$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/F61502A4C0F511EA854EE45FC4F9AE02.roa File: F61502A4C0F511EA854EE45FC4F9AE02.roa (raw, json) Hash identifier: Bck35714D7BeuuiLhhjv/nzTFmw6s1rP/8hyVJG6hSU= Subject key identifier: 32:9F:63:3A:26:28:61:29:A6:ED:45:5F:56:8B:FD:E9:9A:26:42:98 Certificate issuer: /CN=A91BC6DD/serialNumber=4FDD1C93A13CBA91B4F8B7F2C6518F48BA170BAD Certificate serial: 0715 Authority key identifier: 4F:DD:1C:93:A1:3C:BA:91:B4:F8:B7:F2:C6:51:8F:48:BA:17:0B:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/F61502A4C0F511EA854EE45FC4F9AE02.roa Signing time: Fri 02 Jun 2023 23:35:14 +0000 ROA not before: Fri 02 Jun 2023 23:35:14 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 10098 IP address blocks: 49.213.0.0/21 maxlen: 21 49.213.0.0/24 maxlen: 24 49.213.1.0/24 maxlen: 24 49.213.2.0/24 maxlen: 24 49.213.3.0/24 maxlen: 24 49.213.4.0/24 maxlen: 24 49.213.5.0/24 maxlen: 24 49.213.6.0/24 maxlen: 24 49.213.7.0/24 maxlen: 24 202.123.64.0/19 maxlen: 19 202.123.64.0/24 maxlen: 24 202.123.65.0/24 maxlen: 24 202.123.66.0/24 maxlen: 24 202.123.68.0/24 maxlen: 24 202.123.69.0/24 maxlen: 24 202.123.70.0/24 maxlen: 24 202.123.72.0/24 maxlen: 24 202.123.74.0/24 maxlen: 24 202.123.75.0/24 maxlen: 24 202.123.76.0/24 maxlen: 24 202.123.77.0/24 maxlen: 24 202.123.80.0/24 maxlen: 24 202.123.81.0/24 maxlen: 24 202.123.84.0/24 maxlen: 24 202.123.85.0/24 maxlen: 24 202.123.87.0/24 maxlen: 24 202.123.89.0/24 maxlen: 24 202.123.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.crl rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1813 (0x715) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6DD/serialNumber=4FDD1C93A13CBA91B4F8B7F2C6518F48BA170BAD Validity Not Before: Jun 2 23:35:14 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a7cb2-7de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c8:c8:04:92:0b:84:01:ac:b2:1a:f7:2e:7f: 8f:65:d5:e0:5e:3a:49:cf:31:e0:f7:2f:d9:64:de: 6c:e9:dc:43:1a:93:c2:13:72:bb:00:1f:92:57:a3: 19:f4:26:fa:78:4d:8c:04:c1:a9:68:17:45:24:0a: c0:07:c0:5a:90:02:23:2c:72:e2:cd:b4:d2:2f:dc: 28:70:58:74:c3:fe:b9:3c:f8:52:61:f8:d4:25:62: 9d:ab:a7:a1:df:e9:c7:93:35:5c:0c:b9:3a:5a:f5: 9b:50:17:f3:41:ab:0a:06:25:3e:e7:57:d2:1b:47: 18:57:82:e1:e7:af:8a:20:b4:ba:b2:8a:1b:8c:a9: 9c:01:33:0f:e3:de:90:c6:5c:5a:d4:a9:d2:c6:1f: ce:de:16:95:7a:2c:a3:3d:60:d3:77:eb:3c:0a:66: 74:8a:69:2c:a1:d1:41:44:77:92:ee:7e:69:7a:2a: 71:15:ee:38:6a:01:cb:52:f4:6a:63:a7:fa:92:06: 67:f6:23:4c:de:19:60:39:7a:27:01:21:0e:83:e9: 5c:40:7f:84:f2:76:af:4a:14:16:d7:a1:45:a7:e7: ae:2d:c9:ca:46:b9:0e:dd:aa:28:cd:af:9c:f2:69: ed:7b:22:d4:88:5f:22:6b:cb:70:1a:77:d1:12:45: a1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:9F:63:3A:26:28:61:29:A6:ED:45:5F:56:8B:FD:E9:9A:26:42:98 