$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/FACC58F855C411E9A0FEF781C4F9AE02.roa File: FACC58F855C411E9A0FEF781C4F9AE02.roa (raw, json) Hash identifier: xtQcs+98fIke2X8WowLjSFx0nv2MEIv06a7KRnKWNEs= Subject key identifier: C9:E0:CA:E7:27:05:21:E0:2D:B5:A5:98:6E:8A:BB:F8:67:69:B9:BB Certificate issuer: /CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Certificate serial: 3354 Authority key identifier: 2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/FACC58F855C411E9A0FEF781C4F9AE02.roa Signing time: Tue 18 Jul 2023 02:58:08 +0000 ROA not before: Tue 18 Jul 2023 02:58:08 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 7575 IP address blocks: 113.197.0.0/20 maxlen: 24 182.255.96.0/19 maxlen: 24 202.0.98.0/24 maxlen: 24 202.6.112.0/24 maxlen: 24 202.158.192.0/19 maxlen: 24 203.5.76.0/24 maxlen: 24 203.13.161.0/24 maxlen: 24 203.19.110.0/24 maxlen: 24 203.21.37.0/24 maxlen: 24 2001:388::/32 maxlen: 40 2001:388:cf85::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 14:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13140 (0x3354) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Validity Not Before: Jul 18 02:58:08 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b5ffc0-464d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:40:61:4d:a0:17:5a:44:bf:75:8e:52:bd:3d: 1d:10:cd:39:aa:28:78:70:80:e9:1c:fb:59:0d:e8: 9e:cb:7c:c8:89:13:79:ac:9d:f2:96:42:a5:b9:c3: 0d:cd:d0:54:77:8f:a5:75:25:59:7a:e2:a6:3a:03: d4:c1:c1:69:f2:fb:d1:8c:02:0a:19:d8:40:f0:72: 72:71:c8:31:b7:ad:c3:5f:95:f7:bd:18:39:b0:0d: 34:ed:3d:07:f7:8e:c5:6c:d6:5a:82:f8:06:29:fa: 38:96:31:4a:55:92:38:b1:47:1f:80:9c:47:ab:69: d7:07:cc:69:31:26:93:a3:ef:7e:0e:b8:0b:f0:e0: 0e:86:ef:b8:8e:1e:fa:e8:40:0a:79:4b:9f:78:e3: 13:13:3c:51:b4:4f:57:df:df:96:2c:42:df:d3:6a: 33:31:6c:54:0e:24:eb:7f:bf:84:45:9d:e8:c6:1e: 65:6d:50:13:74:be:4c:ab:52:4a:a8:cc:92:2b:f9: 00:c8:d8:04:77:8a:07:58:e1:b3:01:1b:7d:46:58: a3:cf:73:66:88:c1:f3:69:86:95:f0:1b:79:4d:3e: dd:0e:8b:9b:60:07:c3:ef:ab:88:aa:15:ee:5a:17: 65:85:29:ca:09:fe:7a:d5:e1:64:1e:ad:c4:db:8e: 9c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E0:CA:E7:27:05:21:E0:2D:B5:A5:98:6E:8A:BB:F8:67:69:B9:BB X509v3 Authority Key Identifier: keyid:2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/FACC58F855C411E9A0FEF781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.197.0.0/20 182.255.96.0/19 202.0.98.0/24 202.6.112.0/24 202.158.192.0/19 203.5.76.0/24 203.13.161.0/24 203.19.110.0/24 203.21.37.0/24 IPv6: 2001:388::/32 Signature Algorithm: sha256WithRSAEncryption 