$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa File: E26173CE050611EAA0470B49C4F9AE02.roa (raw, json) Hash identifier: 1JHi7jZ5qpgOg15JIGHRNFUwT1UJIp532N130K7N+zc= Subject key identifier: BC:10:BA:36:88:22:8D:BB:B6:81:F4:BA:38:BC:D2:47:39:17:ED:35 Certificate issuer: /CN=A91B3CB5/serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Certificate serial: 0B2B Authority key identifier: 13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa Signing time: Fri 06 Oct 2023 19:16:48 +0000 ROA not before: Fri 06 Oct 2023 19:16:48 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 56132 IP address blocks: 49.127.0.0/16 maxlen: 16 59.191.208.0/20 maxlen: 20 59.191.220.0/22 maxlen: 22 103.35.228.0/22 maxlen: 22 118.138.0.0/16 maxlen: 16 118.138.232.0/21 maxlen: 21 118.138.240.0/21 maxlen: 21 118.139.0.0/17 maxlen: 17 2404:2400::/32 maxlen: 32 2404:2400::/40 maxlen: 40 2404:2400::/44 maxlen: 44 2404:2400::/48 maxlen: 48 2404:2400:100::/40 maxlen: 40 2404:2400:100::/44 maxlen: 44 2404:2400:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2859 (0xb2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5/serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Validity Not Before: Oct 6 19:16:48 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65205d1f-589e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b3:dc:88:9c:ac:ed:3b:a3:c4:d3:51:07:f4: 0f:0a:3c:3d:80:ba:5a:66:37:d4:e8:3d:47:ae:10: 8f:84:e5:cc:6e:30:db:92:2b:f5:62:4c:a3:c0:5d: aa:a0:4a:ab:7b:2a:d8:02:7c:06:be:da:43:19:b6: 57:69:14:99:a2:aa:62:89:86:e9:06:a5:d3:89:20: db:a2:be:0a:72:d3:ea:47:ef:dc:0b:bb:72:5e:12: fa:0f:49:41:3a:cb:60:46:e3:03:4c:f8:06:66:76: da:fe:42:42:dd:ec:cb:dc:50:58:fa:06:f4:fb:0e: 72:4a:0d:86:44:01:5c:3f:ca:e1:c6:0b:ff:f9:38: 06:ab:06:ac:f9:52:d2:c5:e4:53:45:1f:92:01:0e: 4f:38:44:d5:93:57:50:4e:25:6d:fb:d6:29:25:b4: 66:70:b6:40:ce:b3:b2:5d:47:c4:49:7c:df:0f:f1: 35:23:ab:23:6e:7e:fb:11:a2:64:14:fc:74:1c:91: f5:78:68:e8:f7:0f:48:e5:c9:3d:42:4a:2a:d0:11: 59:21:be:87:51:78:fe:dc:a8:78:a8:bd:29:c4:a9: ff:ab:93:1c:85:e2:2e:f4:f2:77:60:40:ed:2e:16: 8f:d8:bf:32:d0:09:c9:f1:b0:ee:59:0a:2f:b8:11: 0a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:10:BA:36:88:22:8D:BB:B6:81:F4:BA:38:BC:D2:47:39:17:ED:35 X509v3 Authority Key Identifier: keyid:13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.127.0.0/16 59.191.208.0/20 103.35.228.0/22 118.138.0.0-118.139.127.255 IPv6: 2404:2400::/32 Signature Algorithm: sha256WithRSAEncryption 