$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E9258B3C037211EE9E15EE32C4F9AE02.roa File: E9258B3C037211EE9E15EE32C4F9AE02.roa (raw, json) Hash identifier: ehhP8ITXS/jxgUoFgI8ZJ3W4cuXpoQH/N9JT+CKEMkI= Subject key identifier: 4B:26:39:8C:52:26:A4:6E:0A:20:3B:55:A6:2C:D4:BB:65:C5:90:AB Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 01C0 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E9258B3C037211EE9E15EE32C4F9AE02.roa Signing time: Mon 29 Apr 2024 11:55:17 +0000 ROA not before: Mon 29 Apr 2024 11:55:17 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136557 IP address blocks: 45.252.189.0/24 maxlen: 24 103.214.20.0/24 maxlen: 24 103.252.109.0/24 maxlen: 24 202.37.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Apr 29 11:55:17 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=662f8aa4-5e91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ee:5f:fe:83:ea:6e:03:6b:a5:f4:a6:21:20: b2:07:f3:17:d5:28:d6:84:9f:b3:c6:69:f1:c5:3d: 29:11:ab:e0:6a:32:5f:89:c5:5f:ae:83:cd:c1:a3: bc:a1:b2:c6:17:20:a0:51:52:65:83:27:8b:ba:69: e8:d3:76:52:44:75:79:6b:b9:b3:ed:c0:91:01:17: 01:95:ab:81:5c:4a:32:a5:c7:d9:ec:b4:35:8e:dc: 3b:e3:6a:b1:3a:b8:ff:dd:b1:87:9f:22:db:b3:da: 95:9e:4e:90:f6:d3:f4:89:46:3b:4a:9a:87:38:00: 85:bd:9b:16:aa:31:b9:a8:e4:34:9f:71:d4:4f:27: f5:b2:a0:fa:cf:1e:ff:33:d6:45:08:39:49:9f:25: f1:84:20:37:5a:35:5a:c2:e6:73:d9:a7:b9:e2:07: 0d:2d:9a:41:e8:bc:a9:76:9e:06:5c:bd:c2:bc:a6: 42:fa:e7:e9:00:46:a7:dc:d2:76:c9:d3:82:59:cf: ff:9c:d8:de:eb:2c:6f:8d:66:52:42:70:fc:06:a0: 18:a4:df:b4:8c:6a:cb:87:cc:1b:1e:61:b3:bc:8c: 78:8a:d3:43:6d:b0:3e:83:b6:dd:87:56:8c:d6:47: 5c:62:1d:1e:7a:b5:2e:00:10:78:68:45:a2:dd:e2: 31:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:26:39:8C:52:26:A4:6E:0A:20:3B:55:A6:2C:D4:BB:65:C5:90:AB X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E9258B3C037211EE9E15EE32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.252.189.0/24 103.214.20.0/24 103.252.109.0/24 202.37.74.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:f4:e2:b3:2b:2c:52:04:d4:53:fe:a4:91:83:6a:9d:d5:e3: c2:48:33:49:bc:40:21:ec:d3:0a:98:5b:3a:3d:df:d7:1b:1b: ee:b4:96:19:68:7b:79:57:76:fb:91:33:e8:72:51:26:04:56: 2d:70:69:87:3d:42:a6:32:35:48:36:57:30:24:f1:9d:89:cd: 48:4f:4c:ae:79:a5:69:1d:e4:70:96:d3:0c:a7:6c:e9:16:e8: 3f:76:a4:03:cc:b7:27:44:fe:55:fa:40:b5:81:36:26:44:63: 26:71:41:c8:28:49:11:70:07:74:c1:99:03:36:bc:6b:4a:d9: 41:b3:4f:4d:49:18:c2:18:32:87:24:9f:c7:a0:48:5b:66:79: f2:63:ec:71:34:5b:b8:74:11:81:65:58:29:61:04:e9:ef:42: 79:ba:c2:c8:01:b5:23:4b:80:cb:17:e5:f5:e7:dc:a3:cc:85: fb:77:34:a3:b9:f8:ba:08:03:0a:c6:4e:ac:5f:0e:ac:46:15: 3b:4f:11:c7:8b:5d:6f:bd:98:dd:aa:6a:37:40:23:8b:24:b2: b2:e1:02:77:de:cd:8b:7b:26:5e:05:63:5b:ce:0f:fd:16:ae: ca:f0:5d:0c:2d:bc:12:0c:2a:f6:ae:2e:47:3e:f3:d0:38:fd: 15:a9:95:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwNDI5MTE1NTE3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJmOGFhNC01ZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+5f/oPqbgNrpfSmISCyB/MX1SjWhJ+zxmnxxT0pEavgajJficVfroPNwaO8 obLGFyCgUVJlgyeLumno03ZSRHV5a7mz7cCRARcBlauBXEoypcfZ7LQ1jtw742qx Orj/3bGHnyLbs9qVnk6Q9tP0iUY7SpqHOACFvZsWqjG5qOQ0n3HUTyf1sqD6zx7/ M9ZFCDlJnyXxhCA3WjVawuZz2ae54gcNLZpB6Lypdp4GXL3CvKZC+ufpAEan3NJ2 ydOCWc//nNje6yxvjWZSQnD8BqAYpN+0jGrLh8wbHmGzvIx4itNDbbA+g7bdh1aM 1kdcYh0eerUuABB4aEWi3eIxUQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFEsmOYxS JqRuCiA7VaYs1LtlxZCrMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRTkyNThCM0Mw MzcyMTFFRTlFMTVFRTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAt/L0DBABn1hQDBABn/G0DBADKJUowDQYJKoZIhvcNAQEL BQADggEBAI/04rMrLFIE1FP+pJGDap3V48JIM0m8QCHs0wqYWzo939cbG+60lhlo e3lXdvuRM+hyUSYEVi1waYc9QqYyNUg2VzAk8Z2JzUhPTK55pWkd5HCW0wynbOkW 6D92pAPMtydE/lX6QLWBNiZEYyZxQcgoSRFwB3TBmQM2vGtK2UGzT01JGMIYMock n8egSFtmefJj7HE0W7h0EYFlWClhBOnvQnm6wsgBtSNLgMsX5fXn3KPMhft3NKO5 +LoIAwrGTqxfDqxGFTtPEceLXW+9mN2qajdAI4sksrLhAnfezYt7Jl4FY1vOD/0W rsrwXQwtvBIMKvauLkc+89A4/RWplVc= -----END CERTIFICATE-----Generated at Wed May 15 06:54:31 2024 by rpki-client on console-ams.rpki-client.org