$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/C24FF4C8050D11EA8626AD5DC4F9AE02.roa File: C24FF4C8050D11EA8626AD5DC4F9AE02.roa (raw, json) Hash identifier: 6c3OfbdlQja3hzdttFkCHz1g2QneRQ6AJCKu8c3JNW0= Subject key identifier: 46:EB:56:C8:3A:F3:F8:DC:2C:35:FD:14:70:CA:0A:20:2C:C9:2E:69 Certificate issuer: /CN=A91BC847/serialNumber=79D66C64A6165A2E4CB37D49700E6C761841C39A Certificate serial: 1295 Authority key identifier: 79:D6:6C:64:A6:16:5A:2E:4C:B3:7D:49:70:0E:6C:76:18:41:C3:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/C24FF4C8050D11EA8626AD5DC4F9AE02.roa Signing time: Mon 28 Aug 2023 17:34:45 +0000 ROA not before: Mon 28 Aug 2023 17:34:45 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45588 IP address blocks: 114.130.128.0/18 maxlen: 24 114.130.224.0/20 maxlen: 24 123.49.0.0/18 maxlen: 24 180.211.128.0/17 maxlen: 24 203.112.192.0/19 maxlen: 24 2407:5000::/32 maxlen: 40 2407:5000:88::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.crl rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4757 (0x1295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC847/serialNumber=79D66C64A6165A2E4CB37D49700E6C761841C39A Validity Not Before: Aug 28 17:34:45 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ecdab4-ede9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cb:0f:44:dc:cf:eb:a6:d7:2f:9d:0e:fb:52: bf:c2:67:3a:be:74:44:e3:10:79:33:53:cc:5d:62: 4e:bc:08:04:ae:b7:81:55:81:44:64:7a:f1:df:85: 96:22:d1:91:64:d2:c5:a2:c7:bd:41:cd:ac:08:d8: de:7c:4a:d6:f0:f6:1a:d2:12:c3:83:d8:66:4c:ae: 52:3a:65:b5:99:2d:a1:3a:57:98:ea:f7:39:bd:20: e4:79:56:b1:1d:37:8c:c8:60:3f:e8:b9:0a:ed:10: d2:a5:ec:f1:d6:79:99:a5:a6:a4:33:6a:bd:34:51: db:cd:12:6c:18:86:25:ad:67:aa:d6:b3:dd:d3:5e: 64:b2:00:29:cb:b2:4f:f1:b8:a1:80:5d:d4:1c:cd: b3:de:1b:88:d1:08:62:01:8a:35:15:5b:c4:f9:fd: 9d:2a:aa:46:2e:30:ad:57:5f:49:4e:27:79:49:09: 97:ad:b3:d5:dc:13:d2:ae:cb:ba:d7:d9:f5:f9:0c: 5e:be:2e:90:55:42:83:aa:91:36:3d:51:ab:4f:c1: bb:f6:0c:fc:44:b4:f8:f6:a6:20:00:6c:20:f6:ce: f8:a8:52:a6:3d:4c:c4:78:a6:5f:05:51:d4:b0:8b: 8a:ed:f8:b0:a9:79:c8:38:d5:38:73:3c:12:8b:9c: e6:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:EB:56:C8:3A:F3:F8:DC:2C:35:FD:14:70:CA:0A:20:2C:C9:2E:69 X509v3 Authority Key Identifier: keyid:79:D6:6C:64:A6:16:5A:2E:4C:B3:7D:49:70:0E:6C:76:18:41:C3:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/C24FF4C8050D11EA8626AD5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.130.128.0/18 114.130.224.0/20 123.49.0.0/18 180.211.128.0/17 203.112.192.0/19 IPv6: 2407:5000::/32 Signature