$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/57C356780DB811EA829EA10AC4F9AE02.roa File: 57C356780DB811EA829EA10AC4F9AE02.roa (raw, json) Hash identifier: MBnvK8CN9mGVCw7YymiY5EeU0OzIfO6oZvvJ/LCGdTs= Subject key identifier: 79:F7:22:0C:72:91:43:F3:7D:13:D3:81:44:C4:B9:4E:90:E5:63:C7 Certificate issuer: /CN=A91BD000/serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Certificate serial: 0B18 Authority key identifier: 40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/57C356780DB811EA829EA10AC4F9AE02.roa Signing time: Thu 11 Jan 2024 07:44:29 +0000 ROA not before: Thu 11 Jan 2024 07:44:29 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58912 IP address blocks: 45.124.12.0/22 maxlen: 24 103.25.80.0/22 maxlen: 24 2407:9ac0::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2840 (0xb18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD000/serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Validity Not Before: Jan 11 07:44:29 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=659f9c5d-18e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:06:0a:47:a1:6f:6a:a5:cb:bc:dd:1b:d2:5c: 0e:e3:3b:34:df:b0:82:83:10:ad:60:e0:cf:db:6c: 82:c9:96:66:e9:ab:0e:56:0a:5e:ae:5e:a8:12:39: af:07:dd:fa:c8:14:42:54:dc:1c:5a:0c:9a:5a:7f: 88:52:7e:6d:bd:0a:b5:48:b1:09:8f:7d:7b:a2:68: 43:55:4d:02:39:b8:e9:e5:99:6e:62:1a:66:de:d5: 15:d1:9b:63:45:d0:38:64:5c:50:31:00:2d:97:83: 97:15:5c:5f:59:f6:ed:0d:eb:87:40:a7:5a:fd:7f: 8e:ed:47:cc:de:5f:41:03:60:f5:37:b2:40:f5:0c: dc:33:09:fd:4b:4a:fa:a4:78:bf:29:25:e9:d2:89: 55:3b:a6:a1:8c:76:c0:cb:11:cc:66:fe:bd:c8:f1: 5d:21:4b:60:af:10:49:2a:bd:f1:8d:60:b1:9b:b2: a4:62:cf:9d:f4:9c:3c:f3:0e:87:be:2e:3d:c4:6e: 47:dc:2e:0b:b6:4b:2d:65:92:ea:0a:9d:0c:d8:95: 11:7b:ac:34:21:7c:04:d9:3e:17:71:f3:36:e9:63: ba:f5:8a:b0:b6:d6:88:16:47:7e:cb:a2:27:8f:60: f6:18:b8:a8:86:78:3c:02:ca:2c:88:04:42:f2:77: de:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F7:22:0C:72:91:43:F3:7D:13:D3:81:44:C4:B9:4E:90:E5:63:C7 X509v3 Authority Key Identifier: keyid:40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/57C356780DB811EA829EA10AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.12.0/22 103.25.80.0/22 IPv6: 2407:9ac0::/32 Signature Algorithm: sha256WithRSAEncryption 35:6a:c5:99:a9:01:6d:70:23:21:b4:6d:72:17:73:0b:8a:3b: 53:7b:7f:35:5a:51:82:f2:b8:84:12:b5:46:ed:ab:d0:17:c7: 2f:de:d0:74:7f:25:dd:ab:69:e6:9e:65:66:82:41:bd:6c:ef: 85:e2:87:ff:6e:98:3c:f3:9c:af:fa:d6:1c:d9:bc:56:98:5b: 94:e0:6a:d5:cf:7b:08:c9:10:c8:0b:d4:30:bc:38:c9:81:d1: c7:be:93:cf:bc:c0:3e:d6:fe:56:5a:d8:d3:80:5a:da:53:2c: 62:43:1c:ec:ce:b2:5e:64:3e:4e:ec:9c:36:a9:50:d6:05:e4: 60:a0:c8:f4:2a:28:28:9f:24:6d:ea:79:44:e4:43:cc:92:a4: c9:a5:72:80:af:bc:aa:2d:f8:33:60:cb:94:d4:4f:5c:e4:97: 8b:96:31:a0:86:ea:76:b5:2d:f4:6a:ff:63:1c:1b:44:ad:84: 6b:97:b3:e6:80:d7:a1:69:57:15:6b:19:24:7e:d6:e8:56:72: 20:52:c2:f7:8a:1e:f1:ad:2d:37:a9:fa:fe:c2:bf:83:8d:35: 0c:28:9c:96:f1:dc:e4:1c:db:28:8a:82:65:f8:dd:2a:33:93: 60:47:aa:36:f5:cf:b9:56:99:3e:f8:54:fb:7e:c5:af:86:09: 39:f5:88:eb -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQwMDAxMTAvBgNVBAUTKDQwRTk2Q0FFQjE5RDQxRTBEQUQ2NTJGNDM1QUQwOEU3 QUU4MDlFRjkwHhcNMjQwMTExMDc0NDI5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmOWM1ZC0xOGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AYKR6FvaqXLvN0b0lwO4zs037CCgxCtYODP22yCyZZm6asOVgperl6oEjmv B936yBRCVNwcWgyaWn+IUn5tvQq1SLEJj317omhDVU0CObjp5ZluYhpm3tUV0Ztj RdA4ZFxQMQAtl4OXFVxfWfbtDeuHQKda/X+O7UfM3l9BA2D1N7JA9QzcMwn9S0r6 pHi/KSXp0olVO6ahjHbAyxHMZv69yPFdIUtgrxBJKr3xjWCxm7KkYs+d9Jw88w6H vi49xG5H3C4LtkstZZLqCp0M2JURe6w0IXwE2T4XcfM26WO69YqwttaIFkd+y6In j2D2GLiohng8AsosiARC8nfemQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFHn3Igxy kUPzfRPTgUTEuU6Q5WPHMB8GA1UdIwQYMBaAFEDpbK6xnUHg2tZS9DWtCOeugJ75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDAwMC9FNjYwMkVEMjBE QjQxMUVBQkE1QzFEN0ZDNEY5QUUwMi9RT2xzcnJHZFFlRGExbEwwTmEwSTU2NkFu dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPbHNyckdkUWVEYTFsTDBOYTBJNTY2QW52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQwMDAvRTY2MDJFRDIwREI0MTFFQUJBNUMxRDdGQzRGOUFFMDIvNTdDMzU2Nzgw REI4MTFFQTgyOUVBMTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItfAwDBAJnGVAwDQQCAAIwBwMFACQHmsAwDQYJKoZIhvcN AQELBQADggEBADVqxZmpAW1wIyG0bXIXcwuKO1N7fzVaUYLyuIQStUbtq9AXxy/e 0HR/Jd2raeaeZWaCQb1s74Xih/9umDzznK/61hzZvFaYW5TgatXPewjJEMgL1DC8 OMmB0ce+k8+8wD7W/lZa2NOAWtpTLGJDHOzOsl5kPk7snDapUNYF5GCgyPQqKCif JG3qeUTkQ8ySpMmlcoCvvKot+DNgy5TUT1zkl4uWMaCG6na1LfRq/2McG0SthGuX s+aA16FpVxVrGSR+1uhWciBSwveKHvGtLTep+v7Cv4ONNQwonJbx3OQc2yiKgmX4 3Sozk2BHqjb1z7lWmT74VPt+xa+GCTn1iOs= -----END CERTIFICATE-----Generated at Thu May 16 21:45:30 2024 by rpki-client on console-fra.rpki-client.org