$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/BC180DDA747A11EE9350D44FC4F9AE02.roa File: BC180DDA747A11EE9350D44FC4F9AE02.roa (raw, json) Hash identifier: 3t+b3kvDP8I8QXMcKi24r5Ahh11FPu7g7VMMNeZHx38= Subject key identifier: 49:38:6B:DE:89:1F:D3:A0:68:57:33:C8:8A:FF:F9:28:30:A2:83:34 Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Certificate serial: 076E Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/BC180DDA747A11EE9350D44FC4F9AE02.roa Signing time: Fri 27 Oct 2023 03:41:39 +0000 ROA not before: Fri 27 Oct 2023 03:41:39 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 21859 IP address blocks: 164.90.70.0/24 maxlen: 24 164.90.71.0/24 maxlen: 24 164.90.73.0/24 maxlen: 24 164.90.75.0/24 maxlen: 24 164.90.97.0/24 maxlen: 24 164.90.103.0/24 maxlen: 24 164.90.104.0/24 maxlen: 24 164.90.112.0/24 maxlen: 24 164.90.123.0/24 maxlen: 24 164.90.124.0/24 maxlen: 24 164.90.127.0/24 maxlen: 24 202.63.36.0/24 maxlen: 24 202.63.39.0/24 maxlen: 24 202.63.40.0/24 maxlen: 24 202.168.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1902 (0x76e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Validity Not Before: Oct 27 03:41:39 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=653b3172-9dcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:41:53:f8:5e:ad:b4:90:8b:9c:d6:d8:88:86: 08:27:82:d0:0a:5d:6a:ed:be:79:05:2e:60:05:33: da:03:a5:14:01:38:53:81:1c:19:1d:f1:df:47:8e: 3a:46:5f:68:d3:15:39:58:b6:e2:e4:32:a1:73:13: 8b:ad:37:74:bf:b4:be:57:a5:7a:17:d3:a9:1d:da: aa:7a:5c:e0:ac:7d:23:33:bc:03:74:ed:8c:1d:65: db:64:cd:73:40:93:b2:3b:73:cc:ff:18:95:b0:6f: 3b:ac:e0:db:35:bf:a3:86:ea:00:6f:94:b7:02:15: d1:ef:11:e6:57:23:40:16:33:ee:86:2e:47:17:ce: ec:3b:89:74:3e:bb:42:cc:e9:f3:d9:4c:5c:dd:4e: 99:99:4d:e4:e7:56:7c:42:ce:be:80:e6:cd:98:b2: 74:1f:ad:d6:4b:70:67:3f:93:8a:49:cd:55:27:8d: 44:8a:81:a6:80:7d:76:54:eb:ca:23:3a:83:83:23: c7:fe:22:7c:29:3d:d6:25:e1:04:7f:27:98:95:1f: 92:16:fa:f6:dc:e2:dd:27:50:93:9b:4b:ce:1c:32: 1e:18:c9:05:96:df:c3:37:9a:30:2f:fa:ae:10:9f: db:1d:27:c9:76:b1:08:8e:14:eb:1c:d1:23:df:20: 05:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:38:6B:DE:89:1F:D3:A0:68:57:33:C8:8A:FF:F9:28:30:A2:83:34 X509v3 Authority Key Identifier: keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/BC180DDA747A11EE9350D44FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.90.70.0/23 164.90.73.0/24 164.90.75.0/24 164.90.97.0/24 164.90.103.0-164.90.104.255 164.90.112.0/24 164.90.123.0-164.90.124.255 164.90.127.0/24 202.63.36.0/24 202.63.39.0-202.63.40.255 202.168.111.