$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/1E753650594E11ECA0629256C4F9AE02/B7E86B40595311EC9ECF510BC4F9AE02.roa File: B7E86B40595311EC9ECF510BC4F9AE02.roa (raw, json) Hash identifier: Sd7tJ5zYWeW16LgOdEe988QXgoNpRWycseCpNeGk7dU= Subject key identifier: DC:D2:5D:DF:A9:BF:5B:4E:9D:6D:65:D4:73:17:C4:89:EF:C6:BA:7B Certificate issuer: /CN=A919C47E/serialNumber=E79E9B5212637E33CA5DCB6176909CE19621BA64 Certificate serial: 031C Authority key identifier: E7:9E:9B:52:12:63:7E:33:CA:5D:CB:61:76:90:9C:E1:96:21:BA:64 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/556bUhJjfjPKXcthdpCc4ZYhumQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/1E753650594E11ECA0629256C4F9AE02/B7E86B40595311EC9ECF510BC4F9AE02.roa Signing time: Mon 02 Oct 2023 17:34:57 +0000 ROA not before: Mon 02 Oct 2023 17:34:57 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138398 IP address blocks: 91.208.208.0/24 maxlen: 24 91.208.228.0/24 maxlen: 24 91.208.230.0/24 maxlen: 24 91.208.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/1E753650594E11ECA0629256C4F9AE02/556bUhJjfjPKXcthdpCc4ZYhumQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/1E753650594E11ECA0629256C4F9AE02/556bUhJjfjPKXcthdpCc4ZYhumQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/556bUhJjfjPKXcthdpCc4ZYhumQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 14:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 796 (0x31c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E/serialNumber=E79E9B5212637E33CA5DCB6176909CE19621BA64 Validity Not Before: Oct 2 17:34:57 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651aff41-a25b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:40:03:e6:a4:4d:01:fe:59:82:65:a7:08:7d: 90:e0:a4:a3:36:9a:41:fa:51:0f:c0:ad:3a:38:30: ba:0a:e6:22:74:b9:87:db:54:b1:79:0f:55:d1:87: 0b:94:4a:2b:97:0d:33:d0:fd:90:89:f6:02:59:06: f0:b1:9e:ef:ce:9b:e9:88:86:00:cd:fc:89:42:11: b1:f0:72:87:c0:e1:11:d2:d6:d8:50:50:6b:dd:33: d5:c7:7f:7f:29:2c:d0:2b:a5:5a:e1:e1:18:aa:78: 45:d1:15:8e:68:47:ef:c1:f6:c3:b9:fa:f9:49:30: 52:ea:07:d8:47:3c:6e:df:94:f2:e0:80:f3:75:13: bd:0f:02:26:1b:12:6f:2a:75:f5:39:4f:f1:f8:89: a0:a7:76:e2:00:7e:09:3d:49:3c:3a:d1:1f:1c:bd: aa:91:e8:97:d6:60:15:35:b8:18:a0:b6:4e:1b:e5: c1:88:5a:ef:47:f9:88:28:c6:24:61:d2:66:a1:e5: b7:91:3c:7e:66:e6:d3:a8:4b:33:61:d3:63:ce:87: aa:dd:dc:10:b6:d5:c7:aa:17:19:92:24:a0:58:e1: 0a:e2:92:78:95:37:2a:a2:39:4b:5d:89:ef:51:c5: f6:12:4d:af:88:02:85:70:9b:08:ae:b4:aa:7c:1b: f5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D2:5D:DF:A9:BF:5B:4E:9D:6D:65:D4:73:17:C4:89:EF:C6:BA:7B X509v3 Authority Key Identifier: