$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2CC5D50CDEC911EBA828524CC4F9AE02.roa File: 2CC5D50CDEC911EBA828524CC4F9AE02.roa (raw, json) Hash identifier: cGsRLZFoLI4pqqGQ/qt8n7dOCdyQTM3HAYI4vIn1t/c= Subject key identifier: 0A:6B:89:13:74:06:12:25:1F:4A:6B:4E:4A:14:12:0A:33:0A:0F:60 Certificate issuer: /CN=A91ACBB7/serialNumber=746241ADA77DDBDFEA0FE144EFE21391E3FC4FD9 Certificate serial: 0BE9 Authority key identifier: 74:62:41:AD:A7:7D:DB:DF:EA:0F:E1:44:EF:E2:13:91:E3:FC:4F:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2CC5D50CDEC911EBA828524CC4F9AE02.roa Signing time: Tue 26 Mar 2024 19:08:13 +0000 ROA not before: Tue 26 Mar 2024 19:08:13 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 63969 IP address blocks: 45.114.84.0/22 maxlen: 24 103.54.36.0/22 maxlen: 24 2403:41c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.crl rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3049 (0xbe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACBB7/serialNumber=746241ADA77DDBDFEA0FE144EFE21391E3FC4FD9 Validity Not Before: Mar 26 19:08:13 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66031d1d-c7f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ce:f0:5c:7e:d9:85:c9:d6:0a:b8:53:76:69: f4:b6:4f:46:1f:25:18:f3:0f:04:7b:e8:28:0b:e2: 14:50:0c:8a:2c:cb:f3:17:02:2f:bc:a3:1f:51:17: 8a:68:56:38:da:b8:44:27:56:6f:f5:ea:7b:fe:01: bf:0b:7a:6d:7a:96:82:e4:54:ce:29:b3:62:ee:32: cb:cd:5a:79:14:26:9c:44:10:fe:93:4e:f8:51:b0: 03:a3:ec:7f:f6:d1:be:b7:1d:19:d8:a4:94:0b:9c: 86:9f:38:09:2f:62:42:9d:8d:a9:2f:6a:a1:7e:9e: c6:e5:fd:10:ef:ef:af:e9:fa:51:cb:8d:d2:3d:ba: b5:75:90:7a:29:89:fb:7a:c3:ad:11:ab:69:31:5f: 7a:92:a1:33:e0:5e:f7:86:04:34:6c:70:f4:d1:89: e6:3e:2f:cb:93:81:d9:ba:04:9f:f9:30:2b:87:cb: dd:f6:13:d8:0c:93:8b:67:e6:d9:82:55:dd:fc:e3: 4b:8d:40:32:76:41:73:9f:13:98:84:2b:ed:48:9b: 90:36:56:c8:87:f7:e0:16:66:04:55:30:26:01:9f: 57:0d:78:4e:46:22:75:7e:13:13:3e:b3:5b:89:11: 34:8a:34:c1:69:5f:82:62:b9:e9:a1:df:fe:13:0b: 55:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:6B:89:13:74:06:12:25:1F:4A:6B:4E:4A:14:12:0A:33:0A:0F:60 X509v3 Authority Key Identifier: keyid:74:62:41:AD:A7:7D:DB:DF:EA:0F:E1:44:EF:E2:13:91:E3:FC:4F:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2CC5D50CDEC911EBA828524CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.84.0/22 103.54.36.0/22 IPv6: 2403:41c0::/32 Signature Algorithm: sha256WithRSAEncryption 