Algorithm: sha256WithRSAEncryption ca:7e:b3:ea:19:8e:8e:43:70:b6:ea:1f:80:1c:8d:e7:b7:10: ba:79:e9:70:52:18:3a:ec:53:ec:a1:a3:8b:f0:1a:90:5e:28: 72:96:d7:09:76:52:ec:88:ba:67:5d:61:ee:10:5e:54:3e:ee: d8:f6:62:0a:6c:36:ba:8a:0c:01:5f:16:a7:81:d5:63:e5:ad: 81:6e:11:94:16:b2:f2:c6:41:c3:bb:b8:6b:a5:75:8a:9d:e4: 53:1e:65:4b:97:32:55:2c:43:5d:a8:ff:91:94:aa:56:ef:16: a7:ba:8c:40:c5:22:10:73:62:00:b2:fc:2e:99:ee:56:8b:fb: ab:55:be:48:45:48:cd:18:c6:41:8e:1e:12:bb:9e:2e:58:b2: cc:ff:27:16:77:15:eb:f5:6c:7e:74:f0:9d:65:1d:d8:a1:47: 9a:b5:a7:10:04:ae:aa:d8:66:79:35:cc:61:b3:51:6d:dc:17: 4e:4c:01:74:21:e8:97:57:4a:bc:bc:34:e5:49:e4:c2:e1:88: 4a:8c:52:df:ad:80:62:e3:ee:9e:1f:16:39:e8:bd:68:72:73: ed:e4:1e:72:fe:d3:56:90:b4:51:f3:d6:67:1d:98:9d:90:4f: 53:c1:1a:69:ab:05:16:12:7f:08:3d:fe:3a:ee:ba:d7:f8:12: 7e:0d:2c:d2 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICEpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM4NDcxMTAvBgNVBAUTKDc5RDY2QzY0QTYxNjVBMkU0Q0IzN0Q0OTcwMEU2Qzc2 MTg0MUMzOUEwHhcNMjMwODI4MTczNDQ1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVjZGFiNC1lZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8sPRNzP66bXL50O+1K/wmc6vnRE4xB5M1PMXWJOvAgErreBVYFEZHrx34WW ItGRZNLFose9Qc2sCNjefErW8PYa0hLDg9hmTK5SOmW1mS2hOleY6vc5vSDkeVax HTeMyGA/6LkK7RDSpezx1nmZpaakM2q9NFHbzRJsGIYlrWeq1rPd015ksgApy7JP 8bihgF3UHM2z3huI0QhiAYo1FVvE+f2dKqpGLjCtV19JTid5SQmXrbPV3BPSrsu6 19n1+Qxevi6QVUKDqpE2PVGrT8G79gz8RLT49qYgAGwg9s74qFKmPUzEeKZfBVHU sIuK7fiwqXnIONU4czwSi5zm0QIDAQABo4ICvDCCArgwHQYDVR0OBBYEFEbrVsg6 8/jcLDX9FHDKCiAsyS5pMB8GA1UdIwQYMBaAFHnWbGSmFlouTLN9SXAObHYYQcOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzg0Ny9BQ0Y5NDM1MjlB RjMxMUU4QUFCNEQ1NURDNEY5QUUwMi9lZFpzWktZV1dpNU1zMzFKY0E1c2RoaEJ3 NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VkWnNaS1lXV2k1TXMzMUpjQTVzZGhoQnc1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM4NDcvQUNGOTQzNTI5QUYzMTFFOEFBQjRENTVEQzRGOUFFMDIvQzI0RkY0Qzgw NTBEMTFFQTg2MjZBRDVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAZygoADBARyguADBAZ7MQADBAe004ADBAXLcMAwDQQCAAIw BwMFACQHUAAwDQYJKoZIhvcNAQELBQADggEBAMp+s+oZjo5DcLbqH4Acjee3ELp5 6XBSGDrsU+yho4vwGpBeKHKW1wl2UuyIumddYe4QXlQ+7tj2YgpsNrqKDAFfFqeB 1WPlrYFuEZQWsvLGQcO7uGuldYqd5FMeZUuXMlUsQ12o/5GUqlbvFqe6jEDFIhBz YgCy/C6Z7laL+6tVvkhFSM0YxkGOHhK7ni5Yssz/JxZ3Fev1bH508J1lHdihR5q1 pxAErqrYZnk1zGGzUW3cF05MAXQh6JdXSry8NOVJ5MLhiEqMUt+tgGLj7p4fFjno vWhyc+3kHnL+01aQtFHz1mcdmJ2QT1PBGmmrBRYSfwg9/jruutf4En4NLNI= -----END CERTIFICATE-----Generated at Thu May 16 18:26:09 2024 by rpki-client on console-fra.rpki-client.org