$ rpki-client -vvf rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5DF144D4C28811EB8BB7245FC4F9AE02.roa File: 5DF144D4C28811EB8BB7245FC4F9AE02.roa (raw, json) Hash identifier: h/nwQIHIoUxMGfpN7/vnAqbU30YF4OssCS9O14azE8M= Subject key identifier: 98:AF:38:D5:DB:22:59:67:AF:88:88:F8:C2:AA:41:74:49:89:F6:68 Certificate issuer: /CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Certificate serial: 3390 Authority key identifier: 33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5DF144D4C28811EB8BB7245FC4F9AE02.roa Signing time: Thu 16 Nov 2023 15:10:50 +0000 ROA not before: Thu 16 Nov 2023 15:10:50 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 9229 IP address blocks: 119.252.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13200 (0x3390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Validity Not Before: Nov 16 15:10:50 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=655630f9-6641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:32:f3:86:6c:1f:7e:47:4c:9e:90:ce:dd:dc: 39:90:e0:41:7c:b2:e3:1d:9f:56:1b:cd:bd:01:fe: a0:2a:ce:b9:bd:c0:e5:e7:8f:d7:c3:41:67:ca:f3: 77:45:27:78:d3:3a:a9:bb:fe:de:28:22:aa:c1:96: 21:53:87:d7:b4:6a:03:36:d1:1f:f2:b1:fe:9b:85: 93:e1:80:04:b6:50:fa:a0:26:df:cd:19:33:53:4d: 90:27:1a:eb:df:c6:80:04:a7:55:33:20:15:fa:d7: ec:79:7a:03:8c:03:18:77:6d:4e:70:16:78:43:1c: 99:be:54:10:c1:e9:63:f8:ce:d0:cc:a1:50:57:80: 1c:56:fb:20:87:7d:aa:c5:b1:20:9e:40:7a:c7:e7: 3b:68:1f:54:84:dd:7d:b8:09:b3:8c:5a:d6:48:99: 5c:f0:a8:df:98:16:48:23:b1:09:bc:d6:57:b8:f5: 25:f6:87:17:02:26:d3:5c:c5:8c:72:f2:af:cd:33: 67:99:75:8f:52:a1:00:91:33:0c:e3:2c:84:64:65: 37:24:6e:d4:cd:b6:c8:ea:b8:20:d1:44:f6:af:28: d6:57:af:cc:27:40:5c:16:67:2b:22:8d:0e:eb:86: f6:10:ab:ce:99:83:9a:7d:b5:2c:4d:8b:79:40:a7: d8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AF:38:D5:DB:22:59:67:AF:88:88:F8:C2:AA:41:74:49:89:F6:68 X509v3 Authority Key Identifier: keyid:33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5DF144D4C28811EB8BB7245FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.252.228.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:66:0d:ef:e8:4f:0b:18:bf:b6:a2:9c:01:c6:04:49:24:05: b1:57:89:90:06:1f:f0:85:30:9b:58:d3:8f:50:4c:74:60:e2: 28:04:d2:2a:24:3b:d9:ad:47:e6:95:61:22:c9:b7:78:88:37: fd:b6:0c:0e:eb:c6:fb:3f:ec:cc:48:24:50:c8:03:38:8c:28: eb:e5:54:6a:47:4c:9d:58:31:f9:57:6c:a7:d3:f1:50:74:ea: 31:49:64:04:4f:13:e1:27:a6:fb:e2:ff:58:3c:f8:ce:7e:a1: 29:c9:7d:ee:c1:5f:f4:12:15:25:15:c2:44:b7:24:b9:32:c9: e5:bc:38:93:8d:fa:90:bb:9d:c7:a1:9a:fe:0d:44:9c:54:4f: e4:5c:1f:c9:87:94:a5:e4:dd:88:2b:43:75:00:9a:00:1e:79: 8b:26:e7:d6:a7:42:b5:3c:5d:dd:0a:58:df:04:de:30:a7:1e: 67:96:a7:2a:64:f9:38:bc:72:90:c4:98:4e:e8:e6:46:a2:73: 09:d8:34:77:e4:a7:54:1f:0a:56:c2:ac:80:d9:76:08:43:cf: c6:53:5f:f0:05:47:25:19:f2:91:03:86:6b:70:4d:83:72:27: ec:8d:5d:a3:c5:d4:56:09:cf:96:8b:aa:83:54:54:a6:ad:8a: 4e:de:a4:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4QzExMTAvBgNVBAUTKDMzOEJENzgxRUQyMUU1REIxNDA1N0IzN0I5MDNBMkE0 MDhFMjQyMDIwHhcNMjMxMTE2MTUxMDUwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2MzBmOS02NjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTLzhmwffkdMnpDO3dw5kOBBfLLjHZ9WG829Af6gKs65vcDl54/Xw0FnyvN3 RSd40zqpu/7eKCKqwZYhU4fXtGoDNtEf8rH+m4WT4YAEtlD6oCbfzRkzU02QJxrr 38aABKdVMyAV+tfseXoDjAMYd21OcBZ4QxyZvlQQwelj+M7QzKFQV4AcVvsgh32q xbEgnkB6x+c7aB9UhN19uAmzjFrWSJlc8KjfmBZII7EJvNZXuPUl9ocXAibTXMWM cvKvzTNnmXWPUqEAkTMM4yyEZGU3JG7UzbbI6rgg0UT2ryjWV6/MJ0BcFmcrIo0O 64b2EKvOmYOafbUsTYt5QKfYGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJivONXb Illnr4iI+MKqQXRJifZoMB8GA1UdIwQYMBaAFDOL14HtIeXbFAV7N7kDoqQI4kIC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzhDMS9FNzVBQzI2MjFE OTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVkc1VCWHMzdVFPaXBBamlR Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL000dlhnZTBoNWRzVUJYczN1UU9pcEFqaVFnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM4QzEvRTc1QUMyNjIxRDk3MTFFMjhFRjg5MjgxMDhCMDJDRDIvNURGMTQ0RDRD Mjg4MTFFQjhCQjcyNDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3/OQwDQYJKoZIhvcNAQELBQADggEBAJpmDe/oTwsYv7ai nAHGBEkkBbFXiZAGH/CFMJtY049QTHRg4igE0iokO9mtR+aVYSLJt3iIN/22DA7r xvs/7MxIJFDIAziMKOvlVGpHTJ1YMflXbKfT8VB06jFJZARPE+Enpvvi/1g8+M5+ oSnJfe7BX/QSFSUVwkS3JLkyyeW8OJON+pC7ncehmv4NRJxUT+RcH8mHlKXk3Ygr Q3UAmgAeeYsm59anQrU8Xd0KWN8E3jCnHmeWpypk+Ti8cpDEmE7o5kaicwnYNHfk p1QfClbCrIDZdghDz8ZTX/AFRyUZ8pEDhmtwTYNyJ+yNXaPF1FYJz5aLqoNUVKat ik7epBQ= -----END CERTIFICATE-----Generated at Thu May 16 17:51:53 2024 by rpki-client on console-ams.rpki-client.org