$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/8D57E1664D0911EEA9837D4AC4F9AE02.roa File: 8D57E1664D0911EEA9837D4AC4F9AE02.roa (raw, json) Hash identifier: n3vOwUJUoWCR75yw1bvlHI6uJ2Fk4FKWZcFIvFpXKwM= Subject key identifier: 09:C5:CC:F5:76:91:84:01:42:39:FB:A2:85:4B:70:B9:03:BC:D7:72 Certificate issuer: /CN=A91889B6/serialNumber=E93674B1F3B6916B2B6363B861D6B77B3905DDD8 Certificate serial: 335A Authority key identifier: E9:36:74:B1:F3:B6:91:6B:2B:63:63:B8:61:D6:B7:7B:39:05:DD:D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/8D57E1664D0911EEA9837D4AC4F9AE02.roa Signing time: Thu 12 Oct 2023 15:01:04 +0000 ROA not before: Thu 12 Oct 2023 15:01:04 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 4768 IP address blocks: 192.173.16.0/21 maxlen: 21 192.173.16.0/24 maxlen: 24 192.173.17.0/24 maxlen: 24 192.173.18.0/24 maxlen: 24 192.173.19.0/24 maxlen: 24 192.173.20.0/24 maxlen: 24 192.173.23.0/24 maxlen: 24 192.173.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13146 (0x335a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6/serialNumber=E93674B1F3B6916B2B6363B861D6B77B3905DDD8 Validity Not Before: Oct 12 15:01:04 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65280a30-409c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:90:d0:0c:4b:b5:14:50:90:22:1b:73:75:21: 5c:6f:cd:88:9f:ad:81:37:b1:8d:c2:db:b1:24:5d: 78:99:84:97:a2:5a:24:3e:fb:86:be:bf:36:0a:4e: e6:5a:04:c6:33:c1:68:50:a3:45:97:b5:be:bb:d5: a9:a0:72:a7:c1:14:41:e9:b5:0a:c0:3b:63:44:81: 07:8a:7c:d9:e0:02:fd:95:72:c0:59:3d:8b:4f:85: 8b:0f:bd:a6:d1:dd:bb:7e:f6:fb:87:cf:8d:60:22: ba:38:30:3c:61:b5:e8:e1:6f:60:8d:1e:6c:96:1b: a6:b8:15:14:86:80:86:0c:14:c0:08:6c:8f:dd:35: a8:74:55:d4:15:df:84:ef:e7:7d:b2:0f:f3:ec:75: 00:f1:47:d5:26:8b:a4:99:8d:54:11:62:19:68:75: ef:ab:ef:bc:2b:6d:1a:14:51:69:bf:a1:ad:e4:24: 2e:fd:27:bd:08:73:77:70:91:ac:1f:d4:f8:11:3b: f8:76:c6:f3:fa:d9:d3:fc:58:1f:ad:8f:4e:1e:78: d2:23:1c:63:9c:fa:f6:98:d2:e8:14:9b:4a:86:e9: a3:62:f8:5c:b0:09:c1:a0:a8:1c:bc:45:b5:ab:ef: 0c:74:0d:a9:ce:c1:46:10:1b:ee:66:2c:74:ed:0d: f3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C5:CC:F5:76:91:84:01:42:39:FB:A2:85:4B:70:B9:03:BC:D7:72 X509v3 Authority Key Identifier: keyid:E9:36:74:B1:F3:B6:91:6B:2B:63:63:B8:61:D6:B7:7B:39:05:DD:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/8D57E1664D0911EEA9837D4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.173.16.0-192.173.24.255 Signature Algorithm: sha256WithRSAEncryption 