$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa File: EC8209420EB411EFAE1CF63BC4F9AE02.roa (raw, json) Hash identifier: vzBGal76vfkLrfXHNjJC7pq/YMdNqJaZICD9f3SVmYQ= Subject key identifier: FE:51:53:46:A7:C6:BD:4E:AE:7C:B6:36:20:89:CF:69:76:C1:81:BD Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 34A5 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa Signing time: Fri 10 May 2024 10:06:10 +0000 ROA not before: Fri 10 May 2024 10:06:10 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38599 IP address blocks: 58.181.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13477 (0x34a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: May 10 10:06:10 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=663df191-989b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bc:f3:65:14:e4:08:cb:ae:78:c3:9c:cb:34: 2f:50:4a:ea:6f:8c:0d:b9:a2:66:e5:5c:58:55:3b: 07:98:49:99:89:75:0e:3f:28:f0:03:77:13:cc:cb: 55:36:c4:a9:c7:4c:22:11:a7:98:28:de:30:40:23: 68:2b:12:fe:56:7a:4d:e6:a4:48:43:bd:5c:ce:ca: eb:27:7a:51:86:73:38:1c:68:6e:f4:3e:37:07:1b: 31:21:45:85:43:f0:d8:82:78:46:18:18:50:2f:78: 7e:7b:0a:d7:f2:21:c8:eb:d7:36:b5:45:a6:2c:5a: db:64:4f:1e:06:32:44:9a:e5:2a:1d:ad:2d:51:f4: fc:b7:e0:9a:be:90:5d:88:6e:95:e6:30:76:60:98: d9:43:1e:ce:9d:e6:a2:41:5e:a6:ae:cc:5e:03:16: 8f:df:cf:5b:a6:6e:c8:ae:16:7d:65:5e:b3:8e:30: 8c:11:56:b9:b4:27:32:1b:62:a0:e2:f4:09:9a:14: a8:f3:26:bc:65:37:ae:d5:35:5e:e4:b1:a4:5c:f8: a5:24:83:9c:f2:54:68:39:c2:c8:62:7d:da:29:ea: e0:ed:25:e9:2f:a0:7b:b4:0a:ae:3a:41:84:a9:4a: 6c:f0:36:ed:79:59:e8:88:59:ac:c5:46:7e:a2:48: 24:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:51:53:46:A7:C6:BD:4E:AE:7C:B6:36:20:89:CF:69:76:C1:81:BD X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.209.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:6b:0c:5a:96:1b:60:48:52:cf:d1:bf:4f:ae:27:f5:45:c7: 60:00:0d:36:1d:f4:5c:23:d9:f2:48:53:08:db:92:ab:45:da: 3c:d4:a0:01:08:3c:5a:26:77:11:17:a6:50:07:ff:90:4c:81: d4:5d:86:9a:01:6a:ca:fb:26:d2:3e:f2:9b:aa:65:ea:bd:b3: bc:2e:85:b5:b0:72:eb:1c:e9:5d:38:5f:18:ab:b5:a9:6a:e3: 00:0b:a6:7e:25:d5:ee:63:17:d3:42:b2:be:67:84:bf:f0:58: 7b:1d:5c:f7:51:97:d0:89:cb:17:36:f3:5b:85:10:ad:40:12: c0:6a:91:e8:2d:d8:f8:83:29:08:02:54:33:50:44:36:9f:b3: 77:6a:ee:66:84:eb:3c:b1:e4:20:43:db:6f:79:93:eb:61:f5: ca:4d:ac:53:a4:b2:20:38:da:f9:5f:b3:bd:38:8f:5c:05:a5: 8a:f8:58:66:47:c3:e8:f0:7f:fe:b8:cb:83:8a:bd:8d:7a:c5: 53:58:fb:8e:94:bf:b5:30:a5:63:20:44:87:31:46:81:81:bb: bd:7c:3e:7e:dd:03:c8:32:fd:d2:f5:94:14:45:7c:5c:07:b7: c0:2b:0c:28:92:7d:65:66:05:98:9c:a4:e2:0b:d7:ae:55:67: 44:de:82:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjQwNTEwMTAwNjEwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNkZjE5MS05ODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrzzZRTkCMuueMOcyzQvUErqb4wNuaJm5VxYVTsHmEmZiXUOPyjwA3cTzMtV NsSpx0wiEaeYKN4wQCNoKxL+VnpN5qRIQ71czsrrJ3pRhnM4HGhu9D43BxsxIUWF Q/DYgnhGGBhQL3h+ewrX8iHI69c2tUWmLFrbZE8eBjJEmuUqHa0tUfT8t+CavpBd iG6V5jB2YJjZQx7OneaiQV6mrsxeAxaP389bpm7IrhZ9ZV6zjjCMEVa5tCcyG2Kg 4vQJmhSo8ya8ZTeu1TVe5LGkXPilJIOc8lRoOcLIYn3aKerg7SXpL6B7tAquOkGE qUps8DbteVnoiFmsxUZ+okgkIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP5RU0an xr1Orny2NiCJz2l2wYG9MB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvRUM4MjA5NDIw RUI0MTFFRkFFMUNGNjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6tdEwDQYJKoZIhvcNAQELBQADggEBAIprDFqWG2BIUs/R v0+uJ/VFx2AADTYd9Fwj2fJIUwjbkqtF2jzUoAEIPFomdxEXplAH/5BMgdRdhpoB asr7JtI+8puqZeq9s7wuhbWwcusc6V04Xxirtalq4wALpn4l1e5jF9NCsr5nhL/w WHsdXPdRl9CJyxc281uFEK1AEsBqkegt2PiDKQgCVDNQRDafs3dq7maE6zyx5CBD 2295k+th9cpNrFOksiA42vlfs704j1wFpYr4WGZHw+jwf/64y4OKvY16xVNY+46U v7UwpWMgRIcxRoGBu718Pn7dA8gy/dL1lBRFfFwHt8ArDCiSfWVmBZicpOIL165V Z0Tegos= -----END CERTIFICATE-----Generated at Thu Jun 6 14:59:01 2024 by rpki-client on console-fra.rpki-client.org