$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/08347C420BFB11EDA31A0961C4F9AE02.roa File: 08347C420BFB11EDA31A0961C4F9AE02.roa (raw, json) Hash identifier: FVQcUxeZYhitB38VEPst8ibcJtrMvWIsmIn81Rm80yc= Subject key identifier: 7F:31:E9:01:C7:C6:F0:80:43:03:9E:78:61:76:07:9B:95:17:10:3A Certificate issuer: /CN=A91AA48F/serialNumber=BE0E7A890F7281C654632E8BE80EBBF9FFB56503 Certificate serial: 335F Authority key identifier: BE:0E:7A:89:0F:72:81:C6:54:63:2E:8B:E8:0E:BB:F9:FF:B5:65:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/08347C420BFB11EDA31A0961C4F9AE02.roa Signing time: Mon 28 Aug 2023 14:50:40 +0000 ROA not before: Mon 28 Aug 2023 14:50:40 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9506 IP address blocks: 111.65.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.crl rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 14:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13151 (0x335f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA48F/serialNumber=BE0E7A890F7281C654632E8BE80EBBF9FFB56503 Validity Not Before: Aug 28 14:50:40 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ecb43f-c7bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d5:93:1c:7c:f3:20:98:53:19:53:3e:cd:05: 9a:25:f3:22:b2:60:45:d8:a0:05:09:0e:34:22:03: 3a:92:df:a7:6f:f2:af:93:ef:88:51:83:af:7a:0f: ab:53:26:19:2d:9d:b3:e8:76:f8:c5:8e:33:43:30: 2f:33:79:b0:91:00:ac:54:16:6f:3e:af:54:d5:b5: 03:29:53:a8:00:c7:b7:4a:5d:82:23:97:0e:1c:4e: 9b:55:61:1a:d4:ce:07:f5:33:03:08:a1:76:68:f7: 2d:03:62:c9:ed:b8:de:c8:dc:10:41:5c:17:6e:ba: 91:23:37:d9:7c:d7:2f:2c:f1:8e:e4:51:89:74:c1: 49:66:1a:3b:d4:fd:86:7a:0e:26:e7:b6:8b:08:bd: ff:87:7a:39:fa:23:d3:a9:1e:31:58:2d:3d:bb:6a: ea:0e:45:a1:45:61:56:cb:7b:c2:24:0b:ec:b1:7e: ae:11:44:24:ef:48:99:69:ce:be:68:6f:41:eb:b7: 50:c3:06:10:cc:5d:c1:6f:e1:d6:3e:ea:b1:3f:ff: c2:99:41:53:0c:6d:5d:b4:f9:8a:70:a4:60:ed:d8: cd:ad:2a:f4:88:28:eb:57:23:7a:61:9a:d0:52:a2: 57:11:c8:c4:2f:af:2d:57:d3:b0:22:d8:35:38:3f: 42:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:31:E9:01:C7:C6:F0:80:43:03:9E:78:61:76:07:9B:95:17:10:3A X509v3 Authority Key Identifier: keyid:BE:0E:7A:89:0F:72:81:C6:54:63:2E:8B:E8:0E:BB:F9:FF:B5:65:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/08347C420BFB11EDA31A0961C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.65.101.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:e8:83:33:cc:8b:c2:40:da:4a:fa:89:26:ea:67:32:a3:ed: b9:d1:e9:24:a3:33:95:96:e7:0d:80:b1:67:6e:11:21:95:59: bb:93:58:69:b0:a4:9b:ac:50:8a:5b:9f:b0:13:e6:cb:06:39: 0e:36:04:53:c6:a0:eb:14:77:b3:fc:db:93:4b:5e:1c:f0:08: 77:8c:d7:ff:3e:41:10:ef:3b:7f:39:2c:a0:3b:8a:2e:7a:89: e2:2e:aa:14:cc:0f:ff:bd:58:4a:ee:bc:2a:10:79:32:6a:b5: ba:74:35:db:3f:18:fe:25:d4:f3:97:3e:c6:a2:a3:1c:97:e6: 35:fe:81:c7:55:b0:72:8b:3a:4f:11:de:eb:fa:6c:10:3b:b5: ed:35:2d:67:e3:ea:bb:dd:a2:4b:7f:8c:c9:08:60:e4:65:f3: 09:19:6c:d5:1e:d5:73:06:36:26:32:df:77:9c:d1:43:57:ba: d7:e8:b2:93:9c:79:19:29:1a:0a:7b:80:74:8b:3e:88:7f:fa: b9:f0:ad:2d:67:25:14:f5:bd:29:72:82:6e:91:02:b3:f1:38: c3:ca:15:ce:b5:f4:6b:f4:b9:e1:27:3a:47:c0:16:08:71:7f: 22:6a:43:93:ec:e8:ed:73:9c:13:0e:4d:d3:2f:8a:38:db:71: d3:c3:f7:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0OEYxMTAvBgNVBAUTKEJFMEU3QTg5MEY3MjgxQzY1NDYzMkU4QkU4MEVCQkY5 RkZCNTY1MDMwHhcNMjMwODI4MTQ1MDQwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVjYjQzZi1jN2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutWTHHzzIJhTGVM+zQWaJfMismBF2KAFCQ40IgM6kt+nb/Kvk++IUYOveg+r UyYZLZ2z6Hb4xY4zQzAvM3mwkQCsVBZvPq9U1bUDKVOoAMe3Sl2CI5cOHE6bVWEa 1M4H9TMDCKF2aPctA2LJ7bjeyNwQQVwXbrqRIzfZfNcvLPGO5FGJdMFJZho71P2G eg4m57aLCL3/h3o5+iPTqR4xWC09u2rqDkWhRWFWy3vCJAvssX6uEUQk70iZac6+ aG9B67dQwwYQzF3Bb+HWPuqxP//CmUFTDG1dtPmKcKRg7djNrSr0iCjrVyN6YZrQ UqJXEcjEL68tV9OwItg1OD9CrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH8x6QHH xvCAQwOeeGF2B5uVFxA6MB8GA1UdIwQYMBaAFL4OeokPcoHGVGMui+gOu/n/tWUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ4Ri84QzgxQTg1NjFE OEQxMUUyODY2QzUwRUIwOEIwMkNEMi92ZzU2aVE5eWdjWlVZeTZMNkE2Ny1mLTFa UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZnNTZpUTl5Z2NaVVl5Nkw2QTY3LWYtMVpRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE0OEYvOEM4MUE4NTYxRDhEMTFFMjg2NkM1MEVCMDhCMDJDRDIvMDgzNDdDNDIw QkZCMTFFREEzMUEwOTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABvQWUwDQYJKoZIhvcNAQELBQADggEBAErogzPMi8JA2kr6 iSbqZzKj7bnR6SSjM5WW5w2AsWduESGVWbuTWGmwpJusUIpbn7AT5ssGOQ42BFPG oOsUd7P825NLXhzwCHeM1/8+QRDvO385LKA7ii56ieIuqhTMD/+9WEruvCoQeTJq tbp0Nds/GP4l1POXPsaioxyX5jX+gcdVsHKLOk8R3uv6bBA7te01LWfj6rvdokt/ jMkIYORl8wkZbNUe1XMGNiYy33ec0UNXutfospOceRkpGgp7gHSLPoh/+rnwrS1n JRT1vSlygm6RArPxOMPKFc619Gv0ueEnOkfAFghxfyJqQ5Ps6O1znBMOTdMvijjb cdPD9+s= -----END CERTIFICATE-----Generated at Wed Jun 12 16:28:02 2024 by rpki-client on console-fra.rpki-client.org