$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/8839CA50174911EEB005A134C4F9AE02.roa File: 8839CA50174911EEB005A134C4F9AE02.roa (raw, json) Hash identifier: 87jyq80/7TFEo0ZjtNAlfKQCEGSGhXKCvcBSYItfaWs= Subject key identifier: AE:55:12:2C:EA:90:DA:BA:17:DE:97:C7:90:C1:3F:A4:4C:85:2C:C6 Certificate issuer: /CN=A91B0BA1/serialNumber=C1CB08AD3EB866D3CD647C135D0F52FAED2546C4 Certificate serial: 94 Authority key identifier: C1:CB:08:AD:3E:B8:66:D3:CD:64:7C:13:5D:0F:52:FA:ED:25:46:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/8839CA50174911EEB005A134C4F9AE02.roa Signing time: Fri 05 Apr 2024 07:08:44 +0000 ROA not before: Fri 05 Apr 2024 07:08:44 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 23732 IP address blocks: 202.162.160.0/24 maxlen: 24 202.162.163.0/24 maxlen: 24 202.162.164.0/24 maxlen: 24 202.162.168.0/24 maxlen: 24 202.162.172.0/24 maxlen: 24 202.162.174.0/24 maxlen: 24 202.162.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.crl rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0BA1/serialNumber=C1CB08AD3EB866D3CD647C135D0F52FAED2546C4 Validity Not Before: Apr 5 07:08:44 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660fa37c-fe50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:92:36:84:93:00:5c:65:e4:53:7b:1a:1f:e5: 87:ae:9b:fd:a7:f5:69:85:b3:4d:cf:4b:4f:79:33: de:d7:b3:82:3c:43:f7:6d:01:80:f9:33:a1:78:bb: 71:aa:1e:b2:1c:70:44:81:bc:0b:ef:7e:78:92:18: 71:0b:38:d6:a2:6b:3a:7b:13:64:e6:2c:48:c8:0f: a5:42:88:7d:6b:79:6d:26:9f:5b:06:6a:69:68:ec: 95:d9:ed:1d:19:1a:23:ab:68:b5:de:49:82:b5:2a: 1e:ed:a4:2e:44:8d:0a:6f:a3:71:ab:de:e2:43:04: 95:e0:96:cf:d3:55:cb:a8:a1:73:83:b3:0d:25:5d: 85:7b:69:eb:eb:20:97:07:ab:3f:73:1e:6d:bc:84: 9f:26:55:b6:22:6a:71:86:3f:f9:35:6e:0c:34:dc: 05:06:5a:ac:32:a3:6a:b5:55:8f:d8:1e:d2:f5:08: 5a:44:fa:37:db:70:00:a4:0d:79:27:30:a9:49:fa: 59:e9:4a:08:5e:18:b2:20:cf:66:1e:ed:37:c1:14: 30:d1:61:d3:b5:0b:e2:97:56:dc:fb:2e:62:3d:dd: ae:09:81:f2:65:b0:85:2a:c6:62:69:d6:d6:82:4a: 4f:65:a9:c6:a5:3a:37:18:e3:b0:5e:38:c1:84:4a: 4c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:55:12:2C:EA:90:DA:BA:17:DE:97:C7:90:C1:3F:A4:4C:85:2C:C6 X509v3 Authority Key Identifier: keyid:C1:CB:08:AD:3E:B8:66:D3:CD:64:7C:13:5D:0F:52:FA:ED:25:46:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/8839CA50174911EEB005A134C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.162.160.0/24 202.162.163.0-202.162.164.255 202.162.168.0/24 202.162.172.0/24 202.162.174.