$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa File: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (raw, json) Hash identifier: VAflStlQWDW9sfa6XfWK+CuboZm8fiuMVELAQ+9b/UM= Subject key identifier: BF:00:07:02:C9:9F:2F:7F:38:CF:DA:D4:D1:FA:E4:2B:00:DE:E9:DB Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1BF1 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa Signing time: Mon 18 Sep 2023 16:33:28 +0000 ROA not before: Mon 18 Sep 2023 16:33:28 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 4638 IP address blocks: 45.112.224.0/22 maxlen: 24 103.52.88.0/22 maxlen: 24 119.235.64.0/19 maxlen: 24 119.235.96.0/21 maxlen: 24 202.62.118.0/23 maxlen: 24 202.62.120.0/22 maxlen: 24 202.62.124.0/22 maxlen: 24 210.7.0.0/19 maxlen: 24 2403:4600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7153 (0x1bf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Sep 18 16:33:28 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65087bd7-a111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:74:39:60:7e:2c:ce:ce:08:e0:01:18:45:00: 0f:48:be:b6:fd:19:9d:9c:53:0a:9e:45:65:6a:5a: 41:d6:67:f3:ae:c6:68:69:04:6a:26:6e:da:0c:f8: a0:4c:91:1f:26:ac:4f:d0:62:69:b1:19:e0:1a:ed: f4:8c:31:51:1e:48:1f:01:73:14:ef:9b:3f:8e:e6: 1f:2b:5c:76:ac:0d:42:94:d0:20:aa:43:09:35:22: a7:a0:bd:8f:37:8e:f5:e4:6a:79:6d:ed:7e:13:50: 30:96:88:72:2c:5a:a7:ae:50:2f:33:37:89:88:14: 27:83:d0:7a:8b:75:1e:25:67:a9:e3:48:be:82:dd: a6:7e:71:91:67:3c:0f:3d:67:71:01:2b:28:99:e8: 05:6a:13:f5:77:2b:b0:b5:75:8b:c0:77:97:f7:2f: 75:1b:dd:86:52:b1:54:7a:54:b0:10:0d:3e:04:ff: f1:d2:68:d4:55:2f:f1:1d:13:2c:77:3d:f0:ef:ef: 85:d4:e7:87:dc:46:b8:97:ff:9d:45:0b:3e:9e:14: 18:7f:d6:c5:e8:05:54:1a:6e:73:35:e6:dd:ba:06: a3:6c:47:d1:ed:6c:d0:d0:95:42:7d:7d:59:95:11: 8f:f9:92:bb:fe:e3:ae:4a:1c:fe:47:70:75:48:2e: 28:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:00:07:02:C9:9F:2F:7F:38:CF:DA:D4:D1:FA:E4:2B:00:DE:E9:DB X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.224.0/22 103.52.88.0/22 119.235.64.0-119.235.103.255 202.62.118.0-202.62.127.255 210.7.0.0/19 IPv6: 2403:4600::/32 Signature Algorithm: sha256WithRSAEncryption 13:c8:10:78:57:a9:a6:74:03:97:a3:08:50:ab:78:04:fc:42: 05:e2:f1:17:b8:27:41:56:33:0e:c7:92:f7:25:19:bc:f0:b0: a1:10:7c:45:26:bd:48:91:d2:41:75:64:00:18:40:16:61:cd: e4:7e:85:42:6b:61:9b:d1:55:55:95:5d:cd:61:05:33:34:e6: 77:e0:77:1e:db:0c:09:fd:25:3e:4c:07:2c:c3:35:11:ca:e5: 46:d7:12:d4:e7:1d:d2:de:4f:66:26:5c:55:ef:56:5d:46:a5: e5:34:c4:9f:78:37:5c:b2:ba:8a:9d:a0:d7:a0:8e:f7:4e:cb: f6:89:65:1f:d3:0c:59:bd:10:82:18:c5:c4:05:10:ac:46:1f: f9:50:99:0b:f5:69:be:02:7f:f8:df:6c:15:9a:9e:29:29:e2: 6e:fa:30:66:3c:14:fa:3c:1b:6e:4f:2a:9c:da:c0:fb:46:b3: 40:39:5f:d6:c2:c7:a8:ac:c5:42:a9:c5:c7:f2:89:28:df:f3: 24:1f:6b:9a:30:4a:48:10:d0:73:22:09:93:6b:7e:53:c9:8a: ef:45:48:a2:28:87:ae:7c:15:6d:51:2c:dc:42:b5:ed:51:3f: 08:c7:c5:b5:02:0b:73:53:8f:a0:68:e0:65:5a:ad:4c:d9:fb: 17:c7:c6:0b -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICG/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjMwOTE4MTYzMzI4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA4N2JkNy1hMTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXQ5YH4szs4I4AEYRQAPSL62/RmdnFMKnkVlalpB1mfzrsZoaQRqJm7aDPig TJEfJqxP0GJpsRngGu30jDFRHkgfAXMU75s/juYfK1x2rA1ClNAgqkMJNSKnoL2P N4715Gp5be1+E1AwlohyLFqnrlAvMzeJiBQng9B6i3UeJWep40i+gt2mfnGRZzwP PWdxASsomegFahP1dyuwtXWLwHeX9y91G92GUrFUelSwEA0+BP/x0mjUVS/xHRMs dz3w7++F1OeH3Ea4l/+dRQs+nhQYf9bF6AVUGm5zNebdugajbEfR7WzQ0JVCfX1Z lRGP+ZK7/uOuShz+R3B1SC4o5QIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFL8ABwLJ ny9/OM/a1NH65CsA3unbMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIzQzUvODMxQTIwRkVCNUMzMTFFNkI1MTQzQTJBQzRGOUFFMDIvQUMzNEZCRDYx QzAxMTFFQzhBREJGODBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMDQEAgABMC4DBAItcOADBAJnNFgwDAMEBnfrQAMEA3frYDAMAwQByj52AwQH yj4AAwQF0gcAMA0EAgACMAcDBQAkA0YAMA0GCSqGSIb3DQEBCwUAA4IBAQATyBB4 V6mmdAOXowhQq3gE/EIF4vEXuCdBVjMOx5L3JRm88LChEHxFJr1IkdJBdWQAGEAW Yc3kfoVCa2Gb0VVVlV3NYQUzNOZ34Hce2wwJ/SU+TAcswzURyuVG1xLU5x3S3k9m JlxV71ZdRqXlNMSfeDdcsrqKnaDXoI73Tsv2iWUf0wxZvRCCGMXEBRCsRh/5UJkL 9Wm+An/432wVmp4pKeJu+jBmPBT6PBtuTyqc2sD7RrNAOV/WwseorMVCqcXH8oko 3/MkH2uaMEpIENBzIgmTa35TyYrvRUiiKIeufBVtUSzcQrXtUT8Ix8W1AgtzU4+g aOBlWq1M2fsXx8YL -----END CERTIFICATE-----Generated at Thu May 16 17:51:51 2024 by rpki-client on console-ams.rpki-client.org