$ rpki-client -vvf rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/2110795ED38E11EDADA86381C4F9AE02.roa File: 2110795ED38E11EDADA86381C4F9AE02.roa (raw, json) Hash identifier: FHUq+25RfAvRmoSq3J8qQEYuDgSuE+HIM5BAWKCMjTw= Subject key identifier: 89:35:B8:7E:9E:74:EE:A2:6D:92:F4:86:13:1F:B7:70:D7:B9:CE:5D Certificate issuer: /CN=A91D025A/serialNumber=734090EFC37983FD175BE02F4949668A21437221 Certificate serial: 0361 Authority key identifier: 73:40:90:EF:C3:79:83:FD:17:5B:E0:2F:49:49:66:8A:21:43:72:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/2110795ED38E11EDADA86381C4F9AE02.roa Signing time: Fri 11 Aug 2023 01:22:33 +0000 ROA not before: Fri 11 Aug 2023 01:22:33 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38224 IP address blocks: 112.109.96.0/19 maxlen: 24 114.31.224.0/20 maxlen: 20 114.31.224.0/23 maxlen: 23 114.31.226.0/23 maxlen: 23 114.31.228.0/23 maxlen: 23 114.31.230.0/23 maxlen: 23 119.252.144.0/20 maxlen: 20 119.252.144.0/21 maxlen: 21 119.252.144.0/24 maxlen: 24 119.252.145.0/24 maxlen: 24 119.252.147.0/24 maxlen: 24 119.252.148.0/24 maxlen: 24 119.252.152.0/24 maxlen: 24 119.252.153.0/24 maxlen: 24 119.252.154.0/23 maxlen: 24 119.252.156.0/22 maxlen: 22 119.252.156.0/24 maxlen: 24 119.252.159.0/24 maxlen: 24 202.137.232.0/21 maxlen: 21 2405:e200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.crl rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 00:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D025A/serialNumber=734090EFC37983FD175BE02F4949668A21437221 Validity Not Before: Aug 11 01:22:33 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d58d59-360c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ad:51:70:31:d0:61:06:11:4f:2f:7b:83:6c: 95:98:9d:8d:8b:15:fa:5a:a5:51:d5:d4:11:94:56: d5:4b:77:f9:22:8a:14:48:b7:b3:7c:49:80:ef:96: 3e:f3:e6:33:dd:17:3d:b8:a7:12:bb:3a:d9:25:fe: df:ee:06:82:98:35:d7:56:0b:f8:48:5e:da:02:e3: 77:c7:b6:7c:72:6e:4e:1f:51:84:2f:81:6c:2c:8b: 6b:85:49:76:be:91:12:ae:19:01:8b:05:1f:71:84: d7:6e:fe:e2:be:a1:27:d7:66:07:5a:58:3a:b9:a1: aa:d5:b8:57:fb:6f:2c:84:e7:de:a5:74:70:ce:1a: ec:57:fa:8a:03:3b:9c:cd:6f:b7:45:bb:d3:0d:fe: 9e:ce:bd:af:3d:20:73:b3:9a:e7:00:d2:cd:cb:bf: 7f:5a:af:33:5e:a3:be:9e:c9:15:f3:ed:b8:53:9b: b4:d5:54:06:ba:88:31:7d:5b:2d:f9:0c:ff:7f:8e: f2:4b:b7:1f:9e:62:06:a3:15:7b:70:85:4c:25:ae: 53:81:77:66:f9:68:31:ee:51:be:35:54:9d:af:9b: 8a:13:bc:d1:9b:36:49:b3:c4:29:84:f9:1d:c6:02: 9b:2b:40:40:08:52:0c:32:bd:06:6c:2a:0d:10:56: 79:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:35:B8:7E:9E:74:EE:A2:6D:92:F4:86:13:1F:B7:70:D7:B9:CE:5D X509v3 Authority Key Identifier: