$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/7DDA28EC8D9511EB9ECE6042C4F9AE02.roa File: 7DDA28EC8D9511EB9ECE6042C4F9AE02.roa (raw, json) Hash identifier: A0f9mWgkbPinXWu1IPE7w1z8pvu79vZv+CBSMmbLkD8= Subject key identifier: AE:27:86:9F:E0:8A:E7:EC:96:52:A2:55:C8:AE:86:F3:DE:82:EA:6C Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 2FC8 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/7DDA28EC8D9511EB9ECE6042C4F9AE02.roa Signing time: Tue 30 Apr 2024 15:52:57 +0000 ROA not before: Tue 30 Apr 2024 15:52:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 24429 IP address blocks: 116.0.81.0/24 maxlen: 24 116.0.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12232 (0x2fc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663113d9-2a72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:77:65:0a:4e:e3:7c:81:8c:9f:d0:07:6c:60: 05:05:38:bf:d0:c3:5a:a2:cb:9d:2e:44:92:6c:95: 10:b8:d8:35:38:08:61:e2:8f:40:ab:e9:2a:19:1a: 6e:57:3f:ea:a3:5c:19:51:15:f0:63:3e:5a:88:dd: 6c:1e:e5:ad:f8:37:20:6f:7d:f0:3f:dd:72:bc:d9: f3:74:cf:8c:cc:cd:11:6c:b3:86:31:64:46:25:a3: 68:00:7f:93:ac:91:7f:bd:bb:85:3a:35:65:14:72: c3:f7:33:77:2b:2e:c5:11:59:1d:dd:f7:7c:2c:52: 1a:3e:b1:7f:42:05:f0:b5:5b:e9:13:dd:d4:e0:ed: 10:7e:33:c4:0c:47:2d:8f:06:7c:fc:f2:b2:4f:32: 32:9d:24:70:7a:d8:cf:34:6b:9f:c9:eb:2e:60:43: cc:69:d1:97:9b:f8:9e:a7:29:86:65:ff:33:db:4c: e5:57:8c:92:d8:5f:e5:6a:0e:59:b6:12:82:3f:ec: 64:82:7f:57:48:bc:2a:2c:d1:8c:5c:5c:a6:24:22: 13:02:bb:3c:17:11:3b:33:d8:be:72:7f:d8:72:45: 4c:2a:43:29:33:b5:4f:d2:b8:d3:ce:9d:ef:a4:c1: d6:89:3d:63:a9:51:8d:e9:57:eb:d4:05:7f:fe:d3: 4c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:27:86:9F:E0:8A:E7:EC:96:52:A2:55:C8:AE:86:F3:DE:82:EA:6C X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/7DDA28EC8D9511EB9ECE6042C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.0.81.0/24 116.0.89.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:b4:cd:da:19:06:fb:21:70:55:93:86:47:d7:fd:dc:be:f2: 92:a6:da:c7:d9:69:84:d6:ce:1e:de:22:f7:a4:8e:60:c1:d2: 61:72:26:e0:0e:7e:60:e2:75:81:7a:6e:6a:08:8e:23:cb:23: b1:bb:26:6b:88:d0:e8:a0:23:4b:3b:41:85:91:00:bb:a4:e3: aa:62:41:4a:5f:3d:75:ae:c3:a8:a6:08:63:b5:d2:af:bf:de: ec:08:97:8f:d0:ce:58:87:c5:8c:d5:f1:0f:cc:4b:04:b6:d2: 89:08:6a:ae:c8:7c:fc:55:8e:e4:15:2d:c0:b4:78:e9:1e:b8: 2e:4b:ed:a2:dc:f1:5e:bd:b3:db:ef:b4:e2:df:7f:90:09:4b: c4:e2:aa:11:0f:a8:89:80:7b:a1:f4:a9:6c:b1:d3:b2:6d:f2: d9:3a:5d:d7:08:dd:98:d0:c2:75:44:58:09:49:a6:19:27:6b: 84:5b:08:ab:dc:9b:b6:3d:2e:29:a9:1e:7d:01:2b:74:4f:ee: 99:82:18:ed:58:3b:b9:9c:fa:60:3b:73:9a:10:28:d4:9e:cd: 00:2a:5b:97:be:e1:cf:8e:30:95:3d:bd:f2:3c:45:d4:20:30: 78:11:03:e2:23:ae:2f:d5:74:5f:0c:4e:ba:04:06:d1:b9:69: e9:5e:f6:1d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICL8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjQwNDMwMTU1MjU3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMTNkOS0yYTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtndlCk7jfIGMn9AHbGAFBTi/0MNaosudLkSSbJUQuNg1OAhh4o9Aq+kqGRpu Vz/qo1wZURXwYz5aiN1sHuWt+Dcgb33wP91yvNnzdM+MzM0RbLOGMWRGJaNoAH+T rJF/vbuFOjVlFHLD9zN3Ky7FEVkd3fd8LFIaPrF/QgXwtVvpE93U4O0QfjPEDEct jwZ8/PKyTzIynSRwetjPNGufyesuYEPMadGXm/iepymGZf8z20zlV4yS2F/lag5Z thKCP+xkgn9XSLwqLNGMXFymJCITArs8FxE7M9i+cn/YckVMKkMpM7VP0rjTzp3v pMHWiT1jqVGN6Vfr1AV//tNMUwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFK4nhp/g iufsllKiVciuhvPegupsMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvN0REQTI4RUM4 RDk1MTFFQjlFQ0U2MDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB0AFEDBAB0AFkwDQYJKoZIhvcNAQELBQADggEBAGq0zdoZ BvshcFWThkfX/dy+8pKm2sfZaYTWzh7eIvekjmDB0mFyJuAOfmDidYF6bmoIjiPL I7G7JmuI0OigI0s7QYWRALuk46piQUpfPXWuw6imCGO10q+/3uwIl4/QzliHxYzV 8Q/MSwS20okIaq7IfPxVjuQVLcC0eOkeuC5L7aLc8V69s9vvtOLff5AJS8TiqhEP qImAe6H0qWyx07Jt8tk6XdcI3ZjQwnVEWAlJphkna4RbCKvcm7Y9LimpHn0BK3RP 7pmCGO1YO7mc+mA7c5oQKNSezQAqW5e+4c+OMJU9vfI8RdQgMHgRA+Ijri/VdF8M TroEBtG5aele9h0= -----END CERTIFICATE-----Generated at Thu May 16 17:51:49 2024 by rpki-client on console-ams.rpki-client.org