$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/146B772C82DC11EA9B13000CC4F9AE02.roa File: 146B772C82DC11EA9B13000CC4F9AE02.roa (raw, json) Hash identifier: Ul3ZbP/fNxzjD2ZG1ojB7jnfAOS0FAoquPFEmyg/Vyk= Subject key identifier: D2:26:2E:9B:0A:78:36:4D:74:98:19:E3:26:D8:79:49:7C:22:26:DD Certificate issuer: /CN=A917576D/serialNumber=B1E84FACFACBC0B7838561EF21E28F2FACF5DFEC Certificate serial: 0908 Authority key identifier: B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/146B772C82DC11EA9B13000CC4F9AE02.roa Signing time: Fri 10 Nov 2023 21:08:49 +0000 ROA not before: Fri 10 Nov 2023 21:08:49 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 4134 IP address blocks: 183.91.32.0/21 maxlen: 21 183.91.32.0/24 maxlen: 24 183.91.33.0/24 maxlen: 24 183.91.34.0/24 maxlen: 24 183.91.35.0/24 maxlen: 24 183.91.36.0/24 maxlen: 24 183.91.37.0/24 maxlen: 24 183.91.38.0/24 maxlen: 24 183.91.39.0/24 maxlen: 24 183.91.40.0/21 maxlen: 21 183.91.40.0/24 maxlen: 24 183.91.41.0/24 maxlen: 24 183.91.42.0/24 maxlen: 24 183.91.43.0/24 maxlen: 24 183.91.44.0/24 maxlen: 24 183.91.45.0/24 maxlen: 24 183.91.46.0/24 maxlen: 24 183.91.47.0/24 maxlen: 24 183.91.56.0/24 maxlen: 24 2400:9380:8000::/40 maxlen: 48 2400:9380:8100::/40 maxlen: 48 2400:9380:8200::/40 maxlen: 48 2400:9380:8300::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.crl rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2312 (0x908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D/serialNumber=B1E84FACFACBC0B7838561EF21E28F2FACF5DFEC Validity Not Before: Nov 10 21:08:49 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654e9be0-8bcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:97:f4:ae:e1:34:64:e7:b6:1c:d7:16:50:3e: 56:34:64:f2:39:c6:cb:9d:6a:f8:52:96:95:c6:f0: 8e:09:97:4e:5b:41:01:c2:d5:da:b4:de:69:5d:f0: cb:74:3d:66:98:6b:b5:da:8c:00:9a:41:ae:d9:c5: 85:97:c2:3e:6f:59:a7:7b:2c:68:90:6c:bc:4a:83: 4e:c3:6e:2d:72:cd:b5:57:1e:78:ae:c1:b8:bd:0c: 44:3a:a0:bf:a2:dc:18:b1:27:60:60:f2:5f:63:f5: 3e:d7:41:c8:3e:46:76:ef:13:c0:60:c6:73:5b:b9: 7b:e0:5e:2e:05:ea:c1:67:27:e0:fa:fa:74:7b:e8: 3c:33:d5:76:d9:19:7f:b2:ff:10:88:92:c4:b5:cd: b6:6a:04:34:3d:67:e2:95:a9:d4:f4:75:d1:af:cc: 5b:e7:bc:fc:78:79:19:fd:1e:5c:7b:30:20:3c:be: ae:9a:4c:6c:5c:8b:3b:84:7b:29:15:fb:42:44:51: 85:03:c2:7d:a4:39:8c:29:94:e3:ca:d1:46:79:55: 6c:3f:02:db:8e:b9:de:57:16:4d:0e:a5:4a:ac:71: 88:07:04:c0:a8:91:c8:0a:c9:01:1f:4c:ec:5d:a2: 1b:8d:13:a4:5e:e4:d4:8e:b6:c0:53:55:71:57:c5: 3e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:26:2E:9B:0A:78:36:4D:74:98:19:E3:26:D8:79:49:7C:22:26:DD X509v3 Authority Key Identifier: keyid:B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/146B772C82DC11EA9B13000CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.91.32.0/20 