$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/747C7164462C11ED90035452C4F9AE02.roa File: 747C7164462C11ED90035452C4F9AE02.roa (raw, json) Hash identifier: Lro8D6x3xVVafWlhiAu5hCzfI8d6Lr2Jg/Jvm/36HR8= Subject key identifier: 4C:AF:D0:79:BF:95:A4:D9:5E:E1:00:C2:7E:85:A2:12:56:1B:93:F4 Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 3453 Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/747C7164462C11ED90035452C4F9AE02.roa Signing time: Wed 04 Oct 2023 14:50:31 +0000 ROA not before: Wed 04 Oct 2023 14:50:31 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 17469 IP address blocks: 175.29.124.0/22 maxlen: 24 175.29.140.0/22 maxlen: 24 175.29.144.0/22 maxlen: 24 175.29.160.0/20 maxlen: 24 175.29.176.0/20 maxlen: 24 175.29.192.0/21 maxlen: 24 202.22.192.0/20 maxlen: 24 203.76.144.0/21 maxlen: 24 203.82.192.0/20 maxlen: 24 2404:150::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13395 (0x3453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Oct 4 14:50:31 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651d7bb7-2fe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0d:9d:73:93:52:1f:a0:7e:8a:3b:00:ea:04: dc:ba:95:de:3d:e8:a5:22:72:4d:a3:1d:cf:49:ef: 25:37:4a:5a:c7:67:d3:b0:28:ee:43:ad:9d:ce:49: 40:3b:4a:8b:54:2f:17:04:5f:6e:06:40:e1:22:af: 87:85:b9:ff:e5:f0:6c:a3:d0:0b:1d:7c:5f:4f:c5: fd:f3:e1:70:8a:44:54:1e:a8:29:fb:f1:e7:d3:17: cd:dc:4d:19:cd:8e:8d:a9:c0:4c:b1:2f:5f:d7:da: 83:32:14:61:64:4d:0c:f8:9a:5e:79:68:ac:98:c6: ce:8d:74:0b:83:68:a3:c3:98:96:e1:85:cb:37:d7: c2:d0:8d:12:1b:9e:39:8f:c5:18:4b:ae:be:43:ee: 95:2d:d6:52:56:8e:66:df:94:f0:6c:40:84:d7:ee: 95:75:80:12:b6:29:4a:59:91:74:54:c5:16:5b:82: bc:ce:55:f2:ad:43:01:99:b6:76:22:90:a2:0a:1f: 27:0c:ac:26:cb:f7:6f:3c:2e:44:3f:51:bf:5a:53: 02:90:9b:0c:a9:86:38:5e:66:02:a1:fb:68:56:94: f1:be:0b:0a:8e:da:25:3c:d3:b4:2d:b0:f1:b3:a5: 1f:e9:3f:0a:cf:77:4d:73:9c:fd:cc:09:a3:a6:79: 65:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AF:D0:79:BF:95:A4:D9:5E:E1:00:C2:7E:85:A2:12:56:1B:93:F4 X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/747C7164462C11ED90035452C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.124.0/22 175.29.140.0-175.29.147.255 175.29.160.0-175.29.199.255 202.22.192.0/20 203.76.144.0/21 203.82.192.0/20 IPv6: 2404:150::/32 Signature Algorithm: sha256WithRSAEncryption 0d:67:1c:11:22:3c:c9:11:64:54:23:b4:30:8f:95:26:22:22: c8:c2:a1:d9:fc:3d:ed:7e:6a:ee:bb:62:c2:45:8f:b5:6b:20: 82:8e:ce:80:a8:fe:13:b4:a6:f2:ef:98:f2:9d:99:22:85:cb: ec:11:da:a6:69:3b:d8:1c:e9:0b:ab:55:36:2b:96:58:29:b2: 69:1b:0a:12:61:47:ee:ee:59:06:44:d0:1c:8d:de:70:49:55: ea:af:93:6a:2f:ae:16:66:5e:98:35:28:94:8c:9b:9f:33:2c: 99:e5:7e:b3:47:fd:60:55:c3:3f:3c:87:23:7a:a8:eb:ad:67: 9b:47:a7:0c:d6:59:6b:a0:ae:62:d0:91:4a:2a:6a:42:ec:b4: a4:ff:47:51:7f:61:ce:55:ac:8d:cd:c4:48:26:8f:7b:c1:e5: cc:4c:62:cc:97:e9:b6:17:b7:8f:3c:ef:b0:0a:2c:50:d1:64: 74:d6:4e:94:86:9c:48:46:7f:ed:d9:40:42:b5:c6:47:3e:a9: c2:bd:ac:b7:a4:d3:f0:5e:4e:28:3a:c9:0b:fa:7d:67:66:2b: 11:7e:6e:6c:ce:25:5c:b1:5b:d1:b1:26:ac:63:6e:1d:26:9c: 16:33:89:d5:86:71:90:cf:cb:76:b1:05:e8:59:56:89:d9:19: a7:40:97:37 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgICNFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjMxMDA0MTQ1MDMxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkN2JiNy0yZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1A2dc5NSH6B+ijsA6gTcupXePeilInJNox3PSe8lN0pax2fTsCjuQ62dzklA O0qLVC8XBF9uBkDhIq+Hhbn/5fBso9ALHXxfT8X98+FwikRUHqgp+/Hn0xfN3E0Z zY6NqcBMsS9f19qDMhRhZE0M+JpeeWismMbOjXQLg2ijw5iW4YXLN9fC0I0SG545 j8UYS66+Q+6VLdZSVo5m35TwbECE1+6VdYAStilKWZF0VMUWW4K8zlXyrUMBmbZ2 IpCiCh8nDKwmy/dvPC5EP1G/WlMCkJsMqYY4XmYCoftoVpTxvgsKjtolPNO0LbDx s6Uf6T8Kz3dNc5z9zAmjpnllXQIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFEyv0Hm/ laTZXuEAwn6FohJWG5P0MB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvNzQ3QzcxNjQ0 NjJDMTFFRDkwMDM1NDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXAYIKwYBBQUHAQcBAf8E TTBLMDoEAgABMDQDBAKvHXwwDAMEAq8djAMEAq8dkDAMAwQFrx2gAwQDrx3AAwQE yhbAAwQDy0yQAwQEy1LAMA0EAgACMAcDBQAkBAFQMA0GCSqGSIb3DQEBCwUAA4IB AQANZxwRIjzJEWRUI7Qwj5UmIiLIwqHZ/D3tfmruu2LCRY+1ayCCjs6AqP4TtKby 75jynZkihcvsEdqmaTvYHOkLq1U2K5ZYKbJpGwoSYUfu7lkGRNAcjd5wSVXqr5Nq L64WZl6YNSiUjJufMyyZ5X6zR/1gVcM/PIcjeqjrrWebR6cM1llroK5i0JFKKmpC 7LSk/0dRf2HOVayNzcRIJo97weXMTGLMl+m2F7ePPO+wCixQ0WR01k6UhpxIRn/t 2UBCtcZHPqnCvay3pNPwXk4oOskL+n1nZisRfm5sziVcsVvRsSasY24dJpwWM4nV hnGQz8t2sQXoWVaJ2RmnQJc3 -----END CERTIFICATE-----Generated at Sat May 18 15:26:03 2024 by rpki-client on console-fra.rpki-client.org