$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/66560AECE6B111EE9072F868C4F9AE02.roa File: 66560AECE6B111EE9072F868C4F9AE02.roa (raw, json) Hash identifier: Jctjnz4ZAWmlvP4Z4MtmplLYI/qLXEuNRoWhVRUxKcA= Subject key identifier: D7:02:50:68:6E:DB:31:66:33:3A:31:90:69:B1:3F:59:DA:81:9D:2F Certificate issuer: /CN=A91A4849/serialNumber=B6CC02A7DB8A4DB530F112B6224F19080868FBD9 Certificate serial: 17 Authority key identifier: B6:CC:02:A7:DB:8A:4D:B5:30:F1:12:B6:22:4F:19:08:08:68:FB:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tswCp9uKTbUw8RK2Ik8ZCAho-9k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/66560AECE6B111EE9072F868C4F9AE02.roa Signing time: Thu 28 Mar 2024 12:55:57 +0000 ROA not before: Thu 28 Mar 2024 12:55:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152651 IP address blocks: 202.71.184.0/23 maxlen: 23 202.71.184.0/24 maxlen: 24 202.71.185.0/24 maxlen: 24 2401:8ea0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/tswCp9uKTbUw8RK2Ik8ZCAho-9k.crl rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/tswCp9uKTbUw8RK2Ik8ZCAho-9k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tswCp9uKTbUw8RK2Ik8ZCAho-9k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4849/serialNumber=B6CC02A7DB8A4DB530F112B6224F19080868FBD9 Validity Not Before: Mar 28 12:55:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660568dc-273c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b7:59:90:c5:0f:bb:26:10:d1:85:c3:34:8b: 17:81:e4:68:02:50:01:bc:e3:48:52:f9:57:c5:62: f4:32:4b:74:9b:24:ec:c8:8d:5c:44:03:d2:cd:ae: 07:f0:d6:87:1d:ed:7f:cc:f6:7e:3d:f8:6a:2a:f3: e9:e9:da:73:43:47:29:47:29:cf:56:80:70:79:59: d8:19:c0:6c:c8:bd:49:74:64:e3:f9:ec:9d:b4:22: 5d:31:b6:bf:15:1b:48:d3:4c:51:df:9e:2b:e8:a5: 69:30:a1:14:09:0a:88:4f:ce:95:f2:d8:67:00:c4: ab:8e:88:93:2a:fa:ce:a7:40:1b:e6:42:a0:2f:e8: a2:f8:3b:44:ae:c6:48:36:f1:4a:49:70:11:39:3b: 8f:d8:6f:0d:21:48:7e:aa:1c:4d:5b:2c:ef:6c:4b: 3c:74:28:96:d5:fa:79:04:74:4f:cd:4d:22:5c:b9: 78:0c:0e:c4:91:33:5c:4d:bf:04:2e:a7:a3:c0:05: ea:dc:10:08:3a:f2:86:02:bd:47:f2:bf:83:39:ee: 73:57:c6:1b:c7:42:28:c3:91:7c:d7:ba:a5:01:ce: 25:e4:5c:f4:88:2a:13:bf:56:be:c4:00:ae:a4:7e: 26:00:d2:0d:9d:cf:84:1b:15:d2:0c:cd:0d:5f:f8: da:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:02:50:68:6E:DB:31:66:33:3A:31:90:69:B1:3F:59:DA:81:9D:2F X509v3 Authority Key Identifier: keyid:B6:CC:02:A7:DB:8A:4D:B5:30:F1:12:B6:22:4F:19:08:08:68:FB:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/tswCp9uKTbUw8RK2Ik8ZCAho-9k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tswCp9uKTbUw8RK2Ik8ZCAho-9k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/66560AECE6B111EE9072F868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.71.184.0/23 