$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/50A2F64264BC11E8ACC7951EC4F9AE02.roa File: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (raw, json) Hash identifier: WLCV7j0m7MwIE1IEY/qWdx/Um58dvec4q0VL3BD8Z+U= Subject key identifier: 73:A6:AC:9C:DA:5D:D9:2C:E4:D2:E7:74:11:ED:D5:D7:06:6B:50:70 Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2375 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/50A2F64264BC11E8ACC7951EC4F9AE02.roa Signing time: Tue 24 Oct 2023 16:02:54 +0000 ROA not before: Tue 24 Oct 2023 16:02:54 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 24218 IP address blocks: 61.11.208.0/20 maxlen: 20 116.0.96.0/19 maxlen: 19 119.110.0.0/18 maxlen: 18 119.110.128.0/18 maxlen: 18 124.158.224.0/19 maxlen: 19 124.158.224.0/22 maxlen: 22 202.76.224.0/20 maxlen: 20 203.223.128.0/19 maxlen: 19 203.223.141.0/24 maxlen: 24 2001:4498::/32 maxlen: 32 2401:5000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9077 (0x2375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Oct 24 16:02:54 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6537eaae-4e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5d:50:3d:8a:67:d0:dd:8a:b5:2e:32:20:ad: cc:fe:34:01:2a:ef:d0:30:7a:7b:e0:12:94:81:3f: e1:3d:40:1d:c3:5c:ba:ea:6e:1c:75:2a:49:b5:43: 27:a3:a1:43:67:5b:74:40:e0:a1:78:f3:1f:b2:42: 16:45:20:8f:13:69:ff:81:51:7a:fe:30:40:47:15: ea:2b:97:70:80:8d:dd:58:64:0d:11:df:f5:72:da: c3:dd:e9:f7:89:66:e3:fa:e7:73:8b:de:9f:0f:63: 05:19:0b:7a:77:53:28:92:df:db:ca:56:e3:5c:69: 3a:8a:1c:08:62:5d:71:b3:ed:6f:7f:74:8a:3c:40: 47:66:e3:80:69:33:c0:ca:04:b0:46:5d:09:10:62: 4a:fe:3b:b6:c9:1b:d7:1b:63:ff:20:8b:a4:e3:3d: 65:dd:12:3f:95:34:6b:f8:cd:39:92:3c:22:0a:3f: ca:03:31:59:0d:f9:c8:b4:47:e0:e2:ee:0f:7a:0b: 53:90:d8:d4:14:89:6e:49:1c:92:cc:9e:31:f2:7f: 02:f5:35:4d:90:0c:b5:a5:be:5f:cf:41:41:93:2a: 46:0e:10:e6:87:be:76:c0:f8:15:90:02:4c:ff:f5: 5b:ce:1c:ee:2f:18:3f:01:b6:3d:e0:89:5e:bf:89: da:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A6:AC:9C:DA:5D:D9:2C:E4:D2:E7:74:11:ED:D5:D7:06:6B:50:70 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/50A2F64264BC11E8ACC7951EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.11.208.0/20 116.0.96.0/19 119.110.0.0/18 119.110.128.0/18 124.158.224.0/19 202.76.224.0/20 203.223.128.0/19 IPv6: 2001:4498::/32 2401:5000::/32 Signature Algorithm: sha256WithRSAEncryption 07:99:f1:ae:8e:6d:fc:ba:50:e2:7b:37:b5:ee:bd:42:31:bd: a1:69:13:30:69:54:79:be:b6:53:8b:e2:f0:88:2f:27:81:bf: 92:ca:ca:ef:35:59:c8:9c:c1:46:fa:96:8a:0d:07:9b:4f:1d: f7:03:32:bb:7b:d2:f9:30:f3:8b:71:30:93:23:0a:86:4d:79: 30:a8:1a:01:bd:9c:f9:be:9d:ab:10:b8:4c:5f:dc:6a:97:48: 11:d7:6f:16:e6:9d:6b:d5:29:d2:3f:2f:5c:9a:10:74:70:2a: 66:96:41:20:f4:0e:e6:5d:92:f4:18:25:aa:82:cc:b5:39:42: 48:dd:b9:12:74:8f:b1:08:91:9e:59:f2:bf:32:bc:a3:08:ef: b8:78:ce:0a:57:f9:bc:60:90:4e:98:29:09:fb:e1:e8:27:4b: 68:61:e3:51:00:8c:f5:be:ba:4d:e8:7c:51:bb:f6:00:a3:9e: 22:e0:e9:36:01:13:dc:98:3c:d8:de:9b:f1:6f:f5:c2:da:65: e8:df:4a:99:99:eb:f5:cf:16:a8:df:d3:4c:b2:91:5a:61:02: 48:cc:18:fa:d1:e2:c2:b4:30:c3:a6:8c:1c:08:65:70:47:ed: 68:48:1c:86:f2:f0:9d:7b:d9:73:27:53:95:19:c5:06:64:28: 4e:e2:bb:8a -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgICI3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjMxMDI0MTYwMjU0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM3ZWFhZS00ZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoF1QPYpn0N2KtS4yIK3M/jQBKu/QMHp74BKUgT/hPUAdw1y66m4cdSpJtUMn o6FDZ1t0QOChePMfskIWRSCPE2n/gVF6/jBARxXqK5dwgI3dWGQNEd/1ctrD3en3 iWbj+udzi96fD2MFGQt6d1Mokt/bylbjXGk6ihwIYl1xs+1vf3SKPEBHZuOAaTPA ygSwRl0JEGJK/ju2yRvXG2P/IIuk4z1l3RI/lTRr+M05kjwiCj/KAzFZDfnItEfg 4u4PegtTkNjUFIluSRySzJ4x8n8C9TVNkAy1pb5fz0FBkypGDhDmh752wPgVkAJM //VbzhzuLxg/AbY94Ilev4naMwIDAQABo4ICzzCCAsswHQYDVR0OBBYEFHOmrJza Xdks5NLndBHt1dcGa1BwMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUwQTUvMTdERkIzNUE0NkU2MTFFNUIwOERBMTdCQzRGOUFFMDIvNTBBMkY2NDI2 NEJDMTFFOEFDQzc5NTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWQYIKwYBBQUHAQcBAf8E SjBIMDAEAgABMCoDBAQ9C9ADBAV0AGADBAZ3bgADBAZ3boADBAV8nuADBATKTOAD BAXL34AwFAQCAAIwDgMFACABRJgDBQAkAVAAMA0GCSqGSIb3DQEBCwUAA4IBAQAH mfGujm38ulDieze17r1CMb2haRMwaVR5vrZTi+LwiC8ngb+SysrvNVnInMFG+paK DQebTx33AzK7e9L5MPOLcTCTIwqGTXkwqBoBvZz5vp2rELhMX9xql0gR128W5p1r 1SnSPy9cmhB0cCpmlkEg9A7mXZL0GCWqgsy1OUJI3bkSdI+xCJGeWfK/MryjCO+4 eM4KV/m8YJBOmCkJ++HoJ0toYeNRAIz1vrpN6HxRu/YAo54i4Ok2ARPcmDzY3pvx b/XC2mXo30qZmev1zxao39NMspFaYQJIzBj60eLCtDDDpowcCGVwR+1oSByG8vCd e9lzJ1OVGcUGZChO4ruK -----END CERTIFICATE-----Generated at Sat May 18 16:57:53 2024 by rpki-client on console-fra.rpki-client.org