$ rpki-client -vvf rpki.apnic.net/member_repository/A91573B8/84A4A10CB8C611EEA3AFD610C4F9AE02/F6E7CED8B8C611EEAC13CC11C4F9AE02.roa File: F6E7CED8B8C611EEAC13CC11C4F9AE02.roa (raw, json) Hash identifier: Ehjuv5Uf0g7hk8vGihsJTixHlQEY1frs5IM1jFNhEQ8= Subject key identifier: 0B:41:5F:E5:1A:CF:E5:25:35:4B:77:BE:BD:85:0A:20:F9:7A:F3:22 Certificate issuer: /CN=A91573B8/serialNumber=8CB96F0DCA84B20B49A07128E777372058A69053 Certificate serial: 44 Authority key identifier: 8C:B9:6F:0D:CA:84:B2:0B:49:A0:71:28:E7:77:37:20:58:A6:90:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLlvDcqEsgtJoHEo53c3IFimkFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91573B8/84A4A10CB8C611EEA3AFD610C4F9AE02/F6E7CED8B8C611EEAC13CC11C4F9AE02.roa Signing time: Sat 25 May 2024 08:42:47 +0000 ROA not before: Sat 25 May 2024 08:42:47 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 131239 IP address blocks: 202.37.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91573B8/84A4A10CB8C611EEA3AFD610C4F9AE02/jLlvDcqEsgtJoHEo53c3IFimkFM.crl rsync://rpki.apnic.net/member_repository/A91573B8/84A4A10CB8C611EEA3AFD610C4F9AE02/jLlvDcqEsgtJoHEo53c3IFimkFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLlvDcqEsgtJoHEo53c3IFimkFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91573B8/serialNumber=8CB96F0DCA84B20B49A07128E777372058A69053 Validity Not Before: May 25 08:42:47 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6651a486-aafe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:c7:4f:c3:4f:09:a2:f9:99:59:e9:0a:ac: f4:e2:ad:af:8e:72:03:45:00:35:ae:23:b1:45:7d: 1e:09:81:48:50:56:91:3c:14:05:0b:7e:51:c2:5a: 5f:e5:61:90:e6:4b:ec:c7:43:65:4b:87:40:94:57: bb:44:e9:e8:51:4e:d8:73:7b:d5:98:f0:ce:0d:29: c5:5a:7c:c2:50:a0:74:57:4f:49:a9:b8:d5:59:fe: a0:61:be:5a:b0:64:36:60:1a:44:f0:af:3e:13:b9: 57:0b:f5:79:51:a2:76:8a:d2:ff:9d:e7:9e:99:6c: aa:e6:81:27:1a:ab:23:a4:e9:1c:1b:e8:88:06:e7: 51:26:b8:ee:b3:84:dc:e4:e0:38:a5:d2:d3:aa:a4: 78:1e:4a:66:00:db:a2:f9:7b:8d:32:4a:69:90:31: b2:a6:d9:aa:df:2d:33:a7:46:d6:fb:66:26:7b:be: 09:05:67:0a:b5:eb:49:0a:b8:c6:ca:2b:16:ff:8e: 35:3c:30:4e:de:9d:ff:25:52:ad:49:a0:95:32:5f: 49:96:c8:41:39:3a:77:0a:c4:29:58:34:f4:69:37: 2f:5b:ae:8d:06:71:9c:a2:09:c6:ad:69:55:43:8d: fe:19:b8:d8:c8:88:e7:f8:e9:01:a4:5f:62:e7:3c: ad:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:41:5F:E5:1A:CF:E5:25:35:4B:77:BE:BD:85:0A:20:F9:7A:F3:22 X509v3 Authority Key Identifier: keyid:8C:B9:6F:0D:CA:84:B2:0B:49:A0:71:28:E7:77:37:20:58:A6:90:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91573B8/84A4A10CB8C611EEA3AFD610C4F9AE02/jLlvDcqEsgtJoHEo53c3IFimkFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLlvDcqEsgtJoHEo53c3IFimkFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91573B8/84A4A10CB8C611EEA3AFD610C4F9AE02/F6E7CED8B8C611EEAC13CC11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.64.0/23 