$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F059F2A463E011ECB11B2C79C4F9AE02.roa File: F059F2A463E011ECB11B2C79C4F9AE02.roa (raw, json) Hash identifier: Xz2ivtCdpnIyI+d1SQ2FeJvzQqetuccRunDN4UObfog= Subject key identifier: B0:2B:E0:7A:60:EE:21:A6:29:56:F6:D6:72:58:FB:12:D8:AD:49:85 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3E33 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F059F2A463E011ECB11B2C79C4F9AE02.roa Signing time: Tue 12 Sep 2023 02:40:35 +0000 ROA not before: Tue 12 Sep 2023 02:40:35 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 131122 IP address blocks: 117.122.2.0/24 maxlen: 24 2001:dc8:2002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15923 (0x3e33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:40:35 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffcfa3-c1c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:90:9d:ce:e5:bb:fe:5b:86:b6:98:ed:48:e2: 69:50:5e:58:1c:1c:69:51:00:48:ec:a8:ad:a0:06: 02:95:2a:0c:9e:5e:b9:0d:79:14:b8:19:e6:38:6f: f5:1d:bf:60:b6:e5:a4:be:8c:c7:c0:9d:58:45:53: 81:a3:61:da:bc:3a:ed:d3:a9:f6:e3:0a:e4:dc:21: ff:12:ff:42:45:32:61:29:39:de:1d:1b:d5:24:2d: 04:e0:a5:8c:96:d5:03:d7:2c:3a:99:14:88:32:df: fc:a1:be:fa:4d:c0:fe:45:40:0a:f3:91:ac:f0:16: d5:00:65:c8:1e:14:df:71:6e:9a:c7:e8:da:36:db: 08:14:6c:74:a7:56:ce:fd:26:8b:cb:e7:c4:09:57: f0:dc:f9:39:75:03:27:e0:12:63:9a:99:dc:6f:a4: d5:c4:17:ee:78:d2:df:47:f0:da:85:95:4a:f5:f4: bf:9a:0e:a3:92:4a:e4:4d:61:f3:90:8a:57:1f:51: bc:bd:70:23:69:8a:9b:36:22:bb:45:77:76:2a:45: 88:cb:fa:09:68:fc:fa:52:14:ca:40:fa:77:2f:1c: 28:02:37:3d:b3:0d:f2:a4:39:fc:d5:c2:a8:96:8c: 87:cd:7e:8c:91:44:9c:06:4f:04:af:7e:ff:c9:f8: 68:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:2B:E0:7A:60:EE:21:A6:29:56:F6:D6:72:58:FB:12:D8:AD:49:85 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F059F2A463E011ECB11B2C79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.122.2.0/24 IPv6: 2001:dc8:2002::/48 Signature Algorithm: sha256WithRSAEncryption 9e:1e:c5:1c:39:86:5b:8e:c3:eb:81:5f:5d:96:c9:32:aa:22: aa:ee:f2:3c:a7:fd:f9:2e:ee:09:87:60:4b:60:a9:0c:15:19: 9c:a8:e1:62:82:7d:f3:d4:0b:12:fe:d6:a3:90:30:e0:29:c9: 8b:a8:0f:01:2e:60:c9:9b:5c:23:c0:9a:77:e4:ca:e8:d6:58: 42:90:4c:9c:5c:8d:5d:12:05:54:ad:df:36:2b:81:92:9d:c9: 42:e0:1f:cc:56:6f:f4:9e:fd:e1:a2:84:91:75:63:65:ef:93: e5:7e:7a:de:12:6f:16:95:a0:b7:b7:e4:18:9f:fb:3b:a0:d4: f6:73:57:66:75:1e:bb:1c:1c:b4:17:74:e5:e6:e0:98:26:b7: 4f:c1:f1:fd:fd:91:29:12:18:0c:cb:05:13:d6:55:0b:3b:08: 1c:97:c4:f7:6d:62:3c:19:1a:5e:15:e3:ce:93:da:83:46:45: c3:50:85:09:bf:d8:ec:c9:36:de:7d:30:a6:1c:20:0b:2d:8a: f9:0c:8b:6a:8a:91:82:94:09:a3:19:f5:9a:c8:fe:df:82:fd: e5:49:36:1e:b9:13:e6:4b:9c:75:50:5f:0b:32:b9:ac:34:44: f5:3e:8f:78:13:1b:8e:35:11:96:4f:73:34:59:78:a2:d7:c6: 91:08:ec:05 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICPjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MDM1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmY2ZhMy1jMWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pCdzuW7/luGtpjtSOJpUF5YHBxpUQBI7KitoAYClSoMnl65DXkUuBnmOG/1 Hb9gtuWkvozHwJ1YRVOBo2HavDrt06n24wrk3CH/Ev9CRTJhKTneHRvVJC0E4KWM ltUD1yw6mRSIMt/8ob76TcD+RUAK85Gs8BbVAGXIHhTfcW6ax+jaNtsIFGx0p1bO /SaLy+fECVfw3Pk5dQMn4BJjmpncb6TVxBfueNLfR/DahZVK9fS/mg6jkkrkTWHz kIpXH1G8vXAjaYqbNiK7RXd2KkWIy/oJaPz6UhTKQPp3LxwoAjc9sw3ypDn81cKo loyHzX6MkUScBk8Er37/yfhoWQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLAr4Hpg 7iGmKVb21nJY+xLYrUmFMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRjA1OUYyQTQ2 M0UwMTFFQ0IxMUIyQzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAB1egIwDwQCAAIwCQMHACABDcggAjANBgkqhkiG9w0BAQsF AAOCAQEAnh7FHDmGW47D64FfXZbJMqoiqu7yPKf9+S7uCYdgS2CpDBUZnKjhYoJ9 89QLEv7Wo5Aw4CnJi6gPAS5gyZtcI8Cad+TK6NZYQpBMnFyNXRIFVK3fNiuBkp3J QuAfzFZv9J794aKEkXVjZe+T5X563hJvFpWgt7fkGJ/7O6DU9nNXZnUeuxwctBd0 5ebgmCa3T8Hx/f2RKRIYDMsFE9ZVCzsIHJfE921iPBkaXhXjzpPag0ZFw1CFCb/Y 7Mk23n0wphwgCy2K+QyLaoqRgpQJoxn1msj+34L95Uk2HrkT5kucdVBfCzK5rDRE 9T6PeBMbjjURlk9zNFl4otfGkQjsBQ== -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org