9b:7c:1c:dd:a5:5b:66:ad:9a:4b:11:6e:3c:f9:be:5e:44:a5: 25:06:3e:6b:e2:c1:f1:eb:3a:5c:b0:c5:df:c8:6a:50:21:04: 7a:7d:bd:04:5b:a6:1b:7b:40:97:b0:eb:87:2d:2b:9c:f1:f4: bc:43:54:d9:b0:0e:03:23:41:19:20:7b:df:c4:24:0a:f0:36: 4b:59:cd:22:2a:2a:5d:c6:40:0f:13:67:01:6a:cb:13:0b:57: 5c:0b:bb:8b:37:c3:55:ff:df:77:d0:85:ea:28:49:38:b2:a7: f6:5b:c7:5e:f9:00:8d:54:8d:51:23:ad:73:3d:39:92:07:a5: 7b:48:e4:8d:60:e4:a2:b7:94:bb:49:09:7f:07:b5:5a:4c:50: 58:49:1f:d0:97:22:da:e6:27:5d:11:9f:98:7b:f0:48:f5:1c: cc:16:1c:71:bc:ed:6c:8c:4b:13:5b:c9:88:9b:93:06:26:86: 03:08:f1:d2:3d:05:b5:33:d2:16:38:a9:c6:8b:b2:15:7b:41: a9:fd:83:30:7d:46:a1:5e:5c:81:14:c2:ab:d5:48:a8:1e:69: 26:56:5d:2f:8c:1d:d2:14:e8:3c:2b:da:21:b3:b3:0c:c3:41: 1a:14:b1:3f:d4:05:fb:b6:33:f3:21:fa:8e:44:49:a7:b5:c6: 7b:de:69:74 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNCQjcxMTAvBgNVBAUTKDc0NjI0MUFEQTc3RERCREZFQTBGRTE0NEVGRTIxMzkx RTNGQzRGRDkwHhcNMjQwMzI2MTkwODEzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMWQxZC1jN2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw87wXH7ZhcnWCrhTdmn0tk9GHyUY8w8Ee+goC+IUUAyKLMvzFwIvvKMfUReK aFY42rhEJ1Zv9ep7/gG/C3ptepaC5FTOKbNi7jLLzVp5FCacRBD+k074UbADo+x/ 9tG+tx0Z2KSUC5yGnzgJL2JCnY2pL2qhfp7G5f0Q7++v6fpRy43SPbq1dZB6KYn7 esOtEatpMV96kqEz4F73hgQ0bHD00YnmPi/Lk4HZugSf+TArh8vd9hPYDJOLZ+bZ glXd/ONLjUAydkFznxOYhCvtSJuQNlbIh/fgFmYEVTAmAZ9XDXhORiJ1fhMTPrNb iRE0ijTBaV+CYrnpod/+EwtV3wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFApriRN0 BhIlH0prTkoUEgozCg9gMB8GA1UdIwQYMBaAFHRiQa2nfdvf6g/hRO/iE5Hj/E/Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0JCNy81RTFGQ0VCQ0Yz RjkxMUU5QjhBODMxMEFDNEY5QUUwMi9kR0pCcmFkOTI5X3FELUZFNy1JVGtlUDhU OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RHSkJyYWQ5MjlfcUQtRkU3LUlUa2VQOFQ5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNCQjcvNUUxRkNFQkNGM0Y5MTFFOUI4QTgzMTBBQzRGOUFFMDIvMkNDNUQ1MENE RUM5MTFFQkE4Mjg1MjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItclQDBAJnNiQwDQQCAAIwBwMFACQDQcAwDQYJKoZIhvcN AQELBQADggEBAJt8HN2lW2atmksRbjz5vl5EpSUGPmviwfHrOlywxd/IalAhBHp9 vQRbpht7QJew64ctK5zx9LxDVNmwDgMjQRkge9/EJArwNktZzSIqKl3GQA8TZwFq yxMLV1wLu4s3w1X/33fQheooSTiyp/Zbx175AI1UjVEjrXM9OZIHpXtI5I1g5KK3 lLtJCX8HtVpMUFhJH9CXItrmJ10Rn5h78Ej1HMwWHHG87WyMSxNbyYibkwYmhgMI 8dI9BbUz0hY4qcaLshV7Qan9gzB9RqFeXIEUwqvVSKgeaSZWXS+MHdIU6Dwr2iGz swzDQRoUsT/UBfu2M/Mh+o5ESae1xnveaXQ= -----END CERTIFICATE-----Generated at Thu May 16 19:50:00 2024 by rpki-client on console-fra.rpki-client.org