$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/67CB8C7287E711EEAC6C0B48C4F9AE02.roa File: 67CB8C7287E711EEAC6C0B48C4F9AE02.roa (raw, json) Hash identifier: Ja7H6lUYEZzWWxdhPag7anFzIpbPVIzCTyw27glKttQ= Subject key identifier: B2:7F:93:88:D4:56:B5:0D:AF:C1:41:D1:43:52:62:D3:F5:22:4F:38 Certificate issuer: /CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Certificate serial: 03 Authority key identifier: 3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/67CB8C7287E711EEAC6C0B48C4F9AE02.roa Signing time: Mon 20 Nov 2023 20:57:24 +0000 ROA not before: Mon 20 Nov 2023 20:57:24 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 4768 IP address blocks: 156.69.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Validity Not Before: Nov 20 20:57:24 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=655bc834-8045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f7:82:e6:25:f2:02:61:51:7b:8d:ed:00:f7: 28:be:41:b3:43:4c:34:13:3a:0a:8c:5e:82:53:a3: 70:1c:a0:12:99:41:22:6a:29:ce:94:d4:03:7d:de: 61:4b:05:db:19:d3:32:35:46:d4:91:fb:68:0f:4e: a1:b1:81:62:53:b8:9a:99:44:3d:d9:47:83:be:3b: 38:d3:f3:10:ea:1f:e3:44:d9:c2:08:12:c3:32:16: da:5f:a1:63:c1:3d:40:e9:ee:dd:de:37:33:ba:92: 24:c2:3c:07:7e:dc:b7:ae:7f:09:ef:19:cf:0b:a3: 45:9a:41:ad:92:de:c5:cd:55:66:a6:21:58:70:a6: 64:eb:b0:1a:64:a6:fc:c2:40:75:84:f1:e2:87:9e: 99:fb:2d:f7:1b:6e:f3:47:bb:8e:88:ad:e0:f6:f5: 8f:29:90:f3:fb:74:cf:6e:44:d5:7a:35:d1:80:c1: 1d:b0:39:47:5a:a8:a4:d7:87:6f:b1:18:51:3b:2a: 4e:c1:9c:1c:5d:d0:8d:85:c1:c1:c3:b6:e7:91:14: a8:f2:b6:ac:79:97:7a:68:3e:91:ba:20:63:fe:6b: 40:49:43:ff:4c:1f:0a:d6:37:2f:4f:6d:84:1d:e0: 9c:34:2a:33:8a:c8:da:4c:94:6f:67:8a:ca:24:c0: db:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:7F:93:88:D4:56:B5:0D:AF:C1:41:D1:43:52:62:D3:F5:22:4F:38 X509v3 Authority Key Identifier: keyid:3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/67CB8C7287E711EEAC6C0B48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.69.30.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:ac:0e:da:53:60:0c:99:2e:13:5c:ba:61:9b:ac:6b:8f:c9: 4b:b6:ad:ad:1a:c2:c8:00:21:99:4f:d4:a0:68:ad:ce:85:d1: d7:52:14:5b:15:15:9f:ed:4a:bd:5e:52:03:20:f3:c7:55:b2: 21:34:b3:69:40:97:7d:fa:ce:31:9c:2a:d7:68:35:c5:54:47: ec:eb:e0:b2:73:c0:6c:69:08:56:c5:f2:f1:72:9d:ba:9c:e4: 40:55:fe:9d:d7:02:0d:a1:a8:ba:4e:a3:54:b6:8e:7d:db:74: 33:c7:0f:23:a5:ef:3d:e5:56:4d:2c:95:1a:85:27:ce:ee:4d: 42:7b:37:cf:4e:be:80:7d:0a:2d:26:1c:d6:9e:30:c3:ee:bc: 97:89:45:e9:60:86:19:13:72:31:7f:19:13:06:57:5d:a4:fa: 92:6e:9c:53:8c:ab:40:22:e2:29:d9:b6:41:46:6e:f5:9e:bd: e2:1b:31:3d:33:4a:bd:44:0c:f8:7f:1d:ab:70:16:0c:8d:6e: 4c:00:3b:38:60:4d:92:e5:bd:38:ee:4c:27:1c:f4:76:fc:74: aa:1c:3c:e6:2a:86:81:fd:a5:f5:75:ab:86:7f:25:f9:b8:d8: 04:ba:12:0f:75:89:b9:91:df:ab:4b:cc:07:1a:f3:d5:43:dd: 6c:d3:dc:14 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzE4QTExMC8GA1UEBRMoM0ExNTQzQkRGMzc3MkE5OEQyOTRFQjkwMDIzODAzRERE REYxMUU2MjAeFw0yMzExMjAyMDU3MjRaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NWJjODM0LTgwNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC494LmJfICYVF7je0A9yi+QbNDTDQTOgqMXoJTo3AcoBKZQSJqKc6U1AN93mFL BdsZ0zI1RtSR+2gPTqGxgWJTuJqZRD3ZR4O+OzjT8xDqH+NE2cIIEsMyFtpfoWPB PUDp7t3eNzO6kiTCPAd+3LeufwnvGc8Lo0WaQa2S3sXNVWamIVhwpmTrsBpkpvzC QHWE8eKHnpn7LfcbbvNHu46IreD29Y8pkPP7dM9uRNV6NdGAwR2wOUdaqKTXh2+x GFE7Kk7BnBxd0I2FwcHDtueRFKjytqx5l3poPpG6IGP+a0BJQ/9MHwrWNy9PbYQd 4Jw0KjOKyNpMlG9nisokwNvLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsn+TiNRW tQ2vwUHRQ1Ji0/UiTzgwHwYDVR0jBBgwFoAUOhVDvfN3KpjSlOuQAjgD3d3xHmIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMThBL0VDRkYyQUY4ODdF NjExRUU5N0U2Qzc0NkM0RjlBRTAyL09oVkR2Zk4zS3BqU2xPdVFBamdEM2QzeEht SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT2hWRHZmTjNLcGpTbE91UUFqZ0QzZDN4SG1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9FQ0ZGMkFGODg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi82N0NCOEM3Mjg3 RTcxMUVFQUM2QzBCNDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJxFHjANBgkqhkiG9w0BAQsFAAOCAQEAP6wO2lNgDJkuE1y6 YZusa4/JS7atrRrCyAAhmU/UoGitzoXR11IUWxUVn+1KvV5SAyDzx1WyITSzaUCX ffrOMZwq12g1xVRH7OvgsnPAbGkIVsXy8XKdupzkQFX+ndcCDaGouk6jVLaOfdt0 M8cPI6XvPeVWTSyVGoUnzu5NQns3z06+gH0KLSYc1p4ww+68l4lF6WCGGRNyMX8Z EwZXXaT6km6cU4yrQCLiKdm2QUZu9Z694hsxPTNKvUQM+H8dq3AWDI1uTAA7OGBN kuW9OO5MJxz0dvx0qhw85iqGgf2l9XWrhn8l+bjYBLoSD3WJuZHfq0vMBxrz1UPd bNPcFA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:33 2024 by rpki-client on console-ams.rpki-client.org