$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/10DAE05EB04811EABB4AEF61C4F9AE02.roa File: 10DAE05EB04811EABB4AEF61C4F9AE02.roa (raw, json) Hash identifier: 78gdh99UZKTxTLqq433Oe99T4dYdzlmohoo3kOaH8l8= Subject key identifier: 19:6E:A8:AC:67:09:4E:60:BA:22:D2:E2:15:91:2B:13:57:CD:1F:3C Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 33C0 Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/10DAE05EB04811EABB4AEF61C4F9AE02.roa Signing time: Thu 31 Aug 2023 14:40:27 +0000 ROA not before: Thu 31 Aug 2023 14:40:27 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38040 IP address blocks: 45.64.77.0/24 maxlen: 24 103.21.24.0/24 maxlen: 24 103.21.25.0/24 maxlen: 24 103.21.26.0/24 maxlen: 24 103.21.27.0/24 maxlen: 24 180.180.248.0/24 maxlen: 24 180.180.249.0/24 maxlen: 24 180.180.251.0/24 maxlen: 24 180.180.252.0/24 maxlen: 24 180.180.253.0/24 maxlen: 24 180.180.254.0/24 maxlen: 24 180.180.255.0/24 maxlen: 24 203.113.63.0/24 maxlen: 24 203.190.250.0/24 maxlen: 24 203.190.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13248 (0x33c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Aug 31 14:40:27 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0a65b-59ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2a:25:36:6c:99:2e:c3:75:12:1c:ac:26:47: 6c:57:fa:8a:f9:da:27:d4:51:8b:24:d4:8a:a5:62: 88:66:76:10:cc:ae:08:9f:5f:01:9b:c5:86:b2:98: f2:1e:6a:6e:2f:74:a8:81:09:a1:ca:5d:8e:d7:1c: dc:0b:9e:96:9a:26:dd:5f:62:75:31:d4:4e:59:7f: 45:1e:c5:f5:d5:90:f3:89:53:88:40:99:86:a2:9b: 02:58:5c:a7:6d:6d:27:fd:0c:25:e6:8e:be:bf:33: 11:fb:9d:b0:d8:e4:e2:75:c0:f4:5a:96:d3:21:93: 73:ef:4d:c8:8d:3e:7b:ea:d7:21:7a:b2:1c:8c:3d: b3:2a:ae:b6:4b:2f:cd:fd:c0:06:91:24:4f:f4:96: 06:7c:c2:76:78:64:36:0e:d5:20:37:67:87:c0:1e: 13:98:78:d2:9a:51:05:38:f0:37:58:ba:9b:06:90: 72:3c:85:9b:d5:6e:4d:ae:cc:21:7a:e7:b4:64:a8: d2:10:61:51:fa:aa:d1:48:0b:a3:61:23:e1:45:38: 8e:78:ed:99:77:3f:c8:54:5a:e4:23:d1:38:56:6b: 6c:87:95:73:2d:10:16:50:e7:9a:74:b8:15:31:98: 3c:79:af:f3:d9:bf:af:f0:4d:24:c5:49:7d:24:44: 63:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:6E:A8:AC:67:09:4E:60:BA:22:D2:E2:15:91:2B:13:57:CD:1F:3C X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/10DAE05EB04811EABB4AEF61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.77.0/24 103.21.24.0/22 180.180.248.0/23 180.180.251.0-180.180.255.255 203.113.63.0/24 203.190.250.0/23 Signature Algorithm: sha256WithRSAEncryption 79:a5:28:99:b6:74:bf:7b:8c:6a:d2:b0:39:55:d1:b6:4e:44: 93:b2:50:b9:10:1b:5c:bf:ac:df:c7:be:59:58:3d:a4:12:a5: df:81:19:0f:28:3a:67:1f:78:59:b3:de:a6:0f:83:8b:2e:4f: 86:69:d7:23:7a:70:11:3d:4f:2e:71:a7:03:d2:74:3a:6d:28: ef:2c:e3:7b:06:bc:52:b8:74:0e:24:1d:8d:66:cb:df:13:92: 05:27:8b:30:b4:5f:85:c4:1a:2a:5b:d2:d7:0c:c5:23:68:92: 3d:01:b8:3a:9b:27:17:8a:a7:17:d0:ae:86:b9:24:8f:0a:8a: 21:0a:ac:19:6b:ad:9b:9f:f8:18:1f:54:22:56:ce:c5:94:0a: 59:7c:10:f1:96:af:77:a0:1e:de:f3:48:24:f6:e7:c5:50:03: f7:a2:f5:17:7a:be:d8:b0:13:b7:7b:bf:67:1a:c5:7f:d5:99: c4:b5:c8:26:05:10:6f:02:2d:ef:87:39:0c:8f:2e:c7:e2:f7: 4c:55:65:9a:35:f1:0d:6a:a0:7c:0a:99:f0:2b:a3:05:fa:47: 10:8a:8f:44:df:f3:0d:25:43:68:83:37:5d:be:c5:e1:ac:7c: 5a:cc:d1:21:2e:e0:a5:23:21:11:a5:17:87:4c:02:7e:94:7f: 97:08:20:51 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICM8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjMwODMxMTQ0MDI3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwYTY1Yi01OWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yolNmyZLsN1EhysJkdsV/qK+don1FGLJNSKpWKIZnYQzK4In18Bm8WGspjy HmpuL3SogQmhyl2O1xzcC56WmibdX2J1MdROWX9FHsX11ZDziVOIQJmGopsCWFyn bW0n/Qwl5o6+vzMR+52w2OTidcD0WpbTIZNz703IjT576tcherIcjD2zKq62Sy/N /cAGkSRP9JYGfMJ2eGQ2DtUgN2eHwB4TmHjSmlEFOPA3WLqbBpByPIWb1W5Nrswh eue0ZKjSEGFR+qrRSAujYSPhRTiOeO2Zdz/IVFrkI9E4Vmtsh5VzLRAWUOeadLgV MZg8ea/z2b+v8E0kxUl9JERjoQIDAQABo4ICujCCArYwHQYDVR0OBBYEFBluqKxn CU5guiLS4hWRKxNXzR88MB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvMTBEQUUwNUVC MDQ4MTFFQUJCNEFFRjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMDEEAgABMCsDBAAtQE0DBAJnFRgDBAG0tPgwCwMEALS0+wMDALS0AwQAy3E/ AwQBy776MA0GCSqGSIb3DQEBCwUAA4IBAQB5pSiZtnS/e4xq0rA5VdG2TkSTslC5 EBtcv6zfx75ZWD2kEqXfgRkPKDpnH3hZs96mD4OLLk+GadcjenARPU8ucacD0nQ6 bSjvLON7BrxSuHQOJB2NZsvfE5IFJ4swtF+FxBoqW9LXDMUjaJI9Abg6mycXiqcX 0K6GuSSPCoohCqwZa62bn/gYH1QiVs7FlApZfBDxlq93oB7e80gk9ufFUAP3ovUX er7YsBO3e79nGsV/1ZnEtcgmBRBvAi3vhzkMjy7H4vdMVWWaNfENaqB8CpnwK6MF +kcQio9E3/MNJUNogzddvsXhrHxazNEhLuClIyERpReHTAJ+lH+XCCBR -----END CERTIFICATE-----Generated at Thu May 16 15:21:33 2024 by rpki-client on console-ams.rpki-client.org