IPv6: 2401:8ea0::/32 Signature Algorithm: sha256WithRSAEncryption 26:89:56:ee:cb:1b:bd:fa:8f:92:f0:04:94:69:ca:82:65:d4: ec:df:f8:d1:99:3c:3e:a9:04:01:5a:98:89:27:92:18:bf:c9: 4f:42:b7:7b:20:f8:9c:76:fe:75:c5:18:24:11:84:ab:fb:74: de:83:03:de:b0:2d:a4:ee:21:20:11:b2:9a:ac:26:fb:bb:27: 3c:55:a5:2c:ff:00:f4:8d:e4:49:81:01:b8:11:c6:aa:0f:b3: cf:06:5e:0a:b8:3b:00:25:47:94:20:b8:d4:5f:a5:fd:ab:d7: 1c:77:bd:e7:e1:d3:9b:8e:a3:1a:c5:02:5c:91:dc:f9:57:a2: 99:29:80:b2:2a:28:68:4a:70:ef:4d:cd:96:c5:72:c7:09:0b: ce:b0:8d:cb:3f:a9:8f:7b:45:3d:29:99:26:99:a4:f5:17:80: f7:0b:f3:f1:4a:ab:22:dc:08:e5:80:5e:0b:d9:60:e7:69:ae: cf:0c:d0:53:d0:32:a4:c0:1c:f2:de:38:6c:4a:d9:63:61:ed: 67:b8:3e:a6:54:d8:41:4b:83:94:54:3d:02:ac:dc:ed:dc:25: 81:78:56:57:a9:f5:6f:be:a4:74:6a:b9:8c:de:13:a2:90:8d: 52:4a:b2:8c:0b:2e:69:e1:99:2c:f1:0f:8b:52:0e:70:16:e4: aa:c5:92:6e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDg0OTExMC8GA1UEBRMoQjZDQzAyQTdEQjhBNERCNTMwRjExMkI2MjI0RjE5MDgw ODY4RkJEOTAeFw0yNDAzMjgxMjU1NTdaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDU2OGRjLTI3M2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCct1mQxQ+7JhDRhcM0ixeB5GgCUAG840hS+VfFYvQyS3SbJOzIjVxEA9LNrgfw 1ocd7X/M9n49+Goq8+np2nNDRylHKc9WgHB5WdgZwGzIvUl0ZOP57J20Il0xtr8V G0jTTFHfnivopWkwoRQJCohPzpXy2GcAxKuOiJMq+s6nQBvmQqAv6KL4O0Suxkg2 8UpJcBE5O4/Ybw0hSH6qHE1bLO9sSzx0KJbV+nkEdE/NTSJcuXgMDsSRM1xNvwQu p6PABercEAg68oYCvUfyv4M57nNXxhvHQijDkXzXuqUBziXkXPSIKhO/Vr7EAK6k fiYA0g2dz4QbFdIMzQ1f+NpnAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU1wJQaG7b MWYzOjGQabE/WdqBnS8wHwYDVR0jBBgwFoAUtswCp9uKTbUw8RK2Ik8ZCAho+9kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0ODQ5LzA4N0QzRUU4RTY2 RDExRUU4QTMxQTk2MEM0RjlBRTAyL3Rzd0NwOXVLVGJVdzhSSzJJazhaQ0Foby05 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdHN3Q3A5dUtUYlV3OFJLMklrOFpDQWhvLTlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDg0OS8wODdEM0VFOEU2NkQxMUVFOEEzMUE5NjBDNEY5QUUwMi82NjU2MEFFQ0U2 QjExMUVFOTA3MkY4NjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAcpHuDANBAIAAjAHAwUAJAGOoDANBgkqhkiG9w0BAQsFAAOC AQEAJolW7ssbvfqPkvAElGnKgmXU7N/40Zk8PqkEAVqYiSeSGL/JT0K3eyD4nHb+ dcUYJBGEq/t03oMD3rAtpO4hIBGymqwm+7snPFWlLP8A9I3kSYEBuBHGqg+zzwZe Crg7ACVHlCC41F+l/avXHHe95+HTm46jGsUCXJHc+VeimSmAsiooaEpw703NlsVy xwkLzrCNyz+pj3tFPSmZJpmk9ReA9wvz8UqrItwI5YBeC9lg52muzwzQU9AypMAc 8t44bErZY2HtZ7g+plTYQUuDlFQ9Aqzc7dwlgXhWV6n1b76kdGq5jN4TopCNUkqy jAsuaeGZLPEPi1IOcBbkqsWSbg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:29 2024 by rpki-client on console-ams.rpki-client.org