$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa File: E7FE45667E8311ECA552B67FC4F9AE02.roa (raw, json) Hash identifier: 4EA20sWKXOK0+EASX2fNTIexi95SBTtQ84LrzMppkU4= Subject key identifier: 87:10:67:BD:03:69:27:BE:84:FE:A2:EF:7F:ED:B3:6B:AF:DC:42:91 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 02E9 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa Signing time: Thu 11 Jan 2024 02:44:16 +0000 ROA not before: Thu 11 Jan 2024 02:44:16 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 23767 IP address blocks: 202.83.248.0/22 maxlen: 22 202.83.250.0/24 maxlen: 24 202.130.56.0/22 maxlen: 22 202.130.56.0/24 maxlen: 24 202.130.59.0/24 maxlen: 24 2001:df0:75::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 745 (0x2e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Jan 11 02:44:16 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659f5600-cea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:38:ed:da:3e:81:e3:6b:c4:86:ae:d6:8b:f9: b6:c3:38:17:46:98:94:4e:c9:04:29:2e:bc:61:1f: d0:6e:ee:d1:5f:27:f5:90:3e:95:70:da:b0:82:70: 1f:39:fd:e5:4c:a2:07:65:f9:da:89:9f:e3:fd:01: 17:73:f5:86:f4:1c:1d:22:8c:bd:89:2c:5c:d9:01: 5f:2e:65:19:a0:e1:20:d0:f0:29:0c:69:5c:98:93: 7d:05:b8:c1:99:7a:24:a5:11:23:12:50:8f:a2:a7: a9:e9:3a:65:55:4b:f6:32:8e:95:4a:f3:28:46:57: f6:0b:c6:a4:0c:93:95:fc:19:16:e4:f5:60:08:bc: fd:a9:e4:38:41:ae:c9:a2:ba:c9:41:c8:35:27:80: cf:8f:35:c2:b2:65:85:2a:e5:29:30:d7:66:f9:7f: 41:13:cf:3d:4e:3e:d8:ce:37:37:f2:b9:7d:bd:98: 7d:6a:c6:f6:7f:82:ba:04:91:5f:c5:84:23:fb:9b: b3:6f:17:d3:24:e9:02:eb:a2:7e:01:58:8d:52:ac: 52:8d:b0:63:0e:db:51:ea:b8:1f:8d:d9:cd:e5:ea: cb:59:53:c8:47:2f:77:0d:96:74:8f:1d:bd:34:8b: 94:e5:39:2a:ae:ff:d5:82:1f:0c:f8:0d:47:61:66: 2e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:10:67:BD:03:69:27:BE:84:FE:A2:EF:7F:ED:B3:6B:AF:DC:42:91 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.248.0/22 202.130.56.0/22 IPv6: 2001:df0:75::/48 Signature Algorithm: sha256WithRSAEncryption a8:5f:2d:9c:5b:b6:c8:31:cc:6f:8a:93:79:6b:30:d4:c2:16: 4e:28:4c:c7:dc:09:47:42:b5:09:73:50:ab:d2:ca:c1:9d:78: d0:76:29:b3:c7:54:55:b5:fc:db:91:2a:c0:e6:2c:0c:8c:00: 44:84:c3:ab:62:24:d4:a6:41:6a:49:b1:40:f2:44:b3:ad:76: ff:d5:4d:41:bb:54:29:0a:d3:7d:80:b9:8c:3d:8d:a2:73:f4: 02:84:5a:f0:8e:de:31:08:4d:1b:0b:86:ab:bd:40:04:f3:1d: 11:77:c4:38:5c:af:75:f4:8a:78:90:ed:49:df:4e:9a:a8:6b: b8:5b:be:a8:43:96:65:cc:ba:d2:ba:b9:46:43:9d:f1:ff:af: 28:c7:ba:01:1a:97:27:83:a4:47:3e:78:fa:df:55:00:61:3e: d0:86:fb:21:db:18:ef:3c:1e:d6:12:88:31:b5:0b:07:a1:d4: 14:8a:90:68:00:57:19:e7:c7:02:8c:3c:79:7f:ef:c1:34:9f: 33:b3:0b:eb:be:eb:94:68:8b:6b:a3:0e:8f:1f:94:2c:47:1b: b7:fe:63:92:10:2b:7c:f0:f8:40:5e:03:11:f4:cd:86:a6:4b: d5:bf:8d:1b:bb:82:44:59:3d:92:7f:b2:08:e7:14:3e:22:8e: fe:c0:a7:ce -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjQwMTExMDI0NDE2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNTYwMC1jZWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDjt2j6B42vEhq7Wi/m2wzgXRpiUTskEKS68YR/Qbu7RXyf1kD6VcNqwgnAf Of3lTKIHZfnaiZ/j/QEXc/WG9BwdIoy9iSxc2QFfLmUZoOEg0PApDGlcmJN9BbjB mXokpREjElCPoqep6TplVUv2Mo6VSvMoRlf2C8akDJOV/BkW5PVgCLz9qeQ4Qa7J orrJQcg1J4DPjzXCsmWFKuUpMNdm+X9BE889Tj7Yzjc38rl9vZh9asb2f4K6BJFf xYQj+5uzbxfTJOkC66J+AViNUqxSjbBjDttR6rgfjdnN5erLWVPIRy93DZZ0jx29 NIuU5Tkqrv/Vgh8M+A1HYWYuOwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFIcQZ70D aSe+hP6i73/ts2uv3EKRMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA4RTEvRjkwRjlFODg3RTgxMTFFQ0I4ODczQTdGQzRGOUFFMDIvRTdGRTQ1NjY3 RTgzMTFFQ0E1NTJCNjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBALKU/gDBALKgjgwDwQCAAIwCQMHACABDfAAdTANBgkqhkiG 9w0BAQsFAAOCAQEAqF8tnFu2yDHMb4qTeWsw1MIWTihMx9wJR0K1CXNQq9LKwZ14 0HYps8dUVbX825EqwOYsDIwARITDq2Ik1KZBakmxQPJEs612/9VNQbtUKQrTfYC5 jD2NonP0AoRa8I7eMQhNGwuGq71ABPMdEXfEOFyvdfSKeJDtSd9OmqhruFu+qEOW Zcy60rq5RkOd8f+vKMe6ARqXJ4OkRz54+t9VAGE+0Ib7IdsY7zwe1hKIMbULB6HU FIqQaABXGefHAow8eX/vwTSfM7ML677rlGiLa6MOjx+ULEcbt/5jkhArfPD4QF4D EfTNhqZL1b+NG7uCRFk9kn+yCOcUPiKO/sCnzg== -----END CERTIFICATE-----Generated at Mon May 27 04:53:39 2024 by rpki-client on console-fra.rpki-client.org