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:6a:2c:97:dd:6a:27:b9:73:14:82:03:67:f4:53:6b:e6:8c: 3f:54:76:bd:39:73:40:1f:79:3b:90:c1:1d:98:13:89:0d:c4: 50:c9:a9:6e:67:bb:b1:87:a7:2c:19:16:d0:3c:c6:10:bd:ec: 4b:59:07:eb:bd:70:73:ff:9e:0d:b6:b7:77:91:5b:40:d2:57: 53:65:ca:87:df:d5:64:f1:aa:68:fd:06:77:c2:d2:33:5a:c6: a1:49:91:48:a2:8e:f1:df:c8:97:58:77:d1:97:8a:e6:36:cd: d0:29:50:7c:b9:61:37:64:25:58:23:f6:69:d1:e5:6d:8b:62: 63:8e:73:bb:36:74:6e:e3:61:ab:95:b4:58:01:10:b5:59:14: 58:f5:f0:05:b0:a6:f4:90:dc:82:6d:95:1b:02:82:66:05:4a: 14:98:ab:b2:81:b9:23:9d:66:ed:50:95:b6:67:1e:93:ca:17: 20:5d:c3:3a:ff:2b:c8:2c:f8:46:2c:91:84:c6:fb:72:e5:03: 6c:11:3c:df:10:24:4d:d0:e5:c7:c2:b6:c3:bc:eb:7d:fc:25: b8:0f:4e:d5:53:08:1b:15:03:89:45:73:f0:c2:1c:13:44:03: 95:e5:d8:06:bd:0a:56:f5:19:c9:da:63:73:81:01:9a:42:41: 70:e0:6e:bc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgICB24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDA3QTFDMDg1NDVDQUNDNjVFMDg4MkQ0OUU5RjJGOENG RDJCRTgyNjAwHhcNMjMxMDI3MDM0MTM5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNiMzE3Mi05ZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUFT+F6ttJCLnNbYiIYIJ4LQCl1q7b55BS5gBTPaA6UUAThTgRwZHfHfR446 Rl9o0xU5WLbi5DKhcxOLrTd0v7S+V6V6F9OpHdqqelzgrH0jM7wDdO2MHWXbZM1z QJOyO3PM/xiVsG87rODbNb+jhuoAb5S3AhXR7xHmVyNAFjPuhi5HF87sO4l0PrtC zOnz2Uxc3U6ZmU3k51Z8Qs6+gObNmLJ0H63WS3BnP5OKSc1VJ41EioGmgH12VOvK IzqDgyPH/iJ8KT3WJeEEfyeYlR+SFvr23OLdJ1CTm0vOHDIeGMkFlt/DN5owL/qu EJ/bHSfJdrEIjhTrHNEj3yAFUQIDAQABo4IC6TCCAuUwHQYDVR0OBBYEFEk4a96J H9OgaFczyIr/+SgwooM0MB8GA1UdIwQYMBaAFAehwIVFysxl4IgtSeny+M/SvoJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GRjUxRTU5RUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9CNkhBaFVYS3pHWGdpQzFKNmZMNHo5Sy1n bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I2SEFoVVhLekdYZ2lDMUo2Zkw0ejlLLWdtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRkY1MUU1OUVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvQkMxODBEREE3 NDdBMTFFRTkzNTBENDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcwYIKwYBBQUHAQcBAf8E ZDBiMGAEAgABMFoDBAGkWkYDBACkWkkDBACkWksDBACkWmEwDAMEAKRaZwMEAKRa aAMEAKRacDAMAwQApFp7AwQApFp8AwQApFp/AwQAyj8kMAwDBADKPycDBADKPygD BADKqG8wDQYJKoZIhvcNAQELBQADggEBAA9qLJfdaie5cxSCA2f0U2vmjD9Udr05 c0AfeTuQwR2YE4kNxFDJqW5nu7GHpywZFtA8xhC97EtZB+u9cHP/ng22t3eRW0DS V1Nlyoff1WTxqmj9BnfC0jNaxqFJkUiijvHfyJdYd9GXiuY2zdApUHy5YTdkJVgj 9mnR5W2LYmOOc7s2dG7jYauVtFgBELVZFFj18AWwpvSQ3IJtlRsCgmYFShSYq7KB uSOdZu1QlbZnHpPKFyBdwzr/K8gs+EYskYTG+3LlA2wRPN8QJE3Q5cfCtsO86338 JbgPTtVTCBsVA4lFc/DCHBNEA5Xl2Aa9Clb1GcnaY3OBAZpCQXDgbrw= -----END CERTIFICATE-----Generated at Thu May 2 23:48:45 2024 by rpki-client on console-fra.rpki-client.org