$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/A52438CC4D7B11EE9DA62A3BC4F9AE02.roa File: A52438CC4D7B11EE9DA62A3BC4F9AE02.roa (raw, json) Hash identifier: mwZ/UNxnhR1948ZKWvgVT3q0nLRnlqIcah225AnmpzM= Subject key identifier: B1:1B:C3:AE:01:25:3A:89:2E:EB:B7:C7:6D:91:4C:30:BA:45:1E:FC Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 7A Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/A52438CC4D7B11EE9DA62A3BC4F9AE02.roa Signing time: Thu 07 Sep 2023 12:39:54 +0000 ROA not before: Thu 07 Sep 2023 12:39:54 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 54252 IP address blocks: 202.134.230.0/24 maxlen: 24 202.134.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 06:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Sep 7 12:39:54 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64f9c49a-708a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:6c:ac:ef:18:96:a3:33:92:96:2e:08:03:e4: 61:07:ba:e6:70:e2:16:99:72:38:51:5b:29:75:9b: 91:a6:cd:3d:f9:98:e7:a8:72:99:82:0e:f2:db:cf: 93:d2:ce:8c:f7:e5:15:6a:31:8a:31:70:1b:d7:67: fb:89:ae:d0:19:c8:8e:59:95:ff:61:4c:cd:d1:19: 74:0e:57:b9:76:52:3d:41:4c:d7:f0:87:75:58:77: 31:fd:79:7e:50:44:cb:fd:3f:f3:6c:ac:2d:e9:41: 96:44:2f:cf:0f:23:b3:e6:ea:26:eb:1d:84:14:81: 50:de:1c:c2:f6:56:00:5b:a9:f7:83:3d:9d:e1:c1: 2a:68:df:15:7d:a5:09:3f:57:00:63:44:c3:ef:97: 7f:89:bc:cc:5d:db:81:76:d0:7c:5d:a5:ec:a3:ec: 0d:7f:63:8c:95:14:f2:33:d6:b6:32:f1:20:01:ed: e5:de:74:35:8a:2e:2d:57:6e:1d:9f:c1:fa:f5:63: 9b:b7:b9:60:88:49:13:e2:94:0a:a7:ec:9d:d5:e9: 0b:cb:52:76:47:5b:e3:8c:03:ae:27:f4:f1:74:2b: 03:4a:c3:65:87:02:3f:2e:4c:96:be:49:6e:2c:31: f6:7b:3f:66:71:b3:56:79:27:62:e7:19:65:54:fb: f0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1B:C3:AE:01:25:3A:89:2E:EB:B7:C7:6D:91:4C:30:BA:45:1E:FC X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/A52438CC4D7B11EE9DA62A3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.230.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:fb:42:ae:a5:59:9b:22:a4:e4:dc:7e:f8:4b:f1:85:c9:1e: f6:30:a3:0b:cc:b7:38:3f:5c:5d:e0:7a:b2:1e:23:de:9c:bf: 91:8d:75:04:62:64:3c:b3:87:3a:3f:d2:51:56:02:75:d8:62: db:8b:27:32:d5:b9:39:53:67:9f:b0:71:0e:fe:94:a4:87:c7: a4:7b:c4:89:bc:81:ef:ae:f1:ca:69:13:46:a1:b7:d6:66:28: 8b:a6:ad:3e:a4:6f:c0:bd:66:0b:6b:21:0e:75:ba:0e:74:03: 15:22:6c:87:ed:5e:ee:cd:08:ae:f0:77:d8:54:66:16:a1:5f: 02:03:42:45:55:0e:93:7c:13:d7:e1:8c:22:64:65:2d:99:92: fc:15:bc:80:9d:63:48:fe:1f:cb:6e:07:d0:13:29:32:0d:63: 3e:89:41:a6:77:7c:36:53:12:5c:dc:0f:87:c0:e0:0f:5e:9e: 31:84:64:60:ac:ee:a5:74:85:82:6f:bd:09:a1:a3:4d:d8:2a: b8:04:28:45:e8:71:4b:04:18:ff:92:37:76:40:1c:56:1b:65: 7f:95:bf:40:b0:0a:e6:f6:f1:0b:10:cb:d6:a8:84:4a:90:19: c3:42:2b:ff:e5:db:b1:61:22:be:b8:3b:22:85:e1:64:dc:ff: 7e:95:ed:f6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjU1MDExMC8GA1UEBRMoNDU2RUVBMDY5MkM2QTRGMjZGNTNEMkQyMzdEMUNCNERD RDc4MzMwNTAeFw0yMzA5MDcxMjM5NTRaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZjljNDlhLTcwOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxbKzvGJajM5KWLggD5GEHuuZw4haZcjhRWyl1m5GmzT35mOeocpmCDvLbz5PS zoz35RVqMYoxcBvXZ/uJrtAZyI5Zlf9hTM3RGXQOV7l2Uj1BTNfwh3VYdzH9eX5Q RMv9P/NsrC3pQZZEL88PI7Pm6ibrHYQUgVDeHML2VgBbqfeDPZ3hwSpo3xV9pQk/ VwBjRMPvl3+JvMxd24F20Hxdpeyj7A1/Y4yVFPIz1rYy8SAB7eXedDWKLi1Xbh2f wfr1Y5u3uWCISRPilAqn7J3V6QvLUnZHW+OMA64n9PF0KwNKw2WHAj8uTJa+SW4s MfZ7P2Zxs1Z5J2LnGWVU+/D7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsRvDrgEl Ooku67fHbZFMMLpFHvwwHwYDVR0jBBgwFoAURW7qBpLGpPJvU9LSN9HLTc14MwUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NTUwLzg0MDA5NTRBQ0VD NDExRUQ4QTgzRkIxMUM0RjlBRTAyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUlc3cUJwTEdwUEp2VTlMU045SExUYzE0TXdVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjU1MC84NDAwOTU0QUNFQzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9BNTI0MzhDQzRE N0IxMUVFOURBNjJBM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcqG5jANBgkqhkiG9w0BAQsFAAOCAQEADPtCrqVZmyKk5Nx+ +Evxhcke9jCjC8y3OD9cXeB6sh4j3py/kY11BGJkPLOHOj/SUVYCddhi24snMtW5 OVNnn7BxDv6UpIfHpHvEibyB767xymkTRqG31mYoi6atPqRvwL1mC2shDnW6DnQD FSJsh+1e7s0IrvB32FRmFqFfAgNCRVUOk3wT1+GMImRlLZmS/BW8gJ1jSP4fy24H 0BMpMg1jPolBpnd8NlMSXNwPh8DgD16eMYRkYKzupXSFgm+9CaGjTdgquAQoRehx SwQY/5I3dkAcVhtlf5W/QLAK5vbxCxDL1qiESpAZw0Ir/+XbsWEivrg7IoXhZNz/ fpXt9g== -----END CERTIFICATE-----Generated at Tue May 7 07:13:01 2024 by rpki-client on console-ams.rpki-client.org