$ rpki-client -vvf rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa File: 2ED1150C561D11E7B003DF26C4F9AE02.roa (raw, json) Hash identifier: 4oR1w97MW2XXfha42d/ChZIX7GukMGo+Z3wi4PaFXKk= Subject key identifier: A5:D1:A3:52:CD:5E:DB:8B:6D:5F:7C:BB:FF:04:6B:9A:0F:3A:B1:43 Certificate issuer: /CN=A91C83EA/serialNumber=F76750515BB762D1800C5AE6C6C2DB24FE952D02 Certificate serial: 2933 Authority key identifier: F7:67:50:51:5B:B7:62:D1:80:0C:5A:E6:C6:C2:DB:24:FE:95:2D:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa Signing time: Wed 02 Aug 2023 15:52:14 +0000 ROA not before: Wed 02 Aug 2023 15:52:14 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45177 IP address blocks: 45.64.48.0/22 maxlen: 24 103.233.220.0/22 maxlen: 24 2401:1880::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.crl rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 15:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10547 (0x2933) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C83EA/serialNumber=F76750515BB762D1800C5AE6C6C2DB24FE952D02 Validity Not Before: Aug 2 15:52:14 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ca7bae-ba87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:49:ac:7e:8c:79:35:32:26:8f:53:fd:b5:be: ab:47:11:7f:c0:b6:59:50:17:33:31:22:c1:34:26: d2:a7:ba:8b:dd:3f:4d:a4:96:f8:4e:2f:36:fe:65: 00:e6:fd:5a:17:bd:3d:66:82:a3:4b:a8:85:c8:52: 33:4c:54:da:6c:8f:ed:5f:7a:62:f6:8f:0e:6a:2a: 39:e0:cd:2c:2d:c5:b7:12:8a:c6:eb:0a:fc:d1:21: 9f:52:26:f3:00:c1:38:d3:e7:66:c0:9b:b7:28:19: e6:fd:46:ca:e4:05:b9:67:be:35:36:5b:80:d5:50: 46:c1:6f:db:c0:20:fa:4d:94:87:62:5f:17:ad:20: 25:2a:59:9f:8f:c0:23:45:d3:e7:38:2c:90:bc:5e: 6c:a5:f6:26:e8:38:e7:c6:35:5a:f8:03:0c:83:ca: 1b:74:15:90:e8:70:9a:42:3f:8f:eb:7c:9c:08:bb: a1:c2:bb:c7:6d:fa:45:4a:0c:36:ac:e2:bf:cb:15: fc:c5:10:e4:13:f1:1e:e9:be:99:5e:e7:6c:b0:0e: f6:01:4f:45:94:67:65:c5:20:85:06:81:ae:71:3b: 56:6e:a8:0a:7e:9c:6d:29:6a:2c:b6:de:69:da:48: 12:e6:5d:16:c0:8a:32:e5:b8:c0:cd:5e:37:ad:05: 63:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D1:A3:52:CD:5E:DB:8B:6D:5F:7C:BB:FF:04:6B:9A:0F:3A:B1:43 X509v3 Authority Key Identifier: keyid:F7:67:50:51:5B:B7:62:D1:80:0C:5A:E6:C6:C2:DB:24:FE:95:2D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.48.0/22 103.233.220.0/22 IPv6: 2401:1880::/32 Signature Algorithm: sha256WithRSAEncryption a5:62:3d:65:3f:00:e4:10:66:12:75:9f:16:09:21:14:11:c4: bb:6e:79:2f:33:90:21:41:d1:85:d1:e6:34:84:14:e1:e7:78: