$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/FAA2E3324C3811EEB7116433C4F9AE02.roa File: FAA2E3324C3811EEB7116433C4F9AE02.roa (raw, json) Hash identifier: Ox5AwkvCEJ/TKKbHnF8ZLm6Kbk7Vf84i4Zu7/tK4dFw= Subject key identifier: 27:EC:C9:BE:09:C7:3C:F6:90:3F:0D:D5:65:ED:57:4A:A0:69:54:C0 Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 14 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/FAA2E3324C3811EEB7116433C4F9AE02.roa Signing time: Wed 20 Sep 2023 23:09:25 +0000 ROA not before: Wed 20 Sep 2023 23:09:25 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17435 IP address blocks: 58.28.0.0/16 maxlen: 16 118.90.0.0/16 maxlen: 16 182.154.0.0/16 maxlen: 16 2001:e20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Sep 20 23:09:25 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650b7ba5-91d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:14:66:7e:61:0e:4f:47:c9:92:e4:37:cb:e8: 21:d6:eb:ce:38:4c:d8:88:d1:3e:6b:24:6b:ca:dd: 36:e3:76:bc:2c:3e:96:15:ec:8e:8b:12:b4:41:f2: e5:be:3f:6e:a6:2e:4d:d4:58:e2:cf:23:16:bf:06: b4:a4:d5:25:f7:29:d7:f1:8f:5e:4d:22:12:8e:9e: e1:52:b4:b5:4d:08:6b:2c:34:3d:7c:02:54:1b:96: eb:58:70:cc:07:78:bf:63:9f:5e:e4:54:6e:94:a9: 42:ce:32:31:53:e1:68:23:8b:5e:10:15:1f:6a:fe: 21:e2:91:f7:bc:80:25:02:ae:2d:30:0c:fb:ec:72: b3:95:36:8f:ee:af:72:af:8e:ca:20:c6:39:20:7e: 65:48:af:a2:09:a1:55:16:8b:04:dc:ad:c4:b1:04: a1:42:f0:7b:9b:aa:e7:74:33:ac:61:d5:b6:d2:f7: 40:32:bf:2f:6d:21:9e:c2:b2:a1:7e:10:2a:ac:50: d4:92:b9:d0:30:04:fb:5f:de:80:1a:b6:8c:78:92: 9c:39:fa:ca:48:85:f4:99:fc:df:8e:8c:57:3d:5e: f7:fe:a9:7d:c4:98:32:7f:01:78:58:be:e6:d7:38: aa:00:6a:d2:7a:23:fe:4d:c4:a9:64:97:9a:0a:97: 43:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:EC:C9:BE:09:C7:3C:F6:90:3F:0D:D5:65:ED:57:4A:A0:69:54:C0 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/FAA2E3324C3811EEB7116433C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.28.0.0/16 118.90.0.0/16 182.154.0.0/16 IPv6: 2001:e20::/32 Signature Algorithm: sha256WithRSAEncryption 9e:3b:af:27:ee:67:49:ce:a6:d1:b8:ad:a8:6e:ce:fc:7b:c5: 22:25:b4:f9:e3:f4:cd:e8:d6:5e:21:f6:42:3e:8d:10:f0:08: 33:d5:fe:0a:36:f1:2b:4d:26:ef:02:44:df:72:de:ce:61:31: ce:9f:92:60:21:64:a8:52:db:60:4a:db:ed:7c:ac:1e:8d:2c: ed:e7:53:58:4b:cd:8d:94:7f:61:68:dd:ac:2c:15:1c:1a:b1: 0b:e8:6b:bc:be:49:3b:6e:21:79:26:91:d8:06:53:ca:c0:60: 30:c7:a0:e2:77:cc:b5:65:02:9e:b0:7c:12:c2:64:24:d5:01: c8:72:f4:53:34:28:bf:b7:ef:8f:f7:ab:cf:7a:17:bb:87:08: 99:33:82:ae:77:26:ee:44:38:22:19:86:61:4c:c2:a3:3a:d1: b0:40:d0:5d:24:5d:25:c7:62:b0:fc:99:dc:6e:90:87:cc:4b: c8:ab:99:77:47:df:6a:de:31:e8:6a:ea:d5:07:96:1b:e7:fb: 51:a5:90:4e:1d:78:83:e6:3e:27:c7:ef:de:9f:57:a4:ea:86: fc:cf:98:0e:43:7a:6d:72:aa:03:88:cc:cb:af:c8:95:21:6c: b7:b7:6d:bb:dd:75:c9:31:81:a1:f6:2c:00:44:77:86:90:6d: 2f:07:a8:5a -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTVDNjExMC8GA1UEBRMoM0Q0N0U2Njg3QkI0REY0MEM1MUIwM0E0NTU5QzEwQ0Ey MkY2NzcyRjAeFw0yMzA5MjAyMzA5MjVaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MGI3YmE1LTkxZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIFGZ+YQ5PR8mS5DfL6CHW6844TNiI0T5rJGvK3TbjdrwsPpYV7I6LErRB8uW+ P26mLk3UWOLPIxa/BrSk1SX3Kdfxj15NIhKOnuFStLVNCGssND18AlQblutYcMwH eL9jn17kVG6UqULOMjFT4Wgji14QFR9q/iHikfe8gCUCri0wDPvscrOVNo/ur3Kv jsogxjkgfmVIr6IJoVUWiwTcrcSxBKFC8Hubqud0M6xh1bbS90Ayvy9tIZ7CsqF+ ECqsUNSSudAwBPtf3oAatox4kpw5+spIhfSZ/N+OjFc9Xvf+qX3EmDJ/AXhYvubX OKoAatJ6I/5NxKlkl5oKl0OVAgMBAAGjggKtMIICqTAdBgNVHQ4EFgQUJ+zJvgnH PPaQPw3VZe1XSqBpVMAwHwYDVR0jBBgwFoAUPUfmaHu030DFGwOkVZwQyiL2dy8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBNUM2L0Q1NTUxOUI0NEMz NDExRUVBRUVEQTIyQ0M0RjlBRTAyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFVmbWFIdTAzMERGR3dPa1Zad1F5aUwyZHk4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9GQUEyRTMzMjRD MzgxMUVFQjcxMTY0MzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA3BggrBgEFBQcBBwEB/wQo MCYwFQQCAAEwDwMDADocAwMAdloDAwC2mjANBAIAAjAHAwUAIAEOIDANBgkqhkiG 9w0BAQsFAAOCAQEAnjuvJ+5nSc6m0bitqG7O/HvFIiW0+eP0zejWXiH2Qj6NEPAI M9X+CjbxK00m7wJE33LezmExzp+SYCFkqFLbYErb7XysHo0s7edTWEvNjZR/YWjd rCwVHBqxC+hrvL5JO24heSaR2AZTysBgMMeg4nfMtWUCnrB8EsJkJNUByHL0UzQo v7fvj/erz3oXu4cImTOCrncm7kQ4IhmGYUzCozrRsEDQXSRdJcdisPyZ3G6Qh8xL yKuZd0ffat4x6Grq1QeWG+f7UaWQTh14g+Y+J8fv3p9XpOqG/M+YDkN6bXKqA4jM y6/IlSFst7dtu911yTGBofYsAER3hpBtLweoWg== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:36 2024 by rpki-client on console-fra.rpki-client.org