$ rpki-client -vvf rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/D737BB744B4111ECACAF3B6FC4F9AE02.roa File: D737BB744B4111ECACAF3B6FC4F9AE02.roa (raw, json) Hash identifier: hnMtbPWtKi74NO/wif331zgnBxUtcdlbA7C0G1Bx5rA= Subject key identifier: F0:5F:D0:81:A9:83:CC:96:AC:D2:0E:57:35:B9:C0:99:35:8E:74:61 Certificate issuer: /CN=A9186684/serialNumber=34A1232EA718469EADB7ADBC4CD9E00DF6A85206 Certificate serial: 043C Authority key identifier: 34:A1:23:2E:A7:18:46:9E:AD:B7:AD:BC:4C:D9:E0:0D:F6:A8:52:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKEjLqcYRp6tt628TNngDfaoUgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/D737BB744B4111ECACAF3B6FC4F9AE02.roa Signing time: Tue 01 Aug 2023 01:02:23 +0000 ROA not before: Tue 01 Aug 2023 01:02:23 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55521 IP address blocks: 180.92.216.0/21 maxlen: 21 180.92.216.0/24 maxlen: 24 180.92.217.0/24 maxlen: 24 180.92.218.0/24 maxlen: 24 180.92.219.0/24 maxlen: 24 180.92.220.0/24 maxlen: 24 180.92.221.0/24 maxlen: 24 180.92.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/NKEjLqcYRp6tt628TNngDfaoUgY.crl rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/NKEjLqcYRp6tt628TNngDfaoUgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKEjLqcYRp6tt628TNngDfaoUgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 00:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1084 (0x43c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186684/serialNumber=34A1232EA718469EADB7ADBC4CD9E00DF6A85206 Validity Not Before: Aug 1 01:02:23 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c8599f-eaf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3b:cb:13:e5:14:4a:5b:57:90:5f:fa:53:b8: b7:e6:3e:89:dd:76:b1:82:da:c5:b9:0d:17:19:94: 2d:71:a1:1f:83:70:70:c4:c4:bb:7c:dd:45:2d:00: a3:42:a9:e4:d5:f5:74:c3:15:61:cf:c4:17:c4:5b: 2d:3a:fc:c6:e9:5e:bc:00:b7:9b:46:f5:20:ab:da: fb:a9:1c:25:f7:b8:ea:03:61:a9:95:82:63:f5:01: 8b:50:12:07:82:0f:76:82:80:7d:1f:63:00:d3:9d: c9:5f:3c:32:67:21:01:16:62:bd:1e:56:be:c3:32: 83:9b:af:55:d2:29:3e:76:ae:e0:9d:ff:c9:39:96: b1:56:a1:87:31:18:d3:7e:b2:9a:54:a0:42:c0:a1: 33:b7:72:ba:5c:49:1b:51:06:8c:12:20:53:2b:0a: 88:32:41:9c:07:46:6f:80:1a:8d:ec:46:17:4a:9f: 6a:cc:d9:d9:8f:ac:9c:41:d1:8b:37:cd:fc:3a:ca: 78:ba:8c:f9:b0:dc:83:f7:b8:35:96:77:2b:9f:87: 7e:95:fa:7e:8c:f9:97:03:43:ac:40:a9:24:0c:ef: e7:48:75:23:de:75:d7:b4:78:b2:a0:0e:49:45:e7: 37:c1:6c:53:9b:7a:1b:8a:1e:86:0c:80:4d:43:7f: e0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:5F:D0:81:A9:83:CC:96:AC:D2:0E:57:35:B9:C0:99:35:8E:74:61 X509v3 Authority Key Identifier: