$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/AD0CC70C122411EF8BEED51AC4F9AE02.roa File: AD0CC70C122411EF8BEED51AC4F9AE02.roa (raw, json) Hash identifier: sih6mQqPoKN1rm8wAr4RUW0iwS5gVukg8/r3VRi8nKM= Subject key identifier: B9:81:A7:F4:95:2D:45:0D:AE:14:10:BA:64:A5:AD:C2:AE:B4:13:4C Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: 011D Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/AD0CC70C122411EF8BEED51AC4F9AE02.roa Signing time: Tue 14 May 2024 19:03:40 +0000 ROA not before: Tue 14 May 2024 19:03:40 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 15169 IP address blocks: 152.65.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Validity Not Before: May 14 19:03:40 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6643b58c-e60d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ab:6c:92:10:57:4a:2a:ed:48:07:96:44:18: 0c:b1:74:eb:eb:c3:66:ba:ce:a5:08:8a:e6:39:3f: 41:be:a5:ad:61:59:b8:6f:80:00:98:a6:0f:15:02: 90:a5:6c:d4:a9:ec:db:2e:09:af:d9:e2:73:53:a7: 6d:58:a1:41:d9:c6:19:1e:ff:67:29:6a:08:f6:73: 0f:8c:4d:ed:d0:d5:d6:4c:51:5f:a0:db:92:57:d5: 67:2f:e6:2e:65:2f:d8:77:79:3c:c1:71:3b:22:24: ca:ea:0f:e5:da:d9:ba:d7:8e:0b:c0:27:f9:a2:2d: 88:0e:de:4d:38:85:9b:cf:63:19:61:6e:10:a7:29: 67:43:bc:cc:40:75:64:48:f6:41:15:82:dc:9c:ef: 1f:ea:08:0d:31:42:17:9e:a5:d3:ac:84:93:96:c3: 04:63:34:16:53:f4:4a:6f:bc:2a:a4:92:eb:c9:ee: fa:76:29:13:2f:36:7b:7a:47:d2:be:9f:ab:00:37: 7f:2e:0a:38:f2:f6:46:a3:7a:ea:7c:da:f9:ab:4e: 38:ca:99:a6:9f:ee:db:f4:54:ac:81:25:0e:67:70: 0b:7c:39:4c:64:9d:97:e1:0e:f7:14:98:b0:5a:f5: aa:06:a2:5a:cf:8c:fe:e7:20:9d:b0:69:b6:18:ca: e4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:81:A7:F4:95:2D:45:0D:AE:14:10:BA:64:A5:AD:C2:AE:B4:13:4C X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/AD0CC70C122411EF8BEED51AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.65.192.0/18 Signature Algorithm: sha256WithRSAEncryption 41:ce:3d:bb:67:93:50:56:e2:05:c7:72:a7:84:b5:f7:be:14: d1:a2:2c:be:dd:d7:c3:79:0c:dd:cd:73:53:41:99:1a:e8:86: a7:54:ba:5d:28:e0:19:4b:6a:ad:7f:89:ca:57:e1:a0:63:8e: f0:ae:74:95:c6:3c:67:47:3f:75:49:b5:5d:63:49:8a:ff:60: d7:d7:98:ad:b2:a5:b8:79:11:48:cc:a3:82:29:ec:8b:72:07: d6:b0:8b:0e:72:f1:f6:01:00:77:b6:bb:2b:90:ee:79:a5:14: 7f:75:a6:f7:0e:9d:ca:b5:b6:33:94:58:25:22:79:9d:c0:4c: eb:a5:c2:c4:c7:c6:f7:0f:88:bc:fa:d4:5d:04:d3:90:2a:d7: 12:f1:0f:ad:ea:55:0b:0a:87:ff:9d:99:b6:53:46:fc:51:40: 36:59:98:23:7f:d7:23:6e:75:3d:b7:47:f9:d3:ca:25:ca:fe: 7e:8f:97:cd:6e:30:d4:71:14:69:90:8b:cc:ff:f6:99:38:b9: 44:1b:c2:b2:12:26:8c:52:c8:52:d2:54:42:eb:54:b9:01:51: 28:81:9b:56:40:87:da:3d:01:65:78:3a:ea:8e:e5:34:40:40: 91:25:7c:44:f6:50:ea:10:da:91:76:4d:f6:58:13:68:76:66: c2:3e:44:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjQwNTE0MTkwMzQwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzYjU4Yy1lNjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzatskhBXSirtSAeWRBgMsXTr68Nmus6lCIrmOT9BvqWtYVm4b4AAmKYPFQKQ pWzUqezbLgmv2eJzU6dtWKFB2cYZHv9nKWoI9nMPjE3t0NXWTFFfoNuSV9VnL+Yu ZS/Yd3k8wXE7IiTK6g/l2tm6144LwCf5oi2IDt5NOIWbz2MZYW4QpylnQ7zMQHVk SPZBFYLcnO8f6ggNMUIXnqXTrISTlsMEYzQWU/RKb7wqpJLrye76dikTLzZ7ekfS vp+rADd/Lgo48vZGo3rqfNr5q044ypmmn+7b9FSsgSUOZ3ALfDlMZJ2X4Q73FJiw WvWqBqJaz4z+5yCdsGm2GMrkcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLmBp/SV LUUNrhQQumSlrcKutBNMMB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhFREYvRUE2N0E5OEM3QzU3MTFFREJGMjEzNzY3QzRGOUFFMDIvQUQwQ0M3MEMx MjI0MTFFRjhCRUVENTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAaYQcAwDQYJKoZIhvcNAQELBQADggEBAEHOPbtnk1BW4gXH cqeEtfe+FNGiLL7d18N5DN3Nc1NBmRrohqdUul0o4BlLaq1/icpX4aBjjvCudJXG PGdHP3VJtV1jSYr/YNfXmK2ypbh5EUjMo4Ip7ItyB9awiw5y8fYBAHe2uyuQ7nml FH91pvcOncq1tjOUWCUieZ3ATOulwsTHxvcPiLz61F0E05Aq1xLxD63qVQsKh/+d mbZTRvxRQDZZmCN/1yNudT23R/nTyiXK/n6Pl81uMNRxFGmQi8z/9pk4uUQbwrIS JoxSyFLSVELrVLkBUSiBm1ZAh9o9AWV4OuqO5TRAQJElfET2UOoQ2pF2TfZYE2h2 ZsI+RIY= -----END CERTIFICATE-----Generated at Sat Jun 1 08:16:03 2024 by rpki-client on console-ams.rpki-client.org