$ rpki-client -vvf rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/E7584B4C86A211EE9791E012C4F9AE02.roa File: E7584B4C86A211EE9791E012C4F9AE02.roa (raw, json) Hash identifier: T5GiWxH5CJSVyfHnlJ00EWYvXgx25uLrmX6jBLWmVrk= Subject key identifier: 90:27:2C:7F:C1:A9:04:1E:CB:2F:26:5D:46:29:C6:CF:A8:78:51:C8 Certificate issuer: /CN=A91619D8/serialNumber=BCF2C8ADBC33E27E5C7674A66DA865BF5AA66BE5 Certificate serial: 04CB Authority key identifier: BC:F2:C8:AD:BC:33:E2:7E:5C:76:74:A6:6D:A8:65:BF:5A:A6:6B:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPLIrbwz4n5cdnSmbahlv1qma-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/E7584B4C86A211EE9791E012C4F9AE02.roa Signing time: Tue 23 Apr 2024 02:04:10 +0000 ROA not before: Tue 23 Apr 2024 02:04:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 17411 IP address blocks: 58.147.128.0/20 maxlen: 24 58.147.144.0/21 maxlen: 24 58.147.152.0/22 maxlen: 24 58.147.157.0/24 maxlen: 24 125.213.192.0/20 maxlen: 24 125.213.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/vPLIrbwz4n5cdnSmbahlv1qma-U.crl rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/vPLIrbwz4n5cdnSmbahlv1qma-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPLIrbwz4n5cdnSmbahlv1qma-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91619D8/serialNumber=BCF2C8ADBC33E27E5C7674A66DA865BF5AA66BE5 Validity Not Before: Apr 23 02:04:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66271719-d990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:53:52:eb:34:39:5a:6b:cc:db:d7:ba:9f:d4: 03:b4:40:0e:98:4e:13:18:78:bc:d3:da:93:58:e9: 25:0c:a1:c4:13:cf:59:91:a6:b4:fd:1a:40:34:45: 74:f2:9a:1b:e0:3b:d0:61:0c:ea:41:ea:10:51:1f: 18:8c:44:0a:d6:5c:c3:54:94:31:ac:1e:e1:9d:73: 81:8e:d5:8f:55:63:cc:18:6f:af:6b:3c:1f:2e:c7: 53:7e:c6:cf:bf:fe:5c:e2:7a:86:8e:67:95:6c:5b: 4b:b8:90:a0:6c:b0:13:e7:89:86:8a:97:15:e8:47: fe:56:6b:25:e3:8d:c9:97:b4:37:29:a5:a8:46:3e: 45:d0:49:dc:5c:44:0e:75:2b:4f:c7:dc:db:4c:50: 26:ee:28:38:be:2b:0a:46:f8:11:dc:4e:d9:f1:21: 01:08:57:1c:4d:78:6c:63:4c:43:72:cc:98:0e:1d: 7b:a8:da:32:f6:3b:0c:c6:b2:57:38:ea:b0:ec:fb: fd:dd:8f:e4:69:f9:2c:2c:cc:fb:12:84:c5:c8:2a: aa:f3:47:5c:2a:a5:85:2d:6e:a5:1f:7b:1b:71:7f: fa:66:2d:31:52:a8:a1:32:2d:f9:3a:9c:fd:3a:7d: 20:38:5a:6f:8e:74:65:02:2d:4e:ba:3c:d0:17:63: 9a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:27:2C:7F:C1:A9:04:1E:CB:2F:26:5D:46:29:C6:CF:A8:78:51:C8 X509v3 Authority Key Identifier: keyid:BC:F2:C8:AD:BC:33:E2:7E:5C:76:74:A6:6D:A8:65:BF:5A:A6:6B:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/vPLIrbwz4n5cdnSmbahlv1qma-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPLIrbwz4n5cdnSmbahlv1qma-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/E7584B4C86A211EE9791E012C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.147.128.0-58.147.155.255 