$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/945DB376E34711EE87868164C4F9AE02.roa File: 945DB376E34711EE87868164C4F9AE02.roa (raw, json) Hash identifier: ce/f73SfrYJPg/gjQh7xIiEuRGOCIfNjuOOVpMGHrCc= Subject key identifier: 6D:3C:58:3B:67:85:D1:3A:10:CE:C0:D3:00:20:4E:41:C5:C6:81:FF Certificate issuer: /CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Certificate serial: 1C9E Authority key identifier: 09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/945DB376E34711EE87868164C4F9AE02.roa Signing time: Sat 16 Mar 2024 03:45:07 +0000 ROA not before: Sat 16 Mar 2024 03:45:07 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45204 IP address blocks: 180.149.64.0/18 maxlen: 21 180.149.90.0/24 maxlen: 24 180.149.91.0/24 maxlen: 24 180.149.93.0/24 maxlen: 24 180.149.94.0/24 maxlen: 24 180.149.95.0/24 maxlen: 24 180.149.96.0/24 maxlen: 24 180.149.97.0/24 maxlen: 24 180.149.98.0/24 maxlen: 24 180.149.99.0/24 maxlen: 24 180.149.100.0/22 maxlen: 24 180.149.112.0/24 maxlen: 24 180.149.117.0/24 maxlen: 24 180.149.118.0/24 maxlen: 24 2401:d600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7326 (0x1c9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Validity Not Before: Mar 16 03:45:07 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65f515c2-66d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d5:0a:de:50:25:61:8e:6c:41:1c:0f:15:fd: 15:54:5b:58:08:29:b1:da:1e:76:00:1c:90:6e:ed: 6f:63:35:b0:ed:80:bf:7e:36:3a:fd:b5:32:73:b2: 5e:00:ae:af:37:75:eb:da:dc:9c:8b:94:d1:ff:b3: 77:a6:ff:cb:9f:73:27:ac:4e:71:46:6c:f8:16:e5: da:46:27:66:b9:67:ed:2a:1d:47:9a:c1:c3:7d:a2: be:80:03:a4:47:dd:8f:45:9a:d7:ee:ca:89:63:ac: 2b:c9:6c:6a:c6:bd:3d:80:c9:50:25:e7:55:a1:f4: cd:03:99:b6:f2:3a:a5:51:45:fa:6e:34:20:09:ca: de:73:46:91:9b:0c:6c:23:b5:46:72:01:9b:02:a6: 19:00:2a:8c:f9:43:a6:f3:4a:64:fc:3a:f6:72:7a: 6d:e4:27:68:a1:8d:32:cb:e9:70:88:5b:4a:53:15: 80:e5:36:38:9c:a3:f3:81:ea:86:5f:e8:7e:dc:84: a3:60:0a:e7:0c:14:1c:4f:0a:34:24:c7:dc:6e:e6: 10:32:25:7a:ec:e2:8f:82:46:79:32:44:28:41:4e: d6:87:a2:8a:fa:ed:67:47:d2:87:16:b4:b3:59:d4: e4:42:7e:17:f1:84:aa:e6:36:1c:0e:a2:58:fd:e9: d7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:3C:58:3B:67:85:D1:3A:10:CE:C0:D3:00:20:4E:41:C5:C6:81:FF X509v3 Authority Key Identifier: keyid:09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/945DB376E34711EE87868164C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.149.64.0/18 IPv6: 2401:d600::/32 Signature Algorithm: sha256WithRSAEncryption 