$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/149AB4BE7CE911EEB9A02D83C4F9AE02.roa File: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (raw, json) Hash identifier: vIBekGZSNa8pQ9AoOo8H3JW+GmcSu+Jt0Ajm3nnSvDE= Subject key identifier: FD:60:69:70:47:69:A3:36:D7:B0:8D:1A:BE:C0:6A:CE:EE:C5:91:12 Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 2EC0 Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/149AB4BE7CE911EEB9A02D83C4F9AE02.roa Signing time: Mon 06 Nov 2023 21:30:18 +0000 ROA not before: Mon 06 Nov 2023 21:30:18 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 32590 IP address blocks: 45.121.184.0/22 maxlen: 24 103.10.124.0/23 maxlen: 24 103.28.54.0/23 maxlen: 24 2404:3fc0::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11968 (0x2ec0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Nov 6 21:30:18 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65495ae9-4b98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:3a:d0:39:cd:ec:9e:c1:23:93:60:31:4e: 9a:6c:93:c1:21:3e:e1:14:72:9d:a8:fe:6d:85:22: e4:9f:c2:28:5b:53:60:01:b6:ac:41:a3:b1:9e:da: f5:03:1a:7f:db:8b:38:62:76:b7:2a:0d:51:f4:8d: db:3f:28:11:da:f7:64:cd:7f:81:0b:15:c3:0a:b4: 32:d9:60:e0:ed:24:52:c9:d8:71:b1:e8:13:ba:df: 85:97:ac:82:1d:60:52:8d:c7:ff:32:08:09:9b:50: e7:2b:2d:27:58:9e:87:f3:4e:c3:59:bf:8c:29:e9: 79:94:09:0b:34:1f:cb:66:1f:65:70:5e:d6:2d:56: 18:df:7b:2f:54:c0:11:9b:ee:0c:b4:7a:56:a4:27: d2:76:0d:47:19:a3:b6:a0:71:e0:13:a0:1f:9f:b9: 82:94:72:04:17:d8:af:0e:77:d1:68:76:9e:22:2e: 2d:65:10:cb:c2:5d:ff:c1:48:47:12:79:26:21:9d: 38:27:fd:c5:55:e9:97:c6:cc:82:f2:c2:b8:bb:3e: ba:45:48:8d:61:a4:c5:ab:97:db:55:56:65:b5:33: c5:04:4d:74:2e:f9:75:61:ae:28:f9:23:0c:77:2c: 16:48:89:e2:86:09:98:2c:db:5c:93:2a:81:86:47: 63:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:60:69:70:47:69:A3:36:D7:B0:8D:1A:BE:C0:6A:CE:EE:C5:91:12 X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/149AB4BE7CE911EEB9A02D83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.184.0/22 103.10.124.0/23 103.28.54.0/23 IPv6: 2404:3fc0::/40 Signature Algorithm: sha256WithRSAEncryption 1d:70:f0:50:85:b5:c4:4b:fe:2d:a8:02:2c:28:46:a2:df:5f: 7c:5a:af:ff:35:ac:34:e2:7e:fa:97:d4:c8:53:aa:e9:a5:73: 1d:59:36:96:74:6c:b0:cc:a2:a7:ca:82:77:a7:ce:1f:15:68: 5d:df:ce:c1:f2:86:24:b3:09:df:c5:ce:ad:ea:27:57:dd:6c: db:3d:d5:9a:45:30:7a:7c:ce:d2:d6:6b:2e:26:3c:ea:c6:7c: b1:46:25:38:ab:a5:de:c9:c7:5a:ec:bd:5a:0b:f2:3b:0b:df: 4d:a5:4d:26:09:f0:ee:06:ee:54:c3:df:2d:da:83:04:3f:e5: d8:ee:23:2f:45:2e:99:b8:54:74:95:6f:30:00:1a:b2:e7:0e: 71:77:79:58:d7:f1:3f:7e:bc:fd:36:9a:15:26:26:d5:c0:3c: 6b:26:97:9c:5f:6f:9e:07:31:a5:a7:c2:e1:96:2c:e1:59:dc: d3:f6:82:ae:39:0e:b7:2a:b7:75:f3:22:c9:5b:64:50:99:ff: a8:38:51:e9:60:60:f8:e8:03:f5:c1:e2:38:0e:76:8f:98:8a: 8b:0a:cd:b7:82:44:a2:ca:bc:f3:6f:53:19:f4:ea:bd:26:40: 22:15:b3:ab:d1:3d:ef:be:5c:c3:09:81:84:fb:93:4d:30:6b: dc:46:63:ff -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICLsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjMxMTA2MjEzMDE4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ5NWFlOS00Yjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAto860DnN7J7BI5NgMU6abJPBIT7hFHKdqP5thSLkn8IoW1NgAbasQaOxntr1 Axp/24s4Yna3Kg1R9I3bPygR2vdkzX+BCxXDCrQy2WDg7SRSydhxsegTut+Fl6yC HWBSjcf/MggJm1DnKy0nWJ6H807DWb+MKel5lAkLNB/LZh9lcF7WLVYY33svVMAR m+4MtHpWpCfSdg1HGaO2oHHgE6Afn7mClHIEF9ivDnfRaHaeIi4tZRDLwl3/wUhH EnkmIZ04J/3FVemXxsyC8sK4uz66RUiNYaTFq5fbVVZltTPFBE10Lvl1Ya4o+SMM dywWSInihgmYLNtckyqBhkdjmQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFP1gaXBH aaM217CNGr7Aas7uxZESMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE3N0MvOTI0Q0RDQzAxNDMwMTFFM0EwQjE5RjJBNTkxMUVBMzIvMTQ5QUI0QkU3 Q0U5MTFFRUI5QTAyRDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMBgEAgABMBIDBAItebgDBAFnCnwDBAFnHDYwDgQCAAIwCAMGACQEP8AAMA0G CSqGSIb3DQEBCwUAA4IBAQAdcPBQhbXES/4tqAIsKEai3198Wq//Naw04n76l9TI U6rppXMdWTaWdGywzKKnyoJ3p84fFWhd387B8oYkswnfxc6t6idX3WzbPdWaRTB6 fM7S1msuJjzqxnyxRiU4q6Xeycda7L1aC/I7C99NpU0mCfDuBu5Uw98t2oMEP+XY 7iMvRS6ZuFR0lW8wABqy5w5xd3lY1/E/frz9NpoVJibVwDxrJpecX2+eBzGlp8Lh lizhWdzT9oKuOQ63Krd18yLJW2RQmf+oOFHpYGD46AP1weI4DnaPmIqLCs23gkSi yrzzb1MZ9Oq9JkAiFbOr0T3vvlzDCYGE+5NNMGvcRmP/ -----END CERTIFICATE-----Generated at Fri May 31 17:44:23 2024 by rpki-client on console-fra.rpki-client.org