP address blocks: 118.148.0.0/15 maxlen: 16 118.148.0.0/24 maxlen: 24 118.148.1.0/24 maxlen: 24 118.148.2.0/24 maxlen: 24 118.148.3.0/24 maxlen: 24 118.148.5.0/24 maxlen: 24 118.148.128.0/18 maxlen: 18 118.148.128.0/19 maxlen: 19 118.148.192.0/18 maxlen: 18 118.148.192.0/19 maxlen: 19 118.149.1.0/24 maxlen: 24 118.149.2.0/24 maxlen: 24 118.149.3.0/24 maxlen: 24 118.149.5.0/24 maxlen: 24 118.149.25.0/24 maxlen: 24 118.149.128.0/17 maxlen: 18 118.149.128.0/19 maxlen: 19 118.149.192.0/19 maxlen: 19 2405:a400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1461 (0x5b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 4 23:41:29 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651df828-d807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:27:39:2a:dd:5e:cb:9a:ed:2c:40:c9:3a:e8: 65:94:c2:f7:2b:48:53:a8:30:44:5b:41:7d:ce:bb: 2d:ea:eb:63:17:31:4c:c4:c9:83:bf:90:b0:22:99: 82:af:05:e0:64:97:cc:51:5d:ab:e0:bf:aa:50:ef: 4c:86:5e:b1:11:2b:b9:a6:92:d5:37:6d:22:cd:54: c2:b3:3f:02:5d:34:5c:dc:34:8d:0c:07:06:26:57: 84:e9:2e:0d:d3:48:f3:a5:e8:6b:ab:f6:d6:0b:bf: c8:61:d4:03:bd:40:b2:a4:40:38:c5:16:bf:29:d9: ee:1d:8d:3f:e6:99:fb:ed:14:03:9e:99:6a:b4:16: c7:8c:7e:a6:5b:dd:55:6b:f6:82:3b:d3:2a:e1:96: af:d0:dd:f5:4c:6c:f3:2a:92:08:f2:0d:70:c4:2e: 38:7a:b9:38:f0:9f:74:61:dd:fb:08:25:00:86:28: 04:aa:e0:58:40:df:d5:20:98:1b:88:aa:85:bf:53: 90:dd:7c:55:fb:d2:48:6f:41:85:cb:f4:a4:d7:1a: e1:de:ef:26:10:02:21:42:8f:2c:b4:47:1c:95:bd: 9e:34:fe:6c:d2:a9:b0:95:39:2b:15:53:27:f6:9b: a8:3b:61:d2:e1:a0:e5:c6:02:21:7d:b6:0c:d2:81: 45:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2C:4D:C7:DF:D0:46:20:DB:8D:71:87:9D:B0:39:4F:17:95:1A:B2 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/3558D5DC1F1711EC924DB151C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.148.0.0/15 IPv6: 2405:a400::/32 Signature Algorithm: sha256WithRSAEncryption 02:52:2c:bb:92:b8:90:7d:d7:35:7d:f6:bc:58:8a:97:35:b0: 78:c5:f8:f3:1d:33:f4:01:c0:c0:e0:29:9c:61:a2:4a:b0:e7: a4:7d:03:2b:80:25:1c:b8:6e:3d:87:a9:73:e4:56:8b:03:db: 91:6f:3b:9b:ff:73:61:eb:71:58:50:29:71:e5:eb:ad:8f:24: 71:5e:fd:01:46:57:d8:3d:41:d5:56:b5:3e:bb:7f:63:bf:5c: 2d:7a:c6:2e:6e:48:81:d2:29:28:37:f8:d7:82:16:fa:c6:ae: db:c7:71:64:8a:58:e9:83:82:13:b0:92:51:df:78:f4:1c:05: 79:27:dc:71:55:b6:3a:b8:8f:36:0f:ff:50:cf:ef:2b:ca:04: 4b:8b:c6:03:e1:e1:6a:82:fb:11:77:af:22:a6:df:8c:c3:6b: fe:1f:85:6d:3b:ec:3e:da:d6:09:fb:0f:ea:b0:8f:ed:78:0d: fd:ab:fc:27:2a:6a:98:f7:ca:54:d3:a8:7c:09:3a:5c:0b:58: 7f:5c:6b:bb:92:5d:9a:ae:fc:54:16:89:cf:7d:16:b7:58:21: d2:33:ef:a6:b3:96:81:33:6f:59:cf:83:4c:fb:b1:b4:9e:81: 95:06:10:97:31:79:d7:80:9b:cb:33:60:12:ce:c6:0a:ef:3e: f3:9b:77:86 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjMxMDA0MjM0MTI5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZjgyOC1kODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ic5Kt1ey5rtLEDJOuhllML3K0hTqDBEW0F9zrst6utjFzFMxMmDv5CwIpmC rwXgZJfMUV2r4L+qUO9Mhl6xESu5ppLVN20izVTCsz8CXTRc3DSNDAcGJleE6S4N 00jzpehrq/bWC7/IYdQDvUCypEA4xRa/KdnuHY0/5pn77RQDnplqtBbHjH6mW91V a/aCO9Mq4Zav0N31TGzzKpII8g1wxC44erk48J90Yd37CCUAhigEquBYQN/VIJgb iKqFv1OQ3XxV+9JIb0GFy/Sk1xrh3u8mEAIhQo8stEcclb2eNP5s0qmwlTkrFVMn 9puoO2HS4aDlxgIhfbYM0oFFxQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFH4sTcff 0EYg241xh52wOU8XlRqyMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvMzU1OEQ1REMx RjE3MTFFQzkyNERCMTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMAsEAgABMAUDAwF2lDANBAIAAjAHAwUAJAWkADANBgkqhkiG9w0BAQsFAAOC AQEAAlIsu5K4kH3XNX32vFiKlzWweMX48x0z9AHAwOApnGGiSrDnpH0DK4AlHLhu PYepc+RWiwPbkW87m/9zYetxWFApceXrrY8kcV79AUZX2D1B1Va1Prt/Y79cLXrG Lm5IgdIpKDf414IW+sau28dxZIpY6YOCE7CSUd949BwFeSfccVW2OriPNg//UM/v K8oES4vGA+HhaoL7EXevIqbfjMNr/h+FbTvsPtrWCfsP6rCP7XgN/av8JypqmPfK VNOofAk6XAtYf1xru5Jdmq78VBaJz30Wt1gh0jPvprOWgTNvWc+DTPuxtJ6BlQYQ lzF514CbyzNgEs7GCu8+85t3hg== -----END CERTIFICATE-----Generated at Fri May 17 01:06:58 2024 by rpki-client on console-fra.rpki-client.org