$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa File: F008FF08C22111ECB9FFB964C4F9AE02.roa (raw, json) Hash identifier: oAv73McLTHeEFMcD3FBKqTvYSVmZhn6Jm+0WPoOKxS0= Subject key identifier: E6:38:A2:9B:6D:55:BE:11:80:27:0E:BF:81:8A:E4:C5:09:46:ED:0D Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 0456 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa Signing time: Tue 29 Aug 2023 01:02:21 +0000 ROA not before: Tue 29 Aug 2023 01:02:21 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45758 IP address blocks: 14.207.0.0/16 maxlen: 17 27.130.0.0/16 maxlen: 17 43.245.144.0/22 maxlen: 23 49.48.0.0/15 maxlen: 17 103.16.204.0/22 maxlen: 23 110.164.0.0/16 maxlen: 17 110.164.11.0/24 maxlen: 24 110.164.14.0/24 maxlen: 24 110.164.17.0/24 maxlen: 24 110.164.21.0/24 maxlen: 24 110.164.28.0/24 maxlen: 24 171.4.0.0/14 maxlen: 17 180.183.0.0/16 maxlen: 17 183.88.0.0/15 maxlen: 17 223.204.0.0/14 maxlen: 17 2403:6200::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1110 (0x456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Aug 29 01:02:21 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ed439d-e009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5a:79:41:1b:84:25:fb:d6:ae:98:69:fb:e1: d4:88:ac:0b:b9:4c:15:d1:c0:1b:a5:b2:f8:79:4a: c0:06:d0:78:ef:8d:62:50:a1:26:5e:2c:c7:4b:01: ab:84:d7:eb:41:0a:7b:62:f6:97:b9:65:5c:d2:f2: ed:f7:d5:8f:a7:30:05:a0:62:28:98:46:9c:11:f8: b9:36:58:d7:90:50:a5:e9:da:24:6c:93:d4:92:90: e8:fc:31:cd:5e:74:bd:ae:2e:4a:31:15:a0:b6:c2: b7:e1:38:ea:a0:78:5c:1a:11:35:0e:c8:af:65:fc: fd:7c:2d:ac:ae:c7:44:0f:e3:a6:b7:a3:c5:1c:16: 69:da:5a:ca:19:ec:88:b5:f2:c6:a4:2b:48:b0:54: ef:54:7a:77:a0:49:d6:b7:2e:3b:77:10:a4:47:fe: 48:79:5a:be:8b:d3:f9:8a:55:45:13:b2:53:bf:57: 16:f8:e9:e7:dd:3b:90:8c:b4:5b:2e:a5:94:d9:41: 83:d8:80:f0:2c:35:66:8a:ce:08:c2:7e:e4:6d:f6: 62:34:67:6a:0f:12:3b:66:2f:61:04:71:58:63:1c: e5:91:e0:15:d4:7b:ed:c8:6b:0e:49:c6:f8:8e:18: 30:d8:0c:4c:68:54:45:fa:1f:6c:b6:d2:cf:79:0b: dc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:38:A2:9B:6D:55:BE:11:80:27:0E:BF:81:8A:E4:C5:09:46:ED:0D X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.207.0.0/16 27.130.0.0/16 43.245.144.0/22 49.48.0.0/15 103.16.204.0/22 110.164.0.0/16 171.4.0.0/14 180.183.0.0/16 183.88.0.0/15 223.204.0.0/14 IPv6: 2403:6200::/32 Signature Algorithm: sha256WithRSAEncryption 1e:dc:75:5b:08:1f:7f:77:67:3c:d6:75:46:0d:a5:09:68:a5: 5b:10:1c:86:e9:59:96:99:0f:ae:fd:dd:55:07:76:ae:61:e0: 66:7f:5c:03:e9:4b:0a:75:fa:bc:01:c3:a1:e1:af:48:fd:b4: b9:37:53:d4:c6:a0:10:b8:f9:ea:78:1f:99:c1:f0:f0:c8:46: f8:d5:ea:77:05:a1:34:1d:a2:81:b1:b1:b5:8a:e1:70:81:b8: 04:6e:6f:1c:63:01:a3:37:1c:80:28:6a:c2:88:df:7c:37:b9: 72:2e:fc:45:73:d6:32:fd:2f:c0:89:fc:86:c7:44:aa:50:11: 77:aa:4c:3c:d5:0e:f5:f3:83:b3:1d:94:ef:b1:a3:6e:11:89: e3:a5:d9:b3:0c:1b:46:2e:84:b1:1d:a1:b7:2a:7f:9a:d2:65: da:5a:f8:c6:3a:98:cf:9c:75:7e:3a:50:31:f2:6d:3f:cc:cf: e0:13:02:59:77:6d:ef:be:0b:3d:1a:89:28:80:50:df:a5:4c: b6:3d:a4:f4:a9:a7:ed:6d:a1:db:bc:90:20:7b:0f:ac:9e:c0: 35:e0:c5:df:05:be:e2:ac:56:3b:7d:41:13:9b:47:c9:39:77: 12:b9:1d:1b:17:f0:3a:10:8a:ba:c8:b0:0d:fe:c5:15:46:96: 12:a4:44:c0 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgICBFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjMwODI5MDEwMjIxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkNDM5ZC1lMDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Fp5QRuEJfvWrphp++HUiKwLuUwV0cAbpbL4eUrABtB4741iUKEmXizHSwGr hNfrQQp7YvaXuWVc0vLt99WPpzAFoGIomEacEfi5NljXkFCl6dokbJPUkpDo/DHN XnS9ri5KMRWgtsK34TjqoHhcGhE1DsivZfz9fC2srsdED+Omt6PFHBZp2lrKGeyI tfLGpCtIsFTvVHp3oEnWty47dxCkR/5IeVq+i9P5ilVFE7JTv1cW+Onn3TuQjLRb LqWU2UGD2IDwLDVmis4Iwn7kbfZiNGdqDxI7Zi9hBHFYYxzlkeAV1HvtyGsOScb4 jhgw2AxMaFRF+h9sttLPeQvcaQIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFOY4optt Vb4RgCcOv4GK5MUJRu0NMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvRjAwOEZGMDhD MjIxMTFFQ0I5RkZCOTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXAYIKwYBBQUHAQcBAf8E TTBLMDoEAgABMDQDAwAOzwMDABuCAwQCK/WQAwMBMTADBAJnEMwDAwBupAMDAqsE AwMAtLcDAwG3WAMDAt/MMA0EAgACMAcDBQAkA2IAMA0GCSqGSIb3DQEBCwUAA4IB AQAe3HVbCB9/d2c81nVGDaUJaKVbEByG6VmWmQ+u/d1VB3auYeBmf1wD6UsKdfq8 AcOh4a9I/bS5N1PUxqAQuPnqeB+ZwfDwyEb41ep3BaE0HaKBsbG1iuFwgbgEbm8c YwGjNxyAKGrCiN98N7lyLvxFc9Yy/S/AifyGx0SqUBF3qkw81Q7184OzHZTvsaNu EYnjpdmzDBtGLoSxHaG3Kn+a0mXaWvjGOpjPnHV+OlAx8m0/zM/gEwJZd23vvgs9 GokogFDfpUy2PaT0qaftbaHbvJAgew+snsA14MXfBb7irFY7fUETm0fJOXcSuR0b F/A6EIq6yLAN/sUVRpYSpETA -----END CERTIFICATE-----Generated at Sat May 25 04:35:34 2024 by rpki-client on console-ams.rpki-client.org