$ rpki-client -vvf rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/953250CAE90011EB8DE96E50C4F9AE02.roa File: 953250CAE90011EB8DE96E50C4F9AE02.roa (raw, json) Hash identifier: i2fz4ifaqk2e1CweEVoIilHkWS2XNDLWW2DdE/mtQqA= Subject key identifier: 5E:E4:F9:73:77:66:E9:F6:C1:78:1F:F6:63:D1:BF:1B:06:48:37:25 Certificate issuer: /CN=A918919A/serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Certificate serial: 09B9 Authority key identifier: 2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/953250CAE90011EB8DE96E50C4F9AE02.roa Signing time: Fri 12 May 2023 21:42:44 +0000 ROA not before: Fri 12 May 2023 21:42:44 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 56307 IP address blocks: 103.227.20.0/22 maxlen: 24 139.5.172.0/22 maxlen: 24 203.22.104.0/23 maxlen: 24 2001:df1:3a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2489 (0x9b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918919A/serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Validity Not Before: May 12 21:42:44 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645eb2d4-512a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f4:75:35:4c:7c:11:8f:14:5b:db:cd:77:a6: 17:7a:77:c7:2d:df:c0:1d:ef:a5:a0:8e:f3:c8:29: 6f:72:93:b8:74:17:64:28:a1:16:8d:57:c5:f2:cc: 13:d6:6b:7f:37:13:ae:e6:b7:3d:77:77:8c:73:bb: 61:bf:b8:2e:96:e0:4d:41:b1:84:df:42:6e:81:6c: f0:81:ed:9d:6f:ad:89:13:44:a7:01:53:cf:8f:b8: 75:88:62:68:8d:c5:cf:0e:31:d7:55:1e:77:e1:fe: 17:0a:3b:9b:ff:dd:53:19:2b:03:71:f5:8f:cb:ca: f4:8d:de:4d:2a:a0:44:42:41:1e:de:5e:02:fc:d6: c3:67:2d:08:d1:82:6e:57:d7:f5:59:ef:78:2d:aa: 03:03:03:0a:d4:05:f1:66:fd:14:e9:d0:3f:d1:6a: dc:9c:4c:67:7e:49:70:89:61:2c:6b:4e:3d:91:84: 25:63:3e:69:7c:ca:61:cb:5b:78:f9:cc:ff:7e:62: 30:06:a7:f0:11:97:04:5b:eb:7c:ba:85:ef:4b:88: 68:0e:5c:76:84:6e:7d:9a:6f:39:35:5e:68:02:ce: 63:53:7f:65:89:eb:58:c6:2c:c4:74:c5:68:c2:01: 75:e5:55:ef:e4:be:2f:36:0e:35:91:a2:c6:68:f0: e3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E4:F9:73:77:66:E9:F6:C1:78:1F:F6:63:D1:BF:1B:06:48:37:25 X509v3 Authority Key Identifier: keyid:2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/953250CAE90011EB8DE96E50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.227.20.0/22 139.5.172.0/22 203.22.104.0/23 IPv6: 2001:df1:3a00::/48 Signature Algorithm: sha256WithRSAEncryption bd:ea:24:9e:c3:b1:7b:c8:af:c6:ab:32:e6:9f:3e:13:77:a2: 2c:f1:ae:86:b2:f0:3f:ec:21:f7:1d:a0:5b:08:44:af:68:dc: 06:f8:ad:3b:23:0b:0f:1a:40:ac:63:9d:e3:5b:20:5e:88:a8: 70:79:69:be:75:98:d4:66:6c:30:ff:9e:09:a9:f8:35:60:7f: b6:15:04:60:c5:7d:37:1a:e6:06:91:c5:ff:c9:90:ec:a2:c4: 82:99:31:58:7c:00:fb:6c:27:84:79:13:43:7b:ac:10:34:58: 72:47:f7:1d:d1:3a:e5:2f:5a:52:58:e3:f8:92:c7:4e:4e:7b: ec:28:16:64:6a:f0:fd:55:45:b8:39:1a:3b:00:ea:75:5a:75: b7:bb:06:36:8d:ba:3f:46:88:7b:3f:85:41:21:25:1d:43:b0: 78:79:5a:b5:79:09:65:f4:3d:fb:12:20:c1:ee:a6:39:c4:b9: ce:e6:f0:33:6f:24:3b:bf:8a:22:6c:f9:da:70:84:29:2f:34: 8b:2c:4b:ac:e9:c0:f8:db:7e:d6:72:a7:02:2a:67:07:f3:29: 58:24:75:43:2d:e8:d4:7f:71:5a:16:c5:09:f7:27:e0:a9:fd: 60:68:bd:6d:ef:3b:b0:a1:39:09:c2:4e:eb:0d:96:7f:a1:c0: 2a:e4:a8:8a -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxOUExMTAvBgNVBAUTKDJFNUJDQkM2NjFBRkYxRkVENThCMEZGNEI1ODNEQ0Y1 RUMxQTM3NEEwHhcNMjMwNTEyMjE0MjQ0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDVlYjJkNC01MTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/R1NUx8EY8UW9vNd6YXenfHLd/AHe+loI7zyClvcpO4dBdkKKEWjVfF8swT 1mt/NxOu5rc9d3eMc7thv7guluBNQbGE30JugWzwge2db62JE0SnAVPPj7h1iGJo jcXPDjHXVR534f4XCjub/91TGSsDcfWPy8r0jd5NKqBEQkEe3l4C/NbDZy0I0YJu V9f1We94LaoDAwMK1AXxZv0U6dA/0WrcnExnfklwiWEsa049kYQlYz5pfMphy1t4 +cz/fmIwBqfwEZcEW+t8uoXvS4hoDlx2hG59mm85NV5oAs5jU39lietYxizEdMVo wgF15VXv5L4vNg41kaLGaPDjSwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFF7k+XN3 Zun2wXgf9mPRvxsGSDclMB8GA1UdIwQYMBaAFC5by8Zhr/H+1YsP9LWD3PXsGjdK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTE5QS8wNDkwOTA5QTQz MUIxMUVBQjAxOTc3MkNDNEY5QUUwMi9MbHZMeG1HdjhmN1Zpd18wdFlQYzlld2FO MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xsdkx4bUd2OGY3Vml3XzB0WVBjOWV3YU4wby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkxOUEvMDQ5MDkwOUE0MzFCMTFFQUIwMTk3NzJDQzRGOUFFMDIvOTUzMjUwQ0FF OTAwMTFFQjhERTk2RTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAJn4xQDBAKLBawDBAHLFmgwDwQCAAIwCQMHACABDfE6ADAN BgkqhkiG9w0BAQsFAAOCAQEAveoknsOxe8ivxqsy5p8+E3eiLPGuhrLwP+wh9x2g WwhEr2jcBvitOyMLDxpArGOd41sgXoiocHlpvnWY1GZsMP+eCan4NWB/thUEYMV9 NxrmBpHF/8mQ7KLEgpkxWHwA+2wnhHkTQ3usEDRYckf3HdE65S9aUljj+JLHTk57 7CgWZGrw/VVFuDkaOwDqdVp1t7sGNo26P0aIez+FQSElHUOweHlatXkJZfQ9+xIg we6mOcS5zubwM28kO7+KImz52nCEKS80iyxLrOnA+Nt+1nKnAipnB/MpWCR1Qy3o 1H9xWhbFCfcn4Kn9YGi9be87sKE5CcJO6w2Wf6HAKuSoig== -----END CERTIFICATE-----Generated at Sat May 4 21:32:59 2024 by rpki-client on console-fra.rpki-client.org