$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/E6BF830CC1DD11ECB97B9C7FC4F9AE02/9F8BF452C1E711EC97315146C4F9AE02.roa File: 9F8BF452C1E711EC97315146C4F9AE02.roa (raw, json) Hash identifier: +H35ZzajlMf2CAn7imL4kdl24ZLW2UKLJmF3R9MhK1k= Subject key identifier: B0:03:F8:05:97:C3:3D:CD:DD:02:62:5D:E9:A1:D2:67:F3:81:2B:71 Certificate issuer: /CN=A91348DF/serialNumber=10946AF911B655462C1A5EF01D684688E19687D3 Certificate serial: 01B6 Authority key identifier: 10:94:6A:F9:11:B6:55:46:2C:1A:5E:F0:1D:68:46:88:E1:96:87:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EJRq-RG2VUYsGl7wHWhGiOGWh9M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/E6BF830CC1DD11ECB97B9C7FC4F9AE02/9F8BF452C1E711EC97315146C4F9AE02.roa Signing time: Fri 05 May 2023 05:45:16 +0000 ROA not before: Fri 05 May 2023 05:45:16 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58507 IP address blocks: 157.211.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/E6BF830CC1DD11ECB97B9C7FC4F9AE02/EJRq-RG2VUYsGl7wHWhGiOGWh9M.crl rsync://rpki.apnic.net/member_repository/A91348DF/E6BF830CC1DD11ECB97B9C7FC4F9AE02/EJRq-RG2VUYsGl7wHWhGiOGWh9M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EJRq-RG2VUYsGl7wHWhGiOGWh9M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF/serialNumber=10946AF911B655462C1A5EF01D684688E19687D3 Validity Not Before: May 5 05:45:16 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=645497eb-74db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1c:71:83:39:5d:70:1d:6e:00:ea:1c:bd:53: 65:c0:86:91:52:16:ab:f2:1d:12:09:26:d2:86:6c: 4b:29:e0:93:2a:e0:a2:df:48:d5:5e:a2:55:bd:9d: ad:66:f9:d4:d0:79:e9:a0:95:34:23:44:d8:0a:d2: 0d:d8:1e:6f:3e:3e:aa:85:13:00:21:8b:b5:20:84: 42:b8:e4:86:95:0b:9e:63:89:5a:1b:ce:14:7c:bf: 2b:94:f2:c3:84:6d:3b:63:52:a6:2b:77:72:50:5f: 2b:b7:88:17:db:b2:e4:6f:a5:b2:48:85:09:f1:54: fa:25:9c:9f:0b:88:aa:52:a4:34:ca:a3:50:b7:43: 1f:e7:42:94:c7:4a:eb:37:2c:33:de:df:e2:98:58: 80:b4:03:80:e6:c5:b6:0f:3a:e0:11:2e:e2:f6:44: 32:88:80:f7:8d:c6:fc:dc:1d:aa:63:cf:2b:6f:d2: 3a:13:94:8d:de:60:42:65:22:b3:ac:28:cf:84:2d: 21:bd:37:93:fb:67:9a:8e:5b:c3:9f:a3:4e:3e:30: 50:9d:db:11:86:44:ca:6c:5f:25:5b:67:f3:79:e2: cf:03:f6:b7:a6:9d:14:cc:c6:84:48:6d:a6:0f:af: 9c:d2:83:f7:41:0f:af:52:87:45:e9:4f:97:d0:10: 3e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:03:F8:05:97:C3:3D:CD:DD:02:62:5D:E9:A1:D2:67:F3:81:2B:71 X509v3 Authority Key Identifier: keyid:10:94:6A:F9:11:B6:55:46:2C:1A:5E:F0:1D:68:46:88:E1:96:87:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/E6BF830CC1DD11ECB97B9C7FC4F9AE02/EJRq-RG2VUYsGl7wHWhGiOGWh9M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EJRq-RG2VUYsGl7wHWhGiOGWh9M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/E6BF830CC1DD11ECB97B9C7FC4F9AE02/9F8BF452C1E711EC97315146C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.211.0.0/16 