$ rpki-client -vvf rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/90798692AA0A11EA89D5161EC4F9AE02.roa File: 90798692AA0A11EA89D5161EC4F9AE02.roa (raw, json) Hash identifier: O0cw5ZT/oguDck4eH6oUOUC8bbwGHUHdEmg/5/+1nls= Subject key identifier: 8C:CA:5D:95:6F:77:E4:F0:67:03:74:21:07:E8:BC:F0:8B:73:0A:6A Certificate issuer: /CN=A916B4B7/serialNumber=CAA969FF3774BCD9ED602773D29D878BC4E2656B Certificate serial: 0832 Authority key identifier: CA:A9:69:FF:37:74:BC:D9:ED:60:27:73:D2:9D:87:8B:C4:E2:65:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqlp_zd0vNntYCdz0p2Hi8TiZWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/90798692AA0A11EA89D5161EC4F9AE02.roa Signing time: Fri 10 May 2024 22:00:37 +0000 ROA not before: Fri 10 May 2024 22:00:37 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 38567 IP address blocks: 202.45.149.0/24 maxlen: 24 203.14.176.0/24 maxlen: 24 2001:df0:65::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/yqlp_zd0vNntYCdz0p2Hi8TiZWs.crl rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/yqlp_zd0vNntYCdz0p2Hi8TiZWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqlp_zd0vNntYCdz0p2Hi8TiZWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B4B7/serialNumber=CAA969FF3774BCD9ED602773D29D878BC4E2656B Validity Not Before: May 10 22:00:37 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663e9905-07e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8d:9e:10:81:aa:9c:ed:a1:5d:61:21:6c:d3: c9:6b:07:5c:e6:63:0d:81:c4:c2:7f:9e:ce:bf:41: 83:40:02:87:4e:da:a5:b8:70:99:94:35:90:d6:b5: 75:89:4e:5f:99:92:0e:5a:d0:3f:3b:2b:69:ac:a9: 6d:db:d7:e1:ec:f7:ac:ab:f9:f2:d6:42:eb:45:31: 41:ab:bd:1c:8e:2c:1b:3d:0d:61:af:3d:fb:75:0e: e0:ab:6e:c5:84:d0:3e:54:ad:ec:8a:47:f7:ef:36: 16:df:a8:85:79:56:c8:94:b7:2c:e6:3c:9f:a6:ca: 81:8d:5b:3b:ac:c8:03:39:48:84:c0:e9:04:6c:28: d9:56:38:77:31:aa:a9:da:67:da:c2:96:0c:eb:b0: b4:78:6b:b9:eb:02:4b:f7:e5:7d:78:50:50:5c:0b: b4:66:4a:ad:84:c5:ca:04:27:00:89:4b:f0:64:4c: 25:10:ce:3b:61:ff:92:b8:92:ad:68:6c:ec:62:72: 95:09:11:bc:63:49:66:e7:2b:11:13:cb:89:78:b8: 25:2c:93:b5:56:41:00:d7:79:2c:02:8d:b9:1e:cb: 48:6f:a7:29:f3:c0:11:b8:cb:05:ad:7c:ff:78:11: b0:68:4b:96:68:5b:d6:7a:6e:c6:66:f8:35:cd:08: aa:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CA:5D:95:6F:77:E4:F0:67:03:74:21:07:E8:BC:F0:8B:73:0A:6A X509v3 Authority Key Identifier: keyid:CA:A9:69:FF:37:74:BC:D9:ED:60:27:73:D2:9D:87:8B:C4:E2:65:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/yqlp_zd0vNntYCdz0p2Hi8TiZWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqlp_zd0vNntYCdz0p2Hi8TiZWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/90798692AA0A11EA89D5161EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.149.0/24 