$ rpki-client -vvf rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa File: 9E194914B3EC11EE8B2EE910C4F9AE02.roa (raw, json) Hash identifier: fjydwDrZROwxfgj42CG2gOq+dhBEEh9PfDMSPGOK9ts= Subject key identifier: 0A:BB:C7:12:5C:3B:60:71:BA:55:4E:06:B7:2E:27:86:A4:B7:A5:0B Certificate issuer: /CN=A91805CE/serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Certificate serial: 30 Authority key identifier: 72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa Signing time: Thu 07 Mar 2024 00:33:57 +0000 ROA not before: Thu 07 Mar 2024 00:33:57 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 9463 IP address blocks: 202.74.128.0/22 maxlen: 22 202.74.132.0/22 maxlen: 22 202.74.136.0/22 maxlen: 22 202.74.140.0/22 maxlen: 22 202.74.147.0/24 maxlen: 24 202.74.148.0/24 maxlen: 24 202.74.152.0/23 maxlen: 23 202.74.152.0/24 maxlen: 24 202.74.153.0/24 maxlen: 24 202.74.154.0/23 maxlen: 23 202.74.154.0/24 maxlen: 24 202.74.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805CE/serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Validity Not Before: Mar 7 00:33:57 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65e90b74-dc39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:59:b9:69:9b:1f:09:e8:eb:72:c9:42:07:ae: 25:d3:7a:68:ce:d8:1e:32:19:0b:ac:3c:6b:f8:c8: b7:de:a7:f8:b1:69:16:cc:80:f4:a7:c0:e5:d6:61: f4:6f:77:ba:d5:7f:39:55:e4:40:2f:3b:e6:4a:cd: c8:d3:0d:47:12:de:12:e9:fc:ce:78:44:00:d4:7b: fc:53:0a:88:f4:56:a6:ff:7b:07:dc:30:c5:20:51: 3b:18:93:86:1d:fb:15:65:a2:83:f1:8c:9a:2d:73: 4c:cf:67:5b:27:c7:bd:f2:0f:a8:74:7f:8e:4c:19: 21:28:9b:f1:0d:4b:2d:ac:c1:60:23:f5:bc:46:81: 8e:84:a0:be:6c:5f:b8:18:c0:1a:cc:03:15:0d:11: 78:51:13:29:b0:ad:3d:ad:c6:3e:c2:41:13:02:3f: cc:4b:03:4f:5b:7c:1e:a2:b8:2f:05:2e:df:09:75: fe:62:6d:40:98:be:cf:35:71:a6:1b:42:cb:09:94: 5f:9c:67:18:1a:76:99:3f:2b:b4:67:e5:66:04:88: f3:81:44:7f:45:79:b9:83:eb:3b:d7:cd:d1:67:de: 62:48:ba:02:f3:ff:e3:07:ac:eb:8e:5f:b9:a9:76: 36:62:42:1a:55:9c:00:36:d3:7c:d6:44:5b:4a:ae: 2d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:BB:C7:12:5C:3B:60:71:BA:55:4E:06:B7:2E:27:86:A4:B7:A5:0B X509v3 Authority Key Identifier: keyid:72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.74.128.0/20 202.74.147.0-202.74.148.255 202.74.152.0/22 Signature Algorithm: sha256WithRSAEncryption bb:1e:8f:35:81:0c:25:85:a2:ad:88:41:18:7e:2a:bc:1d:ce: 03:53:d6:2c:e1:75:9b:5b:8c:26:c1:43:77:3b:28:03:a7:74: 