$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/C886095278C311EAA3BED75BC4F9AE02.roa File: C886095278C311EAA3BED75BC4F9AE02.roa (raw, json) Hash identifier: SVtmGwyhB32ZGIS16n8R5t7ovEdBgp8427iSC18Jg6w= Subject key identifier: DA:F0:80:55:BC:60:EA:3B:6F:8E:70:52:CD:CC:FD:F3:E4:43:5A:AB Certificate issuer: /CN=A91B0F3F/serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Certificate serial: 0880 Authority key identifier: F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/C886095278C311EAA3BED75BC4F9AE02.roa Signing time: Fri 02 Jun 2023 22:33:36 +0000 ROA not before: Fri 02 Jun 2023 22:33:36 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135420 IP address blocks: 45.249.184.0/22 maxlen: 22 45.249.184.0/24 maxlen: 24 45.249.185.0/24 maxlen: 24 45.249.186.0/24 maxlen: 24 45.249.187.0/24 maxlen: 24 103.218.188.0/22 maxlen: 22 103.218.188.0/24 maxlen: 24 103.218.189.0/24 maxlen: 24 103.218.190.0/24 maxlen: 24 103.218.191.0/24 maxlen: 24 2402:48c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2176 (0x880) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F3F/serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Validity Not Before: Jun 2 22:33:36 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a6e40-5cbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:08:de:9a:62:95:ee:cf:98:72:bf:46:81:54: 4d:18:0a:81:84:6e:43:95:64:ba:5a:cc:21:c1:02: 9e:c1:9f:dc:d4:f3:15:cb:3c:64:75:4a:42:f0:f8: f1:f9:ad:71:e2:77:51:1a:6f:72:9b:9d:90:88:cc: 83:3e:43:cd:0d:0f:59:c2:51:60:5d:e4:43:d0:05: fd:33:20:1a:84:91:0c:2a:8b:ef:20:c3:6f:18:08: 15:9b:95:f8:80:4d:13:99:1c:c1:a3:93:7a:a1:c0: 3f:0d:8f:57:bb:8c:5b:2e:3e:0a:bb:84:37:38:23: a2:0f:23:6b:f8:28:73:38:b7:ec:bc:3e:aa:9e:45: cb:0d:5e:15:40:a0:72:9c:ee:cd:76:af:47:8b:ab: 20:2e:90:a7:38:d6:63:fa:2c:73:5b:48:70:2a:ce: 24:ec:e4:52:92:f4:5f:a1:28:4b:58:50:fe:a9:07: 23:82:8d:10:a0:84:9f:b8:fa:34:83:ec:7f:fb:b8: da:ca:2e:9f:21:00:5f:cf:73:dc:40:fe:ef:4c:b1: 8e:a5:d7:46:e5:47:82:e8:03:64:74:8e:9f:4a:a3: a2:8f:4c:fb:e8:00:9a:3c:d9:03:3f:43:a4:bd:42: 71:0e:8b:44:e1:bd:26:8a:bd:ab:05:55:cc:aa:02: e5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F0:80:55:BC:60:EA:3B:6F:8E:70:52:CD:CC:FD:F3:E4:43:5A:AB X509v3 Authority Key Identifier: keyid:F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/C886095278C311EAA3BED75BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.184.0/22 103.218.188.0/22 IPv6: 2402:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 