$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/EBF0BAF86EF711EE821C4538C4F9AE02.roa File: EBF0BAF86EF711EE821C4538C4F9AE02.roa (raw, json) Hash identifier: 8jzsQF9K37g0759p+cHddGRVaB9B3asBzSUwagiKw4Y= Subject key identifier: 92:1F:AD:E3:97:9D:79:62:6B:A1:E9:B9:02:40:CC:B6:23:5E:6C:1A Certificate issuer: /CN=A91BE514/serialNumber=D2ADBAF0D7D52CB94D4A13978B32053BCDF77A0F Certificate serial: 02 Authority key identifier: D2:AD:BA:F0:D7:D5:2C:B9:4D:4A:13:97:8B:32:05:3B:CD:F7:7A:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0q268NfVLLlNShOXizIFO833eg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/EBF0BAF86EF711EE821C4538C4F9AE02.roa Signing time: Fri 20 Oct 2023 03:22:39 +0000 ROA not before: Fri 20 Oct 2023 03:22:39 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 203963 IP address blocks: 202.36.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.crl rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0q268NfVLLlNShOXizIFO833eg8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE514/serialNumber=D2ADBAF0D7D52CB94D4A13978B32053BCDF77A0F Validity Not Before: Oct 20 03:22:39 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6531f27f-18ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f0:e5:1b:0f:84:e7:0c:dc:6c:c6:28:ba:7a: 62:6a:16:7e:c0:75:6a:71:ce:7a:f3:e5:b6:75:0a: e0:27:04:ad:3e:bd:85:57:15:5c:e5:0e:87:9f:f8: 86:dc:78:76:4f:74:20:a0:60:bb:af:f1:07:be:13: d2:7f:9b:c8:bf:b0:ab:65:7c:ad:d5:0c:82:ee:17: fe:cf:75:fa:91:e5:f0:07:b6:32:0a:74:a4:4f:48: 95:b7:8a:10:8e:17:f3:6c:e4:92:ca:ee:3d:09:2e: 60:89:7f:2b:a0:8b:78:67:31:43:a9:3b:a1:c1:2b: 88:fe:50:b4:34:5f:90:cd:87:23:b9:07:35:fe:30: 13:05:ee:a6:8e:7e:07:a0:d4:f9:35:e2:30:bf:eb: b0:5c:0f:1e:00:ba:ae:d5:35:b3:2f:57:f6:dc:8c: 28:d4:4c:b0:55:ee:d8:e6:d8:38:46:2d:0a:d5:4e: 6d:84:23:2a:2d:40:35:ad:7c:0d:c2:27:82:53:fd: a7:4a:55:0a:ed:c3:be:c4:06:27:bc:69:91:7e:76: be:48:12:86:5a:79:1e:a3:98:22:21:3b:7b:90:81: 37:7a:23:9e:a1:34:d4:54:14:5e:4d:10:42:77:45: bf:c1:3f:a9:ab:58:73:81:bf:0d:66:80:97:95:65: 7b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:1F:AD:E3:97:9D:79:62:6B:A1:E9:B9:02:40:CC:B6:23:5E:6C:1A X509v3 Authority Key Identifier: keyid:D2:AD:BA:F0:D7:D5:2C:B9:4D:4A:13:97:8B:32:05:3B:CD:F7:7A:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0q268NfVLLlNShOXizIFO833eg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/EBF0BAF86EF711EE821C4538C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.41.0/24 Signature