$ rpki-client -vvf rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/909C5126F0A711EEA6150174C4F9AE02.roa File: 909C5126F0A711EEA6150174C4F9AE02.roa (raw, json) Hash identifier: 1FwuHHmlnPXWlbNgVUDPKr/VtPdYS3BCbyzbwPcLPy8= Subject key identifier: EF:14:F9:99:B3:72:61:18:4F:72:AF:16:14:A9:6C:95:65:31:FB:10 Certificate issuer: /CN=A91527F9/serialNumber=E6BF46E530DF92298FAC032AFBC98409C4430439 Certificate serial: 33CD Authority key identifier: E6:BF:46:E5:30:DF:92:29:8F:AC:03:2A:FB:C9:84:09:C4:43:04:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5r9G5TDfkimPrAMq-8mECcRDBDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/909C5126F0A711EEA6150174C4F9AE02.roa Signing time: Tue 02 Apr 2024 04:14:57 +0000 ROA not before: Tue 02 Apr 2024 04:14:57 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 9241 IP address blocks: 110.35.88.0/21 maxlen: 21 113.20.64.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/5r9G5TDfkimPrAMq-8mECcRDBDk.crl rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/5r9G5TDfkimPrAMq-8mECcRDBDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5r9G5TDfkimPrAMq-8mECcRDBDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13261 (0x33cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91527F9/serialNumber=E6BF46E530DF92298FAC032AFBC98409C4430439 Validity Not Before: Apr 2 04:14:57 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=660b8641-5b9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:96:c3:0a:5c:9f:31:50:c0:af:87:87:84:91: c9:70:b9:4b:ac:28:08:8f:bb:dd:3f:79:d4:97:c8: 80:c8:2a:6a:b3:9b:49:01:cb:0d:82:1c:23:91:3f: 55:47:a6:a8:c0:8b:52:f6:49:89:03:0d:8d:17:67: 23:90:a5:b2:a2:26:f7:64:ab:c5:3e:65:e1:c8:c4: c8:81:67:b2:a1:8c:02:7d:25:ba:75:8b:66:91:bd: fb:34:36:30:b5:05:e8:df:41:f5:fa:be:1d:41:db: c1:99:a0:eb:68:7b:65:d9:c6:48:f1:83:e4:1d:7a: fe:53:7a:6e:10:81:9c:02:83:f7:30:54:a3:f6:d1: 58:95:6a:cc:9d:95:ac:36:3e:c4:88:21:e5:c7:7e: ca:82:e3:14:8c:c7:45:cb:f5:0c:20:77:16:b2:1f: 39:fe:ec:63:25:da:c3:14:37:1b:45:ec:46:9a:a8: aa:e9:27:94:dc:35:67:0b:be:90:d7:36:9b:85:0d: 7e:4b:52:ca:5a:b4:3e:c9:95:f1:2b:f0:bc:ad:ce: 12:1b:c8:76:bd:d4:e6:3d:a1:cf:7d:e2:6d:3c:98: cc:c5:e8:d3:e2:63:ae:a0:92:ce:f8:d0:cc:11:9d: 73:c8:3f:26:81:b4:b8:ba:04:84:3d:bb:48:ad:32: fb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:14:F9:99:B3:72:61:18:4F:72:AF:16:14:A9:6C:95:65:31:FB:10 X509v3 Authority Key Identifier: keyid:E6:BF:46:E5:30:DF:92:29:8F:AC:03:2A:FB:C9:84:09:C4:43:04:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/5r9G5TDfkimPrAMq-8mECcRDBDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5r9G5TDfkimPrAMq-8mECcRDBDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/909C5126F0A711EEA6150174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.35.88.0/21 