$ rpki-client -vvf rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/7B2649225FE211EB9C1A7864C4F9AE02.roa File: 7B2649225FE211EB9C1A7864C4F9AE02.roa (raw, json) Hash identifier: JQJpjuE7dTLHbnHIUhjbyxmUJz3KthVC6JU7hRdjeUo= Subject key identifier: 08:A2:38:3D:99:6E:CD:12:24:78:FD:A0:1E:BC:54:26:DD:1A:EA:E5 Certificate issuer: /CN=A91B872C/serialNumber=40606A5B5D29BBF42167FA68B326867EF90E826F Certificate serial: 06BE Authority key identifier: 40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/7B2649225FE211EB9C1A7864C4F9AE02.roa Signing time: Fri 04 Aug 2023 21:58:39 +0000 ROA not before: Fri 04 Aug 2023 21:58:39 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137445 IP address blocks: 123.253.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B872C/serialNumber=40606A5B5D29BBF42167FA68B326867EF90E826F Validity Not Before: Aug 4 21:58:39 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cd748f-91f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:74:53:a8:fc:6f:44:d0:a6:5f:49:9d:87:6a: 0a:ce:13:13:4a:5f:6a:5c:11:47:6d:9f:0f:87:28: f2:f7:2a:68:05:26:81:fe:2d:cd:94:94:82:e5:a9: dc:16:6d:51:0b:37:08:98:fa:01:ea:87:92:e9:0b: 24:18:b3:f2:25:09:09:a8:c3:00:49:5c:b4:60:09: 6f:d3:7a:b3:8f:60:88:6c:d4:7c:bc:08:ff:d6:ff: 65:36:0f:3e:67:4e:e7:98:53:f6:5e:6e:5a:79:f9: c9:87:42:91:9a:b0:16:20:29:3f:75:5e:da:37:b9: 1f:79:bf:65:fc:4f:71:e1:6c:c7:b1:2e:35:6f:48: 72:07:f6:37:ec:b9:1d:a8:94:28:0b:15:64:ba:49: 4b:16:29:1c:19:51:8c:8c:4d:0c:d6:18:7e:2c:9a: de:f6:68:a0:16:87:23:b9:96:93:8e:81:7c:ec:3a: 39:0b:41:f6:9c:cd:72:7d:bb:16:97:0f:8c:f4:85: ae:ca:9f:cf:12:76:59:3c:e1:23:5c:e6:b1:55:83: 31:97:15:bf:65:8f:0a:89:33:96:01:6b:78:8b:52: 94:22:6c:6f:25:5f:40:bf:7f:1d:36:a1:bb:e7:5d: 18:fe:74:36:37:3a:80:13:b4:29:dd:b7:a1:02:a2: 91:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A2:38:3D:99:6E:CD:12:24:78:FD:A0:1E:BC:54:26:DD:1A:EA:E5 X509v3 Authority Key Identifier: keyid:40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/7B2649225FE211EB9C1A7864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.218.0/24 Signature Algorithm: sha256WithRSAEncryption 99:84:2b:13:5f:f5:e0:72:0e:28:d3:13:48:5d:1c:c1:fb:40: e9:b3:a3:5b:df:76:62:c3:70:1d:4e:5c:37:04:ce:ca:40:7f: 67:a0:87:78:94:26:7b:a5:5c:73:78:43:7f:85:2a:11:15:ab: 83:86:88:5c:52:34:b9:e0:e8:28:f0:4d:5a:1d:70:e8:cb:e3: 5c:71:11:1d:3c:5f:08:40:3e:fc:60:be:70:d1:3b:16:a3:05: a6:07:f3:02:12:d7:2f:31:73:0b:d4:57:ff:bc:64:e3:63:e6: 89:51:b1:d1:f2:a5:71:db:57:34:d8:79:1e:5c:64:df:31:44: d8:9e:b6:e6:e0:b3:b7:b2:55:33:2e:28:ef:c6:22:62:bf:aa: b4:e6:f1:07:e0:31:8d:76:55:44:5a:fe:f2:92:8c:b7:8e:cf: b5:73:c5:44:c5:65:54:99:95:5d:46:e3:3c:cf:b4:7c:a3:82: 7a:bb:06:dd:bb:05:ed:33:39:06:75:a1:61:a2:de:dc:62:7c: ae:05:42:af:19:35:7a:8b:4c:57:61:1a:cb:e9:c3:8d:1e:4d: 17:02:9b:2b:93:c0:a5:cc:98:25:80:b3:4d:94:b7:5c:30:a7: 7b:01:a2:64:d5:a4:bd:13:8d:8b:94:e2:fb:9e:35:05:36:8e: c1:94:e0:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg3MkMxMTAvBgNVBAUTKDQwNjA2QTVCNUQyOUJCRjQyMTY3RkE2OEIzMjY4NjdF RjkwRTgyNkYwHhcNMjMwODA0MjE1ODM5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkNzQ4Zi05MWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA83RTqPxvRNCmX0mdh2oKzhMTSl9qXBFHbZ8Phyjy9ypoBSaB/i3NlJSC5anc Fm1RCzcImPoB6oeS6QskGLPyJQkJqMMASVy0YAlv03qzj2CIbNR8vAj/1v9lNg8+ Z07nmFP2Xm5aefnJh0KRmrAWICk/dV7aN7kfeb9l/E9x4WzHsS41b0hyB/Y37Lkd qJQoCxVkuklLFikcGVGMjE0M1hh+LJre9migFocjuZaTjoF87Do5C0H2nM1yfbsW lw+M9IWuyp/PEnZZPOEjXOaxVYMxlxW/ZY8KiTOWAWt4i1KUImxvJV9Av38dNqG7 510Y/nQ2NzqAE7Qp3behAqKRcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAiiOD2Z bs0SJHj9oB68VCbdGurlMB8GA1UdIwQYMBaAFEBgaltdKbv0IWf6aLMmhn75DoJv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODcyQy9GMjBFNTU5NkRC REMxMUVBOTNGRjdENDRDNEY5QUUwMi9RR0JxVzEwcHVfUWhaX3Bvc3lhR2Z2a09n bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHQnFXMTBwdV9RaFpfcG9zeWFHZnZrT2dtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg3MkMvRjIwRTU1OTZEQkRDMTFFQTkzRkY3RDQ0QzRGOUFFMDIvN0IyNjQ5MjI1 RkUyMTFFQjlDMUE3ODY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7/dowDQYJKoZIhvcNAQELBQADggEBAJmEKxNf9eByDijT E0hdHMH7QOmzo1vfdmLDcB1OXDcEzspAf2egh3iUJnulXHN4Q3+FKhEVq4OGiFxS NLng6CjwTVodcOjL41xxER08XwhAPvxgvnDROxajBaYH8wIS1y8xcwvUV/+8ZONj 5olRsdHypXHbVzTYeR5cZN8xRNietubgs7eyVTMuKO/GImK/qrTm8QfgMY12VURa /vKSjLeOz7VzxUTFZVSZlV1G4zzPtHyjgnq7Bt27Be0zOQZ1oWGi3txifK4FQq8Z NXqLTFdhGsvpw40eTRcCmyuTwKXMmCWAs02Ut1wwp3sBomTVpL0TjYuU4vueNQU2 jsGU4M4= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:26 2024 by rpki-client on console-ams.rpki-client.org