$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/10D5A618C80411ECBA7BB174C4F9AE02.roa File: 10D5A618C80411ECBA7BB174C4F9AE02.roa (raw, json) Hash identifier: ZE4dWHsi+2coIm2OexSn+dts8deY7MXR3BFSQ0T9saA= Subject key identifier: B8:2A:1B:96:FF:82:53:D8:2A:BB:A7:4C:FB:56:25:02:1D:31:FE:2F Certificate issuer: /CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Certificate serial: 01A4 Authority key identifier: 2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/10D5A618C80411ECBA7BB174C4F9AE02.roa Signing time: Sat 01 Apr 2023 05:54:36 +0000 ROA not before: Sat 01 Apr 2023 05:54:36 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 40676 IP address blocks: 45.114.119.0/24 maxlen: 24 2402:2f80:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 03:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Validity Not Before: Apr 1 05:54:36 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6427c71c-f376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:c2:72:86:dc:45:6e:60:ef:d7:00:c3:b0: ee:09:04:0c:10:b4:cc:50:56:e7:3f:c2:b9:06:5c: 9d:63:1f:e5:01:d4:80:90:bf:65:65:c4:22:13:90: de:3e:0b:e6:7e:5a:10:84:fc:27:1f:d4:79:e7:53: 84:69:86:c5:00:c6:a4:56:d1:1d:a8:eb:81:2d:3d: d0:62:1b:19:24:c1:6f:d7:1d:7e:a5:e4:fc:4c:93: a5:94:84:ca:55:0d:09:e6:c1:13:ce:37:2f:6d:a1: 62:60:c0:90:49:51:e8:96:37:3f:5e:7c:c9:3e:79: 25:6f:e0:24:21:a5:24:0b:5c:58:9b:3f:33:f3:98: 83:38:e7:e4:fb:40:8a:27:5c:47:56:3e:9f:c4:4e: 15:56:7f:4e:57:f9:11:ad:66:a3:f2:80:08:00:c1: a5:54:9f:cb:ae:3c:72:e6:80:d7:97:88:d4:d2:23: 8a:78:74:87:2d:2d:1e:cc:80:ef:4e:86:8d:45:4c: e5:77:71:12:d4:3a:67:e6:63:66:35:cd:23:06:1f: a5:e3:6e:6e:bd:e5:08:5e:a8:f2:56:68:7f:12:1d: 2c:ec:db:ea:6c:03:ca:1b:dc:74:94:98:12:be:d3: 88:7b:93:f5:9d:99:7c:41:d5:1d:4e:99:45:fa:4f: 40:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:2A:1B:96:FF:82:53:D8:2A:BB:A7:4C:FB:56:25:02:1D:31:FE:2F X509v3 Authority Key Identifier: keyid:2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/10D5A618C80411ECBA7BB174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.119.0/24 IPv6: 2402:2f80:a::/48 Signature Algorithm: sha256WithRSAEncryption b3:63:d0:df:84:fa:97:43:e4:bf:55:9a:24:38:bf:e4:d7:04: 48:12:ef:76:94:26:09:bf:6c:29:7f:f3:02:42:28:5d:dd:c2: ea:af:f0:2b:3e:7d:47:e5:50:23:89:bd:ca:4e:a1:53:6e:80: fb:fb:75:75:dd:22:a8:92:a9:22:f1:b7:cb:04:9f:e9:bb:12: cb:92:43:39:0e:e2:86:d2:ff:fc:5e:ea:21:9c:dd:53:37:f9: 2b:24:d5:57:5b:32:7e:e5:4e:8a:54:fd:c7:d3:33:9f:12:9f: eb:25:0a:84:f7:a4:f1:e5:9e:47:af:53:17:04:8d:c7:63:f0: 44:5c:10:13:d5:1a:72:83:cd:7f:ba:ec:04:42:60:c6:b0:41: 95:72:ff:90:e5:9c:7f:e9:34:43:fe:17:cb:46:f9:3d:7f:0f: 40:05:3e:de:6d:1d:b4:df:da:5b:28:ab:e6:10:c9:5d:e3:53: 37:c1:4b:0b:26:41:09:b8:4b:60:e4:0f:65:fb:bf:6a:d6:02: e6:9d:b6:78:0c:55:99:98:9e:ae:26:1c:8b:ac:28:aa:f0:89: 39:7f:40:84:45:a3:54:d5:48:a2:b8:fb:4f:2a:6f:96:d9:e8: 35:ae:f4:f1:ec:ec:cf:07:9c:cc:e3:78:46:5a:6a:e6:62:17: d7:21:96:b4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBNDQxMTAvBgNVBAUTKDJDQzMzRkJDQjg2NDA4NDAyMDg5NEE3MkREMDg4NTA1 QUY5QkI2NkQwHhcNMjMwNDAxMDU1NDM2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDI3YzcxYy1mMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcXCcobcRW5g79cAw7DuCQQMELTMUFbnP8K5BlydYx/lAdSAkL9lZcQiE5De PgvmfloQhPwnH9R551OEaYbFAMakVtEdqOuBLT3QYhsZJMFv1x1+peT8TJOllITK VQ0J5sETzjcvbaFiYMCQSVHoljc/XnzJPnklb+AkIaUkC1xYmz8z85iDOOfk+0CK J1xHVj6fxE4VVn9OV/kRrWaj8oAIAMGlVJ/Lrjxy5oDXl4jU0iOKeHSHLS0ezIDv ToaNRUzld3ES1Dpn5mNmNc0jBh+l425uveUIXqjyVmh/Eh0s7NvqbAPKG9x0lJgS vtOIe5P1nZl8QdUdTplF+k9AfwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLgqG5b/ glPYKrunTPtWJQIdMf4vMB8GA1UdIwQYMBaAFCzDP7y4ZAhAIIlKct0IhQWvm7Zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUE0NC85Q0MwMEE5Q0M3 RkYxMUVDOUJEQkZFNEJDNEY5QUUwMi9MTU1fdkxoa0NFQWdpVXB5M1FpRkJhLWJ0 bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNTV92TGhrQ0VBZ2lVcHkzUWlGQmEtYnRtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBNDQvOUNDMDBBOUNDN0ZGMTFFQzlCREJGRTRCQzRGOUFFMDIvMTBENUE2MThD ODA0MTFFQ0JBN0JCMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAtcncwDwQCAAIwCQMHACQCL4AACjANBgkqhkiG9w0BAQsF AAOCAQEAs2PQ34T6l0Pkv1WaJDi/5NcESBLvdpQmCb9sKX/zAkIoXd3C6q/wKz59 R+VQI4m9yk6hU26A+/t1dd0iqJKpIvG3ywSf6bsSy5JDOQ7ihtL//F7qIZzdUzf5 KyTVV1syfuVOilT9x9MznxKf6yUKhPek8eWeR69TFwSNx2PwRFwQE9UacoPNf7rs BEJgxrBBlXL/kOWcf+k0Q/4Xy0b5PX8PQAU+3m0dtN/aWyir5hDJXeNTN8FLCyZB CbhLYOQPZfu/atYC5p22eAxVmZieriYci6woqvCJOX9AhEWjVNVIorj7Typvltno Na708ezszweczON4Rlpq5mIX1yGWtA== -----END CERTIFICATE-----Generated at Thu Apr 25 06:17:49 2024 by rpki-client on console-ams.rpki-client.org