X509v3 Authority Key Identifier: keyid:4F:DD:1C:93:A1:3C:BA:91:B4:F8:B7:F2:C6:51:8F:48:BA:17:0B:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/F61502A4C0F511EA854EE45FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.213.0.0/21 202.123.64.0/19 Signature Algorithm: sha256WithRSAEncryption 41:80:75:34:ab:f6:91:b5:64:0c:ec:c4:f4:89:93:6c:0f:a3: 2e:c1:0e:90:7f:8b:28:cb:b5:f6:e1:9f:3d:07:fb:20:cf:a2: a8:fa:21:da:9b:a4:28:b9:04:4e:ea:9f:b9:46:cb:15:46:7a: d8:8b:bc:53:c8:18:56:2c:bd:11:72:0e:e0:6f:42:00:c1:c7: 23:97:ec:fc:af:cd:45:77:6c:d9:47:ad:36:c1:c2:54:c3:03: b2:af:03:18:5d:40:21:7a:4a:47:24:5c:30:a0:ea:47:86:c0: 0e:3c:be:45:76:48:1e:ad:f1:88:2b:21:b0:64:29:1c:68:0f: d0:a0:da:5f:36:48:76:8e:99:9c:3b:8b:08:97:39:40:b0:48: c5:f7:27:76:67:1c:d3:4f:1b:e8:d2:9b:50:82:fd:ed:87:17: 5a:d8:6a:9b:f3:12:6f:ed:e6:63:e8:4c:6e:ae:ac:77:63:f7: ec:77:b1:3b:f2:ea:5a:bc:e9:ce:b3:e0:49:ba:b7:bb:95:b8: 05:ba:b0:c4:8c:76:40:28:05:46:1a:cf:54:01:66:8e:7d:c4: d6:19:5b:e6:a2:93:e5:ee:46:08:a0:e0:ad:39:42:ab:4a:2e: 72:ca:37:c6:3d:e8:af:18:42:ee:01:43:18:95:60:e8:06:6c: eb:a2:27:aa -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2REQxMTAvBgNVBAUTKDRGREQxQzkzQTEzQ0JBOTFCNEY4QjdGMkM2NTE4RjQ4 QkExNzBCQUQwHhcNMjMwNjAyMjMzNTE0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhN2NiMi03ZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8jIBJILhAGsshr3Ln+PZdXgXjpJzzHg9y/ZZN5s6dxDGpPCE3K7AB+SV6MZ 9Cb6eE2MBMGpaBdFJArAB8BakAIjLHLizbTSL9wocFh0w/65PPhSYfjUJWKdq6eh 3+nHkzVcDLk6WvWbUBfzQasKBiU+51fSG0cYV4Lh56+KILS6soobjKmcATMP496Q xlxa1KnSxh/O3haVeiyjPWDTd+s8CmZ0imksodFBRHeS7n5peipxFe44agHLUvRq Y6f6kgZn9iNM3hlgOXonASEOg+lcQH+E8navShQW16FFp+euLcnKRrkO3aooza+c 8mnteyLUiF8ia8twGnfREkWhawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDKfYzom KGEppu1FX1aL/emaJkKYMB8GA1UdIwQYMBaAFE/dHJOhPLqRtPi38sZRj0i6Fwut MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZERC9GM0ZCOTA1NkMw RjQxMUVBQjA1REZDNUVDNEY5QUUwMi9UOTBjazZFOHVwRzAtTGZ5eGxHUFNMb1hD NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Q5MGNrNkU4dXBHMC1MZnl4bEdQU0xvWEM2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2REQvRjNGQjkwNTZDMEY0MTFFQUIwNURGQzVFQzRGOUFFMDIvRjYxNTAyQTRD MEY1MTFFQTg1NEVFNDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAMx1QADBAXKe0AwDQYJKoZIhvcNAQELBQADggEBAEGAdTSr 9pG1ZAzsxPSJk2wPoy7BDpB/iyjLtfbhnz0H+yDPoqj6IdqbpCi5BE7qn7lGyxVG etiLvFPIGFYsvRFyDuBvQgDBxyOX7PyvzUV3bNlHrTbBwlTDA7KvAxhdQCF6Skck XDCg6keGwA48vkV2SB6t8YgrIbBkKRxoD9Cg2l82SHaOmZw7iwiXOUCwSMX3J3Zn HNNPG+jSm1CC/e2HF1rYapvzEm/t5mPoTG6urHdj9+x3sTvy6lq86c6z4Em6t7uV uAW6sMSMdkAoBUYaz1QBZo59xNYZW+aik+XuRgig4K05QqtKLnLKN8Y96K8YQu4B QxiVYOgGbOuiJ6o= -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org