$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/AE21A9C6818911EA81577016C4F9AE02.roa File: AE21A9C6818911EA81577016C4F9AE02.roa (raw, json) Hash identifier: DNT/34XAbGmFn+OFYFCM+fQUbu9lF38oPOg62WMGaks= Subject key identifier: 08:A7:33:91:DB:5C:E6:E8:35:AA:A5:05:06:85:DC:6E:76:93:92:92 Certificate issuer: /CN=A91D1691/serialNumber=D1479EF60341E39ECA172E4376443A471975CBEF Certificate serial: 1733 Authority key identifier: D1:47:9E:F6:03:41:E3:9E:CA:17:2E:43:76:44:3A:47:19:75:CB:EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/AE21A9C6818911EA81577016C4F9AE02.roa Signing time: Wed 02 Aug 2023 16:12:42 +0000 ROA not before: Wed 02 Aug 2023 16:12:42 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45352 IP address blocks: 162.253.16.0/22 maxlen: 22 162.253.16.0/24 maxlen: 24 162.253.17.0/24 maxlen: 24 162.253.18.0/24 maxlen: 24 162.253.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.crl rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 15:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5939 (0x1733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691/serialNumber=D1479EF60341E39ECA172E4376443A471975CBEF Validity Not Before: Aug 2 16:12:42 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ca807a-997b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:c3:4d:a0:7e:ad:ae:5e:ce:77:21:15:ec: 63:0b:94:47:c1:72:18:b1:64:d6:c0:a8:bc:e3:22: fa:2d:3f:3a:67:51:04:52:3b:65:47:16:9c:2b:35: c5:e9:13:92:96:ca:fc:eb:16:6d:3f:cc:e3:69:57: 63:5f:56:f9:a9:c5:23:4a:f1:ae:30:49:28:ac:ec: ae:eb:cb:a8:5a:fa:67:46:c2:b7:9a:93:ef:8e:fc: 3d:a3:6d:f8:3f:11:7a:95:1b:fb:18:ff:a0:d8:dd: 5b:f1:11:e5:04:f5:de:38:79:d0:eb:62:d9:dd:3e: 4c:40:1a:de:10:bb:ca:5f:c0:a9:d3:ad:b7:5d:5f: d6:46:2b:3b:b1:04:7f:74:b5:72:5d:97:d2:42:70: fa:3f:73:e0:09:2e:e2:23:0e:5b:8e:bd:c7:3b:1a: ea:66:1a:0b:ad:76:51:dc:6c:0d:1e:91:92:3a:98: f8:0a:e7:18:a0:e8:9e:83:cc:67:02:e8:40:23:f2: 4c:01:6e:99:1c:b1:a6:93:f8:f9:31:e4:12:4e:f2: a9:90:b6:a2:93:8d:ae:b1:69:1e:19:10:20:cf:ac: a9:b9:cb:8d:26:c0:ef:1d:1c:b2:1a:71:7c:f0:02: ff:9d:7e:fe:4e:94:ad:44:30:0c:61:f1:08:9d:be: c5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A7:33:91:DB:5C:E6:E8:35:AA:A5:05:06:85:DC:6E:76:93:92:92 X509v3 Authority Key Identifier: keyid:D1:47:9E:F6:03:41:E3:9E:CA:17:2E:43:76:44:3A:47:19:75:CB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/AE21A9C6818911EA81577016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 162.253.16.0/22 Signature