$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/97F664EC366311EEB376DC3AC4F9AE02.roa File: 97F664EC366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: stWnGqaqYbdAXWFnccM0Jl5xRwMIg1g93WPDr+HfaPY= Subject key identifier: E8:56:50:81:12:08:8C:29:E4:4B:E4:65:5D:AE:D4:BC:44:C3:6A:C8 Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Certificate serial: 08 Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/97F664EC366311EEB376DC3AC4F9AE02.roa Signing time: Wed 09 Aug 2023 03:19:47 +0000 ROA not before: Wed 09 Aug 2023 03:19:47 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 138427 IP address blocks: 83.118.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Validity Not Before: Aug 9 03:19:47 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64d305d3-fd43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f8:95:b6:97:7b:8b:8f:51:4d:7a:d6:12:cb: 96:b5:fd:bc:f8:c4:55:f8:34:b1:bc:d9:af:51:30: 18:d3:e4:c2:93:7a:ed:7c:6d:0d:4d:f3:39:5e:b8: e3:32:ac:f6:73:6a:b6:ae:b7:a0:7f:a1:ec:18:9b: ec:bf:77:76:12:bc:56:16:e1:c2:ae:5e:36:c4:1a: 47:a2:df:c4:fb:e1:12:fa:68:7c:46:95:8d:76:64: b4:3c:75:12:b2:11:b2:b8:5d:3b:5e:68:c5:2e:3c: 49:87:f8:5b:75:4b:7d:60:82:dc:3a:8d:56:74:24: 79:9a:92:1b:8d:73:e2:8d:bf:6d:da:bf:97:e0:13: da:6d:a6:e3:57:f9:67:32:f7:76:d0:07:b4:f4:b5: 4c:f9:70:c3:a3:97:1c:2b:ce:90:e7:91:83:5c:c8: 53:82:31:7d:50:59:a5:72:ec:e6:a9:2e:75:61:9a: 33:7d:7b:dc:b5:95:b5:e9:c9:8d:ec:39:8d:b4:08: f3:ed:14:df:f8:a8:63:a6:01:7f:6a:cf:aa:77:89: 0b:bf:58:1f:70:7a:8c:80:0c:55:56:8b:cd:20:20: 6c:3a:84:19:d4:28:0a:0d:a0:61:80:de:00:c4:02: 1c:bb:29:5d:1e:6d:89:9f:e5:7f:30:6b:02:54:7c: a8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:56:50:81:12:08:8C:29:E4:4B:E4:65:5D:AE:D4:BC:44:C3:6A:C8 X509v3 Authority Key Identifier: keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/97F664EC366311EEB376DC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 83.118.96.0/24 Signature Algorithm: sha256WithRSAEncryption 72:e5:b2:3f:7b:df:bc:ba:c8:69:a3:7f:c4:11:a5:20:5b:ba: 15:9b:76:90:79:ac:3e:59:00:df:ad:ea:68:8e:af:83:6b:99: 82:10:c9:6d:61:c3:e5:7b:99:5b:34:ed:15:eb:ea:4d:f2:4a: 73:9f:0f:e9:ad:3f:ee:c5:7c:8b:99:90:43:1d:cd:a4:da:b5: 35:24:82:f4:82:da:08:98:83:71:a9:27:98:e4:ad:a0:ec:15: a4:c8:c4:d7:1e:b1:04:74:81:9d:d4:2e:ac:fa:8c:91:df:2d: 76:ca:ae:26:8d:07:db:92:84:1a:1a:a5:8c:e3:97:67:e8:5e: 24:9e:ba:94:a6:60:1a:e7:a8:62:d4:45:fb:54:ab:28:37:43: 51:2c:63:91:36:15:21:40:fe:b5:95:72:75:bd:54:27:99:88: 1c:bc:33:50:e9:0e:c1:0b:56:f3:53:3b:41:43:dc:88:54:61: 41:ad:62:de:89:a8:cf:32:d4:fe:a2:2e:8b:f6:e7:d9:9d:97: dd:38:ab:c0:64:0a:26:e3:18:2a:d6:d9:09:4a:11:8f:9e:3b: 08:71:0c:2a:d8:f0:2e:ba:cf:4b:05:76:e6:92:65:4b:b0:2b: b9:cb:c1:6b:61:ea:8c:7d:98:8f:a0:4a:90:ea:d4:2f:77:04: b0:f5:52:28 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTM2QzExMC8GA1UEBRMoNzFGNDAyMThDMUFGNDdDNUU5OTNBMjFBMkIyOTI4NEU0 QzMyQzkzNDAeFw0yMzA4MDkwMzE5NDdaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZDMwNWQzLWZkNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDx+JW2l3uLj1FNetYSy5a1/bz4xFX4NLG82a9RMBjT5MKTeu18bQ1N8zleuOMy rPZzaraut6B/oewYm+y/d3YSvFYW4cKuXjbEGkei38T74RL6aHxGlY12ZLQ8dRKy EbK4XTteaMUuPEmH+Ft1S31ggtw6jVZ0JHmakhuNc+KNv23av5fgE9ptpuNX+Wcy 93bQB7T0tUz5cMOjlxwrzpDnkYNcyFOCMX1QWaVy7OapLnVhmjN9e9y1lbXpyY3s OY20CPPtFN/4qGOmAX9qz6p3iQu/WB9weoyADFVWi80gIGw6hBnUKAoNoGGA3gDE Ahy7KV0ebYmf5X8wawJUfKhzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6FZQgRII jCnkS+RlXa7UvETDasgwHwYDVR0jBBgwFoAUcfQCGMGvR8Xpk6IaKykoTkwyyTQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MzZDLzZERTNDRTdDMzY2 MDExRUU4OEUwRjUzMEM0RjlBRTAyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlU US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvY2ZRQ0dNR3ZSOFhwazZJYUt5a29Ua3d5eVRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM2Qy82REUzQ0U3QzM2NjAxMUVFODhFMEY1MzBDNEY5QUUwMi85N0Y2NjRFQzM2 NjMxMUVFQjM3NkRDM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAFN2YDANBgkqhkiG9w0BAQsFAAOCAQEAcuWyP3vfvLrIaaN/ xBGlIFu6FZt2kHmsPlkA363qaI6vg2uZghDJbWHD5XuZWzTtFevqTfJKc58P6a0/ 7sV8i5mQQx3NpNq1NSSC9ILaCJiDcaknmOStoOwVpMjE1x6xBHSBndQurPqMkd8t dsquJo0H25KEGhqljOOXZ+heJJ66lKZgGueoYtRF+1SrKDdDUSxjkTYVIUD+tZVy db1UJ5mIHLwzUOkOwQtW81M7QUPciFRhQa1i3omozzLU/qIui/bn2Z2X3TirwGQK JuMYKtbZCUoRj547CHEMKtjwLrrPSwV25pJlS7ArucvBa2HqjH2Yj6BKkOrUL3cE sPVSKA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:21 2024 by rpki-client on console-ams.rpki-client.org