$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/999FA66011C711EF80B27457C4F9AE02.roa File: 999FA66011C711EF80B27457C4F9AE02.roa (raw, json) Hash identifier: EoETNpgvN9v8EH94Mbq7/LheJHevwldFfgY8FqaKxMc= Subject key identifier: F7:D7:D8:B0:DA:01:6F:91:30:22:94:2B:1C:97:69:45:3C:C6:B8:65 Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: 011B Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/999FA66011C711EF80B27457C4F9AE02.roa Signing time: Tue 14 May 2024 07:57:24 +0000 ROA not before: Tue 14 May 2024 07:57:24 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 19527 IP address blocks: 152.65.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Validity Not Before: May 14 07:57:24 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66431964-b369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ad:25:71:ad:d1:fa:f9:27:b3:f4:56:5b:3e: 68:f3:e1:4e:f4:4c:3d:47:30:e3:87:33:38:79:07: d1:d7:c5:41:97:a6:56:ea:6f:1c:0e:c6:fb:21:91: a5:e7:ea:8f:27:ae:74:5a:dc:73:38:fe:9b:a5:34: d4:c0:85:38:28:06:32:73:fb:bc:4b:fc:33:85:2c: 04:ef:df:5c:80:5e:6a:c0:c8:7f:1a:c4:74:e6:ba: 1c:e1:e3:d3:5f:20:c2:10:00:c3:17:26:48:63:a7: e4:58:18:b5:a8:f8:ee:4c:4d:82:6d:0a:da:13:95: 22:b4:2e:2c:b9:5b:16:e7:52:47:01:87:21:66:a3: 81:7d:a0:09:58:8b:20:14:ff:98:3a:19:53:05:d2: 9d:cc:1b:9d:0f:c1:b8:bf:96:40:c2:93:6d:ee:33: c1:45:e4:2f:38:b5:bc:eb:8e:44:0b:0a:9d:56:ea: be:88:53:1c:de:1c:d1:1b:03:85:e1:62:fd:b6:6a: 69:13:cd:88:ef:91:b7:fb:cf:83:00:5c:56:b8:a1: e7:fd:5c:fa:4a:2e:80:71:3e:21:23:f5:53:19:be: 14:b8:c7:b6:44:e7:cd:dd:01:a5:8b:3c:9b:cf:ec: d8:de:95:3d:32:6e:ef:90:a6:f7:eb:47:06:14:4e: 98:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D7:D8:B0:DA:01:6F:91:30:22:94:2B:1C:97:69:45:3C:C6:B8:65 X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/999FA66011C711EF80B27457C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.65.192.0/18 Signature Algorithm: sha256WithRSAEncryption 13:38:e2:b1:a7:57:bf:c8:7d:ab:4c:15:17:3a:f3:d5:81:45: 80:af:e7:6f:ae:78:b3:97:99:6a:3d:1b:10:b6:32:a4:4a:93: 40:73:80:e2:34:ce:23:e3:a6:29:6e:ef:92:57:b4:ab:33:e5: 46:02:37:ad:3b:ca:df:23:a4:a5:79:e3:bc:f0:dd:0a:df:b4: 8e:fa:f5:6f:d2:05:e3:ff:5c:86:b0:4d:22:06:9c:77:ec:23: 37:d4:37:0c:c4:a1:1c:13:b2:b2:e3:d3:a1:77:d9:2d:d3:a6: 3c:27:e2:7d:db:39:f8:17:5e:28:cf:05:b0:ee:73:80:8d:ac: ea:11:a5:7f:ee:84:57:01:81:a2:ae:c9:04:f6:52:7b:66:b7: 6d:93:0c:9f:bf:10:33:36:6a:73:16:a0:67:1e:bc:41:c5:fc: b6:50:2a:8f:91:71:aa:52:d0:67:d7:8a:dd:67:ca:cf:0a:c8: 58:cc:cd:5d:1b:cd:b0:97:28:83:12:9b:58:d5:3f:f0:31:31: 52:1d:80:49:37:7c:2c:30:6b:e6:90:06:da:31:06:58:ef:3b: c1:b2:1e:30:6b:40:42:73:c1:64:02:b9:ab:b6:21:63:18:41: 30:f6:f1:ae:1d:4f:5a:ab:41:20:b2:58:3b:69:df:c3:b9:2a: 18:10:26:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjQwNTE0MDc1NzI0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzMTk2NC1iMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn60lca3R+vkns/RWWz5o8+FO9Ew9RzDjhzM4eQfR18VBl6ZW6m8cDsb7IZGl 5+qPJ650WtxzOP6bpTTUwIU4KAYyc/u8S/wzhSwE799cgF5qwMh/GsR05roc4ePT XyDCEADDFyZIY6fkWBi1qPjuTE2CbQraE5UitC4suVsW51JHAYchZqOBfaAJWIsg FP+YOhlTBdKdzBudD8G4v5ZAwpNt7jPBReQvOLW8645ECwqdVuq+iFMc3hzRGwOF 4WL9tmppE82I75G3+8+DAFxWuKHn/Vz6Si6AcT4hI/VTGb4UuMe2ROfN3QGlizyb z+zY3pU9Mm7vkKb360cGFE6YoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPfX2LDa AW+RMCKUKxyXaUU8xrhlMB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhFREYvRUE2N0E5OEM3QzU3MTFFREJGMjEzNzY3QzRGOUFFMDIvOTk5RkE2NjAx MUM3MTFFRjgwQjI3NDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAaYQcAwDQYJKoZIhvcNAQELBQADggEBABM44rGnV7/IfatM FRc689WBRYCv52+ueLOXmWo9GxC2MqRKk0BzgOI0ziPjpilu75JXtKsz5UYCN607 yt8jpKV547zw3QrftI769W/SBeP/XIawTSIGnHfsIzfUNwzEoRwTsrLj06F32S3T pjwn4n3bOfgXXijPBbDuc4CNrOoRpX/uhFcBgaKuyQT2Untmt22TDJ+/EDM2anMW oGcevEHF/LZQKo+RcapS0GfXit1nys8KyFjMzV0bzbCXKIMSm1jVP/AxMVIdgEk3 fCwwa+aQBtoxBljvO8GyHjBrQEJzwWQCuau2IWMYQTD28a4dT1qrQSCyWDtp38O5 KhgQJkE= -----END CERTIFICATE-----Generated at Sat Jun 1 08:16:03 2024 by rpki-client on console-ams.rpki-client.org