keyid:34:A1:23:2E:A7:18:46:9E:AD:B7:AD:BC:4C:D9:E0:0D:F6:A8:52:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/NKEjLqcYRp6tt628TNngDfaoUgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKEjLqcYRp6tt628TNngDfaoUgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/D737BB744B4111ECACAF3B6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.92.216.0/21 Signature Algorithm: sha256WithRSAEncryption 29:78:24:d8:0b:ca:0f:35:be:44:28:c0:e7:25:56:2d:30:4c: 6f:5e:2a:33:a9:9a:aa:45:f0:03:91:e4:9e:7f:e5:cb:50:e4: 39:88:43:39:09:17:dc:6b:24:ec:6e:1a:84:bb:ae:6c:90:6f: cb:21:7b:b7:f9:21:de:a3:d7:76:d6:9c:af:05:b8:43:5f:e1: d0:e4:e9:a5:17:e9:66:46:f4:a1:5b:43:dc:da:5b:6a:2f:09: 91:73:44:7a:cb:4b:9a:55:af:27:fa:a4:60:10:a2:47:27:d4: 7a:85:58:5e:04:44:a6:46:4d:45:82:27:02:6f:ad:3a:4e:de: 0f:ff:bc:3d:3c:c3:7a:f0:ab:48:d5:83:23:4e:58:37:95:83: 13:8f:91:25:62:a2:90:b7:21:9b:76:75:65:f4:99:15:28:d6: cc:f4:2c:49:b5:7d:90:e7:b6:4b:8f:f2:2e:5b:4c:d9:84:96: f1:0e:a2:b0:39:6a:bb:03:bd:36:95:ac:65:a4:bc:a3:e5:9b: e3:cd:ba:b8:f6:e5:05:ca:7b:13:7d:57:6c:85:72:a4:39:de: 24:27:48:b8:21:e0:a5:0f:cc:02:0c:2d:77:d4:20:53:4a:85: 68:70:37:23:63:f6:9a:97:a6:cb:61:a8:09:f0:cf:a0:34:e6: 70:9b:d5:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY2ODQxMTAvBgNVBAUTKDM0QTEyMzJFQTcxODQ2OUVBREI3QURCQzRDRDlFMDBE RjZBODUyMDYwHhcNMjMwODAxMDEwMjIzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4NTk5Zi1lYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTvLE+UUSltXkF/6U7i35j6J3XaxgtrFuQ0XGZQtcaEfg3BwxMS7fN1FLQCj Qqnk1fV0wxVhz8QXxFstOvzG6V68ALebRvUgq9r7qRwl97jqA2GplYJj9QGLUBIH gg92goB9H2MA053JXzwyZyEBFmK9Hla+wzKDm69V0ik+dq7gnf/JOZaxVqGHMRjT frKaVKBCwKEzt3K6XEkbUQaMEiBTKwqIMkGcB0ZvgBqN7EYXSp9qzNnZj6ycQdGL N838Osp4uoz5sNyD97g1lncrn4d+lfp+jPmXA0OsQKkkDO/nSHUj3nXXtHiyoA5J Rec3wWxTm3obih6GDIBNQ3/gSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPBf0IGp g8yWrNIOVzW5wJk1jnRhMB8GA1UdIwQYMBaAFDShIy6nGEaerbetvEzZ4A32qFIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjY4NC8zNkI4NkFEQ0Q4 OUYxMUVCQUI5OEM1NUFDNEY5QUUwMi9OS0VqTHFjWVJwNnR0NjI4VE5uZ0RmYW9V Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LRWpMcWNZUnA2dHQ2MjhUTm5nRGZhb1VnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY2ODQvMzZCODZBRENEODlGMTFFQkFCOThDNTVBQzRGOUFFMDIvRDczN0JCNzQ0 QjQxMTFFQ0FDQUYzQjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAO0XNgwDQYJKoZIhvcNAQELBQADggEBACl4JNgLyg81vkQo wOclVi0wTG9eKjOpmqpF8AOR5J5/5ctQ5DmIQzkJF9xrJOxuGoS7rmyQb8she7f5 Id6j13bWnK8FuENf4dDk6aUX6WZG9KFbQ9zaW2ovCZFzRHrLS5pVryf6pGAQokcn 1HqFWF4ERKZGTUWCJwJvrTpO3g//vD08w3rwq0jVgyNOWDeVgxOPkSViopC3IZt2 dWX0mRUo1sz0LEm1fZDntkuP8i5bTNmElvEOorA5arsDvTaVrGWkvKPlm+PNurj2 5QXKexN9V2yFcqQ53iQnSLgh4KUPzAIMLXfUIFNKhWhwNyNj9pqXpsthqAnwz6A0 5nCb1Y4= -----END CERTIFICATE-----Generated at Sat May 25 02:22:35 2024 by rpki-client on console-fra.rpki-client.org