78:55:f2:9a:1e:72:ac:e0:c7:a0:d4:a5:0b:89:e7:45:7a:8e: 86:6b:40:ad:9d:e6:d4:f6:19:bc:f7:31:e7:3e:ab:96:05:b8: cd:2b:0d:a8:bd:a3:d3:a0:5f:e8:38:43:b3:f8:15:d7:88:cb: 52:2f:80:f6:0a:8b:c2:b1:a6:da:1b:33:c3:00:d1:11:15:c3: c2:9c:c5:f2:39:b8:64:e6:a4:08:d0:ed:e6:d6:b8:7a:26:35: ab:12:8e:ff:06:32:ee:7e:d0:fa:11:e2:89:48:af:60:ab:71: 29:24:7e:79:6d:f6:e9:25:3d:d3:fb:a9:cb:ef:37:95:53:b6: 6e:e8:c3:f9:39:f1:78:ba:52:6d:a3:34:6f:38:d2:bf:67:05: 08:8a:6d:e4:bb:07:fc:4a:ea:f2:a2:dd:43:28:37:fa:78:76: 8f:e4:48:b9:71:c8:d8:18:a6:48:5c:1c:35:be:69:84:38:d2: b6:2b:e5:02:ec:18:85:72:af:03:22:2a:c8:b7:9b:6d:54:af: 51:94:77:b9:e4:ce:7f:43:df:4d:f6:3a:1f:63:4a:9a:5e:13: 24:99:c6:26:51:ff:2b:b8:6e:1d:9a:89:b6:c7:4b:11:7e:3e: c0:1a:f3:b1:21:15:68:c8:f9:79:ab:f6:f6:b9:d5:69:e7:38: 09:ff:a2:1c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICM1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKEU5MzY3NEIxRjNCNjkxNkIyQjYzNjNCODYxRDZCNzdC MzkwNURERDgwHhcNMjMxMDEyMTUwMTA0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4MGEzMC00MDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJDQDEu1FFCQIhtzdSFcb82In62BN7GNwtuxJF14mYSXolokPvuGvr82Ck7m WgTGM8FoUKNFl7W+u9WpoHKnwRRB6bUKwDtjRIEHinzZ4AL9lXLAWT2LT4WLD72m 0d27fvb7h8+NYCK6ODA8YbXo4W9gjR5slhumuBUUhoCGDBTACGyP3TWodFXUFd+E 7+d9sg/z7HUA8UfVJoukmY1UEWIZaHXvq++8K20aFFFpv6Gt5CQu/Se9CHN3cJGs H9T4ETv4dsbz+tnT/FgfrY9OHnjSIxxjnPr2mNLoFJtKhumjYvhcsAnBoKgcvEW1 q+8MdA2pzsFGEBvuZix07Q3zTwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFAnFzPV2 kYQBQjn7ooVLcLkDvNdyMB8GA1UdIwQYMBaAFOk2dLHztpFrK2NjuGHWt3s5Bd3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8yQzRFRjk3NjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi82VFowc2ZPMmtXc3JZMk80WWRhM2V6a0Yz ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZUWjBzZk8ya1dzclkyTzRZZGEzZXprRjNkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg5QjYvMkM0RUY5NzYxRDk2MTFFMkE2NTQ4RTdFMDhCMDJDRDIvOEQ1N0UxNjY0 RDA5MTFFRUE5ODM3RDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBMCtEAMEAMCtGDANBgkqhkiG9w0BAQsFAAOCAQEAeFXy mh5yrODHoNSlC4nnRXqOhmtArZ3m1PYZvPcx5z6rlgW4zSsNqL2j06Bf6DhDs/gV 14jLUi+A9gqLwrGm2hszwwDRERXDwpzF8jm4ZOakCNDt5ta4eiY1qxKO/wYy7n7Q +hHiiUivYKtxKSR+eW326SU90/upy+83lVO2bujD+TnxeLpSbaM0bzjSv2cFCIpt 5LsH/Erq8qLdQyg3+nh2j+RIuXHI2BimSFwcNb5phDjStivlAuwYhXKvAyIqyLeb bVSvUZR3ueTOf0PfTfY6H2NKml4TJJnGJlH/K7huHZqJtsdLEX4+wBrzsSEVaMj5 eav29rnVaec4Cf+iHA== -----END CERTIFICATE-----Generated at Fri May 31 17:44:25 2024 by rpki-client on console-fra.rpki-client.org