87:0c:63:64:8e:69:c4:85:fa:90:e2:e1:03:fa:01:91:36:0a: 15:eb:00:45:33:dc:74:76:d2:03:73:92:1b:6d:c9:65:7e:1d: de:43:a1:cf:61:cc:f9:bb:19:2d:d5:d1:08:72:99:55:fb:3e: 4a:81:50:37:cc:5c:bc:b3:d0:41:a1:23:db:cf:25:44:b6:6d: f9:66:19:7a:eb:1e:1b:2e:08:25:51:81:7c:33:43:44:4b:f0: f7:e7:f9:63:61:34:39:68:3c:57:64:5b:1e:65:66:75:af:18: 59:5b:69:6e:4e:38:70:68:9f:dd:de:c6:20:96:8c:12:bf:d4: 3d:25:e3:3f:51:37:53:ac:79:c1:ff:3d:4e:23:f4:2f:58:7c: d3:ce:1c:15:0a:d5:d4:0e:4e:ee:64:e9:62:5d:ae:e0:a1:57: d3:1f:fd:96:97:51:4a:68:1e:43:c2:9f:c5:9a:4d:24:11:d6: 5b:35:c5:d0:04:07:21:de:c4:e2:58:d1:b1:75:ef:2e:28:c5: df:a1:46:ee:a2:cd:df:5b:62:a5:1a:6f:f0:86:50:ea:ea:2f: 89:24:c2:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDVDRTExMC8GA1UEBRMoNzI5MjZGQzYwRjdDMTg0QTYxRDczQkQwOTRBQTZBMzg2 QjYzMDAyQTAeFw0yNDAzMDcwMDMzNTdaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTkwYjc0LWRjMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrWblpmx8J6OtyyUIHriXTemjO2B4yGQusPGv4yLfep/ixaRbMgPSnwOXWYfRv d7rVfzlV5EAvO+ZKzcjTDUcS3hLp/M54RADUe/xTCoj0Vqb/ewfcMMUgUTsYk4Yd +xVlooPxjJotc0zPZ1snx73yD6h0f45MGSEom/ENSy2swWAj9bxGgY6EoL5sX7gY wBrMAxUNEXhREymwrT2txj7CQRMCP8xLA09bfB6iuC8FLt8Jdf5ibUCYvs81caYb QssJlF+cZxgadpk/K7Rn5WYEiPOBRH9FebmD6zvXzdFn3mJIugLz/+MHrOuOX7mp djZiQhpVnAA203zWRFtKri23AgMBAAGjggKpMIICpTAdBgNVHQ4EFgQUCrvHElw7 YHG6VU4Gty4nhqS3pQswHwYDVR0jBBgwFoAUcpJvxg98GEph1zvQlKpqOGtjACow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwNUNFLzBFQjA5RDM2QUU3 NDExRUU4Q0VEMjM1Q0M0RjlBRTAyL2NwSnZ4Zzk4R0VwaDF6dlFsS3BxT0d0akFD by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3BKdnhnOThHRXBoMXp2UWxLcHFPR3RqQUNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVDRS8wRUIwOUQzNkFFNzQxMUVFOENFRDIzNUNDNEY5QUUwMi85RTE5NDkxNEIz RUMxMUVFOEIyRUU5MTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAzBggrBgEFBQcBBwEB/wQk MCIwIAQCAAEwGgMEBMpKgDAMAwQAykqTAwQAykqUAwQCykqYMA0GCSqGSIb3DQEB CwUAA4IBAQC7Ho81gQwlhaKtiEEYfiq8Hc4DU9Ys4XWbW4wmwUN3OygDp3SHDGNk jmnEhfqQ4uED+gGRNgoV6wBFM9x0dtIDc5Ibbcllfh3eQ6HPYcz5uxkt1dEIcplV +z5KgVA3zFy8s9BBoSPbzyVEtm35Zhl66x4bLgglUYF8M0NES/D35/ljYTQ5aDxX ZFseZWZ1rxhZW2luTjhwaJ/d3sYglowSv9Q9JeM/UTdTrHnB/z1OI/QvWHzTzhwV CtXUDk7uZOliXa7goVfTH/2Wl1FKaB5Dwp/Fmk0kEdZbNcXQBAch3sTiWNGxde8u KMXfoUbuos3fW2KlGm/whlDq6i+JJMIZ -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:29 2024 by rpki-client on console-fra.rpki-client.org