$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/F5E65C96FD6C11ECB2384E64C4F9AE02.roa File: F5E65C96FD6C11ECB2384E64C4F9AE02.roa (raw, json) Hash identifier: mg7CM9T6nrDJp0lRtMO5+iswfxR9UO5JiJnyXhM80YU= Subject key identifier: EC:AA:04:90:53:27:F7:0A:A6:0F:91:3F:49:E7:3A:1C:6C:78:6A:C9 Certificate issuer: /CN=A91758DF/serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF Certificate serial: 0759 Authority key identifier: 42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/F5E65C96FD6C11ECB2384E64C4F9AE02.roa Signing time: Wed 03 Apr 2024 00:45:13 +0000 ROA not before: Wed 03 Apr 2024 00:45:13 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 14593 IP address blocks: 14.1.64.0/19 maxlen: 24 103.152.126.0/23 maxlen: 24 103.235.92.0/22 maxlen: 24 203.17.80.0/21 maxlen: 24 2406:2d40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.crl rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 22:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1881 (0x759) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF/serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF Validity Not Before: Apr 3 00:45:13 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=660ca699-09dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ac:d1:41:a6:2b:1c:ca:dc:8b:82:24:b2:9a: b2:86:92:e6:9b:05:f0:17:88:47:c7:67:44:02:5c: 47:03:23:b7:70:26:06:08:d7:77:1f:81:a5:bb:33: 3b:3a:dd:74:38:9b:75:d3:05:cf:25:fe:9b:45:bc: 0e:6f:6f:da:63:cf:36:98:cb:f7:a3:4c:4e:1a:8b: 1e:eb:35:bd:8b:cf:f2:50:72:a2:cc:73:80:99:0b: af:e3:4d:a3:e6:55:ba:44:92:89:82:47:93:6a:00: 3e:5c:81:d5:76:63:b1:40:05:23:44:fe:6f:65:35: c8:a6:d2:51:a8:7f:a0:40:bd:71:b4:84:f1:48:ac: db:c2:34:9d:26:f4:06:54:30:73:0f:cb:d8:75:e2: 0e:3e:c9:e1:b5:93:09:ed:eb:ca:e5:5e:1a:8e:bc: bd:57:4b:81:39:c0:bb:f8:e9:80:76:e8:9e:30:c4: 26:6c:59:6e:ff:cd:d0:4f:1f:e2:18:3d:4e:e3:7e: 41:de:77:88:64:f5:4b:41:a4:06:f4:d1:ce:02:6f: 44:2f:cb:09:85:be:fc:b6:a2:32:0a:c2:4b:ee:f7: 5c:f7:6c:fe:b9:32:a7:58:bb:33:70:89:e8:c0:0f: 09:8b:1b:06:2f:a7:aa:0d:b6:38:b5:38:90:56:10: 75:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AA:04:90:53:27:F7:0A:A6:0F:91:3F:49:E7:3A:1C:6C:78:6A:C9 X509v3 Authority Key Identifier: keyid:42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/F5E65C96FD6C11ECB2384E64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.1.64.0/19 103.152.126.0/23 103.235.92.0/22 203.17.80.0/21 IPv6: 2406:2d40::/32 Signature Algorithm: sha256WithRSAEncryption 21:59:ce:13:7a:f1:41:39:61:b0:b1:58:25:ca:40:95:1a:d0: 49:7b:d7:4f:c0:15:ed:81:0d:81:24:5c:67:06:eb:55:7f:ae: 77:12:c3:30:b7:3f:4c:f5:f4:8e:b4:45:fd:6c:46:06:38:ca: 70:16:2e:d4:15:60:fd:66:63:ed:49:12:85:82:0b:f4:f6:fd: 93:d2:1f:e0:6b:76:86:84:3f:66:87:b0:9c:ad:0e:80:93:c6: 2c:9d:bd:72:52:68:7a:eb:03:be:9d:4e:39:2f:5b:1c:93:60: bc:0e:58:10:c4:62:27:64:9f:aa:d4:a5:e2:4d:3b:4e:86:3c: c5:14:8a:63:a0:ad:ba:d0:13:7f:49:7c:75:7e:f2:6e:b5:3d: a5:42:58:2d:a1:0b:ab:cf:c7:c9:95:38:2f:d0:ef:1c:c8:25: 70:e7:b0:ee:00:d4:ca:2b:9c:56:a3:a9:e2:ff:12:50:11:55: 4a:c2:a9:ae:08:80:38:58:a0:74:e0:de:92:1b:0f:75:25:0b: 02:a8:04:70:be:05:ec:52:92:7b:43:73:3c:c2:92:49:3b:82: d9:d5:66:e2:ec:68:d2:bd:df:1d:36:62:a2:a7:8e:87:59:60: 84:0c:17:ea:0a:32:3a:2f:63:5d:e1:01:84:a0:d6:5d:fb:e8: 5f:80:e2:1b -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICB1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDQyNkI2MjBDMDQwQzgzOTQ2QTRCNzU4NjQzNkVDQkQw RkM0NTQ2Q0YwHhcNMjQwNDAzMDA0NTEzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjYTY5OS0wOWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6zRQaYrHMrci4IkspqyhpLmmwXwF4hHx2dEAlxHAyO3cCYGCNd3H4GluzM7 Ot10OJt10wXPJf6bRbwOb2/aY882mMv3o0xOGose6zW9i8/yUHKizHOAmQuv402j 5lW6RJKJgkeTagA+XIHVdmOxQAUjRP5vZTXIptJRqH+gQL1xtITxSKzbwjSdJvQG VDBzD8vYdeIOPsnhtZMJ7evK5V4ajry9V0uBOcC7+OmAduieMMQmbFlu/83QTx/i GD1O435B3neIZPVLQaQG9NHOAm9EL8sJhb78tqIyCsJL7vdc92z+uTKnWLszcIno wA8JixsGL6eqDbY4tTiQVhB1MQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFOyqBJBT J/cKpg+RP0nnOhxseGrJMB8GA1UdIwQYMBaAFEJrYgwEDIOUakt1hkNuy9D8RUbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi81MzE5MTA0NkRD MjQxMUVBQkQwNTdGMTZDNEY5QUUwMi9RbXRpREFRTWc1UnFTM1dHUTI3TDBQeEZS czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtdGlEQVFNZzVScVMzV0dRMjdMMFB4RlJzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU4REYvNTMxOTEwNDZEQzI0MTFFQUJEMDU3RjE2QzRGOUFFMDIvRjVFNjVDOTZG RDZDMTFFQ0IyMzg0RTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAUOAUADBAFnmH4DBAJn61wDBAPLEVAwDQQCAAIwBwMFACQG LUAwDQYJKoZIhvcNAQELBQADggEBACFZzhN68UE5YbCxWCXKQJUa0El710/AFe2B DYEkXGcG61V/rncSwzC3P0z19I60Rf1sRgY4ynAWLtQVYP1mY+1JEoWCC/T2/ZPS H+BrdoaEP2aHsJytDoCTxiydvXJSaHrrA76dTjkvWxyTYLwOWBDEYidkn6rUpeJN O06GPMUUimOgrbrQE39JfHV+8m61PaVCWC2hC6vPx8mVOC/Q7xzIJXDnsO4A1Mor nFajqeL/ElARVUrCqa4IgDhYoHTg3pIbD3UlCwKoBHC+BexSkntDczzCkkk7gtnV ZuLsaNK93x02YqKnjodZYIQMF+oKMjovY13hAYSg1l376F+A4hs= -----END CERTIFICATE-----Generated at Thu Apr 18 23:21:43 2024 by rpki-client on console-fra.rpki-client.org