$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/1B88FC66823D11EC8E3CB427C4F9AE02.roa File: 1B88FC66823D11EC8E3CB427C4F9AE02.roa (raw, json) Hash identifier: Rl4wvZ1bQ+rW5Jss4ptaS97YoQDCBwchiKCYjFlSZFQ= Subject key identifier: 59:97:F5:55:CD:03:FE:C5:E7:CA:D1:35:D2:A7:CA:45:E9:0E:8D:16 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0DC2 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/1B88FC66823D11EC8E3CB427C4F9AE02.roa Signing time: Thu 28 Dec 2023 18:56:51 +0000 ROA not before: Thu 28 Dec 2023 18:56:51 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 45250 IP address blocks: 220.232.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3522 (0xdc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Dec 28 18:56:51 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658dc4f3-44bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:17:e0:9b:df:39:89:ba:36:75:30:3b:c9:48: f6:fd:6d:b7:6e:83:c1:08:65:3b:b4:ec:66:c5:90: 29:ae:51:10:f4:d9:1b:ce:df:d6:61:b4:2e:0c:b3: f1:48:63:a2:4d:87:a8:fa:0a:be:40:07:0f:ec:58: c5:70:72:a8:39:c0:1c:56:3b:b0:c1:5a:e0:ba:68: 8b:8a:c3:59:03:e2:66:2d:45:61:ea:8e:ec:f4:fa: 8c:db:2a:6a:c8:ee:d3:a4:b4:b6:49:59:2e:22:f6: 7f:41:24:c9:06:a8:cd:46:91:08:4d:a2:59:04:49: 51:33:b4:6d:9a:74:2c:52:1a:ed:e9:9a:df:5d:9f: 26:59:48:b9:f1:ec:83:d8:6e:6c:ff:25:15:1a:c1: 3f:d0:8f:3c:d4:d4:b7:ae:6d:5b:ff:c7:cd:77:a6: da:1e:42:8e:f3:d8:c4:7c:82:01:e4:1e:83:0d:36: 4e:1b:59:b8:6a:89:e3:f0:90:21:3a:db:5f:b8:26: ac:87:36:8a:58:a7:e8:3f:f8:23:3f:f5:a3:b9:96: 84:12:34:23:ad:48:57:29:a2:ec:80:ab:ba:8f:70: bd:4b:fc:0a:f6:af:b9:2c:c5:92:7f:5b:83:72:a0: 30:82:03:b7:a0:d1:b2:d4:70:4a:1a:71:12:c7:f4: 7d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:97:F5:55:CD:03:FE:C5:E7:CA:D1:35:D2:A7:CA:45:E9:0E:8D:16 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/1B88FC66823D11EC8E3CB427C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.232.180.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:10:69:2a:63:fc:39:ae:2a:d7:ec:b5:4e:a2:00:a7:38:d5: 3f:f0:de:8a:ea:f0:e3:ea:b6:15:44:b5:eb:51:34:a0:3a:1b: a1:01:f9:32:55:88:9b:7a:cf:de:0c:50:08:ce:1f:4f:28:2f: 73:81:c5:25:93:1f:d3:78:5f:e0:35:29:d7:d1:cb:8a:a5:5f: 85:fc:7f:b0:74:88:81:df:a3:50:f4:92:72:85:29:b3:55:5a: 57:2f:5d:51:17:39:3d:a0:c1:cb:15:0c:ca:05:7d:89:63:19: d5:89:5d:d1:73:07:d5:ab:f8:a8:2f:e2:58:57:16:a5:e9:69: 2f:68:58:b8:48:e6:b2:09:67:ac:26:d5:29:88:a8:ce:c6:0b: 82:bc:6d:e0:b8:44:21:94:ab:3c:a0:d1:0d:e3:0e:a9:31:12: 52:29:e4:81:fe:48:f1:94:76:ce:05:c8:f4:37:4b:5c:bb:62: 7a:70:97:ea:ce:c5:c7:01:c5:0d:e1:db:02:40:fd:4d:21:65: a1:af:6c:ba:b4:e2:3b:53:3b:77:03:20:73:b9:ce:e0:08:14: 19:fb:8d:61:cd:92:6f:98:89:58:b7:99:78:e4:4a:74:c0:db: 80:3c:fc:f2:57:e2:3f:22:76:ae:bf:72:38:25:ac:71:34:69: f1:58:88:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjMxMjI4MTg1NjUxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzRmMy00NGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRfgm985ibo2dTA7yUj2/W23boPBCGU7tOxmxZAprlEQ9Nkbzt/WYbQuDLPx SGOiTYeo+gq+QAcP7FjFcHKoOcAcVjuwwVrgumiLisNZA+JmLUVh6o7s9PqM2ypq yO7TpLS2SVkuIvZ/QSTJBqjNRpEITaJZBElRM7RtmnQsUhrt6ZrfXZ8mWUi58eyD 2G5s/yUVGsE/0I881NS3rm1b/8fNd6baHkKO89jEfIIB5B6DDTZOG1m4aonj8JAh OttfuCashzaKWKfoP/gjP/WjuZaEEjQjrUhXKaLsgKu6j3C9S/wK9q+5LMWSf1uD cqAwggO3oNGy1HBKGnESx/R9kQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFmX9VXN A/7F58rRNdKnykXpDo0WMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvMUI4OEZDNjY4 MjNEMTFFQzhFM0NCNDI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALc6LQwDQYJKoZIhvcNAQELBQADggEBAH0QaSpj/DmuKtfs tU6iAKc41T/w3orq8OPqthVEtetRNKA6G6EB+TJViJt6z94MUAjOH08oL3OBxSWT H9N4X+A1KdfRy4qlX4X8f7B0iIHfo1D0knKFKbNVWlcvXVEXOT2gwcsVDMoFfYlj GdWJXdFzB9Wr+Kgv4lhXFqXpaS9oWLhI5rIJZ6wm1SmIqM7GC4K8beC4RCGUqzyg 0Q3jDqkxElIp5IH+SPGUds4FyPQ3S1y7Ynpwl+rOxccBxQ3h2wJA/U0hZaGvbLq0 4jtTO3cDIHO5zuAIFBn7jWHNkm+YiVi3mXjkSnTA24A8/PJX4j8idq6/cjglrHE0 afFYiBs= -----END CERTIFICATE-----Generated at Thu May 16 20:25:55 2024 by rpki-client on console-ams.rpki-client.org