183.91.56.0/24 IPv6: 2400:9380:8000::/38 Signature Algorithm: sha256WithRSAEncryption 66:c3:47:9c:22:64:88:63:9b:48:e5:9d:ee:2f:be:70:be:53: be:c2:ca:58:59:1d:7f:44:26:25:9f:5a:80:7b:4f:73:5b:35: 1e:18:2b:98:a5:79:1b:4d:0b:97:ce:cc:1e:2d:db:97:6a:69: 55:3d:e6:3b:83:4c:3d:4d:f0:64:55:26:e9:5b:c5:ad:09:3f: 1c:5b:40:93:2c:e3:c4:ad:90:3e:72:36:55:f2:5e:20:2b:3b: c5:fb:7e:24:ef:4a:a4:c9:33:12:f4:ae:5f:97:e1:b3:bb:b5: 04:82:89:20:70:87:4d:1a:c9:10:d1:10:0f:8e:65:49:8e:6f: 0d:42:d7:f4:1d:ec:af:44:62:dd:58:e9:3b:b5:74:ad:df:c5: 7b:1f:9a:d4:62:d8:08:30:a6:2c:c9:cc:8a:02:c2:7f:dd:15: 3a:30:8d:37:24:83:c6:f6:6b:3a:fd:31:27:eb:3f:30:2f:87: 70:ac:4a:8b:87:1b:92:db:72:32:12:ec:1d:dc:cd:d7:28:95: 4e:96:27:fa:24:62:8d:ca:55:35:62:62:22:9d:41:80:c5:24: dd:a6:f6:ab:99:09:8e:12:59:61:09:d1:f2:70:aa:0d:df:b7: 7d:16:82:65:e9:79:25:00:a1:0e:bd:d3:e3:8b:6b:c7:84:18: 86:aa:d5:6c -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICCQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEIxRTg0RkFDRkFDQkMwQjc4Mzg1NjFFRjIxRTI4RjJG QUNGNURGRUMwHhcNMjMxMTEwMjEwODQ5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRlOWJlMC04YmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5f0ruE0ZOe2HNcWUD5WNGTyOcbLnWr4UpaVxvCOCZdOW0EBwtXatN5pXfDL dD1mmGu12owAmkGu2cWFl8I+b1mneyxokGy8SoNOw24tcs21Vx54rsG4vQxEOqC/ otwYsSdgYPJfY/U+10HIPkZ27xPAYMZzW7l74F4uBerBZyfg+vp0e+g8M9V22Rl/ sv8QiJLEtc22agQ0PWfilanU9HXRr8xb57z8eHkZ/R5cezAgPL6umkxsXIs7hHsp FftCRFGFA8J9pDmMKZTjytFGeVVsPwLbjrneVxZNDqVKrHGIBwTAqJHICskBH0zs XaIbjROkXuTUjrbAU1VxV8U+5wIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFNImLpsK eDZNdJgZ4ybYeUl8IibdMB8GA1UdIwQYMBaAFLHoT6z6y8C3g4Vh7yHijy+s9d/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8zNjg3MkE1RTgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi9zZWhQclByTHdMZURoV0h2SWVLUEw2ejEz LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NlaFByUHJMd0xlRGhXSHZJZUtQTDZ6MTMtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU3NkQvMzY4NzJBNUU4MkNEMTFFQTg5NUM3QjVDQzRGOUFFMDIvMTQ2Qjc3MkM4 MkRDMTFFQTlCMTMwMDBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBIEAgABMAwDBAS3WyADBAC3WzgwDgQCAAIwCAMGAiQAk4CAMA0GCSqGSIb3 DQEBCwUAA4IBAQBmw0ecImSIY5tI5Z3uL75wvlO+wspYWR1/RCYln1qAe09zWzUe GCuYpXkbTQuXzsweLduXamlVPeY7g0w9TfBkVSbpW8WtCT8cW0CTLOPErZA+cjZV 8l4gKzvF+34k70qkyTMS9K5fl+Gzu7UEgokgcIdNGskQ0RAPjmVJjm8NQtf0Heyv RGLdWOk7tXSt38V7H5rUYtgIMKYsycyKAsJ/3RU6MI03JIPG9ms6/TEn6z8wL4dw rEqLhxuS23IyEuwd3M3XKJVOlif6JGKNylU1YmIinUGAxSTdpvarmQmOEllhCdHy cKoN37d9FoJl6XklAKEOvdPji2vHhBiGqtVs -----END CERTIFICATE-----Generated at Mon May 6 23:05:42 2024 by rpki-client on console-fra.rpki-client.org