113.20.64.0/19 Signature Algorithm: sha256WithRSAEncryption 49:07:e1:bf:35:cd:1e:30:a7:29:0d:87:37:cb:52:29:b9:be: 76:4a:bf:28:ef:2c:55:da:7f:7d:0f:83:6d:53:25:cc:1b:3a: bd:20:b4:7e:c6:e6:98:e6:1b:a8:9c:3e:b6:1a:5d:bf:5c:48: e3:ba:94:50:02:b1:9c:78:40:1d:79:be:2b:71:3a:11:2b:3e: e5:81:3e:68:ec:99:6f:2c:42:db:a8:b5:6f:b9:17:ed:5c:9c: 7e:e4:9c:a4:f0:28:8c:e7:7d:5f:df:af:b8:30:4d:71:02:15: ae:52:4c:1a:c4:26:3a:aa:28:15:75:eb:82:07:7c:74:13:26: 01:95:0c:fc:7f:c7:34:88:16:2e:85:16:0b:37:75:d5:b3:56: 81:02:2b:ce:32:6c:32:cf:ea:01:19:65:5b:c0:e6:bc:2a:89: 5e:6f:c0:16:97:8c:9b:9c:98:67:38:93:f6:2b:3a:a6:94:c6: fe:43:8b:09:ad:17:ab:21:97:a3:0a:04:aa:ba:37:50:ba:08: 68:4e:45:c7:cd:83:ef:87:c7:19:1e:c0:e1:7e:dd:b4:58:86: 57:34:b9:ff:e6:88:97:51:94:68:68:cd:83:03:ed:30:9b:1b: d4:7a:6f:07:cd:5a:95:25:57:a7:12:e4:7b:ec:af:3a:be:3c: 7a:70:40:03 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICM80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3RjkxMTAvBgNVBAUTKEU2QkY0NkU1MzBERjkyMjk4RkFDMDMyQUZCQzk4NDA5 QzQ0MzA0MzkwHhcNMjQwNDAyMDQxNDU3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBiODY0MS01YjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05bDClyfMVDAr4eHhJHJcLlLrCgIj7vdP3nUl8iAyCpqs5tJAcsNghwjkT9V R6aowItS9kmJAw2NF2cjkKWyoib3ZKvFPmXhyMTIgWeyoYwCfSW6dYtmkb37NDYw tQXo30H1+r4dQdvBmaDraHtl2cZI8YPkHXr+U3puEIGcAoP3MFSj9tFYlWrMnZWs Nj7EiCHlx37KguMUjMdFy/UMIHcWsh85/uxjJdrDFDcbRexGmqiq6SeU3DVnC76Q 1zabhQ1+S1LKWrQ+yZXxK/C8rc4SG8h2vdTmPaHPfeJtPJjMxejT4mOuoJLO+NDM EZ1zyD8mgbS4ugSEPbtIrTL7AQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO8U+Zmz cmEYT3KvFhSpbJVlMfsQMB8GA1UdIwQYMBaAFOa/RuUw35Ipj6wDKvvJhAnEQwQ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjdGOS82RUQyRUJBQTFE OUExMUUyQUU5M0FEODcwOEIwMkNEMi81cjlHNVREZmtpbVByQU1xLThtRUNjUkRC RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyOUc1VERma2ltUHJBTXEtOG1FQ2NSREJEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTI3RjkvNkVEMkVCQUExRDlBMTFFMkFFOTNBRDg3MDhCMDJDRDIvOTA5QzUxMjZG MEE3MTFFRUE2MTUwMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANuI1gDBAVxFEAwDQYJKoZIhvcNAQELBQADggEBAEkH4b81 zR4wpykNhzfLUim5vnZKvyjvLFXaf30Pg21TJcwbOr0gtH7G5pjmG6icPrYaXb9c SOO6lFACsZx4QB15vitxOhErPuWBPmjsmW8sQtuotW+5F+1cnH7knKTwKIznfV/f r7gwTXECFa5STBrEJjqqKBV164IHfHQTJgGVDPx/xzSIFi6FFgs3ddWzVoECK84y bDLP6gEZZVvA5rwqiV5vwBaXjJucmGc4k/YrOqaUxv5DiwmtF6shl6MKBKq6N1C6 CGhORcfNg++HxxkewOF+3bRYhlc0uf/miJdRlGhozYMD7TCbG9R6bwfNWpUlV6cS 5Hvsrzq+PHpwQAM= -----END CERTIFICATE-----Generated at Fri May 31 16:40:56 2024 by rpki-client on console-ams.rpki-client.org