$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/5BDD3D7AB50511EE92C72A20C4F9AE02.roa File: 5BDD3D7AB50511EE92C72A20C4F9AE02.roa (raw, json) Hash identifier: NAFs9i+pAMJGOI/WdQ3A+GWtfysUnERcKpSX4hDnT2U= Subject key identifier: 21:EA:33:6F:E7:C0:2A:A7:6B:06:E0:EE:C3:18:CE:11:14:7F:13:9A Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 09DE Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/5BDD3D7AB50511EE92C72A20C4F9AE02.roa Signing time: Wed 17 Jan 2024 06:55:11 +0000 ROA not before: Wed 17 Jan 2024 06:55:11 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 272151 IP address blocks: 223.119.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 21:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2526 (0x9de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Jan 17 06:55:11 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65a779cf-1c5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:81:b6:a4:98:f2:e1:cc:34:82:68:72:b3:e9: 12:df:39:a1:12:f9:65:30:88:8a:60:90:ce:e6:93: ab:dc:12:f0:a1:db:b9:19:32:92:df:b6:36:d4:34: 1a:ba:98:72:cd:ce:7c:35:f5:d0:78:90:4b:de:09: 30:95:d4:43:9f:4b:7a:50:53:fa:f4:78:c4:2c:fd: 8f:aa:a7:15:ab:a6:74:09:f8:da:9f:52:0e:c1:74: f0:97:42:c6:98:cd:25:3e:56:89:da:f2:d6:2f:7b: c6:40:b3:d7:84:7c:cb:a1:03:1e:71:e2:1f:0a:9e: d1:31:da:18:35:a1:01:d6:a5:03:8d:9d:4b:52:da: 7e:79:c3:a1:9a:8c:e7:db:7f:76:99:08:d8:35:a3: 52:99:be:97:81:3d:9c:76:98:5f:f2:ba:ab:9a:e8: f5:d3:92:91:23:08:63:e0:48:89:b2:a1:e9:41:b4: 67:f5:8f:1c:67:3f:63:d0:4d:7f:32:af:bc:5a:01: ed:a9:39:df:4a:9f:b6:42:3a:46:4f:76:85:b6:b1: c2:65:88:a2:2f:9a:13:97:70:26:14:c6:62:93:0a: ca:41:3e:0c:c8:bf:d4:e4:7d:70:22:a9:b6:55:58: ba:9c:ba:89:f0:c3:32:7d:1d:8a:ae:2f:fd:a9:c4: 6f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:EA:33:6F:E7:C0:2A:A7:6B:06:E0:EE:C3:18:CE:11:14:7F:13:9A X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/5BDD3D7AB50511EE92C72A20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.119.251.0/24 Signature Algorithm: sha256WithRSAEncryption 76:03:6c:14:89:90:c3:5c:9f:a9:26:96:61:39:96:89:22:65: d3:e4:1c:e7:ee:5b:f6:47:b7:f3:21:c9:e9:f5:fb:48:68:a0: 45:2f:8d:b9:cd:08:1a:a5:5e:3f:cc:4b:0d:8b:12:a5:4a:0a: d8:b2:c5:bb:09:52:00:10:2a:8c:2c:10:e0:a3:3f:8b:8d:f0: 3c:a3:81:da:3f:f2:c8:3b:3d:a0:31:e0:93:af:82:84:12:f2: d9:ec:83:7f:93:dd:70:0d:39:08:ac:07:3d:14:86:75:1d:fe: f0:ac:73:cc:70:5c:65:b1:8d:c6:97:3b:ec:23:ad:56:5f:b9: 4e:89:67:1b:86:b4:34:06:62:2f:b4:d5:ff:e3:c2:63:f8:e4: 50:47:41:84:d4:45:c8:51:9b:a6:30:ae:86:fc:3d:e9:d8:3b: 7d:0b:db:c8:81:fd:44:d6:de:82:17:bb:5e:b8:fe:ea:e5:f4: c0:24:ad:09:8b:64:54:a7:fb:ed:b1:94:44:53:cf:0f:17:b1: e0:27:0e:80:04:c0:68:22:5f:bd:df:00:9e:75:a0:e4:fd:b2: be:64:84:c7:cb:5e:98:75:53:74:f1:99:e0:76:c6:74:55:e0: 20:59:58:3c:8d:6d:9b:80:41:29:de:ea:7e:15:9e:16:ed:31: 24:9f:12:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjQwMTE3MDY1NTExWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3NzljZi0xYzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmIG2pJjy4cw0gmhys+kS3zmhEvllMIiKYJDO5pOr3BLwodu5GTKS37Y21DQa uphyzc58NfXQeJBL3gkwldRDn0t6UFP69HjELP2PqqcVq6Z0Cfjan1IOwXTwl0LG mM0lPlaJ2vLWL3vGQLPXhHzLoQMeceIfCp7RMdoYNaEB1qUDjZ1LUtp+ecOhmozn 2392mQjYNaNSmb6XgT2cdphf8rqrmuj105KRIwhj4EiJsqHpQbRn9Y8cZz9j0E1/ Mq+8WgHtqTnfSp+2QjpGT3aFtrHCZYiiL5oTl3AmFMZikwrKQT4MyL/U5H1wIqm2 VVi6nLqJ8MMyfR2Kri/9qcRvJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCHqM2/n wCqnawbg7sMYzhEUfxOaMB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvNUJERDNEN0FC NTA1MTFFRTkyQzcyQTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADfd/swDQYJKoZIhvcNAQELBQADggEBAHYDbBSJkMNcn6km lmE5lokiZdPkHOfuW/ZHt/Mhyen1+0hooEUvjbnNCBqlXj/MSw2LEqVKCtiyxbsJ UgAQKowsEOCjP4uN8Dyjgdo/8sg7PaAx4JOvgoQS8tnsg3+T3XANOQisBz0UhnUd /vCsc8xwXGWxjcaXO+wjrVZfuU6JZxuGtDQGYi+01f/jwmP45FBHQYTURchRm6Yw rob8PenYO30L28iB/UTW3oIXu164/url9MAkrQmLZFSn++2xlERTzw8XseAnDoAE wGgiX73fAJ51oOT9sr5khMfLXph1U3TxmeB2xnRV4CBZWDyNbZuAQSne6n4Vnhbt MSSfEt0= -----END CERTIFICATE-----Generated at Fri Jun 7 00:12:19 2024 by rpki-client on console-ams.rpki-client.org