$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa File: 94855EA0357711EDB81B8A34C4F9AE02.roa (raw, json) Hash identifier: B7a0cc4M3TqVL00njQ+jIzQgPHM3dCTJPPwbvbD6C8I= Subject key identifier: FC:5F:C8:60:F9:F7:55:AA:8B:14:FA:4E:04:49:04:01:BD:3A:99:00 Certificate issuer: /CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Certificate serial: 015F Authority key identifier: 40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa Signing time: Wed 17 Apr 2024 05:20:25 +0000 ROA not before: Wed 17 Apr 2024 05:20:25 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 63199 IP address blocks: 164.52.26.0/24 maxlen: 24 164.52.27.0/24 maxlen: 24 164.52.78.0/24 maxlen: 24 164.52.79.0/24 maxlen: 24 164.52.81.0/24 maxlen: 24 164.52.96.0/24 maxlen: 24 164.52.99.0/24 maxlen: 24 164.52.105.0/24 maxlen: 24 164.52.122.0/24 maxlen: 24 164.52.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Validity Not Before: Apr 17 05:20:25 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=661f5c19-bd3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:14:c6:82:11:38:93:8c:63:80:23:c9:ae:bf: 57:43:0b:a1:89:44:b9:2f:8b:75:82:08:17:3b:98: 71:09:cd:ef:8e:c5:8a:4d:0d:f3:38:8d:80:6a:01: 68:ba:7b:ab:3e:45:25:24:e5:29:de:3a:de:d7:96: 56:a7:33:bd:d4:35:00:90:d8:e7:09:c3:96:03:d6: ca:ae:64:c3:0c:36:fd:7b:74:ed:e4:2e:eb:fc:02: b0:65:6d:25:e5:fc:25:76:c0:42:a5:66:dd:8e:fb: 4c:61:e4:a3:b1:54:ee:e2:c3:a4:8a:be:2a:24:66: 8d:e1:09:31:2b:97:71:f9:ad:5d:da:4d:93:10:7b: e8:d3:c7:bf:ff:e1:65:71:1b:55:1a:c5:6e:a4:d3: eb:86:59:5d:97:2c:71:fc:84:f3:2f:07:98:f3:70: aa:a6:dd:ab:db:90:6d:3d:33:9e:91:a2:13:22:07: eb:8d:69:59:8c:a4:72:de:5f:13:db:0a:50:3f:e1: df:01:4a:47:ef:1a:1a:88:d6:14:2e:9a:7e:9f:a2: 57:40:b4:b8:0d:69:25:df:5d:d4:ba:6e:70:b9:e5: 8c:a6:ff:ea:b0:e1:8c:05:63:e8:81:1a:9f:ad:83: 79:3b:b6:d8:4e:6c:4f:48:5b:4c:75:e8:53:02:68: 0f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:5F:C8:60:F9:F7:55:AA:8B:14:FA:4E:04:49:04:01:BD:3A:99:00 X509v3 Authority Key Identifier: keyid:40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.52.26.0/23 164.52.78.0/23 164.52.81.0/24 164.52.96.0/24 164.52.99.0/24 164.52.105.0/24 164.52.122.0/23 Signature Algorithm: sha256WithRSAEncryption cd:a9:eb:21:e1:54:5a:b6:30:4a:76:e6:34:30:5c:48:97:e1: bb:eb:22:5d:77:9b:b8:59:76:49:d1:ca:71:29:37:b8:0d:ea: 1e:8a:ff:97:d2:02:93:5c:47:43:d7:ef:b4:fd:94:c1:da:29: ca:37:53:d1:b9:e4:52:bc:48:2e:69:d6:5a:d9:b5:14:7e:70: 03:76:df:75:06:c3:78:79:50:51:39:9f:94:0b:79:f3:5c:23: c8:cd:97:4f:7d:65:ac:41:d5:55:d9:f1:2b:f3:46:5e:e9:a7: 46:6a:4b:8e:27:4e:fa:84:20:1c:0e:66:02:7c:05:31:7e:00: dc:90:39:4e:8e:60:09:a9:eb:f8:f6:77:92:0d:47:8d:62:75: 06:67:e0:fb:c9:cf:65:14:80:cc:63:73:3f:58:3f:08:b2:d1: 16:53:e6:a8:06:51:f3:d1:83:fe:2a:c4:ff:16:ba:ca:58:da: ec:d8:d5:04:90:21:9b:86:89:7d:83:df:e8:d4:2e:cd:39:32: 27:b4:3e:8e:21:a9:f7:9f:fe:0d:f1:25:f6:70:04:c3:41:5b: 9f:a0:94:62:9d:36:d2:7e:38:06:c3:0c:51:00:ab:bf:0a:8d: b8:07:50:7e:00:fc:47:20:58:73:dc:6c:88:de:a6:38:a8:fd: 3d:a2:df:6a -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQTIxMTAvBgNVBAUTKDQwRTU4MjYzOTcyQjlFMjQxNDJCQUE5QjVBRkEwNTM0 ODFBMzcxOUUwHhcNMjQwNDE3MDUyMDI1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmNWMxOS1iZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRTGghE4k4xjgCPJrr9XQwuhiUS5L4t1gggXO5hxCc3vjsWKTQ3zOI2AagFo unurPkUlJOUp3jre15ZWpzO91DUAkNjnCcOWA9bKrmTDDDb9e3Tt5C7r/AKwZW0l 5fwldsBCpWbdjvtMYeSjsVTu4sOkir4qJGaN4QkxK5dx+a1d2k2TEHvo08e//+Fl cRtVGsVupNPrhlldlyxx/ITzLweY83Cqpt2r25BtPTOekaITIgfrjWlZjKRy3l8T 2wpQP+HfAUpH7xoaiNYULpp+n6JXQLS4DWkl313Uum5wueWMpv/qsOGMBWPogRqf rYN5O7bYTmxPSFtMdehTAmgPQwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFPxfyGD5 91WqixT6TgRJBAG9OpkAMB8GA1UdIwQYMBaAFEDlgmOXK54kFCuqm1r6BTSBo3Ge MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFBMi9ENDc2RUQ3NjM1 NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi9RT1dDWTVjcm5pUVVLNnFiV3ZvRk5JR2pj WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FPV0NZNWNybmlRVUs2cWJXdm9GTklHamNaNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQTIvRDQ3NkVENzYzNTcyMTFFREFFOTc3ODM5QzRGOUFFMDIvOTQ4NTVFQTAz NTc3MTFFREI4MUI4QTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBAGkNBoDBAGkNE4DBACkNFEDBACkNGADBACkNGMDBACkNGkD BAGkNHowDQYJKoZIhvcNAQELBQADggEBAM2p6yHhVFq2MEp25jQwXEiX4bvrIl13 m7hZdknRynEpN7gN6h6K/5fSApNcR0PX77T9lMHaKco3U9G55FK8SC5p1lrZtRR+ cAN233UGw3h5UFE5n5QLefNcI8jNl099ZaxB1VXZ8SvzRl7pp0ZqS44nTvqEIBwO ZgJ8BTF+ANyQOU6OYAmp6/j2d5INR41idQZn4PvJz2UUgMxjcz9YPwiy0RZT5qgG UfPRg/4qxP8WuspY2uzY1QSQIZuGiX2D3+jULs05Mie0Po4hqfef/g3xJfZwBMNB W5+glGKdNtJ+OAbDDFEAq78KjbgHUH4A/EcgWHPcbIjepjio/T2i32o= -----END CERTIFICATE-----Generated at Mon May 27 05:39:34 2024 by rpki-client on console-fra.rpki-client.org