$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/6B10211E032B11ED8B3C5B4EC4F9AE02.roa File: 6B10211E032B11ED8B3C5B4EC4F9AE02.roa (raw, json) Hash identifier: GP8Rd5sLIMj2hhm+cySJQkfOGdakl1Y56iIlQMs7Li8= Subject key identifier: 34:BE:87:76:74:DE:6F:73:8C:FA:2C:18:F5:76:BC:98:48:74:58:4C Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 0129 Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/6B10211E032B11ED8B3C5B4EC4F9AE02.roa Signing time: Sat 27 May 2023 06:14:41 +0000 ROA not before: Sat 27 May 2023 06:14:41 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 7545 IP address blocks: 202.94.32.0/20 maxlen: 20 203.24.63.0/24 maxlen: 24 203.27.44.0/24 maxlen: 24 203.29.208.0/23 maxlen: 23 203.55.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 04:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Validity Not Before: May 27 06:14:41 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64719fd0-cb81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:14:1a:fa:9c:54:88:8f:30:e1:e7:a4:93:52: 82:79:aa:d5:b4:b6:cb:5f:4b:e0:0c:02:ed:27:de: c6:1b:a9:19:95:f6:ab:02:29:88:e4:6b:62:ac:75: 30:88:9a:83:e9:9a:38:ab:86:3f:08:53:9d:8b:bc: b9:bd:a8:cc:f7:9b:be:48:8c:7b:0b:54:b0:33:a8: 80:82:59:48:5b:4c:34:79:ac:6e:29:23:9a:af:0f: c2:62:31:9b:ab:16:62:54:21:01:d7:43:bb:3f:c1: 18:c3:7f:af:2a:c6:56:37:63:94:d6:2c:62:58:1b: 44:fc:96:a5:e4:34:ac:e4:00:9c:8b:50:cf:06:ea: d8:50:71:f7:d0:1f:ae:8e:4d:3c:2a:89:59:7d:20: da:3e:c7:34:38:14:7d:cb:26:c4:ef:9d:59:80:c0: 23:61:13:1c:64:d8:14:da:b3:fd:b9:1c:be:22:fb: ef:fc:2c:e2:5e:f1:d1:c6:8b:e1:25:a0:09:ea:43: ac:67:79:fc:87:67:ec:3f:c9:0b:fe:aa:21:46:54: 8e:61:89:bc:89:b6:3e:33:8a:cc:2e:31:fd:0e:f4: 48:d6:fa:f9:e6:46:ff:21:11:a2:4e:30:a7:83:40: 76:47:16:8b:4c:20:0c:42:91:ea:98:39:fc:33:1a: 69:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BE:87:76:74:DE:6F:73:8C:FA:2C:18:F5:76:BC:98:48:74:58:4C X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/6B10211E032B11ED8B3C5B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.32.0/20 203.24.63.0/24 203.27.44.0/24 203.29.208.0/23 203.55.134.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:2b:a8:bd:10:ad:af:4e:67:20:c0:fa:71:af:8b:eb:73:d0: 42:51:e1:d1:51:ff:a3:72:7f:aa:fa:f1:ae:47:ec:32:7d:06: f4:c6:63:c6:21:57:7d:f1:2e:53:f3:45:08:cd:78:6a:09:62: 41:dc:ef:93:c7:3a:2f:1a:98:d2:42:c9:ea:23:f4:8c:20:8e: b2:22:98:01:8a:eb:ac:86:17:52:42:47:35:9f:ac:90:0f:00: 5c:da:26:5f:ea:d7:a2:ee:86:f6:e2:0c:5e:2d:23:b7:d2:a7: 20:0d:9d:9a:a9:de:82:1b:1b:a5:7e:c4:e3:08:05:6b:60:1c: 33:89:38:16:bf:cc:9e:b9:1a:43:2c:76:1d:55:16:a8:44:c4: ff:80:5e:f8:e6:4b:84:bc:1e:44:3c:7b:cc:e3:a7:79:d2:e9: 4d:69:bd:f8:49:fd:52:6f:c2:3b:e9:dc:35:44:61:a2:8e:31: 85:c8:7b:d4:5b:ea:d3:4f:a1:30:ff:3c:89:a7:05:85:64:15: cd:33:ec:26:1a:4e:af:7d:8e:56:61:85:2e:71:8a:20:03:c2: 53:f7:3b:19:85:e1:b4:e6:a5:31:ca:11:22:44:4d:38:3d:1d: 6d:90:dd:f7:7b:04:a1:3c:fb:1c:86:21:0e:a0:19:ba:64:11: 75:e6:20:9b -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjMwNTI3MDYxNDQxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxOWZkMC1jYjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BQa+pxUiI8w4eekk1KCearVtLbLX0vgDALtJ97GG6kZlfarAimI5GtirHUw iJqD6Zo4q4Y/CFOdi7y5vajM95u+SIx7C1SwM6iAgllIW0w0eaxuKSOarw/CYjGb qxZiVCEB10O7P8EYw3+vKsZWN2OU1ixiWBtE/Jal5DSs5ACci1DPBurYUHH30B+u jk08KolZfSDaPsc0OBR9yybE751ZgMAjYRMcZNgU2rP9uRy+Ivvv/CziXvHRxovh JaAJ6kOsZ3n8h2fsP8kL/qohRlSOYYm8ibY+M4rMLjH9DvRI1vr55kb/IRGiTjCn g0B2RxaLTCAMQpHqmDn8MxppcQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFDS+h3Z0 3m9zjPosGPV2vJhIdFhMMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1NzcvOTAzRTRDNzgwMzE2MTFFRDkwRjg4NDRGQzRGOUFFMDIvNkIxMDIxMUUw MzJCMTFFRDhCM0M1QjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBATKXiADBADLGD8DBADLGywDBAHLHdADBAHLN4YwDQYJKoZI hvcNAQELBQADggEBACsrqL0Qra9OZyDA+nGvi+tz0EJR4dFR/6Nyf6r68a5H7DJ9 BvTGY8YhV33xLlPzRQjNeGoJYkHc75PHOi8amNJCyeoj9IwgjrIimAGK66yGF1JC RzWfrJAPAFzaJl/q16LuhvbiDF4tI7fSpyANnZqp3oIbG6V+xOMIBWtgHDOJOBa/ zJ65GkMsdh1VFqhExP+AXvjmS4S8HkQ8e8zjp3nS6U1pvfhJ/VJvwjvp3DVEYaKO MYXIe9Rb6tNPoTD/PImnBYVkFc0z7CYaTq99jlZhhS5xiiADwlP3OxmF4bTmpTHK ESJETTg9HW2Q3fd7BKE8+xyGIQ6gGbpkEXXmIJs= -----END CERTIFICATE-----Generated at Mon May 13 05:14:08 2024 by rpki-client on console-ams.rpki-client.org