Algorithm: sha256WithRSAEncryption e3:76:aa:4c:c7:ce:cb:ef:87:06:a4:fb:1e:1f:f2:17:3b:6f: 8a:00:1a:3b:38:d3:0e:bb:12:14:1b:13:aa:fe:bb:20:09:c8: b1:ca:a9:a8:b0:d8:2b:95:fa:c9:cc:0b:a5:7e:4d:62:08:f2: 50:74:04:85:d3:cb:20:2e:d7:e1:c9:ad:5b:40:15:87:89:bf: 1a:5f:ae:ee:ae:5a:d5:6a:f6:a2:4e:e7:78:46:e6:dd:d7:47: a5:05:3e:59:da:4b:78:cd:a4:62:c2:57:d1:09:ea:48:6f:47: 23:7e:af:31:94:04:ab:38:9b:2f:ac:01:1a:e4:ab:9a:3f:6e: 80:4e:56:1e:15:ce:00:39:bd:9d:67:a5:83:5a:a0:1f:9d:44: 54:cb:c7:71:39:99:28:46:f7:3e:3b:23:f9:8e:79:47:21:85: c7:c3:d3:79:1c:5e:df:46:32:f8:39:0c:d0:21:2d:b3:73:dd: 78:32:3c:38:19:9e:77:b6:6f:fd:4a:18:a4:71:b3:f8:1a:5a: 3b:54:c7:75:51:e4:9a:38:91:9c:14:1e:5d:4d:3d:aa:ca:7d: 50:af:3d:66:1a:2d:32:bf:4c:8f:5c:64:65:24:b1:c0:50:18: 01:fe:8b:1b:29:9e:49:8c:d8:86:5e:7c:02:55:52:18:b2:0f: 2f:fc:21:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKEQxNDc5RUY2MDM0MUUzOUVDQTE3MkU0Mzc2NDQzQTQ3 MTk3NUNCRUYwHhcNMjMwODAyMTYxMjQyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhODA3YS05OTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyePDTaB+ra5eznchFexjC5RHwXIYsWTWwKi84yL6LT86Z1EEUjtlRxacKzXF 6ROSlsr86xZtP8zjaVdjX1b5qcUjSvGuMEkorOyu68uoWvpnRsK3mpPvjvw9o234 PxF6lRv7GP+g2N1b8RHlBPXeOHnQ62LZ3T5MQBreELvKX8Cp0623XV/WRis7sQR/ dLVyXZfSQnD6P3PgCS7iIw5bjr3HOxrqZhoLrXZR3GwNHpGSOpj4CucYoOieg8xn AuhAI/JMAW6ZHLGmk/j5MeQSTvKpkLaik42usWkeGRAgz6ypucuNJsDvHRyyGnF8 8AL/nX7+TpStRDAMYfEInb7FqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAinM5Hb XOboNaqlBQaF3G52k5KSMB8GA1UdIwQYMBaAFNFHnvYDQeOeyhcuQ3ZEOkcZdcvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS80ODJCQTE3MjlE MjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8wVWVlOWdOQjQ1N0tGeTVEZGtRNlJ4bDF5 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBVZWU5Z05CNDU3S0Z5NURka1E2UnhsMXktOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2OTEvNDgyQkExNzI5RDI0MTFFNzg2MUEyMjZCQzRGOUFFMDIvQUUyMUE5QzY4 MTg5MTFFQTgxNTc3MDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKi/RAwDQYJKoZIhvcNAQELBQADggEBAON2qkzHzsvvhwak +x4f8hc7b4oAGjs40w67EhQbE6r+uyAJyLHKqaiw2CuV+snMC6V+TWII8lB0BIXT yyAu1+HJrVtAFYeJvxpfru6uWtVq9qJO53hG5t3XR6UFPlnaS3jNpGLCV9EJ6khv RyN+rzGUBKs4my+sARrkq5o/boBOVh4VzgA5vZ1npYNaoB+dRFTLx3E5mShG9z47 I/mOeUchhcfD03kcXt9GMvg5DNAhLbNz3XgyPDgZnne2b/1KGKRxs/gaWjtUx3VR 5Jo4kZwUHl1NParKfVCvPWYaLTK/TI9cZGUkscBQGAH+ixspnkmM2IZefAJVUhiy Dy/8IQQ= -----END CERTIFICATE-----Generated at Mon Jun 24 17:45:54 2024 by rpki-client on console-ams.rpki-client.org