$ rpki-client -vvf rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5CD84EBCC28811EB8BB7245FC4F9AE02.roa File: 5CD84EBCC28811EB8BB7245FC4F9AE02.roa (raw, json) Hash identifier: Mq3YCN5HPGk1LyeNEX5RCi9RvuzEEUVAvFFniOG6WRw= Subject key identifier: 07:3D:35:BB:24:37:33:65:2E:91:99:2B:EE:6F:72:CC:57:58:27:5A Certificate issuer: /CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Certificate serial: 338F Authority key identifier: 33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5CD84EBCC28811EB8BB7245FC4F9AE02.roa Signing time: Thu 16 Nov 2023 15:10:49 +0000 ROA not before: Thu 16 Nov 2023 15:10:49 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136587 IP address blocks: 119.252.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13199 (0x338f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Validity Not Before: Nov 16 15:10:49 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=655630f9-d1ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:34:db:88:e0:7d:e9:2b:8d:0f:97:84:9f:86: 17:74:fe:22:cf:94:2c:80:6c:98:6c:69:65:e3:1a: e8:f0:47:57:b5:be:43:73:02:54:6f:44:f5:34:8f: c3:21:34:c9:32:0a:81:87:11:9b:5f:8a:39:2e:29: e7:8d:52:76:5f:c3:d9:b6:09:3c:d5:7a:be:90:fa: ca:5a:c4:84:88:67:fe:8e:97:de:bc:22:ba:6b:80: 69:c0:35:95:ed:af:3d:15:c4:c3:03:44:7c:8b:72: a6:03:fb:a3:b1:82:d7:30:e8:ef:a2:aa:35:ad:5a: e1:75:54:45:4d:ba:d8:0d:93:3c:6c:ba:ea:f8:8f: 59:e9:81:01:09:56:a1:c0:a3:0a:cf:49:28:67:c0: a5:5f:47:37:2c:99:75:07:5f:01:5d:39:32:a8:61: 6f:3f:c9:11:16:6b:8e:aa:37:0c:ff:43:61:3c:e5: f2:65:d7:19:c3:da:d4:72:a4:07:31:94:7a:5d:c4: 3c:a2:75:d9:ec:71:a5:da:82:10:bb:04:2b:40:e4: 59:b3:0f:6b:83:28:81:f4:ac:71:5b:21:96:8a:08: e8:7f:3a:4d:6f:a9:46:87:2a:10:ed:70:ea:18:a0: a7:32:81:73:51:eb:2a:33:65:1c:f4:10:64:f0:76: f6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:3D:35:BB:24:37:33:65:2E:91:99:2B:EE:6F:72:CC:57:58:27:5A X509v3 Authority Key Identifier: keyid:33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5CD84EBCC28811EB8BB7245FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.252.224.0/24 Signature Algorithm: sha256WithRSAEncryption 88:0a:26:ce:c2:58:f5:b2:97:0c:5e:45:c0:28:5c:95:6b:76: 49:b0:8b:f7:f2:a7:5e:02:d7:1f:4e:ff:2e:71:ad:58:03:f8: 70:36:48:fb:87:cf:c5:47:00:d1:03:7a:ba:f8:06:78:a4:73: b1:e9:10:f0:8e:6a:4c:01:c5:c9:c7:46:39:e7:66:13:41:f5: 6e:09:dd:50:03:9d:de:38:f1:1e:64:d1:6a:00:e9:5f:66:48: 1e:b5:81:16:71:7b:79:2f:e7:43:40:cb:11:65:99:3d:ae:7d: 21:46:d9:4a:41:90:88:0c:1e:ba:00:cd:da:6d:39:23:64:b5: fe:cb:87:33:c6:3f:d1:47:ac:4d:18:8e:37:80:94:e0:91:f7: bd:ea:15:d0:52:cf:a9:62:87:76:55:2d:f2:e9:f3:a1:9c:ce: 81:c5:b3:01:81:da:d6:11:f6:9c:4f:56:66:70:7f:b3:fb:bd: 51:ce:97:d7:0f:8f:60:cf:1f:bd:64:bd:45:bb:34:06:66:43: 67:0d:18:09:15:36:08:69:ad:58:56:cd:16:01:c2:eb:9f:cc: f8:c5:bd:88:4b:3b:e9:18:d7:91:96:ea:f4:0a:b2:db:96:f4: 84:31:35:3e:e8:c1:32:1f:f5:01:5b:8f:99:d4:fc:fe:12:3b: ec:f0:39:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4QzExMTAvBgNVBAUTKDMzOEJENzgxRUQyMUU1REIxNDA1N0IzN0I5MDNBMkE0 MDhFMjQyMDIwHhcNMjMxMTE2MTUxMDQ5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2MzBmOS1kMWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DTbiOB96SuND5eEn4YXdP4iz5QsgGyYbGll4xro8EdXtb5DcwJUb0T1NI/D ITTJMgqBhxGbX4o5LinnjVJ2X8PZtgk81Xq+kPrKWsSEiGf+jpfevCK6a4BpwDWV 7a89FcTDA0R8i3KmA/ujsYLXMOjvoqo1rVrhdVRFTbrYDZM8bLrq+I9Z6YEBCVah wKMKz0koZ8ClX0c3LJl1B18BXTkyqGFvP8kRFmuOqjcM/0NhPOXyZdcZw9rUcqQH MZR6XcQ8onXZ7HGl2oIQuwQrQORZsw9rgyiB9KxxWyGWigjofzpNb6lGhyoQ7XDq GKCnMoFzUesqM2Uc9BBk8Hb2KQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAc9Nbsk NzNlLpGZK+5vcsxXWCdaMB8GA1UdIwQYMBaAFDOL14HtIeXbFAV7N7kDoqQI4kIC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzhDMS9FNzVBQzI2MjFE OTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVkc1VCWHMzdVFPaXBBamlR Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL000dlhnZTBoNWRzVUJYczN1UU9pcEFqaVFnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM4QzEvRTc1QUMyNjIxRDk3MTFFMjhFRjg5MjgxMDhCMDJDRDIvNUNEODRFQkND Mjg4MTFFQjhCQjcyNDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3/OAwDQYJKoZIhvcNAQELBQADggEBAIgKJs7CWPWylwxe RcAoXJVrdkmwi/fyp14C1x9O/y5xrVgD+HA2SPuHz8VHANEDerr4Bnikc7HpEPCO akwBxcnHRjnnZhNB9W4J3VADnd448R5k0WoA6V9mSB61gRZxe3kv50NAyxFlmT2u fSFG2UpBkIgMHroAzdptOSNktf7LhzPGP9FHrE0YjjeAlOCR973qFdBSz6lih3ZV LfLp86GczoHFswGB2tYR9pxPVmZwf7P7vVHOl9cPj2DPH71kvUW7NAZmQ2cNGAkV NghprVhWzRYBwuufzPjFvYhLO+kY15GW6vQKstuW9IQxNT7owTIf9QFbj5nU/P4S O+zwOfM= -----END CERTIFICATE-----Generated at Thu May 16 17:51:53 2024 by rpki-client on console-ams.rpki-client.org