$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C0CD5D3CE6D511EC8E85EB09C4F9AE02.roa File: C0CD5D3CE6D511EC8E85EB09C4F9AE02.roa (raw, json) Hash identifier: KoGtRDDcCOp3YZmkGmM3u6jLzxl4sptiAJtRuq1gwo0= Subject key identifier: AB:63:93:7B:E3:6D:01:25:B0:F7:9C:D1:9B:98:A1:48:69:67:49:28 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3F1E Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C0CD5D3CE6D511EC8E85EB09C4F9AE02.roa Signing time: Tue 12 Sep 2023 02:44:00 +0000 ROA not before: Tue 12 Sep 2023 02:44:00 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 55318 IP address blocks: 202.59.252.0/23 maxlen: 24 2001:df2:4080::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16158 (0x3f1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:44:00 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffd070-7b76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fa:28:20:c3:66:4d:dd:da:ab:b5:dc:c5:f6: 26:ed:a7:3f:74:99:fe:4b:b8:9e:bf:38:23:74:56: 79:27:13:37:49:fe:b7:b4:e1:b4:04:8b:c3:3d:1e: 7a:2b:a6:bf:3b:a3:c7:6c:c5:11:94:6c:dc:81:70: 72:b8:d7:f2:ff:de:79:0d:24:66:3e:a3:11:6c:42: 6a:2c:47:71:fb:e9:3d:98:b3:f5:8b:19:df:c6:cc: 8d:7c:77:bc:23:80:b2:ef:b8:a4:db:bc:74:f9:ea: fb:26:66:4d:3e:c1:63:9d:fc:ed:43:4e:1a:17:9b: e2:82:96:38:97:08:f0:e7:0e:ba:7a:78:ea:8d:6c: 4c:2d:93:c3:aa:84:b2:2c:55:33:92:ca:af:1d:fd: 3c:3e:93:4f:b1:10:96:ed:1d:af:a6:d7:58:a8:f8: e3:97:46:aa:62:00:fb:1b:a2:1f:01:37:39:2a:19: 8e:d0:41:55:53:72:b9:77:42:a0:38:61:72:ae:86: 23:91:87:bf:a5:2e:8b:86:83:7c:71:3e:51:35:b7: ed:14:2d:25:f9:33:97:d2:96:46:f4:d6:2d:d8:fd: 94:c4:4d:a3:91:4c:07:42:df:7c:b5:70:67:df:1f: 78:5b:73:f1:b9:11:35:3b:ad:ae:de:ad:ae:33:f2: 8a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:63:93:7B:E3:6D:01:25:B0:F7:9C:D1:9B:98:A1:48:69:67:49:28 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C0CD5D3CE6D511EC8E85EB09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.59.252.0/23 IPv6: 2001:df2:4080::/47 Signature Algorithm: sha256WithRSAEncryption b1:93:0f:37:fb:64:73:82:42:57:2e:9b:4e:87:50:0c:19:c6: 08:d9:e5:81:12:2b:74:04:a5:9f:6f:d4:a1:5a:86:29:e8:56: cf:49:66:78:7d:c2:71:a8:ae:a5:19:b0:37:83:22:48:75:d1: a3:05:11:a0:90:fc:25:4b:4c:07:96:33:45:46:cc:77:09:41: 77:d5:34:36:1c:8a:fa:34:5b:92:ed:46:58:2a:d2:15:55:f3: 9c:b3:86:88:26:52:25:d4:f3:2d:e3:27:e4:44:c8:8d:3e:78: 79:3a:d7:6e:6e:5d:25:87:b7:06:93:52:54:72:2e:0b:59:48: 83:f8:c5:4f:f0:95:f5:fb:6e:f8:5d:a1:27:5a:8b:a5:b7:42: 2f:bf:ad:f4:83:55:a6:73:e9:a4:ff:26:7e:3c:f6:a4:08:9d: 32:85:59:09:aa:0b:61:bd:6b:2f:f7:09:49:98:62:a1:f9:ad: c9:1c:9d:08:3a:95:e4:ea:2e:6b:fc:a2:c9:17:ad:d8:08:ae: d2:14:ef:f2:27:a1:df:bd:50:7a:62:0d:51:77:02:e8:c4:f7: ef:b9:89:c6:c9:b4:37:5e:d2:24:d7:33:41:60:27:fe:6b:7b: 02:38:9c:4d:af:ec:ba:a9:a9:98:55:6b:76:3d:e4:5b:cf:23: f8:44:c6:bd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICPx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0NDAwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmZDA3MC03Yjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vooIMNmTd3aq7XcxfYm7ac/dJn+S7ievzgjdFZ5JxM3Sf63tOG0BIvDPR56 K6a/O6PHbMURlGzcgXByuNfy/955DSRmPqMRbEJqLEdx++k9mLP1ixnfxsyNfHe8 I4Cy77ik27x0+er7JmZNPsFjnfztQ04aF5vigpY4lwjw5w66enjqjWxMLZPDqoSy LFUzksqvHf08PpNPsRCW7R2vptdYqPjjl0aqYgD7G6IfATc5KhmO0EFVU3K5d0Kg OGFyroYjkYe/pS6LhoN8cT5RNbftFC0l+TOX0pZG9NYt2P2UxE2jkUwHQt98tXBn 3x94W3PxuRE1O62u3q2uM/KKawIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKtjk3vj bQElsPec0ZuYoUhpZ0koMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzBDRDVEM0NF NkQ1MTFFQzhFODVFQjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHKO/wwDwQCAAIwCQMHASABDfJAgDANBgkqhkiG9w0BAQsF AAOCAQEAsZMPN/tkc4JCVy6bTodQDBnGCNnlgRIrdASln2/UoVqGKehWz0lmeH3C caiupRmwN4MiSHXRowURoJD8JUtMB5YzRUbMdwlBd9U0NhyK+jRbku1GWCrSFVXz nLOGiCZSJdTzLeMn5ETIjT54eTrXbm5dJYe3BpNSVHIuC1lIg/jFT/CV9ftu+F2h J1qLpbdCL7+t9INVpnPppP8mfjz2pAidMoVZCaoLYb1rL/cJSZhiofmtyRydCDqV 5Ooua/yiyRet2Aiu0hTv8ieh371QemINUXcC6MT377mJxsm0N17SJNczQWAn/mt7 AjicTa/suqmpmFVrdj3kW88j+ETGvQ== -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org