58.147.157.0/24 125.213.192.0/19 Signature Algorithm: sha256WithRSAEncryption 4f:c9:88:cb:33:bd:2b:4c:cc:a8:2a:64:93:2e:d1:ad:ce:d0: 77:ce:bc:06:6e:76:c3:d1:f7:24:96:79:46:b2:cd:df:90:a7: 0a:64:c1:0c:a9:ea:41:f5:08:b3:f0:38:ff:5a:8f:27:4a:ad: 5c:1e:10:5f:00:78:c6:78:47:ab:f0:09:f2:76:12:a0:cd:48: 61:0e:f8:9e:80:56:c7:1c:36:45:44:bf:ac:5d:03:41:99:1d: 69:b7:0e:5a:25:28:55:41:de:55:95:aa:71:85:89:98:11:55: f8:a0:fb:eb:c1:0a:54:0d:d5:05:08:ee:09:cf:d2:8d:5e:e0: 2d:6a:13:0d:02:7f:19:94:83:d3:18:d8:87:a0:00:6c:d1:4f: dd:35:a0:f4:d7:9a:2f:02:d5:c8:90:d4:03:0c:25:37:54:5e: 73:34:a3:3b:9b:26:77:49:54:66:6d:71:08:2f:57:91:11:f2: 36:49:c5:9a:a2:5c:89:5c:4c:e4:49:88:96:b0:dc:bc:95:1c: 53:c4:3d:e9:33:76:32:50:a0:25:63:47:86:78:68:e8:44:34: 91:d1:78:da:e3:70:d1:f6:4b:e7:7b:37:84:1a:1e:57:8f:57: 3c:84:c2:ed:b7:54:39:53:2d:ff:ba:c8:77:9e:5e:83:1f:8e: 55:82:31:2b -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE5RDgxMTAvBgNVBAUTKEJDRjJDOEFEQkMzM0UyN0U1Qzc2NzRBNjZEQTg2NUJG NUFBNjZCRTUwHhcNMjQwNDIzMDIwNDEwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI3MTcxOS1kOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFNS6zQ5WmvM29e6n9QDtEAOmE4TGHi809qTWOklDKHEE89Zkaa0/RpANEV0 8pob4DvQYQzqQeoQUR8YjEQK1lzDVJQxrB7hnXOBjtWPVWPMGG+vazwfLsdTfsbP v/5c4nqGjmeVbFtLuJCgbLAT54mGipcV6Ef+Vmsl443Jl7Q3KaWoRj5F0EncXEQO dStPx9zbTFAm7ig4visKRvgR3E7Z8SEBCFccTXhsY0xDcsyYDh17qNoy9jsMxrJX OOqw7Pv93Y/kafksLMz7EoTFyCqq80dcKqWFLW6lH3sbcX/6Zi0xUqihMi35Opz9 On0gOFpvjnRlAi1OujzQF2OakQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFJAnLH/B qQQeyy8mXUYpxs+oeFHIMB8GA1UdIwQYMBaAFLzyyK28M+J+XHZ0pm2oZb9apmvl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTlEOC8zNTU4RDFDNkU0 M0ExMUVCQUM4RDUwMUFDNEY5QUUwMi92UExJcmJ3ejRuNWNkblNtYmFobHYxcW1h LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQTElyYnd6NG41Y2RuU21iYWhsdjFxbWEtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE5RDgvMzU1OEQxQzZFNDNBMTFFQkFDOEQ1MDFBQzRGOUFFMDIvRTc1ODRCNEM4 NkEyMTFFRTk3OTFFMDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEBzqTgAMEAjqTmAMEADqTnQMEBX3VwDANBgkqhkiG9w0B AQsFAAOCAQEAT8mIyzO9K0zMqCpkky7Rrc7Qd868Bm52w9H3JJZ5RrLN35CnCmTB DKnqQfUIs/A4/1qPJ0qtXB4QXwB4xnhHq/AJ8nYSoM1IYQ74noBWxxw2RUS/rF0D QZkdabcOWiUoVUHeVZWqcYWJmBFV+KD768EKVA3VBQjuCc/SjV7gLWoTDQJ/GZSD 0xjYh6AAbNFP3TWg9NeaLwLVyJDUAwwlN1ReczSjO5smd0lUZm1xCC9XkRHyNknF mqJciVxM5EmIlrDcvJUcU8Q96TN2MlCgJWNHhnho6EQ0kdF42uNw0fZL53s3hBoe V49XPITC7bdUOVMt/7rId55egx+OVYIxKw== -----END CERTIFICATE-----Generated at Tue May 7 03:10:19 2024 by rpki-client on console-ams.rpki-client.org