$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/418966DA032011ED84D6CA1EC4F9AE02.roa File: 418966DA032011ED84D6CA1EC4F9AE02.roa (raw, json) Hash identifier: 1sAVZxZLRigkgsZXyp5pu4RHA9hASSeOHSEnVJg/XEI= Subject key identifier: 85:49:EF:4D:FC:3B:0B:C3:68:F2:B6:8E:A7:39:B6:B1:F1:C8:39:E6 Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 0128 Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/418966DA032011ED84D6CA1EC4F9AE02.roa Signing time: Sat 27 May 2023 06:14:40 +0000 ROA not before: Sat 27 May 2023 06:14:40 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 4851 IP address blocks: 202.94.32.0/20 maxlen: 20 203.24.63.0/24 maxlen: 24 203.27.44.0/24 maxlen: 24 203.29.208.0/23 maxlen: 23 203.55.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 04:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Validity Not Before: May 27 06:14:40 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64719fcf-fdc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:91:34:84:bc:7c:ca:07:98:05:68:81:be:66: 23:c1:39:f4:e3:0a:a6:e2:77:3c:68:3d:75:19:fc: 52:77:4a:36:bb:5b:25:51:af:94:11:3b:3a:d8:34: ac:55:b0:d5:8b:c3:05:87:30:48:f6:4e:2f:01:23: a4:47:d6:f1:71:57:2f:ce:66:b4:5a:37:16:e6:79: 2f:2b:e3:42:91:be:6c:c9:fc:db:4f:a7:3a:cf:27: 0f:5d:56:e4:ef:79:8a:e1:ee:b4:21:e0:40:9f:14: bf:85:17:00:b7:72:59:f6:95:dc:82:a5:60:df:d9: 2a:12:d2:39:a6:05:bb:2f:b4:a6:c1:c2:db:7d:fe: ad:c9:0e:6f:75:86:6d:b9:7a:0d:a6:9c:32:c9:46: c9:34:e4:9f:61:e3:31:c2:2c:93:55:2b:cb:d7:5b: 05:a9:c0:bc:ef:fd:a2:51:c0:85:e0:d3:16:e5:7e: bf:f7:ab:42:12:b9:fa:76:31:5e:60:15:b6:72:77: 1f:3c:a1:e7:1c:b4:e1:21:61:71:25:ad:e1:db:ce: e4:1a:e2:5d:78:33:84:91:92:dd:e4:9a:35:20:31: e0:0c:21:1f:48:75:7c:77:87:7b:c8:85:ff:0c:f9: 35:a6:16:7c:a4:b8:20:3d:ea:2f:e0:0e:11:d9:d8: d4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:49:EF:4D:FC:3B:0B:C3:68:F2:B6:8E:A7:39:B6:B1:F1:C8:39:E6 X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/418966DA032011ED84D6CA1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.32.0/20 203.24.63.0/24 203.27.44.0/24 203.29.208.0/23 203.55.134.0/23 Signature Algorithm: sha256WithRSAEncryption 16:1b:0e:d7:62:cb:af:bc:ce:36:71:b7:29:ac:e2:56:bb:ce: 54:f0:ec:36:b4:63:b0:fb:95:e3:fb:3b:d6:b1:16:c7:d6:40: 8a:91:87:76:45:b8:f5:9f:7e:2d:54:1d:4d:85:db:8c:fc:1d: 04:9c:d0:eb:e0:2e:3e:3d:e1:81:18:6b:61:1a:3e:cd:87:b3: 66:4a:3f:40:af:2b:9c:84:81:ac:1e:c1:7c:20:1b:b8:f6:2b: a8:47:f0:5e:4b:bb:a7:ea:b2:d2:92:08:08:24:a9:1b:41:98: 26:1a:f7:b5:40:b6:cb:73:9f:4c:e3:34:2e:4f:71:9c:20:78: bd:1a:98:bd:2f:f2:30:66:57:6c:c3:a5:e5:c5:94:05:c3:0d: 10:5d:d7:99:72:89:c6:79:4a:a2:e8:77:db:ef:fc:76:6b:14: bd:bd:d0:f0:62:47:b8:d0:d9:1b:1e:b0:1e:41:f9:2d:d9:01: 06:4a:ff:4f:a7:7f:cc:4f:7e:7e:a3:91:54:e2:88:61:9f:e6: 00:5e:94:0c:dc:cf:e8:dc:27:ed:fe:4b:4f:d4:e0:49:56:13: a9:87:73:1c:87:d9:0d:83:2f:3d:2b:ec:ff:6f:85:20:2f:23: da:83:c7:61:63:bf:65:4a:71:dc:63:c6:ce:0b:c5:7e:77:15: 8e:17:c9:5b -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjMwNTI3MDYxNDQwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxOWZjZi1mZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZE0hLx8ygeYBWiBvmYjwTn04wqm4nc8aD11GfxSd0o2u1slUa+UETs62DSs VbDVi8MFhzBI9k4vASOkR9bxcVcvzma0WjcW5nkvK+NCkb5syfzbT6c6zycPXVbk 73mK4e60IeBAnxS/hRcAt3JZ9pXcgqVg39kqEtI5pgW7L7SmwcLbff6tyQ5vdYZt uXoNppwyyUbJNOSfYeMxwiyTVSvL11sFqcC87/2iUcCF4NMW5X6/96tCErn6djFe YBW2cncfPKHnHLThIWFxJa3h287kGuJdeDOEkZLd5Jo1IDHgDCEfSHV8d4d7yIX/ DPk1phZ8pLggPeov4A4R2djUgQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFIVJ7038 OwvDaPK2jqc5trHxyDnmMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1NzcvOTAzRTRDNzgwMzE2MTFFRDkwRjg4NDRGQzRGOUFFMDIvNDE4OTY2REEw MzIwMTFFRDg0RDZDQTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBATKXiADBADLGD8DBADLGywDBAHLHdADBAHLN4YwDQYJKoZI hvcNAQELBQADggEBABYbDtdiy6+8zjZxtyms4la7zlTw7Da0Y7D7leP7O9axFsfW QIqRh3ZFuPWffi1UHU2F24z8HQSc0OvgLj494YEYa2EaPs2Hs2ZKP0CvK5yEgawe wXwgG7j2K6hH8F5Lu6fqstKSCAgkqRtBmCYa97VAtstzn0zjNC5PcZwgeL0amL0v 8jBmV2zDpeXFlAXDDRBd15lyicZ5SqLod9vv/HZrFL290PBiR7jQ2RsesB5B+S3Z AQZK/0+nf8xPfn6jkVTiiGGf5gBelAzcz+jcJ+3+S0/U4ElWE6mHcxyH2Q2DLz0r 7P9vhSAvI9qDx2Fjv2VKcdxjxs4LxX53FY4XyVs= -----END CERTIFICATE-----Generated at Mon May 13 07:29:59 2024 by rpki-client on console-fra.rpki-client.org