203.14.176.0/24 IPv6: 2001:df0:65::/48 Signature Algorithm: sha256WithRSAEncryption 7d:ce:91:4e:6c:80:3e:2a:16:83:7f:65:32:df:ff:b9:c3:23: b3:6e:d5:d8:df:ea:0a:c3:cf:1b:26:82:15:e9:6e:1c:11:db: c0:75:1a:c0:53:17:a6:0d:33:47:82:ab:2c:af:96:0a:cf:05: cc:2b:2a:ce:42:af:9a:75:45:a6:80:ce:ec:18:74:31:cc:ed: ba:cb:2f:08:b9:90:92:1d:67:e5:ea:a9:61:d9:d9:7c:c0:b6: 00:fa:1c:a1:1c:96:71:ff:d2:60:15:f5:7c:18:fa:b5:d3:40: 15:22:2a:09:dc:c6:98:6f:2d:3e:9e:b6:34:7d:73:72:b0:d2: 92:01:76:75:7a:bd:67:3b:26:43:ad:bc:ac:c5:1d:ac:2f:f3: 01:34:b3:b2:e4:c5:7b:28:ba:fd:17:e9:08:8a:b0:1b:70:a6: 75:b1:7e:b3:b3:39:f1:0a:d0:74:bd:d0:0c:6f:48:3c:d8:66: 53:27:de:4f:74:0c:13:7f:e1:92:f5:c1:d2:a7:30:c1:1a:f6: 18:86:77:ed:fd:17:ff:94:6c:55:47:98:9c:74:c5:6d:c9:7e: ad:16:c6:28:8d:c3:be:6a:ca:1b:47:e2:da:93:14:b3:ac:21: 77:6a:95:3c:1e:a9:18:3b:79:4d:cf:da:a4:cf:25:e7:32:72: 21:6b:c9:34 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI0QjcxMTAvBgNVBAUTKENBQTk2OUZGMzc3NEJDRDlFRDYwMjc3M0QyOUQ4NzhC QzRFMjY1NkIwHhcNMjQwNTEwMjIwMDM3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlOTkwNS0wN2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6o2eEIGqnO2hXWEhbNPJawdc5mMNgcTCf57Ov0GDQAKHTtqluHCZlDWQ1rV1 iU5fmZIOWtA/OytprKlt29fh7Pesq/ny1kLrRTFBq70cjiwbPQ1hrz37dQ7gq27F hNA+VK3sikf37zYW36iFeVbIlLcs5jyfpsqBjVs7rMgDOUiEwOkEbCjZVjh3Maqp 2mfawpYM67C0eGu56wJL9+V9eFBQXAu0ZkqthMXKBCcAiUvwZEwlEM47Yf+SuJKt aGzsYnKVCRG8Y0lm5ysRE8uJeLglLJO1VkEA13ksAo25HstIb6cp88ARuMsFrXz/ eBGwaEuWaFvWem7GZvg1zQiqYwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFIzKXZVv d+TwZwN0IQfovPCLcwpqMB8GA1UdIwQYMBaAFMqpaf83dLzZ7WAnc9Kdh4vE4mVr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjRCNy8wOTcyQzc0MEFB MDkxMUVBOEZFM0I2MUJDNEY5QUUwMi95cWxwX3pkMHZObnRZQ2R6MHAySGk4VGla V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxbHBfemQwdk5udFlDZHowcDJIaThUaVpXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI0QjcvMDk3MkM3NDBBQTA5MTFFQThGRTNCNjFCQzRGOUFFMDIvOTA3OTg2OTJB QTBBMTFFQTg5RDUxNjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBADKLZUDBADLDrAwDwQCAAIwCQMHACABDfAAZTANBgkqhkiG 9w0BAQsFAAOCAQEAfc6RTmyAPioWg39lMt//ucMjs27V2N/qCsPPGyaCFeluHBHb wHUawFMXpg0zR4KrLK+WCs8FzCsqzkKvmnVFpoDO7Bh0McztussvCLmQkh1n5eqp YdnZfMC2APocoRyWcf/SYBX1fBj6tdNAFSIqCdzGmG8tPp62NH1zcrDSkgF2dXq9 ZzsmQ628rMUdrC/zATSzsuTFeyi6/RfpCIqwG3CmdbF+s7M58QrQdL3QDG9IPNhm UyfeT3QME3/hkvXB0qcwwRr2GIZ37f0X/5RsVUeYnHTFbcl+rRbGKI3DvmrKG0fi 2pMUs6whd2qVPB6pGDt5Tc/apM8l5zJyIWvJNA== -----END CERTIFICATE-----Generated at Thu May 16 22:23:36 2024 by rpki-client on console-fra.rpki-client.org