$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/534379FCEE1611ECA6DE1824C4F9AE02.roa File: 534379FCEE1611ECA6DE1824C4F9AE02.roa (raw, json) Hash identifier: IXwPelFphEjwXzLKdDLjQ1M4IFH3NmjU6fYwFmkOlzM= Subject key identifier: 9F:53:CD:1E:E8:38:EC:44:77:1F:0B:2C:BE:06:AD:04:50:8C:6E:14 Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 33BF Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/534379FCEE1611ECA6DE1824C4F9AE02.roa Signing time: Thu 31 Aug 2023 14:40:27 +0000 ROA not before: Thu 31 Aug 2023 14:40:27 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 198949 IP address blocks: 1.179.246.0/24 maxlen: 24 1.179.247.0/24 maxlen: 24 118.174.10.0/24 maxlen: 24 180.180.242.0/24 maxlen: 24 180.180.243.0/24 maxlen: 24 180.180.244.0/24 maxlen: 24 180.180.245.0/24 maxlen: 24 180.180.247.0/24 maxlen: 24 203.113.14.0/24 maxlen: 24 203.113.95.0/24 maxlen: 24 203.114.98.0/24 maxlen: 24 203.114.102.0/24 maxlen: 24 2001:ec0:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 14:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13247 (0x33bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Aug 31 14:40:27 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0a65b-a14e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c1:6e:55:62:d4:b7:57:0a:11:b6:14:24:af: 03:c5:3b:d1:a9:99:21:cb:e5:8b:f8:3d:4f:b7:74: 8a:93:5c:38:ee:0f:d5:0a:fe:fd:67:c7:96:8b:a2: bc:06:19:e9:67:e9:38:9c:1b:5e:e7:9f:29:2b:cf: 14:a5:5b:9b:6e:e9:49:57:f7:88:63:82:65:17:5c: 16:bd:ed:18:82:23:8a:5d:88:44:50:36:7e:bd:1b: 3a:59:5d:ed:bd:24:dc:b8:f6:59:cc:fe:84:55:bd: 0b:02:51:eb:ce:c1:1f:c8:2b:cf:ab:a8:5c:85:ea: 04:29:e6:26:6f:26:13:2e:30:46:52:d1:d1:8c:54: dd:86:0f:fd:48:9b:d7:f6:70:28:77:99:c0:e0:f4: 68:bd:0a:6a:2a:dc:82:f1:5d:6b:0c:3b:6e:9e:e3: 5d:a0:12:22:30:9c:cb:44:7a:27:26:e5:29:c7:1a: ec:5c:6c:b6:0d:cf:65:b3:c0:9e:a0:ef:b6:bf:35: 63:90:57:8b:3e:df:a7:0b:57:d4:82:cc:21:55:8e: 6c:56:36:d8:c8:ab:e6:db:d2:3b:ec:c2:6b:ed:e0: 42:fe:3f:cb:a5:e1:47:dd:38:48:4d:f5:22:d4:8d: 35:11:97:db:1a:70:56:be:a8:f4:25:71:c8:95:b9: ef:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:53:CD:1E:E8:38:EC:44:77:1F:0B:2C:BE:06:AD:04:50:8C:6E:14 X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/534379FCEE1611ECA6DE1824C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.179.246.0/23 118.174.10.0/24 180.180.242.0-180.180.245.255 180.180.247.0/24 203.113.14.0/24 203.113.95.0/24 203.114.98.0/24 203.114.102.0/24 IPv6: 2001:ec0:100::/40 Signature Algorithm: sha256WithRSAEncryption 81:ae:25:d7:ec:f7:e1:ef:d2:35:19:e8:28:c3:0e:bd:37:03: e0:47:d9:eb:1f:3e:a7:a8:ba:57:57:e8:58:46:14:fb:5a:80: 5e:cd:df:93:f0:11:f2:e1:e3:93:7d:94:78:37:47:24:df:6c: 31:9a:4b:21:d0:e4:4b:c3:76:d9:87:38:53:4c:6f:fe:af:a0: 17:ea:59:d2:68:b9:1f:0c:69:3d:46:ac:af:c6:15:ee:12:64: bb:7a:9f:4c:f1:2c:52:97:63:11:ed:e3:6e:41:f7:88:c3:46: 20:59:dc:71:0d:64:6b:3d:a9:2d:08:63:e8:25:e7:06:bf:e9: d1:72:99:f4:81:31:dc:52:06:51:74:3b:38:7c:89:11:1d:6a: 0b:1d:f7:2e:ee:53:a7:7d:01:6c:19:0b:64:4c:2a:da:a9:72: e4:24:31:9d:35:8c:b3:82:ab:03:53:89:23:c6:f6:38:4a:06: 70:56:cc:31:ef:f8:88:17:1f:86:ab:6c:bf:18:92:11:cc:79: ab:de:6f:7b:55:53:d1:ff:4a:3e:b9:d4:25:16:39:31:80:70: 4f:7c:7c:50:69:cf:aa:94:4c:39:40:71:8e:dc:b6:2f:5d:0b: 78:21:5d:3b:a9:f9:2f:c7:79:63:e7:82:2a:b7:3b:7a:e2:af: 3c:ef:c0:c3 -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgICM78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjMwODMxMTQ0MDI3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwYTY1Yi1hMTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcFuVWLUt1cKEbYUJK8DxTvRqZkhy+WL+D1Pt3SKk1w47g/VCv79Z8eWi6K8 BhnpZ+k4nBte558pK88UpVubbulJV/eIY4JlF1wWve0YgiOKXYhEUDZ+vRs6WV3t vSTcuPZZzP6EVb0LAlHrzsEfyCvPq6hcheoEKeYmbyYTLjBGUtHRjFTdhg/9SJvX 9nAod5nA4PRovQpqKtyC8V1rDDtunuNdoBIiMJzLRHonJuUpxxrsXGy2Dc9ls8Ce oO+2vzVjkFeLPt+nC1fUgswhVY5sVjbYyKvm29I77MJr7eBC/j/LpeFH3ThITfUi 1I01EZfbGnBWvqj0JXHIlbnvXwIDAQABo4IC1zCCAtMwHQYDVR0OBBYEFJ9TzR7o OOxEdx8LLL4GrQRQjG4UMB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvNTM0Mzc5RkNF RTE2MTFFQ0E2REUxODI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYQYIKwYBBQUHAQcBAf8E UjBQMD4EAgABMDgDBAEBs/YDBAB2rgowDAMEAbS08gMEAbS09AMEALS09wMEAMtx DgMEAMtxXwMEAMtyYgMEAMtyZjAOBAIAAjAIAwYAIAEOwAEwDQYJKoZIhvcNAQEL BQADggEBAIGuJdfs9+Hv0jUZ6CjDDr03A+BH2esfPqeouldX6FhGFPtagF7N35Pw EfLh45N9lHg3RyTfbDGaSyHQ5EvDdtmHOFNMb/6voBfqWdJouR8MaT1GrK/GFe4S ZLt6n0zxLFKXYxHt425B94jDRiBZ3HENZGs9qS0IY+gl5wa/6dFymfSBMdxSBlF0 Ozh8iREdagsd9y7uU6d9AWwZC2RMKtqpcuQkMZ01jLOCqwNTiSPG9jhKBnBWzDHv +IgXH4arbL8YkhHMeaveb3tVU9H/Sj651CUWOTGAcE98fFBpz6qUTDlAcY7cti9d C3ghXTup+S/HeWPngiq3O3rirzzvwMM= -----END CERTIFICATE-----Generated at Thu Apr 18 16:11:17 2024 by rpki-client on console-fra.rpki-client.org