$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7BD18B9EA69D11ED970A2E1EC4F9AE02.roa File: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: SbB68Pc0GTsdMrmaHHB8Vqq1dHVSFzyvLPZXrJjL8BE= Subject key identifier: 9B:8F:69:8A:A4:7B:13:B7:2E:58:A6:03:F6:08:46:2F:DF:4A:ED:DD Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0546 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7BD18B9EA69D11ED970A2E1EC4F9AE02.roa Signing time: Wed 04 Oct 2023 23:41:10 +0000 ROA not before: Wed 04 Oct 2023 23:41:10 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132264 IP address blocks: 131.203.8.0/21 maxlen: 24 131.203.16.0/22 maxlen: 24 131.203.20.0/22 maxlen: 24 131.203.24.0/22 maxlen: 24 131.203.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1350 (0x546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 4 23:41:10 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651df816-5247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a7:2b:3a:22:e7:90:4a:87:43:e4:22:8e:78: 66:a2:92:22:2f:8c:fd:c4:b6:82:3e:7e:cb:ba:5c: 81:70:83:38:41:1e:d3:2f:f3:cc:9d:1c:8a:a1:cd: 55:4f:d9:c9:c5:d9:c3:7b:ab:d8:98:12:53:c8:c3: 2f:ce:5e:28:59:4e:96:10:52:e9:70:00:65:5b:3f: c5:14:6a:63:d7:15:09:77:f0:cd:a6:13:3f:23:94: 80:11:a2:cf:61:ff:77:9b:db:4b:7a:3e:83:53:d8: 66:b9:8a:42:4c:76:7c:71:c8:d6:f4:e1:1a:5d:b1: f5:b0:ea:48:9d:b5:53:1e:98:b1:8f:d9:49:c9:15: b2:87:ac:8d:b7:e0:49:b2:41:2d:0e:5a:89:70:bf: 52:d2:7f:0f:3a:05:c0:dd:69:d6:d4:86:04:a0:95: 4d:8f:91:1e:26:a8:c8:55:c7:c6:c3:b8:d6:02:af: 2e:d5:01:32:1f:fd:80:2b:34:12:ee:d4:ed:7f:05: fe:a9:f5:cb:8d:e7:0e:20:6c:e1:bb:a7:b4:1e:7f: 7f:23:c6:7b:ff:c9:55:7b:8e:37:18:57:90:6a:3b: 6b:02:f7:12:fb:fe:7b:89:36:52:71:c4:e8:f0:67: b6:ab:8c:2e:ba:69:62:f6:89:dc:b4:ae:cb:09:89: 74:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:8F:69:8A:A4:7B:13:B7:2E:58:A6:03:F6:08:46:2F:DF:4A:ED:DD X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7BD18B9EA69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.8.0-131.203.27.255 131.203.160.0/21 Signature Algorithm: sha256WithRSAEncryption 76:9d:25:c9:fe:d4:81:a9:c8:0d:a9:55:cc:d6:d7:77:2c:32: a5:b2:af:30:26:ec:c7:3c:9a:8c:17:d3:e4:b5:9f:ae:04:31: fb:c5:41:ac:2a:da:b5:96:31:4b:25:62:23:c7:4b:0c:b8:4b: c1:d5:26:01:39:c4:c4:f8:83:93:a9:2e:42:6a:41:1c:0c:c6: bd:91:1a:b6:b2:6b:82:bf:09:18:ab:a8:74:6e:e9:71:e5:ab: 25:79:c3:2c:e7:ac:17:93:36:ea:b6:5d:be:b4:51:63:05:c3: d8:3c:fe:e0:b6:75:2f:c1:f9:35:af:72:b8:f5:55:52:31:61: a1:5a:e9:87:47:74:72:e6:74:6c:93:42:61:a0:a6:88:27:5f: 6b:37:6c:da:35:21:72:74:d8:3a:c9:c7:34:dd:15:88:35:3b: 4e:18:ba:2a:6f:9d:83:f0:b8:2d:5d:be:3a:53:9b:f9:70:67: 21:65:e4:1e:0f:e5:03:a0:4c:84:b8:e0:25:64:b5:04:b1:d3: 35:95:ef:c1:66:91:e9:63:b2:50:48:43:96:e3:56:a7:6d:e2: 7d:1e:f3:3d:fe:e8:0b:b8:96:a9:eb:d6:3e:c0:44:49:53:a8: 65:3c:76:0d:60:ef:95:39:a3:0c:fc:92:da:81:68:20:a1:f6: 8c:ff:45:5e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjMxMDA0MjM0MTEwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZjgxNi01MjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KcrOiLnkEqHQ+QijnhmopIiL4z9xLaCPn7LulyBcIM4QR7TL/PMnRyKoc1V T9nJxdnDe6vYmBJTyMMvzl4oWU6WEFLpcABlWz/FFGpj1xUJd/DNphM/I5SAEaLP Yf93m9tLej6DU9hmuYpCTHZ8ccjW9OEaXbH1sOpInbVTHpixj9lJyRWyh6yNt+BJ skEtDlqJcL9S0n8POgXA3WnW1IYEoJVNj5EeJqjIVcfGw7jWAq8u1QEyH/2AKzQS 7tTtfwX+qfXLjecOIGzhu6e0Hn9/I8Z7/8lVe443GFeQajtrAvcS+/57iTZSccTo 8Ge2q4wuumli9onctK7LCYl03QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFJuPaYqk exO3LlimA/YIRi/fSu3dMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0JEMThCOUVB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEA4PLCAMEAoPLGAMEA4PLoDANBgkqhkiG9w0BAQsFAAOC AQEAdp0lyf7UganIDalVzNbXdywypbKvMCbsxzyajBfT5LWfrgQx+8VBrCratZYx SyViI8dLDLhLwdUmATnExPiDk6kuQmpBHAzGvZEatrJrgr8JGKuodG7pceWrJXnD LOesF5M26rZdvrRRYwXD2Dz+4LZ1L8H5Na9yuPVVUjFhoVrph0d0cuZ0bJNCYaCm iCdfazds2jUhcnTYOsnHNN0ViDU7Thi6Km+dg/C4LV2+OlOb+XBnIWXkHg/lA6BM hLjgJWS1BLHTNZXvwWaR6WOyUEhDluNWp23ifR7zPf7oC7iWqevWPsBESVOoZTx2 DWDvlTmjDPyS2oFoIKH2jP9FXg== -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:12 2024 by rpki-client on console-ams.rpki-client.org