$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2E926DC45B7C11EDAAFAB831C4F9AE02.roa File: 2E926DC45B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: Gx2no7tYjnOwupsDXgy6eKtX0sG90oOvxxXo880RUN8= Subject key identifier: 58:5E:07:84:F5:AB:82:CB:05:13:9D:42:F6:42:70:B6:0E:37:32:A5 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 0150 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2E926DC45B7C11EDAAFAB831C4F9AE02.roa Signing time: Sun 31 Mar 2024 05:07:07 +0000 ROA not before: Sun 31 Mar 2024 05:07:07 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 45867 IP address blocks: 140.168.64.0/18 maxlen: 19 140.168.66.0/24 maxlen: 24 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.80.0/24 maxlen: 24 140.168.81.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.128.0/18 maxlen: 19 140.168.135.0/24 maxlen: 24 140.168.138.0/24 maxlen: 24 140.168.139.0/24 maxlen: 24 140.168.166.0/24 maxlen: 24 140.168.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Mar 31 05:07:07 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6608ef7b-1a3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:cd:b1:d6:7c:56:9b:93:3f:6f:4d:70:f7:6d: 29:20:46:b6:9d:7b:21:ee:48:3a:9f:9a:8b:86:4c: 5d:78:e8:8b:f6:32:a7:d8:ec:b7:77:b6:ac:e5:82: 31:26:3e:6f:78:b1:92:ba:0d:0b:82:d1:02:b1:59: 05:76:a5:0f:70:f9:21:11:51:d4:c8:02:fd:af:be: 2e:92:27:79:0c:4a:3b:a6:56:35:7f:94:b2:e2:80: 97:1e:ef:f8:5f:8b:a8:81:51:37:70:31:32:32:d5: 95:23:ad:f3:bd:5e:ac:de:c6:89:4a:ac:a9:7a:0c: b3:07:b9:38:ba:05:97:a7:4b:a7:3b:a6:fd:11:7e: e9:86:db:d0:80:ac:b9:d2:c5:34:6a:35:ae:41:87: 66:93:e6:f2:09:e3:a5:d7:6b:3e:d6:e8:eb:f8:da: 52:f5:0e:25:b1:4c:f0:be:44:48:8d:04:27:7e:e8: a1:41:49:25:75:91:45:bb:55:47:f0:5c:7e:90:83: 5f:62:e1:47:40:1a:84:94:42:05:26:89:6b:8c:84: 12:ef:aa:b1:31:97:5f:ea:d6:77:db:eb:08:fa:12: a3:9d:b2:33:de:ec:15:70:c5:f9:da:5f:b3:90:53: 1c:0d:f4:bc:38:1f:d2:07:33:74:d1:74:88:1b:c4: 1d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5E:07:84:F5:AB:82:CB:05:13:9D:42:F6:42:70:B6:0E:37:32:A5 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2E926DC45B7C11EDAAFAB831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.64.0-140.168.191.255 140.168.236.0/22 Signature Algorithm: sha256WithRSAEncryption 83:c2:62:93:fe:fe:09:a2:b4:be:d3:99:89:67:b2:83:d8:01: e7:69:07:1d:2f:fc:cc:67:bb:88:37:1c:c8:47:bf:f9:d5:6f: 8d:de:e0:21:60:27:72:72:89:86:eb:a4:8a:68:31:85:b8:68: 16:e9:55:32:a5:f3:36:67:d3:6a:f2:21:4f:ba:e7:86:e1:5c: 95:92:7e:4a:5a:43:93:21:cf:93:76:cc:7e:5e:ba:9c:e5:d5: 07:7e:99:7e:dc:37:f5:4d:93:e0:9e:bd:aa:04:44:91:a7:74: 37:31:84:94:b1:03:d9:3d:9b:74:a7:e4:e1:85:e2:01:7c:66: d9:08:44:8d:e5:2c:a0:09:55:d2:8a:39:53:08:ca:18:33:8f: a1:27:6d:7a:2e:c3:61:10:97:5a:85:fe:49:c2:bb:0f:d6:bd: 20:cd:5b:30:4d:47:9f:01:45:13:78:35:6f:35:43:0f:5f:a2: 39:11:51:9f:eb:73:5c:53:0f:f0:71:76:d6:f6:1d:2f:57:d4: 87:12:5e:0e:77:0b:4a:a7:87:19:74:f3:46:bc:ed:62:e3:f9: 0c:10:fe:1e:36:b9:8b:14:1b:a3:d1:28:73:33:32:9f:ed:92: dd:9c:76:cd:e8:23:64:89:9c:5f:5d:df:02:6b:56:3f:f3:28: 73:19:a8:80 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjQwMzMxMDUwNzA3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4ZWY3Yi0xYTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+M2x1nxWm5M/b01w920pIEa2nXsh7kg6n5qLhkxdeOiL9jKn2Oy3d7as5YIx Jj5veLGSug0LgtECsVkFdqUPcPkhEVHUyAL9r74ukid5DEo7plY1f5Sy4oCXHu/4 X4uogVE3cDEyMtWVI63zvV6s3saJSqypegyzB7k4ugWXp0unO6b9EX7phtvQgKy5 0sU0ajWuQYdmk+byCeOl12s+1ujr+NpS9Q4lsUzwvkRIjQQnfuihQUkldZFFu1VH 8Fx+kINfYuFHQBqElEIFJolrjIQS76qxMZdf6tZ32+sI+hKjnbIz3uwVcMX52l+z kFMcDfS8OB/SBzN00XSIG8QdIQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFFheB4T1 q4LLBROdQvZCcLYONzKlMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkU5MjZEQzQ1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEBoyoQAMEBoyogAMEAoyo7DANBgkqhkiG9w0BAQsFAAOC AQEAg8Jik/7+CaK0vtOZiWeyg9gB52kHHS/8zGe7iDccyEe/+dVvjd7gIWAncnKJ huukimgxhbhoFulVMqXzNmfTavIhT7rnhuFclZJ+SlpDkyHPk3bMfl66nOXVB36Z ftw39U2T4J69qgREkad0NzGElLED2T2bdKfk4YXiAXxm2QhEjeUsoAlV0oo5UwjK GDOPoSdtei7DYRCXWoX+ScK7D9a9IM1bME1HnwFFE3g1bzVDD1+iORFRn+tzXFMP 8HF21vYdL1fUhxJeDncLSqeHGXTzRrztYuP5DBD+Hja5ixQbo9EoczMyn+2S3Zx2 zegjZImcX13fAmtWP/MocxmogA== -----END CERTIFICATE-----Generated at Fri May 17 06:18:09 2024 by rpki-client on console-fra.rpki-client.org