53:9f:06:fb:78:8b:37:3a:d6:c6:02:89:a4:7c:13:bf:36:f2: 10:e7:12:da:a7:bc:74:b0:fe:8c:fb:3b:61:8c:0b:66:c4:43: f0:a0:58:1f:62:41:3b:6b:10:a4:0f:24:00:cc:9b:23:0b:56: e6:d6:3e:f8:05:49:c9:14:50:e5:ec:60:c6:df:1b:a2:18:27: 43:ff:b4:79:12:5d:bf:1c:d7:04:df:18:27:b4:a9:fe:b3:18: 4b:c8:bf:9a:1e:5a:3d:b6:4c:14:3e:3d:d8:2c:a9:2d:b1:80: 0d:a6:63:08:4f:49:64:69:cd:e1:a5:6a:aa:b1:b6:bf:35:5d: 06:bf:7c:3c:7f:c5:72:01:0e:20:d1:13:8a:6f:c2:49:3d:49: ad:57:e5:e3:45:20:40:73:05:32:99:0e:22:54:73:14:56:8c: 6f:57:a0:57:79:22:85:91:40:9e:18:ac:72:54:12:5b:d6:c7: c8:7d:d1:f4:38:c0:ec:5f:df:a4:14:80:f5:4e:07:6f:ac:bf: 82:a0:6c:d6:16:7d:e7:ca:e9:ed:b9:49:e5:2d:db:83:03:ee: e2:0c:63:1a:b4:b6:f6:fc:e5:19:3a:7a:c9:02:aa:02:ca:67: fd:fe:b7:da:24:0c:53:4e:da:f7:42:85:af:bd:c8:25:5c:be: d6:f3:63:1a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICHJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDA5OTcxNEE3MEU2RjQwMTI4OTEwODIwOUQ2QTdGNDg1 OUY5ODAwQ0MwHhcNMjQwMzE2MDM0NTA3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY1MTVjMi02NmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNUK3lAlYY5sQRwPFf0VVFtYCCmx2h52AByQbu1vYzWw7YC/fjY6/bUyc7Je AK6vN3Xr2tyci5TR/7N3pv/Ln3MnrE5xRmz4FuXaRidmuWftKh1HmsHDfaK+gAOk R92PRZrX7sqJY6wryWxqxr09gMlQJedVofTNA5m28jqlUUX6bjQgCcrec0aRmwxs I7VGcgGbAqYZACqM+UOm80pk/Dr2cnpt5CdooY0yy+lwiFtKUxWA5TY4nKPzgeqG X+h+3ISjYArnDBQcTwo0JMfcbuYQMiV67OKPgkZ5MkQoQU7Wh6KK+u1nR9KHFrSz WdTkQn4X8YSq5jYcDqJY/enX8wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG08WDtn hdE6EM7A0wAgTkHFxoH/MB8GA1UdIwQYMBaAFAmXFKcOb0ASiRCCCdan9IWfmADM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC9DNjgwOTE5NkFD OTcxMUU2QTQ5MURDMTdDNEY5QUUwMi9DWmNVcHc1dlFCS0pFSUlKMXFmMGhaLVlB TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaY1VwdzV2UUJLSkVJSUoxcWYwaFotWUFNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTUwOTgvQzY4MDkxOTZBQzk3MTFFNkE0OTFEQzE3QzRGOUFFMDIvOTQ1REIzNzZF MzQ3MTFFRTg3ODY4MTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAa0lUAwDQQCAAIwBwMFACQB1gAwDQYJKoZIhvcNAQELBQAD ggEBAFOfBvt4izc61sYCiaR8E7828hDnEtqnvHSw/oz7O2GMC2bEQ/CgWB9iQTtr EKQPJADMmyMLVubWPvgFSckUUOXsYMbfG6IYJ0P/tHkSXb8c1wTfGCe0qf6zGEvI v5oeWj22TBQ+PdgsqS2xgA2mYwhPSWRpzeGlaqqxtr81XQa/fDx/xXIBDiDRE4pv wkk9Sa1X5eNFIEBzBTKZDiJUcxRWjG9XoFd5IoWRQJ4YrHJUElvWx8h90fQ4wOxf 36QUgPVOB2+sv4KgbNYWfefK6e25SeUt24MD7uIMYxq0tvb85Rk6eskCqgLKZ/3+ t9okDFNO2vdCha+9yCVcvtbzYxo= -----END CERTIFICATE-----Generated at Thu May 16 17:51:50 2024 by rpki-client on console-ams.rpki-client.org