$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/20E6F554419F11EA8B12587CC4F9AE02.roa File: 20E6F554419F11EA8B12587CC4F9AE02.roa (raw, json) Hash identifier: 8FQorrwuxwF2eygC7qO63/pm3u484VEiKF+vz5iOBv0= Subject key identifier: FF:1E:8E:4E:FA:0F:14:05:19:8B:42:20:D0:28:61:5E:91:14:DF:B7 Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 099E Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/20E6F554419F11EA8B12587CC4F9AE02.roa Signing time: Fri 02 Jun 2023 21:32:39 +0000 ROA not before: Fri 02 Jun 2023 21:32:39 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 9311 IP address blocks: 45.126.85.0/24 maxlen: 24 45.126.87.0/24 maxlen: 24 103.18.229.0/24 maxlen: 24 103.18.231.0/24 maxlen: 24 103.231.37.0/24 maxlen: 24 103.231.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 20:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2462 (0x99e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: Jun 2 21:32:39 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a5ff7-5c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ca:e7:b9:d3:3b:3b:4b:fe:97:13:e0:0b:c7: e1:bd:21:81:07:3a:6a:82:b2:28:67:a5:62:7a:04: 0f:77:69:e4:c8:97:e2:10:70:62:88:18:3e:23:69: f7:89:df:a6:f2:d9:24:6a:5b:ee:08:79:ed:cb:d6: 8b:f7:9a:a1:4c:36:3e:95:6e:6f:c1:85:04:65:5f: 13:74:2e:8d:1f:f5:64:d8:17:c1:f9:c4:6f:e2:f8: 3c:6a:60:7b:e2:29:ac:c7:0a:75:28:ca:09:5b:dc: 20:39:89:b3:5a:95:dc:8f:90:4e:26:d8:18:9a:4a: 23:2f:59:e9:28:04:58:92:12:93:95:e7:3f:0c:75: 51:a2:b3:b2:75:bd:03:af:55:46:af:f6:d5:46:6d: 6b:93:d3:49:02:d4:8b:5a:d3:ff:1e:ec:30:5d:88: 4b:1e:6b:d4:3f:25:fe:f3:14:8a:40:7b:9a:43:ce: a8:8d:f4:36:81:05:eb:84:76:c1:e1:77:01:ee:b5: 01:99:9d:ca:88:fc:9f:a1:10:22:6b:5c:f9:dc:44: 3f:63:07:e2:5c:a8:40:ca:5f:86:9f:1e:24:14:cc: c1:7d:4d:0d:e5:cf:d8:f4:b0:bd:b0:09:86:9a:e6: a8:22:21:c4:2b:36:1a:8d:bd:27:b9:10:a0:4e:ba: 3b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:1E:8E:4E:FA:0F:14:05:19:8B:42:20:D0:28:61:5E:91:14:DF:B7 X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/20E6F554419F11EA8B12587CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.85.0/24 45.126.87.0/24 103.18.229.0/24 103.18.231.0/24 103.231.37.0/24 103.231.39.0/24 Signature Algorithm: sha256WithRSAEncryption ca:04:e8:54:aa:1b:fa:c8:43:0c:67:c8:f1:c1:78:a7:4f:c0: 28:bc:30:0e:05:b8:33:da:ae:2b:bc:73:70:fb:9a:ce:af:e4: 0b:89:22:f6:e2:00:8b:75:1b:54:d7:15:e7:e5:c9:49:c8:c6: 5d:6e:ba:6f:84:86:c9:72:2a:77:98:2e:17:c3:ef:e0:26:36: 41:64:01:3b:c5:c7:a5:15:12:ec:1b:6d:08:8d:58:4f:3e:4f: ba:56:c6:94:d8:76:d0:33:33:2e:03:b1:88:3c:cd:d1:64:73: dc:04:46:b2:e1:c1:0e:75:03:ff:0c:99:cd:47:8e:d7:0c:44: 34:00:28:dd:94:b8:ed:79:b8:29:24:76:a7:05:b8:65:df:9c: 2e:5b:fb:0b:14:d9:8e:e5:89:07:e2:ae:a2:9f:b5:12:6b:ff: f9:7d:22:7f:2f:6f:75:74:68:6f:69:d8:f3:be:c1:3e:92:21: 6c:9e:4f:e7:c4:05:9e:2e:4c:a0:55:bc:8e:91:c7:e1:77:df: ba:a9:a7:02:17:77:93:f1:a4:5f:04:1b:a2:30:75:03:81:58: 18:38:e9:38:aa:da:98:05:95:f2:90:8f:c7:0a:8a:f4:5d:fc: 7f:3b:53:39:dc:70:c0:e6:19:2e:aa:72:00:5f:ae:17:67:5d: 37:01:8d:6c -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICCZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjMwNjAyMjEzMjM5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNWZmNy01Yzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38rnudM7O0v+lxPgC8fhvSGBBzpqgrIoZ6ViegQPd2nkyJfiEHBiiBg+I2n3 id+m8tkkalvuCHnty9aL95qhTDY+lW5vwYUEZV8TdC6NH/Vk2BfB+cRv4vg8amB7 4imsxwp1KMoJW9wgOYmzWpXcj5BOJtgYmkojL1npKARYkhKTlec/DHVRorOydb0D r1VGr/bVRm1rk9NJAtSLWtP/HuwwXYhLHmvUPyX+8xSKQHuaQ86ojfQ2gQXrhHbB 4XcB7rUBmZ3KiPyfoRAia1z53EQ/YwfiXKhAyl+Gnx4kFMzBfU0N5c/Y9LC9sAmG muaoIiHEKzYajb0nuRCgTro7fwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFP8ejk76 DxQFGYtCINAoYV6RFN+3MB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvMjBFNkY1NTQ0 MTlGMTFFQThCMTI1ODdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAAtflUDBAAtflcDBABnEuUDBABnEucDBABn5yUDBABn5ycw DQYJKoZIhvcNAQELBQADggEBAMoE6FSqG/rIQwxnyPHBeKdPwCi8MA4FuDPariu8 c3D7ms6v5AuJIvbiAIt1G1TXFeflyUnIxl1uum+EhslyKneYLhfD7+AmNkFkATvF x6UVEuwbbQiNWE8+T7pWxpTYdtAzMy4DsYg8zdFkc9wERrLhwQ51A/8Mmc1HjtcM RDQAKN2UuO15uCkkdqcFuGXfnC5b+wsU2Y7liQfirqKftRJr//l9In8vb3V0aG9p 2PO+wT6SIWyeT+fEBZ4uTKBVvI6Rx+F337qppwIXd5PxpF8EG6IwdQOBWBg46Tiq 2pgFlfKQj8cKivRd/H87UznccMDmGS6qcgBfrhdnXTcBjWw= -----END CERTIFICATE-----Generated at Wed May 22 22:41:56 2024 by rpki-client on console-fra.rpki-client.org