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:ed:66:38:36:33:0b:4c:3e:fc:52:43:d0:d7:00:fb:7f:78: 6d:2e:21:ba:6a:d6:57:ea:d5:b9:3c:03:03:d0:68:11:c0:87: ca:db:bf:86:63:03:9b:50:77:a8:76:93:7d:c4:91:28:be:69: 22:49:c1:09:50:23:6e:ad:c3:96:15:aa:86:ef:7f:52:ee:38: 65:5d:b5:b6:36:d5:69:71:63:bb:1a:ce:2a:10:de:da:3e:00: 38:86:22:5c:13:31:5e:01:21:e3:6f:81:14:0f:8e:5e:46:c8: 92:f2:87:3a:1b:99:d3:93:e8:54:79:44:5b:48:f1:08:7d:d5: fa:84:27:50:7a:b1:8f:13:b9:a5:bc:9f:23:f5:14:4c:ef:77: ec:ed:f5:2c:02:15:43:fd:07:79:b2:b4:7f:26:9d:a8:b8:9a: ac:21:e4:c8:4a:bb:9a:3a:b3:ed:c4:3e:0d:a5:45:22:26:f3: c3:f1:4c:94:0a:1f:40:c7:d3:7d:a1:50:4d:85:11:86:6d:a9: 27:0d:7b:06:8a:dd:31:da:cf:e0:4b:17:be:fe:99:7e:72:12: 42:d6:ad:3e:8f:28:f0:09:e1:61:3a:42:79:fa:23:7b:01:c3: 64:08:90:3b:a4:bf:f4:3d:82:ba:4f:4f:05:13:fd:7d:02:49: 19:76:39:1c -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBCQTExMTAvBgNVBAUTKEMxQ0IwOEFEM0VCODY2RDNDRDY0N0MxMzVEMEY1MkZB RUQyNTQ2QzQwHhcNMjQwNDA1MDcwODQ0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmYTM3Yy1mZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpI2hJMAXGXkU3saH+WHrpv9p/VphbNNz0tPeTPe17OCPEP3bQGA+TOheLtx qh6yHHBEgbwL7354khhxCzjWoms6exNk5ixIyA+lQoh9a3ltJp9bBmppaOyV2e0d GRojq2i13kmCtSoe7aQuRI0Kb6Nxq97iQwSV4JbP01XLqKFzg7MNJV2Fe2nr6yCX B6s/cx5tvISfJlW2Impxhj/5NW4MNNwFBlqsMqNqtVWP2B7S9QhaRPo323AApA15 JzCpSfpZ6UoIXhiyIM9mHu03wRQw0WHTtQvil1bc+y5iPd2uCYHyZbCFKsZiadbW gkpPZanGpTo3GOOwXjjBhEpMvwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFK5VEizq kNq6F96Xx5DBP6RMhSzGMB8GA1UdIwQYMBaAFMHLCK0+uGbTzWR8E10PUvrtJUbE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEJBMS84Q0NFM0VEQTE3 NDMxMUVFODlBOEZEMkZDNEY5QUUwMi93Y3NJclQ2NFp0UE5aSHdUWFE5Uy11MGxS c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3djc0lyVDY0WnRQTlpId1RYUTlTLXUwbFJzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBCQTEvOENDRTNFREExNzQzMTFFRTg5QThGRDJGQzRGOUFFMDIvODgzOUNBNTAx NzQ5MTFFRUIwMDVBMTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBADKoqAwDAMEAMqiowMEAMqipAMEAMqiqAMEAMqirAMEAcqi rjANBgkqhkiG9w0BAQsFAAOCAQEAfu1mODYzC0w+/FJD0NcA+394bS4humrWV+rV uTwDA9BoEcCHytu/hmMDm1B3qHaTfcSRKL5pIknBCVAjbq3DlhWqhu9/Uu44ZV21 tjbVaXFjuxrOKhDe2j4AOIYiXBMxXgEh42+BFA+OXkbIkvKHOhuZ05PoVHlEW0jx CH3V+oQnUHqxjxO5pbyfI/UUTO937O31LAIVQ/0HebK0fyadqLiarCHkyEq7mjqz 7cQ+DaVFIibzw/FMlAofQMfTfaFQTYURhm2pJw17BordMdrP4EsXvv6ZfnISQtat Po8o8AnhYTpCefojewHDZAiQO6S/9D2Cuk9PBRP9fQJJGXY5HA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:30 2024 by rpki-client on console-ams.rpki-client.org