$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EC545C28A72B11EDAC3DA56CC4F9AE02.roa File: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (raw, json) Hash identifier: dBDKOqU2sajWacfQ0BLVilcWidRbbzdqZ6Zma/245tM= Subject key identifier: D9:13:B4:F6:03:D5:32:5B:C5:D4:04:83:B5:C9:4E:69:74:0F:4C:D2 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0549 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EC545C28A72B11EDAC3DA56CC4F9AE02.roa Signing time: Wed 04 Oct 2023 23:41:14 +0000 ROA not before: Wed 04 Oct 2023 23:41:13 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 140220 IP address blocks: 161.29.208.0/20 maxlen: 24 161.65.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 4 23:41:13 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651df819-2de6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:27:be:1b:cc:18:66:ab:9d:f5:d1:8e:75:f7: 27:97:38:a5:03:f1:75:a8:a7:92:2c:c6:63:cd:f1: 0b:f7:82:0b:67:cd:ed:28:8d:34:55:7f:d0:9a:35: aa:ec:86:39:7b:4d:c5:35:70:8a:eb:64:ac:db:c0: 6d:c5:8a:2e:f3:ec:5d:0b:11:26:b9:7c:5c:c9:b2: 7d:04:a7:43:46:55:62:d0:60:ea:aa:61:3d:b9:12: 9f:6c:1c:e8:a1:e3:01:a4:15:68:9e:42:86:80:57: 1e:33:2e:c6:11:ee:eb:41:e9:27:57:8f:fb:c7:49: 68:2b:16:0d:a4:fd:e5:f1:46:1a:50:0b:a8:09:96: 24:6f:22:d0:b9:c2:74:ab:8f:4a:93:62:a8:14:f7: 68:aa:64:86:92:db:25:35:f3:4a:a6:68:43:bb:d1: c6:15:0b:14:d0:48:5d:44:e3:9d:db:6e:c2:31:db: e7:6b:50:ce:ae:cf:13:df:1a:e8:28:c8:c2:3a:dd: 9b:00:cc:39:85:09:77:58:96:9d:cc:23:a2:a7:7f: 98:4e:e5:2b:65:3d:89:c9:85:9d:4b:b5:98:de:6e: a1:f0:05:f4:2b:41:9a:78:f9:74:b9:d1:26:f4:17: 17:a8:89:d8:0f:95:98:32:ef:72:b6:39:cb:1f:63: 48:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:13:B4:F6:03:D5:32:5B:C5:D4:04:83:B5:C9:4E:69:74:0F:4C:D2 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EC545C28A72B11EDAC3DA56CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.29.208.0/20 161.65.208.0/20 Signature Algorithm: sha256WithRSAEncryption 39:67:cc:dd:e4:37:b1:29:fb:21:57:0d:ae:2f:7a:71:c5:61: e5:0c:2f:52:b4:64:29:c0:f9:b5:e6:49:9b:6b:50:e2:f7:4e: 69:46:09:1b:f0:1e:24:3a:13:d3:4c:e7:3b:e1:da:ea:53:e1: 0c:a7:4c:c2:6d:84:16:2b:df:65:0b:12:2b:bd:9d:6b:5e:ea: e9:75:e2:51:12:94:cb:ce:1f:da:f8:16:29:b4:e7:5e:f0:46: d6:bc:58:e3:76:2a:54:16:c0:17:3d:90:cb:3f:74:d4:04:e0: 4d:71:f8:39:0e:16:f4:61:28:b9:bd:64:c9:0d:34:11:53:86: 86:51:bc:6c:31:b1:f1:a0:c1:37:e4:a3:ce:51:b0:20:a0:5a: eb:67:32:d8:57:c5:46:13:33:e9:95:66:c5:5b:a2:7d:da:ff: a4:c6:9a:2c:f2:d1:20:0f:9b:19:ca:20:52:7f:42:24:ce:74: 01:e2:05:8c:76:a8:f7:32:09:bb:64:64:dc:1a:5b:e5:ac:b0: 46:63:9c:76:78:10:a2:aa:51:15:8f:0c:a8:95:ff:60:f8:d7: b1:c9:d4:55:82:a0:d1:d7:4d:c7:01:b2:c0:fc:63:75:3a:f9: 68:05:df:2b:3c:59:21:a1:9f:43:d0:8a:f0:e6:fb:ba:68:d8: 8c:c1:9a:53 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjMxMDA0MjM0MTEzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZjgxOS0yZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCe+G8wYZqud9dGOdfcnlzilA/F1qKeSLMZjzfEL94ILZ83tKI00VX/QmjWq 7IY5e03FNXCK62Ss28BtxYou8+xdCxEmuXxcybJ9BKdDRlVi0GDqqmE9uRKfbBzo oeMBpBVonkKGgFceMy7GEe7rQeknV4/7x0loKxYNpP3l8UYaUAuoCZYkbyLQucJ0 q49Kk2KoFPdoqmSGktslNfNKpmhDu9HGFQsU0EhdROOd227CMdvna1DOrs8T3xro KMjCOt2bAMw5hQl3WJadzCOip3+YTuUrZT2JyYWdS7WY3m6h8AX0K0GaePl0udEm 9BcXqInYD5WYMu9ytjnLH2NI1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNkTtPYD 1TJbxdQEg7XJTml0D0zSMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvRUM1NDVDMjhB NzJCMTFFREFDM0RBNTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAShHdADBAShQdAwDQYJKoZIhvcNAQELBQADggEBADlnzN3k N7Ep+yFXDa4venHFYeUML1K0ZCnA+bXmSZtrUOL3TmlGCRvwHiQ6E9NM5zvh2upT 4QynTMJthBYr32ULEiu9nWte6ul14lESlMvOH9r4Fim0517wRta8WON2KlQWwBc9 kMs/dNQE4E1x+DkOFvRhKLm9ZMkNNBFThoZRvGwxsfGgwTfko85RsCCgWutnMthX xUYTM+mVZsVbon3a/6TGmizy0SAPmxnKIFJ/QiTOdAHiBYx2qPcyCbtkZNwaW+Ws sEZjnHZ4EKKqURWPDKiV/2D417HJ1FWCoNHXTccBssD8Y3U6+WgF3ys8WSGhn0PQ ivDm+7po2IzBmlM= -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:15 2024 by rpki-client on console-fra.rpki-client.org