$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/F91C0FF2999411EA9A003F30C4F9AE02.roa File: F91C0FF2999411EA9A003F30C4F9AE02.roa (raw, json) Hash identifier: jtbdTqDFIXto4MT4Y089fYnPHdSB3xD3rOHKmGabM08= Subject key identifier: 9F:86:2E:61:95:4B:DA:D3:49:5B:60:23:F5:9F:DD:6A:9D:AB:8B:BF Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0E5E Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/F91C0FF2999411EA9A003F30C4F9AE02.roa Signing time: Sat 02 Sep 2023 18:05:30 +0000 ROA not before: Sat 02 Sep 2023 18:05:30 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 59033 IP address blocks: 45.114.236.0/22 maxlen: 24 103.71.24.0/24 maxlen: 24 103.90.51.0/24 maxlen: 24 103.90.56.0/23 maxlen: 24 2401:d640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3678 (0xe5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Sep 2 18:05:30 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f3796a-53a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:55:f2:9f:62:ff:93:99:6c:9b:2c:21:cd:05: 16:61:74:0c:38:5c:63:ce:7d:f9:9f:d1:c6:43:44: 5c:52:8e:f7:df:48:bb:03:f7:de:9e:6e:e9:2c:f9: 0f:68:b6:ae:5c:29:36:05:b4:22:03:28:cb:43:f4: de:3d:ae:8c:8e:b1:5e:da:99:b9:14:da:f0:b7:07: 39:a6:06:fe:46:bf:a1:18:e3:24:a2:77:fd:5f:38: da:22:53:9b:47:8d:23:2a:bc:0d:87:c4:e4:1a:a2: 82:39:e4:93:1b:1c:67:b1:3c:f9:21:09:c7:d7:15: 2a:06:03:64:0d:a7:a1:54:3f:73:c7:f4:85:0c:38: 7f:e6:e4:6f:62:92:c0:78:c7:48:97:de:0a:b2:4e: 4a:b6:36:18:d8:2b:a4:f0:97:0b:51:01:77:24:2a: 21:bf:93:8f:7f:8f:61:d6:d2:3b:0a:00:0c:c4:6c: 1b:2a:87:10:d3:c4:e7:b1:79:ab:ed:4b:a2:0a:04: ad:5c:6a:65:ae:d1:1d:34:87:1c:df:1d:e0:74:93: a8:d6:8d:8c:a7:2a:e4:22:e8:62:59:bd:7b:64:b6: 56:d8:23:8d:89:ad:14:25:e9:6b:b6:6a:a5:cc:4d: 85:a3:d3:92:63:ff:7f:a9:22:b3:d9:8c:cb:b2:9e: 02:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:86:2E:61:95:4B:DA:D3:49:5B:60:23:F5:9F:DD:6A:9D:AB:8B:BF X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/F91C0FF2999411EA9A003F30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.236.0/22 103.71.24.0/24 103.90.51.0/24 103.90.56.0/23 IPv6: 2401:d640::/32 Signature Algorithm: sha256WithRSAEncryption 5c:89:8a:3b:ef:4f:b7:55:72:6c:fb:10:fd:ef:b5:e0:75:03: 7a:85:10:58:0d:68:dc:f3:c0:93:71:c6:a2:f9:cd:78:3a:e5: dd:7b:af:29:3f:b8:a4:4e:a7:d3:39:44:e6:5e:3b:e4:6b:1f: 3e:cc:6a:73:4d:6f:4e:68:c6:61:f4:bb:6e:88:c8:7b:d2:8c: f5:9f:b6:19:39:84:03:6d:8d:cd:d3:b1:4a:f6:c1:b1:eb:6f: 14:58:fe:4a:c9:10:bf:06:34:9f:5a:ae:b4:b3:4a:10:45:e6: 19:b4:6e:ea:00:99:77:63:e8:4f:6d:be:e1:fc:60:a2:52:82: 70:68:2f:32:ae:f4:11:0c:7e:e0:e5:65:b6:97:bf:e3:cb:16: 70:51:f6:5a:1b:fa:d0:f6:d7:90:c2:09:c4:f8:5c:3b:f8:0f: 8a:8e:cc:db:bd:a6:cb:85:82:43:ff:46:0e:77:6b:9c:df:be: 49:20:98:8b:3c:67:a5:3d:da:d3:1f:53:8f:33:37:e7:c6:8d: d3:0d:fa:d6:9a:73:eb:e8:d9:2c:96:cc:77:cb:68:86:30:56: 82:1c:fc:05:bc:12:3a:e4:01:57:74:af:11:14:d6:5d:d2:86: 8a:15:19:8c:45:b3:92:a4:91:6e:7d:aa:ea:ec:b2:13:6a:b0: 0b:44:64:b1 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICDl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjMwOTAyMTgwNTMwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzNzk2YS01M2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulXyn2L/k5lsmywhzQUWYXQMOFxjzn35n9HGQ0RcUo7330i7A/fenm7pLPkP aLauXCk2BbQiAyjLQ/TePa6MjrFe2pm5FNrwtwc5pgb+Rr+hGOMkonf9XzjaIlOb R40jKrwNh8TkGqKCOeSTGxxnsTz5IQnH1xUqBgNkDaehVD9zx/SFDDh/5uRvYpLA eMdIl94Ksk5KtjYY2Cuk8JcLUQF3JCohv5OPf49h1tI7CgAMxGwbKocQ08TnsXmr 7UuiCgStXGplrtEdNIcc3x3gdJOo1o2MpyrkIuhiWb17ZLZW2CONia0UJelrtmql zE2Fo9OSY/9/qSKz2YzLsp4CmQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFJ+GLmGV S9rTSVtgI/Wf3Wqdq4u/MB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY3RDEvNkNCQzlCNDA2MTFEMTFFOUIwMTJEQjM3QzRGOUFFMDIvRjkxQzBGRjI5 OTk0MTFFQTlBMDAzRjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAItcuwDBABnRxgDBABnWjMDBAFnWjgwDQQCAAIwBwMFACQB 1kAwDQYJKoZIhvcNAQELBQADggEBAFyJijvvT7dVcmz7EP3vteB1A3qFEFgNaNzz wJNxxqL5zXg65d17ryk/uKROp9M5ROZeO+RrHz7ManNNb05oxmH0u26IyHvSjPWf thk5hANtjc3TsUr2wbHrbxRY/krJEL8GNJ9arrSzShBF5hm0buoAmXdj6E9tvuH8 YKJSgnBoLzKu9BEMfuDlZbaXv+PLFnBR9lob+tD215DCCcT4XDv4D4qOzNu9psuF gkP/Rg53a5zfvkkgmIs8Z6U92tMfU48zN+fGjdMN+taac+vo2SyWzHfLaIYwVoIc /AW8EjrkAVd0rxEU1l3ShooVGYxFs5KkkW59qursshNqsAtEZLE= -----END CERTIFICATE-----Generated at Fri May 31 20:34:14 2024 by rpki-client on console-ams.rpki-client.org