$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/129A21B0DC1611ECAACFC563C4F9AE02.roa File: 129A21B0DC1611ECAACFC563C4F9AE02.roa (raw, json) Hash identifier: H0Q58/6aEjN02oH2/K/GLgrcdpFYcTnspr283ZJFLtE= Subject key identifier: 35:EC:14:D8:A7:57:FE:E4:D5:91:06:09:C5:FA:70:4E:36:8A:57:AD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 0246 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/129A21B0DC1611ECAACFC563C4F9AE02.roa Signing time: Wed 05 Jun 2024 04:31:42 +0000 ROA not before: Wed 05 Jun 2024 04:31:42 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 7545 IP address blocks: 192.188.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 04:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Jun 5 04:31:42 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665fea2e-64c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:47:75:ca:15:8b:e2:a2:c0:bc:3e:6b:48:f3: f8:5c:bb:26:91:05:68:76:6e:0d:cd:05:a0:5e:7d: 03:92:cf:ab:c2:92:c1:e9:f1:f2:43:22:d8:8f:5c: 9e:a8:10:15:0b:11:6e:bb:20:43:c6:14:8e:bc:69: 3f:7b:4e:d8:97:8e:06:54:94:9f:90:50:17:58:d7: 78:fc:67:50:f1:fc:ae:02:61:c7:17:72:21:85:29: 94:e9:15:3d:3b:7a:16:04:fe:be:d0:2a:36:db:22: 9f:75:77:90:9c:75:2c:28:18:64:52:97:74:11:8c: 2c:80:a7:aa:88:04:da:16:72:fb:4b:ec:2b:a7:ae: 47:77:56:95:cf:05:da:6a:50:eb:9b:d3:2a:72:e1: fc:fe:e9:95:9d:7b:a3:87:1e:92:3d:a2:56:aa:24: 36:e6:96:2d:3e:17:a3:04:36:23:3d:d5:6f:41:11: bc:10:74:03:1f:78:1b:85:12:41:0f:14:e3:69:e8: 75:1a:78:82:5c:de:4d:c0:2e:2d:94:5f:12:97:cd: 10:01:9d:93:96:23:3d:9d:53:aa:27:be:05:ea:29: ed:8c:a2:6c:ee:aa:f8:19:4e:a3:b0:5b:8b:6d:d5: f3:a8:ee:4f:9f:bb:8e:4c:8a:6e:9b:38:3e:60:f6: 10:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:EC:14:D8:A7:57:FE:E4:D5:91:06:09:C5:FA:70:4E:36:8A:57:AD X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/129A21B0DC1611ECAACFC563C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.188.107.0/24 Signature Algorithm: sha256WithRSAEncryption c8:36:07:40:56:44:22:2d:c6:a6:27:21:3a:01:51:6d:86:49: 2d:04:c8:81:43:0e:1a:7d:88:a3:06:21:63:36:12:67:cc:5e: ac:54:36:ad:31:0e:c3:95:da:b1:26:01:13:d7:51:87:e2:5c: b3:84:ba:cb:2b:ae:97:31:32:0c:42:a3:f3:ab:8d:eb:a1:c4: 1e:f2:7c:41:ef:2b:c6:5b:6e:ca:6f:96:6b:96:0b:9e:d6:93: 9d:d8:6a:6c:cf:ff:b6:b6:58:74:e4:87:37:f6:be:f8:a7:b9: 9b:10:2b:a6:8a:cf:b1:4c:98:9d:a4:3e:2e:b6:4c:f1:05:17: 7f:ce:3c:aa:e2:65:32:40:94:a7:a0:83:6a:2e:41:b6:4e:7c: 6b:b4:39:6d:39:be:21:07:c5:51:d9:0a:21:58:03:44:44:d1: 13:85:3b:da:ea:27:26:f0:09:88:45:94:50:04:42:47:db:53: 30:cd:62:de:cf:c4:7f:0c:5c:fc:31:08:fb:7f:44:8b:2a:7b: b5:c0:57:56:e4:a9:a6:e8:d2:e5:fe:c3:a1:85:98:c1:74:09: 84:01:e7:ee:5b:69:de:bd:26:5f:c1:f6:95:49:e8:0d:2a:23: b8:61:52:1b:48:7e:5c:0c:b0:0e:72:cb:57:67:95:32:49:0f: 2b:ee:01:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjQwNjA1MDQzMTQyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmZWEyZS02NGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUd1yhWL4qLAvD5rSPP4XLsmkQVodm4NzQWgXn0Dks+rwpLB6fHyQyLYj1ye qBAVCxFuuyBDxhSOvGk/e07Yl44GVJSfkFAXWNd4/GdQ8fyuAmHHF3IhhSmU6RU9 O3oWBP6+0Co22yKfdXeQnHUsKBhkUpd0EYwsgKeqiATaFnL7S+wrp65Hd1aVzwXa alDrm9MqcuH8/umVnXujhx6SPaJWqiQ25pYtPhejBDYjPdVvQRG8EHQDH3gbhRJB DxTjaeh1GniCXN5NwC4tlF8Sl80QAZ2TliM9nVOqJ74F6intjKJs7qr4GU6jsFuL bdXzqO5Pn7uOTIpumzg+YPYQFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDXsFNin V/7k1ZEGCcX6cE42iletMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTkxQkMvQTRFNjczQ0FEQkU5MTFFQzk1MTEwNTE1QzRGOUFFMDIvMTI5QTIxQjBE QzE2MTFFQ0FBQ0ZDNTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAvGswDQYJKoZIhvcNAQELBQADggEBAMg2B0BWRCItxqYn IToBUW2GSS0EyIFDDhp9iKMGIWM2EmfMXqxUNq0xDsOV2rEmARPXUYfiXLOEussr rpcxMgxCo/OrjeuhxB7yfEHvK8ZbbspvlmuWC57Wk53YamzP/7a2WHTkhzf2vvin uZsQK6aKz7FMmJ2kPi62TPEFF3/OPKriZTJAlKegg2ouQbZOfGu0OW05viEHxVHZ CiFYA0RE0ROFO9rqJybwCYhFlFAEQkfbUzDNYt7PxH8MXPwxCPt/RIsqe7XAV1bk qabo0uX+w6GFmMF0CYQB5+5bad69Jl/B9pVJ6A0qI7hhUhtIflwMsA5yy1dnlTJJ DyvuAVo= -----END CERTIFICATE-----Generated at Fri Jun 7 06:10:06 2024 by rpki-client on console-ams.rpki-client.org