$ rpki-client -vvf rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/26977EE09BDD11EAA977C354C4F9AE02.roa File: 26977EE09BDD11EAA977C354C4F9AE02.roa (raw, json) Hash identifier: x4lxAaGtrSeS0lrxvos3sPjAeXTdOLROpYER2mbKtLU= Subject key identifier: 54:88:C4:33:21:2F:A0:62:DE:B9:7C:82:86:21:88:BE:93:94:D4:5B Certificate issuer: /CN=A919AB89/serialNumber=947EFD1BF6F93A98DFEBC153DAB0DA77CC4028C7 Certificate serial: 081F Authority key identifier: 94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/26977EE09BDD11EAA977C354C4F9AE02.roa Signing time: Thu 28 Sep 2023 21:18:26 +0000 ROA not before: Thu 28 Sep 2023 21:18:26 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 202.160.113.0/24 maxlen: 24 202.160.115.0/24 maxlen: 24 202.160.117.0/24 maxlen: 24 202.160.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.crl rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 21:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2079 (0x81f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AB89/serialNumber=947EFD1BF6F93A98DFEBC153DAB0DA77CC4028C7 Validity Not Before: Sep 28 21:18:26 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6515eda2-f199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9c:a6:eb:4d:86:32:8b:21:9b:0e:b6:b5:9c: b2:1e:65:15:ad:ef:d6:73:a9:7d:2b:78:3d:47:0b: 7c:58:a4:05:bb:39:f2:21:d9:df:71:44:33:72:65: f1:37:a5:59:f0:d4:6b:be:65:19:5f:2c:b0:40:05: d6:cf:50:8c:07:8f:99:de:4d:76:91:0f:cc:dd:ce: 7f:26:65:f0:3c:58:f3:33:a5:fb:76:97:87:fd:47: 9b:44:96:dc:56:36:52:f8:ca:34:d8:27:ca:49:ea: 59:42:6e:45:64:8f:b0:4a:2d:f6:fc:fe:0e:5f:2b: 3e:24:36:e2:b5:32:ee:57:a5:36:29:d5:cf:ac:26: 21:9f:0d:e9:01:c4:bf:cb:bb:47:7d:21:84:ef:90: a3:38:8f:54:4f:14:5a:e8:cd:73:ff:5a:d0:6d:f1: 08:32:0f:03:7b:57:44:bc:3c:c4:9a:08:7c:16:16: 4a:ee:fa:cf:a4:cf:e3:47:49:3a:43:66:e5:ec:79: c2:48:f7:fc:86:9d:db:40:52:0a:e0:0a:a5:da:8f: 7a:9e:0b:2d:e7:4c:b2:89:47:ce:e7:96:b6:09:88: 94:3a:01:07:38:09:75:d5:ee:1c:ed:11:14:b4:9b: d9:9a:9b:80:d5:10:40:64:4f:c8:8e:a5:8b:94:f4: 18:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:88:C4:33:21:2F:A0:62:DE:B9:7C:82:86:21:88:BE:93:94:D4:5B X509v3 Authority Key Identifier: keyid:94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/26977EE09BDD11EAA977C354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.113.0/24 202.160.115.0/24 202.160.117.0/24 202.160.119.0/24 Signature Algorithm: sha256WithRSAEncryption 