$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/754A1888490D11ED95C7C86EC4F9AE02.roa File: 754A1888490D11ED95C7C86EC4F9AE02.roa (raw, json) Hash identifier: llqORwa/dP2LnzXgY4HGM95EoGcj3DijEYOC5/9U1WM= Subject key identifier: 9E:0A:12:89:A9:3C:B8:28:43:69:0A:E0:DE:C4:19:01:CA:B7:2C:57 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: C5 Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/754A1888490D11ED95C7C86EC4F9AE02.roa Signing time: Fri 27 Oct 2023 03:55:28 +0000 ROA not before: Fri 27 Oct 2023 03:55:28 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 55923 IP address blocks: 175.45.144.0/22 maxlen: 22 175.45.144.0/24 maxlen: 24 175.45.145.0/24 maxlen: 24 175.45.146.0/24 maxlen: 24 175.45.147.0/24 maxlen: 24 175.45.152.0/22 maxlen: 22 175.45.152.0/24 maxlen: 24 175.45.154.0/24 maxlen: 24 175.45.155.0/24 maxlen: 24 175.45.156.0/22 maxlen: 22 175.45.156.0/24 maxlen: 24 175.45.157.0/24 maxlen: 24 175.45.158.0/24 maxlen: 24 175.45.159.0/24 maxlen: 24 180.178.64.0/22 maxlen: 22 180.178.64.0/24 maxlen: 24 180.178.65.0/24 maxlen: 24 180.178.66.0/24 maxlen: 24 180.178.67.0/24 maxlen: 24 202.8.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 04:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: Oct 27 03:55:28 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653b34af-f03e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:66:fd:48:c4:45:a8:6c:97:e0:79:8a:d3:88: 3f:a9:50:6f:80:b9:04:e2:94:07:bd:06:d7:13:cb: 5d:75:c9:ed:93:c5:e8:fa:8d:fd:08:c6:fc:2c:b3: 21:dc:00:a2:db:86:7c:c3:79:05:fd:f3:0b:32:c3: 99:22:16:a4:4b:99:73:af:2f:8c:a2:fd:27:84:24: aa:94:90:52:13:8c:bd:12:6c:f8:1f:53:f1:8a:ce: 39:ce:26:c6:c2:dc:49:5d:a6:85:46:54:56:11:b9: 55:d5:7d:f2:54:cf:5e:0f:ba:ff:d5:bd:f6:5d:6a: c5:f9:66:de:4d:1a:ff:c3:63:fe:f7:6c:ed:63:c0: a2:16:ec:a6:bf:d2:b2:f1:57:1a:8f:a7:17:e7:43: 1a:9c:07:26:1d:d2:35:9a:14:24:bf:39:2b:03:39: fc:3a:ac:5f:d3:a1:e1:99:ae:6b:7a:c8:52:6d:25: e9:30:cd:72:68:10:ea:c6:a8:98:3f:e9:83:f7:b1: 18:7b:cf:9a:c1:2a:0b:95:23:ca:ee:24:0f:81:fa: 72:4f:9d:54:a0:88:d1:58:43:a2:a5:34:1e:0c:4c: d2:89:82:f9:10:9c:d7:b9:9b:17:45:71:b7:66:fc: 95:3f:a7:5f:22:c4:18:c0:f9:07:00:5e:73:bb:62: 69:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0A:12:89:A9:3C:B8:28:43:69:0A:E0:DE:C4:19:01:CA:B7:2C:57 X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/754A1888490D11ED95C7C86EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.45.144.0/22 175.45.152.0/21 180.178.64.0/22 202.8.76.0/24 Signature Algorithm: sha256WithRSAEncryption 97:2d:c9:8c:3e:ff:34:ea:40:85:d4:66:c8:42:fd:bc:a3:db: 8c:10:36:f5:5f:be:88:85:c3:51:f5:47:70:01:aa:5e:5e:77: 63:34:b6:3b:59:e5:c8:73:c3:e3:22:94:34:07:f5:a4:95:e0: db:81:98:c8:54:98:1b:06:d3:e6:9f:a6:85:a6:12:07:e8:26: 1c:2a:45:56:cf:2f:59:ae:b1:04:6c:50:42:a5:4d:00:21:0a: 1e:4d:c3:b0:83:5a:cf:e2:6c:04:c4:05:15:93:38:0c:f0:88: 43:e6:bc:57:02:64:d1:eb:15:64:ea:db:bc:86:95:44:87:bc: 70:6d:d1:16:bd:3e:62:39:31:cf:ec:52:d4:9d:84:64:15:27: ab:7a:14:7d:2b:19:a9:34:43:61:17:6f:cf:16:c2:30:c5:dc: 6f:9b:63:c0:9c:a9:a5:10:72:e8:87:4f:3a:2a:e1:88:4a:81: 86:85:74:cc:69:3c:60:79:a2:18:05:1d:8f:3a:b1:25:c9:28: 54:6e:f6:08:05:9c:41:69:d1:41:c5:f9:42:1b:88:34:e3:7d: b6:d3:e7:bd:83:4e:01:bd:98:75:61:3e:f5:3c:2c:53:0d:13: 96:0a:93:8b:1a:81:84:8a:eb:5b:23:97:be:c8:57:05:f7:2e: 3a:3c:27:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjMxMDI3MDM1NTI4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNiMzRhZi1mMDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWb9SMRFqGyX4HmK04g/qVBvgLkE4pQHvQbXE8tddcntk8Xo+o39CMb8LLMh 3ACi24Z8w3kF/fMLMsOZIhakS5lzry+Mov0nhCSqlJBSE4y9Emz4H1Pxis45zibG wtxJXaaFRlRWEblV1X3yVM9eD7r/1b32XWrF+WbeTRr/w2P+92ztY8CiFuymv9Ky 8Vcaj6cX50ManAcmHdI1mhQkvzkrAzn8Oqxf06Hhma5reshSbSXpMM1yaBDqxqiY P+mD97EYe8+awSoLlSPK7iQPgfpyT51UoIjRWEOipTQeDEzSiYL5EJzXuZsXRXG3 ZvyVP6dfIsQYwPkHAF5zu2JpBwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFJ4KEomp PLgoQ2kK4N7EGQHKtyxXMB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwMDkvOTU5REI4NUU0OTBBMTFFREJCNzY3ODQ4QzRGOUFFMDIvNzU0QTE4ODg0 OTBEMTFFRDk1QzdDODZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAKvLZADBAOvLZgDBAK0skADBADKCEwwDQYJKoZIhvcNAQEL BQADggEBAJctyYw+/zTqQIXUZshC/byj24wQNvVfvoiFw1H1R3ABql5ed2M0tjtZ 5chzw+MilDQH9aSV4NuBmMhUmBsG0+afpoWmEgfoJhwqRVbPL1musQRsUEKlTQAh Ch5Nw7CDWs/ibATEBRWTOAzwiEPmvFcCZNHrFWTq27yGlUSHvHBt0Ra9PmI5Mc/s UtSdhGQVJ6t6FH0rGak0Q2EXb88WwjDF3G+bY8CcqaUQcuiHTzoq4YhKgYaFdMxp PGB5ohgFHY86sSXJKFRu9ggFnEFp0UHF+UIbiDTjfbbT572DTgG9mHVhPvU8LFMN E5YKk4sagYSK61sjl77IVwX3Ljo8J84= -----END CERTIFICATE-----Generated at Thu May 23 05:40:09 2024 by rpki-client on console-ams.rpki-client.org