63:0d:13:ed:0d:52:d6:a5:43:63:f4:e1:8d:f8:74:36:ad:2c: 79:02:56:7f:ab:fd:c7:cb:96:f7:1d:f7:7b:73:47:22:a4:73: e5:64:1a:46:58:2f:0d:3a:f4:60:0d:6d:6e:0e:e9:04:7f:ea: 97:3d:e5:b8:79:83:d5:88:62:ab:37:db:af:93:b3:27:3e:71: fd:62:e7:8d:0e:a5:0a:be:dd:b1:a5:00:6b:ca:24:1f:8d:b0: 32:fd:43:6d:21:8c:79:b5:20:b6:fa:17:3b:bb:b9:af:73:bc: 98:88:ac:74:ee:30:f0:12:61:09:7b:72:66:ba:75:9c:6e:ac: e3:90:77:f2:2d:a1:18:0b:fc:76:00:d7:5b:ba:a6:cc:51:7f: a0:7d:bd:e3:bd:96:69:4e:c0:96:fc:68:09:83:0f:dc:ba:47: d0:81:ad:1f:1e:a2:86:98:86:13:1b:58:30:e7:ee:84:7f:1d: 06:65:54:71:d8:77:d6:00:3d:56:17:a7:cd:30:fc:f7:e7:7f: e4:c5:3a:43:01:50:0d:a8:8b:19:94:ac:2e:36:a1:50:80:1c: 5a:c1:cf:d0:c1:c1:41:81:5a:0a:5f:67:37:29:d1:58:5c:49: 11:50:fc:9a:c1:2f:d1:82:33:1d:2d:9f:49:55:33:bf:07:b7: 6d:1a:eb:9c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGM0YxMTAvBgNVBAUTKEY4MThGQzk4OEVDNzAzMkMzRTJDNkE0OEE1NTQ5OEFC N0NENTY1RkQwHhcNMjMwNjAyMjIzMzM2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNmU0MC01Y2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AjemmKV7s+Ycr9GgVRNGAqBhG5DlWS6WswhwQKewZ/c1PMVyzxkdUpC8Pjx +a1x4ndRGm9ym52QiMyDPkPNDQ9ZwlFgXeRD0AX9MyAahJEMKovvIMNvGAgVm5X4 gE0TmRzBo5N6ocA/DY9Xu4xbLj4Ku4Q3OCOiDyNr+ChzOLfsvD6qnkXLDV4VQKBy nO7Ndq9Hi6sgLpCnONZj+ixzW0hwKs4k7ORSkvRfoShLWFD+qQcjgo0QoISfuPo0 g+x/+7jayi6fIQBfz3PcQP7vTLGOpddG5UeC6ANkdI6fSqOij0z76ACaPNkDP0Ok vUJxDotE4b0mir2rBVXMqgLlGQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNrwgFW8 YOo7b45wUs3M/fPkQ1qrMB8GA1UdIwQYMBaAFPgY/JiOxwMsPixqSKVUmKt81WX9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEYzRi8wOTM3M0FENjc4 QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5dy1MR3BJcFZTWXEzelZa ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1CajhtSTdIQXl3LUxHcElwVlNZcTN6VlpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBGM0YvMDkzNzNBRDY3OEMyMTFFQUJENzcyMzU5QzRGOUFFMDIvQzg4NjA5NTI3 OEMzMTFFQUEzQkVENzVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIt+bgDBAJn2rwwDQQCAAIwBwMFACQCSMAwDQYJKoZIhvcN AQELBQADggEBAGMNE+0NUtalQ2P04Y34dDatLHkCVn+r/cfLlvcd93tzRyKkc+Vk GkZYLw069GANbW4O6QR/6pc95bh5g9WIYqs326+Tsyc+cf1i540OpQq+3bGlAGvK JB+NsDL9Q20hjHm1ILb6Fzu7ua9zvJiIrHTuMPASYQl7cma6dZxurOOQd/ItoRgL /HYA11u6psxRf6B9veO9lmlOwJb8aAmDD9y6R9CBrR8eooaYhhMbWDDn7oR/HQZl VHHYd9YAPVYXp80w/Pfnf+TFOkMBUA2oixmUrC42oVCAHFrBz9DBwUGBWgpfZzcp 0VhcSRFQ/JrBL9GCMx0tn0lVM78Ht20a65w= -----END CERTIFICATE-----Generated at Mon May 6 23:05:47 2024 by rpki-client on console-fra.rpki-client.org