16:44:26:5a:e6:3c:9e:08:9e:d2:ab:eb:18:57:78:a8:45:5b: b6:f6:69:bb:88:e6:c7:11:a4:88:41:7a:3f:18:d8:91:78:d8: 38:07:01:f5:d8:49:5c:42:f0:12:c2:19:d3:59:ce:c9:1c:b1: fa:05:0a:5d:64:39:9e:d9:45:e9:58:3d:ba:d9:3e:89:66:2c: 13:d4:82:63:46:59:ce:46:09:08:08:f1:06:2d:f0:26:e3:7b: f2:69:28:d8:7e:1b:6e:37:ff:cd:61:b7:0d:dd:d9:89:f8:57: c5:63:1a:05:e1:84:e0:d5:88:5d:c9:be:e7:77:2a:43:52:fb: 7d:bd:d1:92:8f:5f:a9:14:e2:49:28:60:db:93:aa:ad:55:01: 6d:cc:e5:42:15:ab:3a:b7:20:46:a1:32:dc:b6:79:44:a7:cc: 7f:b4:d4:26:d4:2b:cb:85:2f:5e:ca:cd:9c:85:9b:db:87:34: ae:66:71:69:97:cf:45:c5:da:ce:69:b0:19:a7:2c:7e:75:86: a6:28:e9:3e:07:aa:d1:d4:7c:ac:e7:86:35:8d:0b:c6:ea:a3: b6:1f:34:34:bc:48:f7:c3:7c:57:64:2b:25:73:a5:e5:6b:9d: 07:7e:58:7f:87:3d:9f:71:df:46:50:82:39:2a:ad:d9:a1:29: 2f:62:2d:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFCODkxMTAvBgNVBAUTKDk0N0VGRDFCRjZGOTNBOThERkVCQzE1M0RBQjBEQTc3 Q0M0MDI4QzcwHhcNMjMwOTI4MjExODI2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE1ZWRhMi1mMTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45ym602GMoshmw62tZyyHmUVre/Wc6l9K3g9Rwt8WKQFuznyIdnfcUQzcmXx N6VZ8NRrvmUZXyywQAXWz1CMB4+Z3k12kQ/M3c5/JmXwPFjzM6X7dpeH/UebRJbc VjZS+Mo02CfKSepZQm5FZI+wSi32/P4OXys+JDbitTLuV6U2KdXPrCYhnw3pAcS/ y7tHfSGE75CjOI9UTxRa6M1z/1rQbfEIMg8De1dEvDzEmgh8FhZK7vrPpM/jR0k6 Q2bl7HnCSPf8hp3bQFIK4Aql2o96ngst50yyiUfO55a2CYiUOgEHOAl11e4c7REU tJvZmpuA1RBAZE/IjqWLlPQYRwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFFSIxDMh L6Bi3rl8goYhiL6TlNRbMB8GA1UdIwQYMBaAFJR+/Rv2+TqY3+vBU9qw2nfMQCjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUI4OS9DRTA2QTlFQzlC REExMUVBODIzMzZBNTBDNEY5QUUwMi9sSDc5R19iNU9wamY2OEZUMnJEYWQ4eEFL TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xINzlHX2I1T3BqZjY4RlQyckRhZDh4QUtNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFCODkvQ0UwNkE5RUM5QkRBMTFFQTgyMzM2QTUwQzRGOUFFMDIvMjY5NzdFRTA5 QkREMTFFQUE5NzdDMzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBADKoHEDBADKoHMDBADKoHUDBADKoHcwDQYJKoZIhvcNAQEL BQADggEBABZEJlrmPJ4IntKr6xhXeKhFW7b2abuI5scRpIhBej8Y2JF42DgHAfXY SVxC8BLCGdNZzskcsfoFCl1kOZ7ZRelYPbrZPolmLBPUgmNGWc5GCQgI8QYt8Cbj e/JpKNh+G243/81htw3d2Yn4V8VjGgXhhODViF3Jvud3KkNS+3290ZKPX6kU4kko YNuTqq1VAW3M5UIVqzq3IEahMty2eUSnzH+01CbUK8uFL17KzZyFm9uHNK5mcWmX z0XF2s5psBmnLH51hqYo6T4HqtHUfKznhjWNC8bqo7YfNDS8SPfDfFdkKyVzpeVr nQd+WH+HPZ9x30ZQgjkqrdmhKS9iLVQ= -----END CERTIFICATE-----Generated at Tue Apr 16 22:47:01 2024 by rpki-client on console-ams.rpki-client.org