Signature Algorithm: sha256WithRSAEncryption 38:cc:53:b1:ba:6a:ae:17:39:fb:69:96:76:5d:d9:9b:41:17: ec:14:de:6e:fd:f9:3d:16:e8:39:be:fb:66:01:79:3c:75:73: 75:e5:0e:29:9f:5d:cf:2b:7f:d3:77:30:c0:a8:e9:28:c9:29: fb:ed:2d:bb:ed:88:ae:2b:47:f7:ba:02:13:4e:fd:a1:9c:32: c6:cf:6d:7d:2b:da:85:fd:ed:70:f6:d3:81:17:e6:d1:59:10: 32:44:52:c3:f9:0d:e5:9b:6a:f8:ec:2d:a7:ba:f8:75:eb:e4: e7:00:41:85:d0:4b:f7:71:8f:0c:18:d3:21:a1:de:5c:83:3a: 96:01:0b:35:e2:7f:b3:70:d4:8a:86:ba:e6:c1:00:27:4e:4b: 01:fd:fa:a7:9d:73:69:b4:4e:50:d6:4a:dc:0a:58:d7:b2:1d: 7c:ea:38:cf:1b:68:c8:42:95:ba:71:d3:c8:fe:3c:80:4e:d3: 7c:73:e7:d1:03:33:d0:b4:5b:8e:82:9c:3f:6f:c2:ea:87:bb: 23:0a:e1:53:ef:bc:3b:91:3f:dc:70:85:e2:9d:c6:43:7b:6a: d7:92:57:78:26:7d:f4:b9:57:2b:9c:ab:18:1e:59:fe:93:07: 06:45:c0:22:ff:14:54:7c:89:52:a3:e6:b5:90:0e:b3:8e:57: f8:de:41:62 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NzNCODExMC8GA1UEBRMoOENCOTZGMERDQTg0QjIwQjQ5QTA3MTI4RTc3NzM3MjA1 OEE2OTA1MzAeFw0yNDA1MjUwODQyNDdaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTFhNDg2LWFhZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/w8dPw08JovmZWekKrPTira+OcgNFADWuI7FFfR4JgUhQVpE8FAULflHCWl/l YZDmS+zHQ2VLh0CUV7tE6ehRTthze9WY8M4NKcVafMJQoHRXT0mpuNVZ/qBhvlqw ZDZgGkTwrz4TuVcL9XlRonaK0v+d556ZbKrmgScaqyOk6Rwb6IgG51EmuO6zhNzk 4Dil0tOqpHgeSmYA26L5e40ySmmQMbKm2arfLTOnRtb7ZiZ7vgkFZwq160kKuMbK Kxb/jjU8ME7enf8lUq1JoJUyX0mWyEE5OncKxClYNPRpNy9bro0GcZyiCcataVVD jf4ZuNjIiOf46QGkX2LnPK1ZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUC0Ff5RrP 5SU1S3e+vYUKIPl68yIwHwYDVR0jBBgwFoAUjLlvDcqEsgtJoHEo53c3IFimkFMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3M0I4Lzg0QTRBMTBDQjhD NjExRUVBM0FGRDYxMEM0RjlBRTAyL2pMbHZEY3FFc2d0Sm9IRW81M2MzSUZpbWtG TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvakxsdkRjcUVzZ3RKb0hFbzUzYzNJRmlta0ZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzNCOC84NEE0QTEwQ0I4QzYxMUVFQTNBRkQ2MTBDNEY5QUUwMi9GNkU3Q0VEOEI4 QzYxMUVFQUMxM0NDMTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcolQDANBgkqhkiG9w0BAQsFAAOCAQEAOMxTsbpqrhc5+2mW dl3Zm0EX7BTebv35PRboOb77ZgF5PHVzdeUOKZ9dzyt/03cwwKjpKMkp++0tu+2I ritH97oCE079oZwyxs9tfSvahf3tcPbTgRfm0VkQMkRSw/kN5Ztq+Owtp7r4devk 5wBBhdBL93GPDBjTIaHeXIM6lgELNeJ/s3DUioa65sEAJ05LAf36p51zabROUNZK 3ApY17IdfOo4zxtoyEKVunHTyP48gE7TfHPn0QMz0LRbjoKcP2/C6oe7IwrhU++8 O5E/3HCF4p3GQ3tq15JXeCZ99LlXK5yrGB5Z/pMHBkXAIv8UVHyJUqPmtZAOs45X +N5BYg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:13 2024 by rpki-client on console-ams.rpki-client.org