$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/18981398329B11EDB9F09862C4F9AE02.roa File: 18981398329B11EDB9F09862C4F9AE02.roa (raw, json) Hash identifier: va0dDvMjHYfQf8YH7iN9o7r8RUidDQZSikq8ZnL2A8Y= Subject key identifier: 90:0B:7A:17:CD:33:8F:56:17:84:C2:4B:D9:E8:1A:92:EF:9F:DC:66 Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Certificate serial: 04CE Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/18981398329B11EDB9F09862C4F9AE02.roa Signing time: Wed 13 Mar 2024 00:43:36 +0000 ROA not before: Wed 13 Mar 2024 00:43:36 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 19905 IP address blocks: 45.120.148.0/22 maxlen: 24 103.227.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 01:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1230 (0x4ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Validity Not Before: Mar 13 00:43:36 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f0f6b8-eb1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cd:b9:a5:9d:77:65:52:77:5c:e0:3a:4f:bc: 48:a1:9d:7c:04:66:2d:7a:fd:72:d1:86:31:6c:78: 91:39:b3:c9:cc:02:ad:51:c2:06:e8:81:d1:5b:8f: 51:32:44:9e:6c:3a:96:b3:e7:6b:54:ea:39:7b:bf: 5a:ac:23:67:01:b0:ed:77:62:3c:ef:3e:56:b1:f4: 8a:31:cf:be:ff:78:7f:7e:cd:e1:44:13:7b:0e:7f: 1b:7f:e2:be:21:b5:17:d4:68:9e:a9:5a:9a:2b:ee: 7d:61:b4:93:ae:da:a7:40:9b:d3:78:07:ed:32:d1: 5b:86:0d:57:1e:ab:58:ca:79:6e:96:07:05:0e:3f: bd:15:15:4d:31:04:c6:13:87:18:14:f4:89:3e:dc: 30:fe:bb:4a:90:1d:0a:a8:16:02:e4:5a:50:f8:ac: 16:d4:42:a7:e7:6b:16:93:16:57:e9:dd:ef:e1:79: 20:9e:7f:03:d4:08:e9:26:3c:70:12:da:60:f3:b2: 3e:21:ab:84:90:b2:4f:eb:9b:d9:25:47:d3:50:28: a2:73:be:4a:94:89:d6:aa:3c:29:68:d7:55:95:3d: 30:fd:7b:3b:74:00:f1:1f:fa:36:bb:39:75:9a:73: 63:f5:0f:a0:25:66:82:cf:5a:76:14:78:35:34:41: 6d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:0B:7A:17:CD:33:8F:56:17:84:C2:4B:D9:E8:1A:92:EF:9F:DC:66 X509v3 Authority Key Identifier: keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/18981398329B11EDB9F09862C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.148.0/22 103.227.176.0/22 Signature Algorithm: sha256WithRSAEncryption 46:96:1f:32:f3:22:6c:b6:8c:df:a4:a4:cd:31:98:19:5e:c4: 12:4e:e8:36:71:7e:27:5a:73:cd:fd:6a:31:3a:e1:68:17:f3: 4c:f7:f6:12:9e:88:c6:14:9d:3b:a6:70:d1:9b:e9:87:0d:a0: 84:65:03:26:33:82:9c:5b:e5:08:ac:ae:a3:f4:f0:67:df:93: a7:30:4c:24:f0:d4:ae:31:91:e9:6c:41:04:6d:4f:8a:8b:b2: 1b:d1:04:f8:1a:6e:dd:f8:b1:ff:b9:21:fb:bb:d4:ba:6e:b0: 31:7e:93:1b:15:99:27:10:60:be:ad:87:e3:20:88:28:95:f4: 44:a4:eb:f8:b0:c6:84:c5:26:f4:da:62:c9:3f:df:b1:3d:c2: 67:45:89:ca:df:80:95:f4:15:ab:69:0e:b7:6c:bc:cb:a3:09: fb:2e:7f:7b:b4:45:9f:ba:7e:1c:1c:04:12:28:69:24:d7:53: d7:b9:b9:39:86:3e:37:9a:43:d0:0f:72:19:d5:1b:12:22:ca: f4:e7:ae:2a:4a:cd:be:67:af:f0:7b:1f:36:f5:34:1a:72:37: ce:d1:58:27:9a:77:07:5f:76:8e:b6:f6:ae:43:c5:e4:21:d6: 89:cc:04:66:f0:b5:c3:62:27:ee:58:51:bf:f0:26:1d:ad:5b: 3d:51:16:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVEOEExMTAvBgNVBAUTKDc4NTdEMTFBNTFEQ0FFOUMyRTA4ODZBMTBDRTA2RjU1 RjVCODQzMDAwHhcNMjQwMzEzMDA0MzM2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwZjZiOC1lYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAps25pZ13ZVJ3XOA6T7xIoZ18BGYtev1y0YYxbHiRObPJzAKtUcIG6IHRW49R MkSebDqWs+drVOo5e79arCNnAbDtd2I87z5WsfSKMc++/3h/fs3hRBN7Dn8bf+K+ IbUX1GieqVqaK+59YbSTrtqnQJvTeAftMtFbhg1XHqtYynlulgcFDj+9FRVNMQTG E4cYFPSJPtww/rtKkB0KqBYC5FpQ+KwW1EKn52sWkxZX6d3v4Xkgnn8D1AjpJjxw Etpg87I+IauEkLJP65vZJUfTUCiic75KlInWqjwpaNdVlT0w/Xs7dADxH/o2uzl1 mnNj9Q+gJWaCz1p2FHg1NEFtiQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJALehfN M49WF4TCS9noGpLvn9xmMB8GA1UdIwQYMBaAFHhX0RpR3K6cLgiGoQzgb1X1uEMA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUQ4QS9CQTJGMUI5QUNB RUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jwd3VDSWFoRE9CdlZmVzRR d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGZlJHbEhjcnB3dUNJYWhET0J2VmZXNFF3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVEOEEvQkEyRjFCOUFDQUVFMTFFQkEyRkJEMDU2QzRGOUFFMDIvMTg5ODEzOTgz MjlCMTFFREI5RjA5ODYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteJQDBAJn47AwDQYJKoZIhvcNAQELBQADggEBAEaWHzLz Imy2jN+kpM0xmBlexBJO6DZxfidac839ajE64WgX80z39hKeiMYUnTumcNGb6YcN oIRlAyYzgpxb5QisrqP08Gffk6cwTCTw1K4xkelsQQRtT4qLshvRBPgabt34sf+5 Ifu71LpusDF+kxsVmScQYL6th+MgiCiV9ESk6/iwxoTFJvTaYsk/37E9wmdFicrf gJX0FatpDrdsvMujCfsuf3u0RZ+6fhwcBBIoaSTXU9e5uTmGPjeaQ9APchnVGxIi yvTnripKzb5nr/B7Hzb1NBpyN87RWCeadwdfdo629q5DxeQh1onMBGbwtcNiJ+5Y Ub/wJh2tWz1RFhg= -----END CERTIFICATE-----Generated at Wed May 1 03:20:34 2024 by rpki-client on console-fra.rpki-client.org