$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/14564AB0E83311E6A72DC543C4F9AE02.roa File: 14564AB0E83311E6A72DC543C4F9AE02.roa (raw, json) Hash identifier: NUz4kB3CyIG2IBuDbo+UA9LBpVU0SpPOT0o+emRtCgw= Subject key identifier: B6:22:F5:A7:3C:B3:A0:03:A3:AE:83:FE:DE:AA:85:94:05:C0:ED:B5 Certificate issuer: /CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Certificate serial: 1B60 Authority key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/14564AB0E83311E6A72DC543C4F9AE02.roa Signing time: Thu 04 Apr 2024 16:53:58 +0000 ROA not before: Thu 04 Apr 2024 16:53:58 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55795 IP address blocks: 101.128.5.0/24 maxlen: 24 101.128.6.0/24 maxlen: 24 101.128.7.0/24 maxlen: 24 103.9.16.0/22 maxlen: 22 202.52.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 16:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7008 (0x1b60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Validity Not Before: Apr 4 16:53:58 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660edb26-5b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a0:a4:ca:87:b3:69:cc:6c:68:29:e7:03:78: 74:9c:7b:4e:1f:af:69:f7:04:33:7c:30:a7:bd:cb: a9:ea:d0:dc:ee:1a:01:ab:78:98:c5:ec:27:ce:61: 94:83:d4:f2:3c:d5:57:f2:99:f7:a0:f8:f8:a7:e9: 0d:72:26:a6:f9:68:e6:5d:1f:8c:ea:8f:0d:62:0e: 5b:f4:1c:d3:06:af:0a:f6:e3:50:f3:46:20:34:38: 50:e6:52:48:ee:ca:45:e3:73:8c:b9:85:79:23:a4: 9b:c6:41:d7:46:8c:04:6b:19:19:5b:5b:ec:df:9c: 87:2c:f0:b9:3c:33:35:30:52:cf:de:31:14:fa:fc: 57:73:60:3a:95:cb:7c:99:03:fa:09:8e:11:57:6e: 9d:f3:70:02:62:3b:e0:23:f5:57:e0:dc:ad:3e:72: aa:7f:dc:eb:e5:1d:82:25:20:2e:f3:54:62:45:5e: dd:b7:07:50:2c:7d:4f:27:be:c9:5a:14:34:96:12: 8e:c5:76:27:e1:cc:f7:1c:a1:4d:09:86:fb:6e:42: 05:71:c7:d6:af:89:49:9b:9d:97:f5:e9:73:7e:e8: c0:e1:4b:ed:14:a3:3f:54:6a:ea:8e:99:a4:8e:f7: 49:55:2a:3e:18:de:b5:c2:87:06:80:1b:b9:63:71: 83:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:22:F5:A7:3C:B3:A0:03:A3:AE:83:FE:DE:AA:85:94:05:C0:ED:B5 X509v3 Authority Key Identifier: keyid:11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/14564AB0E83311E6A72DC543C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.128.5.0-101.128.7.255 103.9.16.0/22 202.52.46.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:ec:f3:ea:ce:f5:10:6c:cc:0a:25:15:ca:88:14:b8:0d:b3: a1:7f:26:80:56:5a:26:26:8c:ac:48:ff:55:9d:41:0e:3e:0d: 5f:04:3c:84:da:ea:8c:dc:be:c2:9e:33:bd:f9:c9:8a:fa:b7: 87:ac:1c:f6:ae:fe:df:ac:59:31:9b:a7:d9:2c:63:90:59:f9: 2b:2e:f2:a2:a3:ee:6e:0e:32:88:b0:17:4b:68:85:d5:91:d1: d9:11:fa:5c:fa:23:71:01:0a:f0:cf:73:1a:1f:da:c6:41:bf: 40:6f:74:1a:32:fb:e7:43:7d:3e:aa:3a:4c:8a:12:89:73:c5: 99:21:02:18:16:9e:45:78:93:82:75:64:9c:bf:44:fe:7e:fb: 3e:64:e1:69:1c:37:3b:92:fb:40:3c:74:08:8c:b3:14:ab:c8: 41:2b:bb:72:6a:b3:49:84:ce:b3:09:61:c9:1e:66:13:ba:d9: 32:37:14:dc:d6:42:f2:d3:9d:8e:1d:65:dc:e1:62:28:24:3c: 10:69:b3:62:59:fa:52:da:e3:b2:01:09:37:90:82:d5:b2:92: 85:8c:f6:0b:94:d5:1f:31:71:da:49:7f:8b:a2:c9:43:a4:0c: 0d:01:32:9f:44:18:fc:1b:0f:4f:98:46:fb:32:99:0d:b6:c3: f9:d5:83:3a -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICG2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGRTIxMTAvBgNVBAUTKDExMUU5ODFCQUQzMDE4MzBGN0MxRTU5MENDMUFBOEI0 ODIyNjBFRDgwHhcNMjQwNDA0MTY1MzU4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlZGIyNi01YjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqCkyoezacxsaCnnA3h0nHtOH69p9wQzfDCnvcup6tDc7hoBq3iYxewnzmGU g9TyPNVX8pn3oPj4p+kNciam+WjmXR+M6o8NYg5b9BzTBq8K9uNQ80YgNDhQ5lJI 7spF43OMuYV5I6SbxkHXRowEaxkZW1vs35yHLPC5PDM1MFLP3jEU+vxXc2A6lct8 mQP6CY4RV26d83ACYjvgI/VX4NytPnKqf9zr5R2CJSAu81RiRV7dtwdQLH1PJ77J WhQ0lhKOxXYn4cz3HKFNCYb7bkIFccfWr4lJm52X9elzfujA4UvtFKM/VGrqjpmk jvdJVSo+GN61wocGgBu5Y3GD3QIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFLYi9ac8 s6ADo66D/t6qhZQFwO21MB8GA1UdIwQYMBaAFBEemButMBgw98HlkMwaqLSCJg7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZFMi8yRkY5QkIyMkU4 MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dERDN3ZVdRekJxb3RJSW1E dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VSNllHNjB3R0REM3dlV1F6QnFvdElJbUR0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBGRTIvMkZGOUJCMjJFODMyMTFFNkJGNTEyODQyQzRGOUFFMDIvMTQ1NjRBQjBF ODMzMTFFNkE3MkRDNTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAGWABQMEA2WAAAMEAmcJEAMEAMo0LjANBgkqhkiG9w0B AQsFAAOCAQEASuzz6s71EGzMCiUVyogUuA2zoX8mgFZaJiaMrEj/VZ1BDj4NXwQ8 hNrqjNy+wp4zvfnJivq3h6wc9q7+36xZMZun2SxjkFn5Ky7yoqPubg4yiLAXS2iF 1ZHR2RH6XPojcQEK8M9zGh/axkG/QG90GjL750N9Pqo6TIoSiXPFmSECGBaeRXiT gnVknL9E/n77PmThaRw3O5L7QDx0CIyzFKvIQSu7cmqzSYTOswlhyR5mE7rZMjcU 3NZC8tOdjh1l3OFiKCQ8EGmzYln6UtrjsgEJN5CC1bKShYz2C5TVHzFx2kl/i6LJ Q6QMDQEyn0QY/BsPT5hG+zKZDbbD+dWDOg== -----END CERTIFICATE-----Generated at Mon May 20 17:22:33 2024 by rpki-client on console-fra.rpki-client.org