$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FF7450F48FEB11EC818F190FC4F9AE02.roa File: FF7450F48FEB11EC818F190FC4F9AE02.roa (raw, json) Hash identifier: F1Yw42qHCIXa1WLaJVPpot95D2xaN6yHA30xcTwyjPo= Subject key identifier: F5:35:DC:11:2B:FD:95:A2:1E:CD:B3:FE:2E:C1:74:E6:DF:B8:9C:DF Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3F23 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FF7450F48FEB11EC818F190FC4F9AE02.roa Signing time: Tue 12 Sep 2023 02:44:04 +0000 ROA not before: Tue 12 Sep 2023 02:44:04 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 56147 IP address blocks: 45.120.228.0/22 maxlen: 24 103.3.248.0/22 maxlen: 24 2001:df5:c200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16163 (0x3f23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:44:04 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffd074-ad60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e2:c7:82:3c:f8:be:9f:a3:3d:87:d2:ca:c9: 43:5f:a8:13:7a:06:ec:04:92:d1:aa:3c:eb:42:a1: 2c:c5:f6:79:42:57:26:65:04:15:cf:16:53:0f:61: ab:71:42:d9:19:5d:78:63:39:0d:13:a9:7d:53:52: 60:88:a0:c7:f5:88:9c:5d:fa:87:78:2c:bb:30:b0: 35:9e:a3:e0:ce:66:34:40:c6:ca:a9:f9:7b:db:9a: d1:fc:87:4f:bc:4d:a3:55:7b:f8:eb:f2:6d:14:ef: 49:d3:91:30:7a:b1:c5:4b:b6:64:11:95:63:83:10: 51:7b:33:cf:5d:f1:8e:56:64:1e:67:16:2a:d4:fb: b6:44:75:4c:2f:ad:9a:00:62:f3:bf:8f:07:5c:bc: 05:cb:c3:c1:30:18:e9:db:4f:5b:93:4f:59:8a:9f: 42:b8:18:d8:13:f2:fb:3c:49:4b:27:3c:4c:0d:28: fa:68:5f:24:b4:2c:57:73:c8:49:f3:74:4a:03:07: 04:5b:72:e0:0d:7c:e8:12:45:78:ba:c2:25:56:a1: cc:fb:7f:5f:cf:99:a7:c6:da:71:0b:60:1d:6d:13: 3c:cd:00:92:c7:14:bb:2d:09:75:46:68:88:11:99: 7e:bd:27:d1:50:c7:ad:35:1a:1b:ca:fb:9b:9b:78: b8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:35:DC:11:2B:FD:95:A2:1E:CD:B3:FE:2E:C1:74:E6:DF:B8:9C:DF X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FF7450F48FEB11EC818F190FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.228.0/22 103.3.248.0/22 IPv6: 2001:df5:c200::/48 Signature Algorithm: sha256WithRSAEncryption be:89:fd:14:8d:bc:94:d6:a9:13:2a:b0:ee:9d:56:4d:c7:30: 63:81:d4:89:b9:b4:e4:fd:2e:82:e7:a7:8c:14:f7:4f:c0:27: 12:0a:1c:5a:6c:aa:b9:0c:76:8b:82:95:cf:20:2b:c3:2d:b1: 63:b9:ab:16:80:db:4e:6b:58:45:c0:6b:e3:56:6f:75:25:7c: df:16:ac:5a:96:b5:b8:fb:ba:a6:4b:f7:97:2a:cd:ee:ca:0b: 10:4a:59:a2:7e:a8:f4:27:e2:46:b0:18:6e:73:75:d6:b8:7e: 5b:df:73:78:d9:1e:de:c8:59:72:f4:25:04:90:c2:d6:b4:f5: 66:9a:b8:ba:cb:8e:92:1e:d5:cd:e0:92:81:c2:4a:9a:4c:41: a3:02:3a:d7:4d:78:4d:46:f3:59:51:2d:40:d6:f3:98:64:04: 7a:8e:71:15:9d:c9:29:3c:dc:2e:dd:ac:79:9e:c8:35:10:2a: 38:46:5a:80:ea:08:df:0f:4c:f8:68:95:44:22:2e:90:ab:e8: be:b0:ae:6b:45:69:83:94:d5:71:80:47:30:49:a8:6b:de:c6: 11:ac:9f:df:ec:7e:91:12:eb:ad:c9:75:f5:c9:ce:4a:64:fe: e3:f6:66:ba:41:67:f9:01:fb:a4:96:33:b2:44:a8:a8:26:b2: 56:8f:69:d1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICPyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0NDA0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmZDA3NC1hZDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOLHgjz4vp+jPYfSyslDX6gTegbsBJLRqjzrQqEsxfZ5QlcmZQQVzxZTD2Gr cULZGV14YzkNE6l9U1JgiKDH9YicXfqHeCy7MLA1nqPgzmY0QMbKqfl725rR/IdP vE2jVXv46/JtFO9J05EwerHFS7ZkEZVjgxBRezPPXfGOVmQeZxYq1Pu2RHVML62a AGLzv48HXLwFy8PBMBjp209bk09Zip9CuBjYE/L7PElLJzxMDSj6aF8ktCxXc8hJ 83RKAwcEW3LgDXzoEkV4usIlVqHM+39fz5mnxtpxC2AdbRM8zQCSxxS7LQl1RmiI EZl+vSfRUMetNRobyvubm3i4VwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPU13BEr /ZWiHs2z/i7BdObfuJzfMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRkY3NDUwRjQ4 RkVCMTFFQzgxOEYxOTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAIteOQDBAJnA/gwDwQCAAIwCQMHACABDfXCADANBgkqhkiG 9w0BAQsFAAOCAQEAvon9FI28lNapEyqw7p1WTccwY4HUibm05P0uguenjBT3T8An EgocWmyquQx2i4KVzyArwy2xY7mrFoDbTmtYRcBr41ZvdSV83xasWpa1uPu6pkv3 lyrN7soLEEpZon6o9CfiRrAYbnN11rh+W99zeNke3shZcvQlBJDC1rT1Zpq4usuO kh7VzeCSgcJKmkxBowI61014TUbzWVEtQNbzmGQEeo5xFZ3JKTzcLt2seZ7INRAq OEZagOoI3w9M+GiVRCIukKvovrCua0Vpg5TVcYBHMEmoa97GEayf3+x+kRLrrcl1 9cnOSmT+4/ZmukFn+QH7pJYzskSoqCayVo9p0Q== -----END CERTIFICATE-----Generated at Fri May 31 16:41:42 2024 by rpki-client on console-ams.rpki-client.org