$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/232E8BFEFEA411EDBC673B4BC4F9AE02.roa File: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (raw, json) Hash identifier: tL/bpnY56thAmkSkvHj2zW1bjHE/bttQg4ijVfNoCPI= Subject key identifier: 61:84:DB:28:D0:99:B8:40:B0:8F:03:76:E7:96:CD:3B:F0:75:0E:15 Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 337B Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/232E8BFEFEA411EDBC673B4BC4F9AE02.roa Signing time: Tue 12 Dec 2023 15:00:43 +0000 ROA not before: Tue 12 Dec 2023 15:00:43 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 7654 IP address blocks: 202.57.128.0/24 maxlen: 24 202.57.130.0/24 maxlen: 24 202.57.160.0/24 maxlen: 24 202.57.176.0/22 maxlen: 22 202.57.191.0/24 maxlen: 24 2406:400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13179 (0x337b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Dec 12 15:00:43 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6578759b-4961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:01:d8:eb:d5:5e:59:49:3d:23:02:3d:6d:a8: 5a:31:9e:6d:f3:d9:12:df:e1:fb:06:10:c5:67:ec: 11:9b:10:2f:7d:bb:14:78:67:14:70:6f:1b:df:3e: 4a:07:ca:a3:e7:fc:8f:18:0b:3e:33:19:91:02:19: c1:d1:36:26:4f:32:31:92:c7:06:ad:ae:d4:97:82: 61:25:17:29:b8:c0:d8:8e:05:5e:82:1e:7f:34:ca: 20:60:69:cb:f6:73:30:89:36:cf:c0:27:20:bd:42: 6c:b4:8d:39:e0:a1:03:d9:e2:3a:32:ac:3f:5a:5c: 1a:66:97:6f:8e:f6:9c:8d:0b:23:5f:c0:a7:e6:5a: ae:b5:f3:bf:f4:be:32:d7:41:05:fc:8b:a3:b3:30: 20:15:53:32:2a:e4:12:61:86:53:49:3f:ac:a2:63: 2a:b5:c3:18:fc:93:8a:9e:77:a6:14:44:f0:ae:d6: 0f:61:2b:ca:40:d7:cf:45:fd:70:aa:a9:b4:78:6d: fe:09:6e:c7:be:9f:0f:fd:dd:a8:08:92:c3:9b:d4: cc:64:c6:f2:72:52:48:60:39:08:91:c6:f1:d6:ad: 59:31:8f:0f:0c:f5:dc:f0:68:be:7e:f3:9b:52:f5: f2:6b:e8:7d:1f:7b:9e:fd:4b:58:b4:7e:fb:6f:7a: e7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:84:DB:28:D0:99:B8:40:B0:8F:03:76:E7:96:CD:3B:F0:75:0E:15 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/232E8BFEFEA411EDBC673B4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.57.128.0/24 202.57.130.0/24 202.57.160.0/24 202.57.176.0/22 202.57.191.0/24 IPv6: 2406:400::/32 Signature Algorithm: sha256WithRSAEncryption 73:04:2c:97:7f:a2:4d:6e:71:31:81:78:47:93:20:2b:0a:c9: d0:66:cf:1c:69:b0:26:77:e8:8e:cb:da:e8:44:2e:94:e4:b1: 6e:16:52:76:f6:1b:6f:78:8b:2a:f2:be:45:92:c5:d4:57:7b: 59:44:d1:24:c5:e0:79:c4:d5:c1:20:1f:0c:88:ba:cc:07:a0: e3:7c:06:5f:9f:5e:52:46:97:8c:28:18:17:fc:00:ee:fb:5a: 7e:29:8c:49:56:f9:0f:77:78:18:65:1c:45:0a:35:2b:1f:c6: 7c:93:26:73:38:99:0e:34:ff:b0:ab:17:31:83:6e:81:c4:13: 2e:7a:ff:30:19:cd:90:8b:30:65:5f:02:00:2d:52:24:68:73: 6a:f3:26:65:93:dc:d4:9a:0d:8c:16:74:9a:84:0d:8d:ea:96: 17:4a:c7:a1:5d:3a:43:bc:b3:dd:54:fd:eb:a4:ae:e6:13:7f: 83:44:ce:ae:bf:cf:6e:fa:63:1f:b4:cb:e3:1f:75:a0:f4:14: 2a:0b:ef:b5:9e:15:31:f2:3e:76:42:f0:0c:69:b6:0f:9a:cc: 8d:01:ae:08:32:b1:0b:e7:f3:8e:cf:92:ee:bf:5b:ec:dc:a3: 35:b0:cf:b8:94:57:ca:03:ca:0f:16:32:05:37:30:ef:6c:fb: f6:66:2d:70 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICM3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjMxMjEyMTUwMDQzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc4NzU5Yi00OTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wHY69VeWUk9IwI9bahaMZ5t89kS3+H7BhDFZ+wRmxAvfbsUeGcUcG8b3z5K B8qj5/yPGAs+MxmRAhnB0TYmTzIxkscGra7Ul4JhJRcpuMDYjgVegh5/NMogYGnL 9nMwiTbPwCcgvUJstI054KED2eI6Mqw/WlwaZpdvjvacjQsjX8Cn5lqutfO/9L4y 10EF/IujszAgFVMyKuQSYYZTST+somMqtcMY/JOKnnemFETwrtYPYSvKQNfPRf1w qqm0eG3+CW7Hvp8P/d2oCJLDm9TMZMbyclJIYDkIkcbx1q1ZMY8PDPXc8Gi+fvOb UvXya+h9H3ue/UtYtH77b3rnDwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFGGE2yjQ mbhAsI8DdueWzTvwdQ4VMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNEQUUvRkVGQkNDOEUxRDhGMTFFMkI1NEE3REVGMDhCMDJDRDIvMjMyRThCRkVG RUE0MTFFREJDNjczQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBADKOYADBADKOYIDBADKOaADBALKObADBADKOb8wDQQCAAIw BwMFACQGBAAwDQYJKoZIhvcNAQELBQADggEBAHMELJd/ok1ucTGBeEeTICsKydBm zxxpsCZ36I7L2uhELpTksW4WUnb2G294iyryvkWSxdRXe1lE0STF4HnE1cEgHwyI uswHoON8Bl+fXlJGl4woGBf8AO77Wn4pjElW+Q93eBhlHEUKNSsfxnyTJnM4mQ40 /7CrFzGDboHEEy56/zAZzZCLMGVfAgAtUiRoc2rzJmWT3NSaDYwWdJqEDY3qlhdK x6FdOkO8s91U/eukruYTf4NEzq6/z276Yx+0y+MfdaD0FCoL77WeFTHyPnZC8Axp tg+azI0BrggysQvn847Pku6/W+zcozWwz7iUV8oDyg8WMgU3MO9s+/ZmLXA= -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org