$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/4CF7B6F834CE11EEB44B835DC4F9AE02.roa File: 4CF7B6F834CE11EEB44B835DC4F9AE02.roa (raw, json) Hash identifier: nWLH6kwiVegk08h4yc7fneStdHCesY0iUBf1w4csxXs= Subject key identifier: B1:C0:11:D0:71:14:FC:82:1E:5C:32:88:33:DF:FF:C1:CF:73:FC:3B Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 028B Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/4CF7B6F834CE11EEB44B835DC4F9AE02.roa Signing time: Sat 11 May 2024 04:10:40 +0000 ROA not before: Sat 11 May 2024 04:10:40 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 133467 IP address blocks: 157.119.21.0/24 maxlen: 24 157.119.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Validity Not Before: May 11 04:10:40 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663eefc0-b54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:26:0a:9b:b4:41:e7:11:2a:65:a5:ba:5a:d2: 64:ee:01:7b:7c:a3:e7:86:3c:fb:ee:d1:c3:3e:57: d7:52:76:cc:0d:79:61:20:77:03:0d:5f:ac:c5:89: 53:d9:b7:e8:a3:a9:f5:9d:4d:6d:1f:45:b5:5e:a7: 49:fa:3d:d8:d0:49:6b:53:c9:26:b6:68:cb:42:2b: 7d:ad:cb:0d:2b:13:56:1a:b0:19:86:92:d4:05:7e: ed:6a:ff:bf:b2:f7:f6:f6:71:d6:bf:92:7f:f0:38: 9e:1e:eb:8c:e2:32:2a:48:ef:c6:b5:97:0c:26:92: f7:39:e7:0c:6a:80:b1:1a:f2:ae:19:38:48:14:28: 49:99:0a:a1:c0:77:86:4f:be:6a:75:89:a8:20:4d: 35:2f:90:01:58:ad:fe:af:4e:5f:77:58:54:ed:f5: ea:a5:c5:82:53:5c:9f:d9:e0:b0:b1:26:31:be:cf: d0:a9:12:11:f6:af:67:23:70:b3:e5:af:56:b7:b1: 32:97:9c:05:b2:e3:60:54:3b:89:4f:28:ff:26:98: 00:44:21:8f:1b:68:05:ac:9a:8e:75:1a:7b:b9:ce: 09:ad:7c:e5:b4:63:3b:0f:77:6e:70:59:1a:a2:39: b8:11:fe:ab:04:4c:ed:1b:7c:a5:81:04:ca:98:a1: f4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:C0:11:D0:71:14:FC:82:1E:5C:32:88:33:DF:FF:C1:CF:73:FC:3B X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/4CF7B6F834CE11EEB44B835DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.21.0-157.119.22.255 Signature Algorithm: sha256WithRSAEncryption 0c:66:3c:c8:a6:8c:c8:89:32:28:2d:35:f6:40:71:26:cb:60: 6c:45:5d:1a:7c:95:ff:08:44:f5:99:10:80:45:57:01:aa:35: 2a:eb:24:f0:ea:8d:27:70:a1:0f:45:78:6b:54:33:fb:e3:7b: 50:ad:f4:82:25:90:89:ff:e9:d4:e0:9a:69:9c:7d:9e:84:de: df:b9:3e:be:c6:12:4c:3f:27:6b:e1:1d:ee:45:be:df:e4:4a: 01:c3:f9:2a:f1:b0:33:8a:71:67:cd:09:97:20:91:1f:fb:27: b8:f0:34:e7:20:d8:fd:4f:6b:7c:d4:d9:51:8d:2b:07:05:18: 5a:21:79:95:37:50:bb:90:30:fc:ba:eb:9a:8f:7e:05:57:8c: 89:da:fb:b8:3d:1d:f6:a0:ba:30:51:f7:47:89:fb:e3:3a:ef: bf:08:70:f4:c0:12:34:ac:df:b6:d3:81:f2:3d:dd:66:6f:6d: b0:31:9b:9e:f3:a3:2b:e1:8b:57:3d:06:d2:4b:4f:7d:a7:c5: 2a:97:fc:9d:6e:b5:07:33:f6:74:86:e9:ae:b0:26:40:a3:03: 37:ec:3f:8e:49:68:6b:78:96:08:13:1b:f5:04:9b:83:3a:5c: f0:18:58:df:76:b9:0a:d7:35:9f:51:71:50:c1:11:6e:f4:69: 58:df:2a:81 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjQwNTExMDQxMDQwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlZWZjMC1iNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iYKm7RB5xEqZaW6WtJk7gF7fKPnhjz77tHDPlfXUnbMDXlhIHcDDV+sxYlT 2bfoo6n1nU1tH0W1XqdJ+j3Y0ElrU8kmtmjLQit9rcsNKxNWGrAZhpLUBX7tav+/ svf29nHWv5J/8DieHuuM4jIqSO/GtZcMJpL3OecMaoCxGvKuGThIFChJmQqhwHeG T75qdYmoIE01L5ABWK3+r05fd1hU7fXqpcWCU1yf2eCwsSYxvs/QqRIR9q9nI3Cz 5a9Wt7Eyl5wFsuNgVDuJTyj/JpgARCGPG2gFrJqOdRp7uc4JrXzltGM7D3ducFka ojm4Ef6rBEztG3ylgQTKmKH0LwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFLHAEdBx FPyCHlwyiDPf/8HPc/w7MB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvNENGN0I2Rjgz NENFMTFFRUI0NEI4MzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAJ13FQMEAJ13FjANBgkqhkiG9w0BAQsFAAOCAQEADGY8 yKaMyIkyKC019kBxJstgbEVdGnyV/whE9ZkQgEVXAao1Kusk8OqNJ3ChD0V4a1Qz ++N7UK30giWQif/p1OCaaZx9noTe37k+vsYSTD8na+Ed7kW+3+RKAcP5KvGwM4px Z80JlyCRH/snuPA05yDY/U9rfNTZUY0rBwUYWiF5lTdQu5Aw/Lrrmo9+BVeMidr7 uD0d9qC6MFH3R4n74zrvvwhw9MASNKzfttOB8j3dZm9tsDGbnvOjK+GLVz0G0ktP fafFKpf8nW61BzP2dIbprrAmQKMDN+w/jkloa3iWCBMb9QSbgzpc8BhY33a5Ctc1 n1FxUMERbvRpWN8qgQ== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:15 2024 by rpki-client on console-ams.rpki-client.org