$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/2131145E9E4C11EABF30421BC4F9AE02.roa File: 2131145E9E4C11EABF30421BC4F9AE02.roa (raw, json) Hash identifier: TPzeQS2bK+HgnD2Ywg81GgKCXNRcrpJV4c4y6kOHkiI= Subject key identifier: C4:A9:5B:6A:2C:CF:D2:77:3D:43:7E:E6:84:FB:0A:63:E9:2B:CF:C3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 08DC Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/2131145E9E4C11EABF30421BC4F9AE02.roa Signing time: Wed 02 Aug 2023 20:37:53 +0000 ROA not before: Wed 02 Aug 2023 20:37:53 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 24570 IP address blocks: 58.181.65.0/24 maxlen: 24 58.181.69.0/24 maxlen: 24 58.181.72.0/24 maxlen: 24 58.181.73.0/24 maxlen: 24 58.181.75.0/24 maxlen: 24 58.181.77.0/24 maxlen: 24 58.181.77.240/29 maxlen: 29 58.181.80.0/24 maxlen: 24 58.181.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2268 (0x8dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Aug 2 20:37:53 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cabea1-d393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e9:fb:7b:d6:14:76:90:a3:50:2f:62:af:ff: 3e:12:ed:d7:c6:b3:99:59:f4:f7:46:9c:c2:50:63: 84:b4:94:f5:0d:8e:8b:bd:c0:6a:eb:d1:8c:65:6f: 83:88:cb:a2:2d:60:13:eb:3c:bf:c6:19:a5:62:28: ac:8b:d6:c8:bd:8c:00:03:2c:31:0f:f5:1f:26:d8: 60:bc:63:f0:90:a9:2f:d4:e6:ca:e0:ca:66:7b:c2: f4:db:40:fc:b1:45:16:42:eb:2c:fa:6b:0e:bd:84: 6a:ee:96:68:b3:b4:57:14:7e:02:b0:da:48:99:cf: 84:56:d0:1c:f7:7b:ba:d0:c1:ea:32:f6:ce:73:6c: ed:33:70:a6:a0:1b:4d:b0:a9:cf:e7:9b:49:15:e8: 4d:29:04:f0:c6:e9:42:11:5d:a1:35:20:98:18:cb: 89:56:3f:f9:e5:0e:38:de:d9:37:2b:87:c6:0a:f2: 64:f3:30:f7:d2:04:7c:e6:6a:d2:2b:23:06:49:d6: d6:11:13:f4:fc:5e:64:16:52:a4:40:c6:80:a2:59: b4:13:bd:60:6b:e8:d2:d0:a9:e6:ac:46:8e:35:16: a9:b2:39:98:b5:36:75:16:c8:9f:dc:fc:25:4d:b2: 9f:4e:81:99:cd:15:e8:45:79:00:5d:14:01:55:8f: 77:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:A9:5B:6A:2C:CF:D2:77:3D:43:7E:E6:84:FB:0A:63:E9:2B:CF:C3 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/2131145E9E4C11EABF30421BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.65.0/24 58.181.69.0/24 58.181.72.0/23 58.181.75.0/24 58.181.77.0/24 58.181.80.0/24 58.181.95.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:65:f0:26:7b:da:b1:bb:08:2c:be:d4:0c:1d:6b:a0:97:f3: 6b:4a:a3:6f:8a:78:99:21:b5:98:1a:c9:2a:69:ea:29:a4:89: 3a:ae:3d:61:25:25:4a:e1:f9:a1:f1:66:78:5f:ea:ee:cc:27: 38:38:a3:b2:95:53:33:e0:f6:88:26:f0:27:e1:e4:b0:e4:b0: dc:8c:ef:5c:5e:48:0b:e5:a5:5c:4a:85:c3:93:c9:73:b1:a9: 97:c3:25:f8:d9:95:b5:2d:ed:96:da:8f:7a:5e:84:b8:c4:fe: 78:68:87:e2:25:d0:21:51:aa:6b:f0:1b:9a:62:69:93:8c:81: d9:2c:a8:99:d0:2b:15:ee:2e:83:ac:a0:0e:38:2b:75:d7:51: 39:7a:17:66:2d:da:82:2f:19:e1:6f:8e:f9:82:36:d0:f4:2f: 92:74:38:b9:e2:ad:5b:e5:e5:22:c9:57:e7:24:25:68:8e:55: a8:0d:13:b5:bc:d9:68:e3:ab:e5:8e:88:de:58:7e:1e:70:17: 1d:bd:f8:f2:ca:3d:8c:c5:db:8d:68:06:ef:5b:29:78:b8:11: 1a:31:49:ad:81:95:5c:5b:21:4b:55:d7:b8:65:39:2a:60:3c: 0a:82:48:b3:ab:7b:c8:a2:6f:e5:d4:d0:50:85:2d:6d:c2:3e: dc:f3:23:70 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICCNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjMwODAyMjAzNzUzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhYmVhMS1kMzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlun7e9YUdpCjUC9ir/8+Eu3XxrOZWfT3RpzCUGOEtJT1DY6LvcBq69GMZW+D iMuiLWAT6zy/xhmlYiisi9bIvYwAAywxD/UfJthgvGPwkKkv1ObK4Mpme8L020D8 sUUWQuss+msOvYRq7pZos7RXFH4CsNpImc+EVtAc93u60MHqMvbOc2ztM3CmoBtN sKnP55tJFehNKQTwxulCEV2hNSCYGMuJVj/55Q443tk3K4fGCvJk8zD30gR85mrS KyMGSdbWERP0/F5kFlKkQMaAolm0E71ga+jS0KnmrEaONRapsjmYtTZ1Fsif3Pwl TbKfToGZzRXoRXkAXRQBVY93wQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFMSpW2os z9J3PUN+5oT7CmPpK8/DMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTczNEMvQTczMjM1RUM3M0MyMTFFQTlENDBCODg1QzRGOUFFMDIvMjEzMTE0NUU5 RTRDMTFFQUJGMzA0MjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBAA6tUEDBAA6tUUDBAE6tUgDBAA6tUsDBAA6tU0DBAA6tVAD BAA6tV8wDQYJKoZIhvcNAQELBQADggEBAF1l8CZ72rG7CCy+1Awda6CX82tKo2+K eJkhtZgaySpp6imkiTquPWElJUrh+aHxZnhf6u7MJzg4o7KVUzPg9ogm8Cfh5LDk sNyM71xeSAvlpVxKhcOTyXOxqZfDJfjZlbUt7Zbaj3pehLjE/nhoh+Il0CFRqmvw G5piaZOMgdksqJnQKxXuLoOsoA44K3XXUTl6F2Yt2oIvGeFvjvmCNtD0L5J0OLni rVvl5SLJV+ckJWiOVagNE7W82Wjjq+WOiN5Yfh5wFx29+PLKPYzF241oBu9bKXi4 ERoxSa2BlVxbIUtV17hlOSpgPAqCSLOre8iib+XU0FCFLW3CPtzzI3A= -----END CERTIFICATE-----Generated at Thu May 16 21:45:32 2024 by rpki-client on console-fra.rpki-client.org