54:3b:2c:6b:ff:4b:af:7d:8d:2b:bc:eb:04:e4:81:e0:b3:46: 1c:5a:c2:57:8b:39:16:9a:12:ee:d2:5f:4a:fe:c5:2a:d7:53: 3d:28:2a:36:09:de:65:f0:61:ba:ad:ce:8f:93:75:37:99:62: 3e:85:a6:20:9b:d9:fc:e1:e6:ac:63:e3:f0:4e:aa:42:a8:51: cc:d6:68:92:19:11:b0:35:bb:85:3c:d3:17:04:41:64:ef:96: 52:4e:0a:8e:1c:61:ef:e4:78:7d:48:3b:00:97:b6:13:17:38: d6:6d:6d:18:0c:d1:ff:22:ec:77:b9:fc:3c:87:7d:e7:46:7e: ba:f1:f0:4a:c3:7a:20:ca:54:28:ab:3d:c2:9b:ba:67:07:b8: 45:6a:80:cd:38:6e:6b:82:67:a8:e5:00:81:f0:c9:23:0e:c8: a9:26:65:99:d0:99:87:ff:46:97:a4:ca:28:ee:95:78:4b:ae: ae:ff:1c:1c:51:0f:c5:08:72:7a:2a:7c:ae:5b:e6:7f:10:31: 78:b8:23:2a:75:2a:ab:86:91:70:a0:e4:f4:ec:ad:2b:58:8c: d8:75:7d:e6:e2:69:ec:40:0c:c9:b3:20:47:c3:44:74:f3:87: 4d:c6:03:5a:97:dd:e6:74:a0:de:a5:62:f2:31:a4:e7:3f:07: 25:9f:a4:c3 -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICM1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDJCNTM3NUYyRDA2MDc1NDZENTFGNjUxMUY2MUJDNEEx ODk3NEZERTIwHhcNMjMwNzE4MDI1ODA4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI1ZmZjMC00NjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6EBhTaAXWkS/dY5SvT0dEM05qih4cIDpHPtZDeiey3zIiRN5rJ3ylkKlucMN zdBUd4+ldSVZeuKmOgPUwcFp8vvRjAIKGdhA8HJyccgxt63DX5X3vRg5sA007T0H 947FbNZagvgGKfo4ljFKVZI4sUcfgJxHq2nXB8xpMSaTo+9+DrgL8OAOhu+4jh76 6EAKeUufeOMTEzxRtE9X39+WLELf02ozMWxUDiTrf7+ERZ3oxh5lbVATdL5Mq1JK qMySK/kAyNgEd4oHWOGzARt9Rlijz3NmiMHzaYaV8Bt5TT7dDoubYAfD76uIqhXu WhdlhSnKCf561eFkHq3E246c5wIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFMngyucn BSHgLbWlmG6Ku/hnabm7MB8GA1UdIwQYMBaAFCtTdfLQYHVG1R9lEfYbxKGJdP3i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS8wNUM0QzBBNDFE ODQxMUUyQjBDNUEzRDkwOEIwMkNEMi9LMU4xOHRCZ2RVYlZIMlVSOWh2RW9ZbDBf ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTjE4dEJnZFViVkgyVVI5aHZFb1lsMF9lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYxOUUvMDVDNEMwQTQxRDg0MTFFMkIwQzVBM0Q5MDhCMDJDRDIvRkFDQzU4Rjg1 NUM0MTFFOUEwRkVGNzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMDwEAgABMDYDBARxxQADBAW2/2ADBADKAGIDBADKBnADBAXKnsADBADLBUwD BADLDaEDBADLE24DBADLFSUwDQQCAAIwBwMFACABA4gwDQYJKoZIhvcNAQELBQAD ggEBAFQ7LGv/S699jSu86wTkgeCzRhxawleLORaaEu7SX0r+xSrXUz0oKjYJ3mXw Ybqtzo+TdTeZYj6FpiCb2fzh5qxj4/BOqkKoUczWaJIZEbA1u4U80xcEQWTvllJO Co4cYe/keH1IOwCXthMXONZtbRgM0f8i7He5/DyHfedGfrrx8ErDeiDKVCirPcKb umcHuEVqgM04bmuCZ6jlAIHwySMOyKkmZZnQmYf/RpekyijulXhLrq7/HBxRD8UI cnoqfK5b5n8QMXi4Iyp1KquGkXCg5PTsrStYjNh1febiaexADMmzIEfDRHTzh03G A1qX3eZ0oN6lYvIxpOc/ByWfpMM= -----END CERTIFICATE-----Generated at Wed May 22 16:49:35 2024 by rpki-client on console-fra.rpki-client.org