keyid:E7:9E:9B:52:12:63:7E:33:CA:5D:CB:61:76:90:9C:E1:96:21:BA:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/1E753650594E11ECA0629256C4F9AE02/556bUhJjfjPKXcthdpCc4ZYhumQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/556bUhJjfjPKXcthdpCc4ZYhumQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/1E753650594E11ECA0629256C4F9AE02/B7E86B40595311EC9ECF510BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 91.208.208.0/24 91.208.228.0/24 91.208.230.0/24 91.208.233.0/24 Signature Algorithm: sha256WithRSAEncryption 77:1e:a6:7a:cf:36:95:ed:d0:5a:ed:7c:97:f9:84:9a:bc:3d: 3a:55:a0:f1:c2:d6:92:3e:13:d6:fc:a4:d5:8b:72:05:f1:b4: 3b:22:58:4f:13:74:c9:cd:a8:0e:56:bd:43:e9:a5:53:c6:e4: ee:77:a6:03:6a:9f:ba:28:eb:66:a7:65:b5:17:8d:05:50:56: 43:f0:c5:1e:1e:14:f9:af:9e:d2:2e:30:98:b1:ae:58:bd:5c: 6e:d2:8f:60:c6:ff:8e:76:f9:95:aa:c1:9a:b6:47:3f:cb:ba: 7b:ee:f0:2c:13:30:21:dd:8a:48:f4:82:f8:1d:91:9a:fa:e5: 78:9d:6c:48:28:38:ec:ec:81:8e:ea:9d:c1:9c:a7:46:33:da: 2d:59:b9:3a:fb:e8:cd:fa:52:d0:69:dc:8c:e3:e9:c0:db:59: 8d:b4:dd:3c:06:c7:bd:98:26:00:5c:cf:08:a2:44:ad:a0:d5: 97:a8:87:b8:c3:93:b2:ca:08:f8:33:08:ac:a1:de:d6:92:4e: ec:c6:be:a4:7f:17:cd:10:1b:24:70:52:58:05:a5:48:ac:a1: 17:ed:3a:70:34:ab:1f:76:48:4e:82:b1:c6:27:8a:3c:7d:3a: 91:6c:43:ba:56:39:a9:aa:b5:04:1c:6a:f7:16:46:67:a0:0c: 87:62:4f:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKEU3OUU5QjUyMTI2MzdFMzNDQTVEQ0I2MTc2OTA5Q0Ux OTYyMUJBNjQwHhcNMjMxMDAyMTczNDU3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZmY0MS1hMjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUAD5qRNAf5ZgmWnCH2Q4KSjNppB+lEPwK06ODC6CuYidLmH21SxeQ9V0YcL lEorlw0z0P2QifYCWQbwsZ7vzpvpiIYAzfyJQhGx8HKHwOER0tbYUFBr3TPVx39/ KSzQK6Va4eEYqnhF0RWOaEfvwfbDufr5STBS6gfYRzxu35Ty4IDzdRO9DwImGxJv KnX1OU/x+Imgp3biAH4JPUk8OtEfHL2qkeiX1mAVNbgYoLZOG+XBiFrvR/mIKMYk YdJmoeW3kTx+ZubTqEszYdNjzoeq3dwQttXHqhcZkiSgWOEK4pJ4lTcqojlLXYnv UcX2Ek2viAKFcJsIrrSqfBv1xwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFNzSXd+p v1tOnW1l1HMXxInvxrp7MB8GA1UdIwQYMBaAFOeem1ISY34zyl3LYXaQnOGWIbpk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS8xRTc1MzY1MDU5 NEUxMUVDQTA2MjkyNTZDNEY5QUUwMi81NTZiVWhKamZqUEtYY3RoZHBDYzRaWWh1 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzU1NmJVaEpqZmpQS1hjdGhkcENjNFpZaHVtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM0N0UvMUU3NTM2NTA1OTRFMTFFQ0EwNjI5MjU2QzRGOUFFMDIvQjdFODZCNDA1 OTUzMTFFQzlFQ0Y1MTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABb0NADBABb0OQDBABb0OYDBABb0OkwDQYJKoZIhvcNAQEL BQADggEBAHcepnrPNpXt0FrtfJf5hJq8PTpVoPHC1pI+E9b8pNWLcgXxtDsiWE8T dMnNqA5WvUPppVPG5O53pgNqn7oo62anZbUXjQVQVkPwxR4eFPmvntIuMJixrli9 XG7Sj2DG/452+ZWqwZq2Rz/Lunvu8CwTMCHdikj0gvgdkZr65XidbEgoOOzsgY7q ncGcp0Yz2i1ZuTr76M36UtBp3Izj6cDbWY203TwGx72YJgBczwiiRK2g1Zeoh7jD k7LKCPgzCKyh3taSTuzGvqR/F80QGyRwUlgFpUisoRftOnA0qx92SE6CscYnijx9 OpFsQ7pWOamqtQQcavcWRmegDIdiT4s= -----END CERTIFICATE-----Generated at Fri Jun 14 19:10:31 2024 by rpki-client on console-ams.rpki-client.org