Signature Algorithm: sha256WithRSAEncryption c2:ab:fd:5a:bf:a1:e3:8f:cf:05:99:f9:72:66:84:12:34:cf: 0e:35:c2:93:92:8b:6e:ab:2f:0e:c3:d2:9d:f9:be:4c:af:b3: 03:6c:02:92:40:ea:2a:cf:63:38:69:8c:aa:31:fb:dc:1c:67: 68:e0:0a:30:f6:d8:0a:d8:21:01:50:70:98:5a:35:43:a1:05: 86:75:67:a7:34:09:42:03:87:a3:49:05:d7:ed:72:b0:25:84: 2b:bd:95:90:84:e7:02:84:1a:0b:ff:f5:ea:9a:f6:89:6b:87: 07:5a:e7:aa:a5:ee:d8:e2:fc:48:b9:8c:50:00:20:10:7d:92: a4:24:a8:42:93:3d:59:47:79:67:31:56:00:6d:b9:25:0c:30: 63:fa:90:2a:7b:94:37:95:5a:01:bc:14:08:ab:e1:d9:b9:58: aa:a6:80:4d:16:4a:94:36:4c:7c:08:7d:bc:c1:d3:7f:5d:7a: a5:a1:7f:17:c8:73:83:d1:02:a2:91:9a:a8:ee:bd:ee:98:a0: ea:53:a7:a7:6c:5c:d8:5e:cf:e3:79:14:7d:0d:9f:9f:95:64: 17:4f:b2:1c:e1:64:b2:93:c0:01:ca:ba:ae:1b:c0:40:fd:a6: af:59:25:1b:98:dc:9b:fa:75:95:9f:c3:a1:1c:1f:bf:9f:d0: 5d:e0:f0:9d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKDEwOTQ2QUY5MTFCNjU1NDYyQzFBNUVGMDFENjg0Njg4 RTE5Njg3RDMwHhcNMjMwNTA1MDU0NTE2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDU0OTdlYi03NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xxxgzldcB1uAOocvVNlwIaRUhar8h0SCSbShmxLKeCTKuCi30jVXqJVvZ2t ZvnU0HnpoJU0I0TYCtIN2B5vPj6qhRMAIYu1IIRCuOSGlQueY4laG84UfL8rlPLD hG07Y1KmK3dyUF8rt4gX27Lkb6WySIUJ8VT6JZyfC4iqUqQ0yqNQt0Mf50KUx0rr Nywz3t/imFiAtAOA5sW2DzrgES7i9kQyiID3jcb83B2qY88rb9I6E5SN3mBCZSKz rCjPhC0hvTeT+2eajlvDn6NOPjBQndsRhkTKbF8lW2fzeeLPA/a3pp0UzMaESG2m D6+c0oP3QQ+vUodF6U+X0BA+/QIDAQABo4IClDCCApAwHQYDVR0OBBYEFLAD+AWX wz3N3QJiXemh0mfzgStxMB8GA1UdIwQYMBaAFBCUavkRtlVGLBpe8B1oRojhlofT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9FNkJGODMwQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi9FSlJxLVJHMlZVWXNHbDd3SFdoR2lPR1do OU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VKUnEtUkcyVlVZc0dsN3dIV2hHaU9HV2g5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ4REYvRTZCRjgzMENDMUREMTFFQ0I5N0I5QzdGQzRGOUFFMDIvOUY4QkY0NTJD MUU3MTFFQzk3MzE1MTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCd0zANBgkqhkiG9w0BAQsFAAOCAQEAwqv9Wr+h44/PBZn5 cmaEEjTPDjXCk5KLbqsvDsPSnfm+TK+zA2wCkkDqKs9jOGmMqjH73BxnaOAKMPbY CtghAVBwmFo1Q6EFhnVnpzQJQgOHo0kF1+1ysCWEK72VkITnAoQaC//16pr2iWuH B1rnqqXu2OL8SLmMUAAgEH2SpCSoQpM9WUd5ZzFWAG25JQwwY/qQKnuUN5VaAbwU CKvh2blYqqaATRZKlDZMfAh9vMHTf116paF/F8hzg9ECopGaqO697pig6lOnp2xc 2F7P43kUfQ2fn5VkF0+yHOFkspPAAcq6rhvAQP2mr1klG5jcm/p1lZ/DoRwfv5/Q XeDwnQ== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:14 2024 by rpki-client on console-ams.rpki-client.org