$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/248F325863DE11EC8CB33722C4F9AE02.roa File: 248F325863DE11EC8CB33722C4F9AE02.roa (raw, json) Hash identifier: vCI72/jxbx4SMrGNJ95AnMY7AD49QCMoHTdGk2UJs/4= Subject key identifier: 80:F6:4C:0B:29:56:93:5E:3A:C6:BA:BC:78:CB:5D:C9:FC:AF:AC:E9 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3EF3 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/248F325863DE11EC8CB33722C4F9AE02.roa Signing time: Tue 12 Sep 2023 02:43:23 +0000 ROA not before: Tue 12 Sep 2023 02:43:23 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 23902 IP address blocks: 203.119.8.0/22 maxlen: 24 203.119.72.0/22 maxlen: 24 2001:dc8::/48 maxlen: 48 2001:dc8:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16115 (0x3ef3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:43:23 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffd04b-cdd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2c:0d:d0:00:ea:93:76:04:e6:60:5e:03:d7: 96:df:c2:3a:b4:09:88:a1:9e:63:0e:e1:54:57:b4: 19:5a:fa:88:56:a1:d0:9b:3b:9e:d9:d3:a9:e2:e5: e0:8c:37:3c:28:60:05:61:8a:96:45:88:51:16:98: 6a:cb:b4:28:7c:85:7b:4a:fb:3c:70:7f:39:32:a7: 83:42:74:37:ba:e0:2d:4e:e2:74:5a:f6:9b:40:62: f1:b5:db:bd:a9:14:92:1a:53:4c:d7:33:80:a2:46: 30:1e:f5:0b:1b:92:1c:14:7b:94:22:83:06:1b:c3: 2e:4c:08:71:70:1a:40:b2:ce:32:3a:b1:8a:d3:13: b8:90:13:2e:2d:37:ff:d6:78:d6:89:fa:1f:e9:c5: e0:33:bd:22:8c:2a:76:d2:2b:a1:a3:bd:74:d6:62: 24:54:62:fa:8a:b7:9e:f2:a5:38:11:b7:f2:9d:25: 19:83:ec:8b:61:5b:e4:90:17:8e:66:61:47:07:f4: 42:fa:ad:19:0c:c7:94:de:48:e4:85:a2:8e:8e:96: bf:d2:8f:10:4e:b1:d3:8f:1c:ce:76:ed:53:13:14: a0:c7:1e:4e:f2:4a:55:9f:10:18:40:d8:3e:a6:ff: ef:23:16:b3:0b:b0:2a:2b:e7:17:44:bc:54:ea:6a: b4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F6:4C:0B:29:56:93:5E:3A:C6:BA:BC:78:CB:5D:C9:FC:AF:AC:E9 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/248F325863DE11EC8CB33722C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.119.8.0/22 203.119.72.0/22 IPv6: 2001:dc8::/47 Signature Algorithm: sha256WithRSAEncryption 9a:68:62:63:b7:3b:b0:50:d6:96:6d:9c:6f:d7:80:f7:61:89: b3:e6:65:69:94:d8:26:12:48:0d:19:9c:b2:91:47:26:eb:14: bf:1f:a6:b1:f8:20:e6:55:4a:71:08:3a:42:da:6e:b9:45:0b: 6e:ae:90:bd:fe:c3:ff:05:24:c2:dc:fa:85:e2:6c:02:3d:0f: 1c:af:cb:34:b0:0f:5a:f8:5c:8b:33:3f:28:d6:c7:09:ed:80: 6d:d6:b3:e5:aa:84:c6:9b:a9:12:41:e0:9c:f6:e3:23:9f:25: 57:da:e6:0e:f2:f8:57:ec:dd:00:33:08:5d:3b:d3:b1:96:12: 52:6e:f3:c8:8a:bd:93:96:9c:3f:74:24:84:6d:93:43:48:39: 51:62:5c:0f:b6:93:57:bf:a1:2f:ee:3a:12:bb:36:59:73:3a: 9b:ff:2b:1d:e8:45:92:6e:c5:dd:79:d9:7a:c6:04:12:78:b6: 33:ec:3f:bb:d9:21:bc:fb:b9:fc:e6:a4:a1:ff:db:7e:fa:61: 69:62:6e:9e:08:b2:ca:05:49:63:19:50:8b:f4:fe:53:81:db: 9d:26:4a:2d:3a:05:7d:a4:56:ea:18:0e:5d:af:ab:04:51:6a: 05:b2:9b:16:a5:98:8e:88:43:3b:b2:d7:a0:45:0d:cb:b3:e8: 59:7f:0c:6d -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICPvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MzIzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmZDA0Yi1jZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iwN0ADqk3YE5mBeA9eW38I6tAmIoZ5jDuFUV7QZWvqIVqHQmzue2dOp4uXg jDc8KGAFYYqWRYhRFphqy7QofIV7Svs8cH85MqeDQnQ3uuAtTuJ0WvabQGLxtdu9 qRSSGlNM1zOAokYwHvULG5IcFHuUIoMGG8MuTAhxcBpAss4yOrGK0xO4kBMuLTf/ 1njWifof6cXgM70ijCp20iuho7101mIkVGL6iree8qU4EbfynSUZg+yLYVvkkBeO ZmFHB/RC+q0ZDMeU3kjkhaKOjpa/0o8QTrHTjxzOdu1TExSgxx5O8kpVnxAYQNg+ pv/vIxazC7AqK+cXRLxU6mq04wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFID2TAsp VpNeOsa6vHjLXcn8r6zpMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjQ4RjMyNTg2 M0RFMTFFQzhDQjMzNzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBALLdwgDBALLd0gwDwQCAAIwCQMHASABDcgAADANBgkqhkiG 9w0BAQsFAAOCAQEAmmhiY7c7sFDWlm2cb9eA92GJs+ZlaZTYJhJIDRmcspFHJusU vx+msfgg5lVKcQg6QtpuuUULbq6Qvf7D/wUkwtz6heJsAj0PHK/LNLAPWvhcizM/ KNbHCe2Abdaz5aqExpupEkHgnPbjI58lV9rmDvL4V+zdADMIXTvTsZYSUm7zyIq9 k5acP3QkhG2TQ0g5UWJcD7aTV7+hL+46Ers2WXM6m/8rHehFkm7F3XnZesYEEni2 M+w/u9khvPu5/Oakof/bfvphaWJungiyygVJYxlQi/T+U4HbnSZKLToFfaRW6hgO Xa+rBFFqBbKbFqWYjohDO7LXoEUNy7PoWX8MbQ== -----END CERTIFICATE-----Generated at Fri May 31 15:08:33 2024 by rpki-client on console-fra.rpki-client.org