$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/0F0DB8A2C80411ECBA7BB174C4F9AE02.roa File: 0F0DB8A2C80411ECBA7BB174C4F9AE02.roa (raw, json) Hash identifier: iAJOypV0Ywq6kQD3jOtFOhaI+MrLN3HZqbGx/hK/XRY= Subject key identifier: BB:86:22:0A:CB:C3:75:BE:F2:AE:91:16:E6:5B:38:95:37:57:94:83 Certificate issuer: /CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Certificate serial: 0277 Authority key identifier: 2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/0F0DB8A2C80411ECBA7BB174C4F9AE02.roa Signing time: Mon 13 May 2024 04:08:17 +0000 ROA not before: Mon 13 May 2024 04:08:17 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134451 IP address blocks: 45.114.118.0/24 maxlen: 24 2402:2f80:5::/48 maxlen: 48 2402:2f80:6::/48 maxlen: 48 2402:2f80:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Validity Not Before: May 13 04:08:17 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66419231-aec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:42:02:78:b2:34:ac:d9:d7:27:6c:10:c8:ad: 07:72:76:04:9f:47:a7:ae:55:bd:97:46:83:c1:ce: 1d:32:5f:38:d5:08:a6:81:71:bf:62:49:85:50:8f: 2d:5c:20:8c:25:f0:27:05:bd:01:24:89:6b:34:10: 38:26:fc:eb:ba:f2:56:9c:71:36:99:88:e0:d8:c2: 9f:e1:b0:ae:15:de:2a:01:75:91:1a:ba:b9:9d:3c: fe:5f:11:ba:77:46:10:91:60:b4:61:f4:a9:b0:05: 2f:ac:e2:5f:e0:44:7d:cd:c1:3f:57:19:01:2d:40: d0:f5:be:2d:45:6e:e2:8c:30:76:85:8b:38:87:5a: f8:78:b2:bf:10:e8:9d:d9:25:bc:19:9b:20:01:81: 1e:70:3c:6b:9c:e9:d2:a2:dd:36:75:f0:21:ff:3f: 7a:f5:a5:42:77:19:2e:5e:41:2f:13:20:63:ab:bb: b4:d5:cb:d3:9a:51:68:f1:c4:74:bd:64:c6:1e:82: 20:95:21:0f:88:fa:b6:97:ce:07:a1:b5:b1:0f:b9: e7:f0:3a:d8:a9:fc:22:6d:21:be:96:25:b2:5c:4c: 98:10:34:68:77:1e:2f:f2:ed:ce:61:7c:e5:3a:7e: f2:d4:6f:fc:18:7f:e8:ba:44:d9:96:03:c7:79:94: fb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:86:22:0A:CB:C3:75:BE:F2:AE:91:16:E6:5B:38:95:37:57:94:83 X509v3 Authority Key Identifier: keyid:2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/0F0DB8A2C80411ECBA7BB174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.118.0/24 IPv6: 2402:2f80:5::-2402:2f80:7:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 82:f1:11:f9:11:26:74:22:d5:eb:8a:79:d4:78:ea:fa:1d:d3: 7d:6e:de:18:61:e3:41:7c:24:ae:b7:8a:b4:cb:4c:49:45:c4: 21:04:7b:64:75:db:8d:4d:47:f4:01:d9:ec:1c:54:be:85:85: a3:5f:51:93:a6:6a:1f:f3:02:ff:07:76:83:70:84:70:f8:8f: 83:34:a4:64:21:76:dc:48:43:f0:1e:7d:02:10:12:da:d2:9a: af:7f:fc:5d:24:20:af:5f:ec:7b:1c:94:e4:1c:68:ee:ca:ac: 14:a9:24:ea:dd:e5:6d:c5:05:40:7a:96:af:a0:54:0b:1f:ee: 77:94:77:e2:84:b7:21:5e:c2:3a:c3:2a:d1:a0:82:26:76:91: 12:6a:40:55:74:0a:a3:07:44:c5:b5:0d:5a:55:04:3c:b4:3c: a2:19:40:a4:26:df:4f:98:ae:24:03:1b:30:e3:ba:23:6d:04: 82:f1:17:1f:aa:9c:c0:88:cb:99:0e:5f:55:89:f3:5d:75:1f: b7:ac:5f:5e:89:00:02:c8:2b:2c:6b:a0:aa:d8:1e:f5:ae:e3: 6f:46:38:2b:ad:f7:06:af:fe:53:87:c9:c3:23:28:8f:a6:79: a8:e1:91:51:e8:69:34:68:4a:2e:e4:9e:23:19:ec:3e:3a:92: a5:a1:90:31 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBNDQxMTAvBgNVBAUTKDJDQzMzRkJDQjg2NDA4NDAyMDg5NEE3MkREMDg4NTA1 QUY5QkI2NkQwHhcNMjQwNTEzMDQwODE3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxOTIzMS1hZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0ICeLI0rNnXJ2wQyK0HcnYEn0enrlW9l0aDwc4dMl841QimgXG/YkmFUI8t XCCMJfAnBb0BJIlrNBA4JvzruvJWnHE2mYjg2MKf4bCuFd4qAXWRGrq5nTz+XxG6 d0YQkWC0YfSpsAUvrOJf4ER9zcE/VxkBLUDQ9b4tRW7ijDB2hYs4h1r4eLK/EOid 2SW8GZsgAYEecDxrnOnSot02dfAh/z969aVCdxkuXkEvEyBjq7u01cvTmlFo8cR0 vWTGHoIglSEPiPq2l84HobWxD7nn8DrYqfwibSG+liWyXEyYEDRodx4v8u3OYXzl On7y1G/8GH/oukTZlgPHeZT79QIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFLuGIgrL w3W+8q6RFuZbOJU3V5SDMB8GA1UdIwQYMBaAFCzDP7y4ZAhAIIlKct0IhQWvm7Zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUE0NC85Q0MwMEE5Q0M3 RkYxMUVDOUJEQkZFNEJDNEY5QUUwMi9MTU1fdkxoa0NFQWdpVXB5M1FpRkJhLWJ0 bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNTV92TGhrQ0VBZ2lVcHkzUWlGQmEtYnRtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBNDQvOUNDMDBBOUNDN0ZGMTFFQzlCREJGRTRCQzRGOUFFMDIvMEYwREI4QTJD ODA0MTFFQ0JBN0JCMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAAtcnYwGgQCAAIwFDASAwcAJAIvgAAFAwcDJAIvgAAAMA0G CSqGSIb3DQEBCwUAA4IBAQCC8RH5ESZ0ItXrinnUeOr6HdN9bt4YYeNBfCSut4q0 y0xJRcQhBHtkdduNTUf0AdnsHFS+hYWjX1GTpmof8wL/B3aDcIRw+I+DNKRkIXbc SEPwHn0CEBLa0pqvf/xdJCCvX+x7HJTkHGjuyqwUqSTq3eVtxQVAepavoFQLH+53 lHfihLchXsI6wyrRoIImdpESakBVdAqjB0TFtQ1aVQQ8tDyiGUCkJt9PmK4kAxsw 47ojbQSC8RcfqpzAiMuZDl9VifNddR+3rF9eiQACyCssa6Cq2B71ruNvRjgrrfcG r/5Th8nDIyiPpnmo4ZFR6Gk0aEou5J4jGew+OpKloZAx -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org