keyid:73:40:90:EF:C3:79:83:FD:17:5B:E0:2F:49:49:66:8A:21:43:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/2110795ED38E11EDADA86381C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.109.96.0/19 114.31.224.0/20 119.252.144.0/20 202.137.232.0/21 IPv6: 2405:e200::/32 Signature Algorithm: sha256WithRSAEncryption 83:5c:c7:ee:59:41:cc:ec:4d:50:b5:c8:56:23:fe:35:ae:19: 70:9d:64:d6:39:52:cb:de:1a:76:1a:4f:0b:0b:c0:bf:c1:0e: 5e:39:6a:21:e3:f2:8e:c6:62:42:a3:75:cc:27:02:65:72:5e: cb:70:17:f1:56:fb:de:aa:b7:6c:da:a2:e9:55:d9:7c:42:9d: 41:ed:36:29:82:a4:bf:3e:50:f5:90:8d:19:38:42:dd:20:39: c2:9d:74:ca:72:b2:92:46:41:73:b5:8b:72:d0:90:3b:73:4e: 7e:62:6c:25:c4:b1:87:3c:38:c8:45:a4:b4:e8:7d:25:f4:e1: 52:7c:c9:40:86:fa:40:c7:b3:b9:13:00:7e:a1:10:5a:8e:c5: 0f:61:d5:f5:5b:83:91:78:f3:9f:68:91:47:ef:af:f3:53:c5: dc:83:32:2d:42:00:7e:5a:ff:0d:b9:7f:1a:3c:40:57:0d:ff: 49:d7:4f:aa:b5:df:84:1a:35:29:22:82:d7:87:64:3d:b8:5b: 7f:67:b9:61:7a:a6:65:0e:6f:ce:c5:ab:da:ff:30:f6:f0:ad: 94:33:f0:6d:9e:dc:0d:51:b3:91:6e:fb:20:15:f9:bd:86:bc: 3b:cb:b7:1f:b1:da:1b:d6:14:96:bf:7d:f3:74:d9:de:4d:fe: 46:c8:c1:1f -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAyNUExMTAvBgNVBAUTKDczNDA5MEVGQzM3OTgzRkQxNzVCRTAyRjQ5NDk2NjhB MjE0MzcyMjEwHhcNMjMwODExMDEyMjMzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ1OGQ1OS0zNjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK1RcDHQYQYRTy97g2yVmJ2NixX6WqVR1dQRlFbVS3f5IooUSLezfEmA75Y+ 8+Yz3Rc9uKcSuzrZJf7f7gaCmDXXVgv4SF7aAuN3x7Z8cm5OH1GEL4FsLItrhUl2 vpESrhkBiwUfcYTXbv7ivqEn12YHWlg6uaGq1bhX+28shOfepXRwzhrsV/qKAzuc zW+3RbvTDf6ezr2vPSBzs5rnANLNy79/Wq8zXqO+nskV8+24U5u01VQGuogxfVst +Qz/f47yS7cfnmIGoxV7cIVMJa5TgXdm+Wgx7lG+NVSdr5uKE7zRmzZJs8QphPkd xgKbK0BACFIMMr0GbCoNEFZ5HQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFIk1uH6e dO6ibZL0hhMft3DXuc5dMB8GA1UdIwQYMBaAFHNAkO/DeYP9F1vgL0lJZoohQ3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDI1QS9ENUVGMUE5MDMw QUQxMUVDOTVCMTVEMThDNEY5QUUwMi9jMENRNzhONWdfMFhXLUF2U1VsbWlpRkRj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2MwQ1E3OE41Z18wWFctQXZTVWxtaWlGRGNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDAyNUEvRDVFRjFBOTAzMEFEMTFFQzk1QjE1RDE4QzRGOUFFMDIvMjExMDc5NUVE MzhFMTFFREFEQTg2MzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAVwbWADBARyH+ADBAR3/JADBAPKiegwDQQCAAIwBwMFACQF 4gAwDQYJKoZIhvcNAQELBQADggEBAINcx+5ZQczsTVC1yFYj/jWuGXCdZNY5Usve GnYaTwsLwL/BDl45aiHj8o7GYkKjdcwnAmVyXstwF/FW+96qt2zaoulV2XxCnUHt NimCpL8+UPWQjRk4Qt0gOcKddMpyspJGQXO1i3LQkDtzTn5ibCXEsYc8OMhFpLTo fSX04VJ8yUCG+kDHs7kTAH6hEFqOxQ9h1fVbg5F4859okUfvr/NTxdyDMi1CAH5a /w25fxo8QFcN/0nXT6q134QaNSkigteHZD24W39nuWF6pmUOb87Fq9r/MPbwrZQz 8G2e3A1Rs5Fu+yAV+b2GvDvLtx+x2hvWFJa/ffN02d5N/kbIwR8= -----END CERTIFICATE-----Generated at Mon May 27 02:57:05 2024 by rpki-client on console-fra.rpki-client.org