0b:89:ce:66:58:4f:73:7d:bc:52:b1:5b:41:2f:14:f1:1a:ae: 41:45:cd:a0:67:e0:ca:8b:f5:b4:df:96:c5:b5:b5:25:85:ed: 82:dc:4b:da:63:5c:70:e1:0f:9d:ef:48:e6:e5:d5:ad:0a:97: b0:23:e8:ea:a8:75:a2:c5:48:a0:eb:73:cd:8e:50:bc:20:4f: 66:01:7b:11:09:ca:06:31:31:cc:4a:a9:a3:46:ca:ae:a9:1d: f6:7e:25:67:9d:2d:2e:10:0c:4e:54:8c:c7:95:bc:ed:8d:f8: 0a:1c:5a:bc:9e:d2:ed:d4:f2:cb:a0:97:de:f4:0d:f9:2d:5e: 2f:84:1e:b5:03:40:76:be:b9:f8:c4:53:6a:9f:08:55:fa:58: 87:50:a7:aa:09:39:26:dd:85:f5:92:5c:6a:e5:13:f1:78:58: bf:44:9e:17:85:fd:01:c4:27:4f:94:59:35:97:b8:bb:88:b8: 24:34:e5:2a:47:14:74:18:e6:67:c3:d2:ef:0a:b5:e3:ca:17: 3a:21:09:5f:df:3a:54:f9:3c:a7:b9:f7:84:dc:6d:c7:ea:72: ee:b3:91:88:7e:8b:a8:f2:dd:f7:8d:ca:c4:7d:60:09:4a:88: bc:44:f3:06:b3:f6:97:29:bf:4f:f2:2a:b9:71:50:8f:e5:3f: 63:19:b3:bd -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICCyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQjUxMTAvBgNVBAUTKDEzNTVENTE4N0QyRTYzRDdFNkQ0OTA3OEQ4RTcxRkEw NTFDNDU2RTMwHhcNMjMxMDA2MTkxNjQ4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwNWQxZi01ODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LPciJys7TujxNNRB/QPCjw9gLpaZjfU6D1HrhCPhOXMbjDbkiv1YkyjwF2q oEqreyrYAnwGvtpDGbZXaRSZoqpiiYbpBqXTiSDbor4KctPqR+/cC7tyXhL6D0lB OstgRuMDTPgGZnba/kJC3ezL3FBY+gb0+w5ySg2GRAFcP8rhxgv/+TgGqwas+VLS xeRTRR+SAQ5POETVk1dQTiVt+9YpJbRmcLZAzrOyXUfESXzfD/E1I6sjbn77EaJk FPx0HJH1eGjo9w9I5ck9Qkoq0BFZIb6HUXj+3Kh4qL0pxKn/q5McheIu9PJ3YEDt LhaP2L8y0AnJ8bDuWQovuBEK8wIDAQABo4ICvDCCArgwHQYDVR0OBBYEFLwQujaI Io27toH0uji80kc5F+01MB8GA1UdIwQYMBaAFBNV1Rh9LmPX5tSQeNjnH6BRxFbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NCNS82MzI2NTBGODA1 MDUxMUVBQUE5MzRDNDNDNEY5QUUwMi9FMVhWR0gwdVk5Zm0xSkI0Mk9jZm9GSEVW dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UxWFZHSDB1WTlmbTFKQjQyT2Nmb0ZIRVZ1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQjUvNjMyNjUwRjgwNTA1MTFFQUFBOTM0QzQzQzRGOUFFMDIvRTI2MTczQ0Uw NTA2MTFFQUEwNDcwQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DAwAxfwMEBDu/0AMEAmcj5DALAwMBdooDBAd2iwAwDQQCAAIw BwMFACQEJAAwDQYJKoZIhvcNAQELBQADggEBAAuJzmZYT3N9vFKxW0EvFPEarkFF zaBn4MqL9bTflsW1tSWF7YLcS9pjXHDhD53vSObl1a0Kl7Aj6OqodaLFSKDrc82O ULwgT2YBexEJygYxMcxKqaNGyq6pHfZ+JWedLS4QDE5UjMeVvO2N+AocWrye0u3U 8sugl970DfktXi+EHrUDQHa+ufjEU2qfCFX6WIdQp6oJOSbdhfWSXGrlE/F4WL9E nheF/QHEJ0+UWTWXuLuIuCQ05SpHFHQY5mfD0u8KtePKFzohCV/fOlT5PKe594Tc bcfqcu6zkYh+i6jy3feNysR9YAlKiLxE8waz9pcpv0/yKrlxUI/lP2MZs70= -----END CERTIFICATE-----Generated at Sat May 18 19:56:07 2024 by rpki-client on console-fra.rpki-client.org