d2:96:14:6f:53:f6:7e:3d:01:5b:46:3f:fc:95:6e:2d:0a:9d: 38:a4:ce:6a:05:c7:c5:e7:45:e5:3c:cc:72:4d:91:ee:1a:4d: e5:e8:ea:4f:dc:99:82:a6:1d:ec:9c:d0:9e:33:22:1e:78:c9: a3:a3:46:44:79:9d:89:d1:a4:6a:9d:b7:1b:f1:08:fc:94:a1: 68:f0:84:68:d3:85:99:be:e5:29:ff:33:dd:86:88:27:8e:04: ef:39:2e:54:fc:b7:49:99:f9:44:e3:b9:12:ed:a6:44:aa:b5: e9:87:42:ff:52:e1:b7:32:1a:cb:5d:a2:28:cd:e0:55:2e:ef: e9:b9:88:41:8e:06:a2:8d:fc:96:c0:fd:90:92:14:c2:e5:8d: 14:37:f3:12:f4:15:b5:e9:8a:91:80:2d:d2:b1:20:a0:0c:0b: 66:0b:70:90:8a:77:35:58:2b:fe:72:5e:27:9c:fe:14:b0:b5: 35:50:d8:39:8d:9b:11:7a:31:6a:fd:c0:ab:c9:0c:6c:85:fa: 77:96:ef:50:c6:9d:18:0e:68:9b:9f:10:1a:34:9c:0e:5b:1f: bf:de:7f:fb -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICKTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzRUExMTAvBgNVBAUTKEY3Njc1MDUxNUJCNzYyRDE4MDBDNUFFNkM2QzJEQjI0 RkU5NTJEMDIwHhcNMjMwODAyMTU1MjE0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhN2JhZS1iYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEmsfox5NTImj1P9tb6rRxF/wLZZUBczMSLBNCbSp7qL3T9NpJb4Ti82/mUA 5v1aF709ZoKjS6iFyFIzTFTabI/tX3pi9o8Oaio54M0sLcW3EorG6wr80SGfUibz AME40+dmwJu3KBnm/UbK5AW5Z741NluA1VBGwW/bwCD6TZSHYl8XrSAlKlmfj8Aj RdPnOCyQvF5spfYm6DjnxjVa+AMMg8obdBWQ6HCaQj+P63ycCLuhwrvHbfpFSgw2 rOK/yxX8xRDkE/Ee6b6ZXudssA72AU9FlGdlxSCFBoGucTtWbqgKfpxtKWostt5p 2kgS5l0WwIoy5bjAzV43rQVjLQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKXRo1LN XtuLbV98u/8Ea5oPOrFDMB8GA1UdIwQYMBaAFPdnUFFbt2LRgAxa5sbC2yT+lS0C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODNFQS9EODJDNjFFODFD NDUxMUU0OTRBNzZGMUJDNEY5QUUwMi85MmRRVVZ1M1l0R0FERnJteHNMYkpQNlZM UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkyZFFVVnUzWXRHQURGcm14c0xiSlA2VkxRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgzRUEvRDgyQzYxRTgxQzQ1MTFFNDk0QTc2RjFCQzRGOUFFMDIvMkVEMTE1MEM1 NjFEMTFFN0IwMDNERjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItQDADBAJn6dwwDQQCAAIwBwMFACQBGIAwDQYJKoZIhvcN AQELBQADggEBAKViPWU/AOQQZhJ1nxYJIRQRxLtueS8zkCFB0YXR5jSEFOHneNKW FG9T9n49AVtGP/yVbi0KnTikzmoFx8XnReU8zHJNke4aTeXo6k/cmYKmHeyc0J4z Ih54yaOjRkR5nYnRpGqdtxvxCPyUoWjwhGjThZm+5Sn/M92GiCeOBO85LlT8t0mZ +UTjuRLtpkSqtemHQv9S4bcyGstdoijN4FUu7+m5iEGOBqKN/JbA/ZCSFMLljRQ3 8xL0FbXpipGALdKxIKAMC2YLcJCKdzVYK/5yXiec/hSwtTVQ2DmNmxF6MWr9wKvJ DGyF+neW71DGnRgOaJufEBo0nA5bH7/ef/s= -----END CERTIFICATE-----Generated at Tue May 28 17:51:19 2024 by rpki-client on console-fra.rpki-client.org