$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/53BCB840EA4211EB846B8757C4F9AE02.roa File: 53BCB840EA4211EB846B8757C4F9AE02.roa (raw, json) Hash identifier: soXsyrMJ6LH8UMelZWRLqI5TSCoyhZNDcZCQT1n8tgY= Subject key identifier: 39:7D:D9:6D:97:38:C8:F2:3A:EA:C3:1C:71:18:C1:05:97:5B:36:99 Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0440 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/53BCB840EA4211EB846B8757C4F9AE02.roa Signing time: Wed 13 Sep 2023 00:42:28 +0000 ROA not before: Wed 13 Sep 2023 00:42:28 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 14340 IP address blocks: 104.161.128.0/18 maxlen: 24 104.161.248.0/23 maxlen: 24 104.161.252.0/24 maxlen: 24 104.161.253.0/24 maxlen: 24 161.32.64.0/18 maxlen: 24 161.32.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Sep 13 00:42:28 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65010574-aec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:18:4a:6b:40:ce:0e:64:44:0b:2e:ae:9c:e9: f2:31:c8:73:24:15:72:6c:44:3a:c4:92:78:d9:2b: aa:08:3d:8f:24:78:97:a5:5e:12:07:1d:96:06:30: 87:0c:72:f5:59:f9:79:8a:14:25:2c:60:78:25:7f: 6b:33:d4:0d:91:2a:4d:3c:eb:21:2d:32:11:9f:0b: 6b:36:0e:ba:a4:10:a9:9a:04:01:44:74:88:92:6a: d7:85:c0:6c:ac:94:ef:82:fa:e5:16:8c:7f:31:4b: 12:7d:5d:8e:c3:fb:63:ed:1e:62:d5:77:dc:c8:49: 5d:19:9d:9e:4b:41:fd:ad:6c:62:0e:4b:c9:be:1d: d0:23:bb:d1:f5:df:05:3d:cc:fa:0c:53:ff:ec:4b: 35:a7:6e:8b:a5:d5:38:17:c4:dc:be:73:00:ec:8a: 6f:6d:39:f0:90:26:33:8d:9c:7f:81:37:c0:8f:ae: 73:ef:9e:ff:b4:ad:ea:58:73:12:2b:12:d5:4a:aa: 5b:d2:99:19:0b:87:00:b9:f2:f0:b4:ff:2c:f7:bc: e3:ad:a2:3a:a4:d5:2b:9f:66:1b:c3:76:a3:4a:88: 74:e3:cb:10:32:5c:7e:c4:49:33:62:dd:59:36:5b: fe:b3:65:19:34:41:49:db:68:fc:b6:12:f6:14:5e: 9e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:7D:D9:6D:97:38:C8:F2:3A:EA:C3:1C:71:18:C1:05:97:5B:36:99 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/53BCB840EA4211EB846B8757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.161.128.0/18 104.161.248.0/23 104.161.252.0/23 161.32.64.0-161.32.255.255 Signature Algorithm: sha256WithRSAEncryption 6d:85:5f:61:a6:32:6c:ce:a2:fb:91:1e:9b:e0:44:76:2c:20: e9:2e:cd:27:08:9e:dd:b0:7e:62:19:7c:09:94:ce:7d:a8:d0: 01:3d:79:0a:1b:fa:d0:ac:91:5a:cd:b1:17:4f:44:58:95:df: b9:98:fb:ea:45:43:69:3b:2b:72:d0:a0:e4:5c:da:0d:5c:83: 48:1f:2f:39:58:ec:86:29:57:2e:36:5e:ab:36:1a:ab:da:5c: 99:ed:1a:32:92:69:e8:9f:f8:8e:e8:3f:1a:0d:53:ac:83:21: 7e:f9:26:df:16:1c:a1:00:92:59:a4:de:73:22:03:e8:b0:db: 8b:0a:af:16:ae:c0:9b:47:ed:f3:50:73:cc:8f:4f:5f:7d:9f: f5:77:39:b1:f6:96:e5:c3:5c:86:77:08:d4:cf:a0:10:45:96: 07:91:e1:7a:06:3c:44:47:3a:d0:c8:b9:43:f1:fd:de:09:fb: 7f:33:19:a6:3f:10:39:38:5b:c0:65:60:5e:53:5d:e2:da:56: 55:77:10:96:76:3a:cb:0e:5e:32:5f:a1:18:e6:aa:7d:f4:83: 6b:7c:ef:be:af:48:b8:1b:bd:04:9b:66:aa:96:f9:16:f5:96: 21:5b:33:4a:bb:15:1a:c0:91:47:1d:82:93:1a:93:1c:fc:4f: c8:10:5c:50 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjMwOTEzMDA0MjI4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAxMDU3NC1hZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxhKa0DODmRECy6unOnyMchzJBVybEQ6xJJ42SuqCD2PJHiXpV4SBx2WBjCH DHL1Wfl5ihQlLGB4JX9rM9QNkSpNPOshLTIRnwtrNg66pBCpmgQBRHSIkmrXhcBs rJTvgvrlFox/MUsSfV2Ow/tj7R5i1XfcyEldGZ2eS0H9rWxiDkvJvh3QI7vR9d8F Pcz6DFP/7Es1p26LpdU4F8TcvnMA7IpvbTnwkCYzjZx/gTfAj65z757/tK3qWHMS KxLVSqpb0pkZC4cAufLwtP8s97zjraI6pNUrn2Ybw3ajSoh048sQMlx+xEkzYt1Z Nlv+s2UZNEFJ22j8thL2FF6e0wIDAQABo4ICrjCCAqowHQYDVR0OBBYEFDl92W2X OMjyOurDHHEYwQWXWzaZMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvNENCRkY0QUVERkYxMTFFQjg5NEYzMDY3QzRGOUFFMDIvNTNCQ0I4NDBF QTQyMTFFQjg0NkI4NzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMCUEAgABMB8DBAZooYADBAFoofgDBAFoofwwCwMEBqEgQAMDAKEgMA0GCSqG SIb3DQEBCwUAA4IBAQBthV9hpjJszqL7kR6b4ER2LCDpLs0nCJ7dsH5iGXwJlM59 qNABPXkKG/rQrJFazbEXT0RYld+5mPvqRUNpOyty0KDkXNoNXINIHy85WOyGKVcu Nl6rNhqr2lyZ7Roykmnon/iO6D8aDVOsgyF++SbfFhyhAJJZpN5zIgPosNuLCq8W rsCbR+3zUHPMj09ffZ/1dzmx9pblw1yGdwjUz6AQRZYHkeF6BjxERzrQyLlD8f3e Cft/MxmmPxA5OFvAZWBeU13i2lZVdxCWdjrLDl4yX6EY5qp99INrfO++r0i4G70E m2aqlvkW9ZYhWzNKuxUawJFHHYKTGpMc/E/IEFxQ -----END CERTIFICATE-----Generated at Fri May 17 02:38:39 2024 by rpki-client on console-fra.rpki-client.org