Algorithm: sha256WithRSAEncryption 16:99:5f:16:ad:0e:00:bd:c1:26:f7:0a:de:31:93:d8:c9:2e: dc:84:aa:e6:1f:33:2f:c9:4a:ca:33:39:bd:0b:cd:de:f0:b0: bb:82:27:f3:f8:ee:a1:f7:0f:62:17:c1:49:5e:b5:63:9b:91: 37:e0:cf:2e:ac:66:0c:0a:45:80:16:c2:38:ad:8b:7f:24:16: ef:bf:4c:51:b3:bd:e4:1a:a0:69:76:b7:c8:a2:25:d5:1e:d8: 7f:e4:5e:d8:c0:c2:89:a7:e3:4c:6d:d7:92:3a:d3:f1:4f:80: 93:a3:2f:05:8f:b1:22:d0:d0:a9:d2:1b:79:b0:a9:0f:ff:c7: 89:3b:34:4b:cc:89:b1:d1:77:99:ce:e1:70:85:cf:0b:cb:10: 49:66:97:79:1c:db:47:97:0f:10:66:c4:fe:a5:1c:e2:9a:56: b1:dc:5a:ad:1b:8d:5f:00:6f:bd:b8:2c:13:c4:8e:4d:57:d7: 2a:1e:30:e0:f9:04:91:41:6c:c3:bc:18:fb:fd:40:99:26:6f: 27:b6:06:c8:09:ab:bd:97:82:79:16:2d:92:d9:52:0b:4b:a0: bc:bb:b9:c2:6c:bf:3e:ca:8d:b8:4d:76:54:9a:dc:0b:c2:59: 4c:09:3d:fc:08:34:2e:bf:c1:7f:1a:80:13:3f:d8:da:bc:b2: a1:12:db:65 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RTUxNDExMC8GA1UEBRMoRDJBREJBRjBEN0Q1MkNCOTRENEExMzk3OEIzMjA1M0JD REY3N0EwRjAeFw0yMzEwMjAwMzIyMzlaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzFmMjdmLTE4Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf8OUbD4TnDNxsxii6emJqFn7AdWpxznrz5bZ1CuAnBK0+vYVXFVzlDoef+Ibc eHZPdCCgYLuv8Qe+E9J/m8i/sKtlfK3VDILuF/7PdfqR5fAHtjIKdKRPSJW3ihCO F/Ns5JLK7j0JLmCJfyugi3hnMUOpO6HBK4j+ULQ0X5DNhyO5BzX+MBMF7qaOfgeg 1Pk14jC/67BcDx4Auq7VNbMvV/bcjCjUTLBV7tjm2DhGLQrVTm2EIyotQDWtfA3C J4JT/adKVQrtw77EBie8aZF+dr5IEoZaeR6jmCIhO3uQgTd6I56hNNRUFF5NEEJ3 Rb/BP6mrWHOBvw1mgJeVZXuLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUkh+t45ed eWJroem5AkDMtiNebBowHwYDVR0jBBgwFoAU0q268NfVLLlNShOXizIFO833eg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFNTE0L0Q4RURGNjhFNkVG NTExRUVCRDE4MEEzMkM0RjlBRTAyLzBxMjY4TmZWTExsTlNoT1hpeklGTzgzM2Vn OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHEyNjhOZlZMTGxOU2hPWGl6SUZPODMzZWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTUxNC9EOEVERjY4RTZFRjUxMUVFQkQxODBBMzJDNEY5QUUwMi9FQkYwQkFGODZF RjcxMUVFODIxQzQ1MzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMokKTANBgkqhkiG9w0BAQsFAAOCAQEAFplfFq0OAL3BJvcK 3jGT2Mku3ISq5h8zL8lKyjM5vQvN3vCwu4In8/juofcPYhfBSV61Y5uRN+DPLqxm DApFgBbCOK2LfyQW779MUbO95BqgaXa3yKIl1R7Yf+Re2MDCiafjTG3XkjrT8U+A k6MvBY+xItDQqdIbebCpD//HiTs0S8yJsdF3mc7hcIXPC8sQSWaXeRzbR5cPEGbE /qUc4ppWsdxarRuNXwBvvbgsE8SOTVfXKh4w4PkEkUFsw7wY+/1AmSZvJ7YGyAmr vZeCeRYtktlSC0ugvLu5wmy/PsqNuE12VJrcC8JZTAk9/Ag0Lr/BfxqAEz/Y2ryy oRLbZQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:31 2024 by rpki-client on console-ams.rpki-client.org