$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/5490A172BF9811EE86835C75C4F9AE02.roa File: 5490A172BF9811EE86835C75C4F9AE02.roa (raw, json) Hash identifier: /xfq9DkUU9IywtXgYkJm818bv4pjYx9eQp5Q7xbKqTc= Subject key identifier: C5:52:50:5F:4A:8E:25:AA:65:FD:72:DB:17:FF:E9:68:80:C0:C7:F5 Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0721 Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/5490A172BF9811EE86835C75C4F9AE02.roa Signing time: Tue 30 Jan 2024 17:55:38 +0000 ROA not before: Tue 30 Jan 2024 17:55:38 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58889 IP address blocks: 45.64.138.0/24 maxlen: 24 2401:1980::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Feb 2024 07:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Jan 30 17:55:38 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65b9381a-246a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:42:87:3d:c0:2c:1e:80:b2:dc:de:dc:a5:b4: b8:bd:e4:0c:30:00:b0:46:9c:8d:c0:b3:fd:47:87: 5a:1a:f2:87:9e:54:6d:6f:52:6e:7b:70:31:d7:d6: 90:32:85:85:d2:2c:49:71:8c:97:d4:63:c3:e0:e6: 3c:52:da:4a:87:10:88:f1:15:bd:bb:bb:7f:1e:79: 90:91:68:9c:6f:21:02:81:8a:4b:78:c2:58:fe:3b: 60:40:f2:34:4d:8c:71:78:59:9e:86:e9:c5:ee:1d: a8:3e:be:8a:5e:0e:55:92:03:42:4a:8d:a8:44:74: b3:07:b2:c2:9a:3e:4a:30:22:8c:91:6e:37:3f:e3: 0e:cd:80:18:a6:18:8b:63:83:50:0f:0c:dc:7d:df: 00:48:7c:94:e2:c3:54:31:72:05:77:5c:39:7b:50: 13:d0:c1:b6:96:a6:a3:f5:f6:e3:7d:fa:ac:ca:f0: 3f:ae:2d:aa:15:95:63:af:e8:3c:c0:9b:18:af:0c: c2:37:a6:4b:ae:d8:bc:39:56:80:a2:a8:e1:c1:b2: 9f:a2:4f:9d:48:75:e6:36:9b:f1:b3:76:b9:d9:19: 18:99:6e:e3:0d:fc:98:bd:ca:ea:3c:5b:66:a1:a7: 52:d7:c5:a1:fd:d2:45:05:7e:97:02:c6:cf:dc:5c: 09:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:52:50:5F:4A:8E:25:AA:65:FD:72:DB:17:FF:E9:68:80:C0:C7:F5 X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/5490A172BF9811EE86835C75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.138.0/24 IPv6: 2401:1980::/32 Signature Algorithm: sha256WithRSAEncryption 21:a9:67:97:93:f6:8a:4b:d7:f3:33:2b:e0:3a:ec:31:6d:b7: 9e:19:6f:65:38:e2:95:3c:b7:40:6c:85:3e:10:c2:14:88:2d: cf:87:bd:83:d8:c7:17:72:55:aa:1f:d7:45:4d:00:7a:72:d0: 0c:48:8b:bc:9d:52:23:e0:d3:1a:86:c8:35:93:e5:59:16:2e: 17:75:2b:53:69:d1:92:81:20:a4:d3:4f:57:ce:d8:10:ec:57: 0a:b8:98:91:86:b7:5a:a8:b6:aa:61:84:9b:69:18:83:4d:91: 07:dc:93:dc:73:14:d4:75:5e:f8:eb:9a:1e:01:43:f8:fd:ca: ac:bc:26:5d:68:7f:55:24:60:db:5e:31:33:fb:e7:16:ae:fb: ab:05:d1:07:4c:9f:e9:96:8b:ce:d5:9c:60:3c:b6:3c:75:00: a8:cf:06:8e:79:81:1a:c7:23:11:35:47:67:74:45:6f:0f:18: 3d:01:c2:8a:f6:bb:1c:f3:19:9e:b2:06:f1:f7:1a:ad:08:2c: 6d:34:d9:e1:ec:fe:1d:23:96:a5:32:77:41:0f:e9:a2:f6:23: ee:51:e1:e9:a5:6b:32:bc:b5:cd:33:d0:49:31:1c:da:53:0b: 6f:7a:03:a3:19:a3:c7:ea:14:65:20:ad:d7:78:5e:09:13:cf: 72:6b:db:7b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjQwMTMwMTc1NTM4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MzgxYS0yNDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0KHPcAsHoCy3N7cpbS4veQMMACwRpyNwLP9R4daGvKHnlRtb1Jue3Ax19aQ MoWF0ixJcYyX1GPD4OY8UtpKhxCI8RW9u7t/HnmQkWicbyECgYpLeMJY/jtgQPI0 TYxxeFmehunF7h2oPr6KXg5VkgNCSo2oRHSzB7LCmj5KMCKMkW43P+MOzYAYphiL Y4NQDwzcfd8ASHyU4sNUMXIFd1w5e1AT0MG2lqaj9fbjffqsyvA/ri2qFZVjr+g8 wJsYrwzCN6ZLrti8OVaAoqjhwbKfok+dSHXmNpvxs3a52RkYmW7jDfyYvcrqPFtm oadS18Wh/dJFBX6XAsbP3FwJ7QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMVSUF9K jiWqZf1y2xf/6WiAwMf1MB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgyRDkvMEVEQTZENUVDRERBMTFFN0JERUE4QzJCQzRGOUFFMDIvNTQ5MEExNzJC Rjk4MTFFRTg2ODM1Qzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAAtQIowDQQCAAIwBwMFACQBGYAwDQYJKoZIhvcNAQELBQAD ggEBACGpZ5eT9opL1/MzK+A67DFtt54Zb2U44pU8t0BshT4QwhSILc+HvYPYxxdy Vaof10VNAHpy0AxIi7ydUiPg0xqGyDWT5VkWLhd1K1Np0ZKBIKTTT1fO2BDsVwq4 mJGGt1qotqphhJtpGINNkQfck9xzFNR1Xvjrmh4BQ/j9yqy8Jl1of1UkYNteMTP7 5xau+6sF0QdMn+mWi87VnGA8tjx1AKjPBo55gRrHIxE1R2d0RW8PGD0Bwor2uxzz GZ6yBvH3Gq0ILG002eHs/h0jlqUyd0EP6aL2I+5R4emlazK8tc0z0EkxHNpTC296 A6MZo8fqFGUgrdd4XgkTz3Jr23s= -----END CERTIFICATE-----Generated at Wed Jan 31 14:51:06 2024 by rpki-client on console-fra.rpki-client.org