$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/829DF1C85EA811EAA1DC5284C4F9AE02.roa File: 829DF1C85EA811EAA1DC5284C4F9AE02.roa (raw, json) Hash identifier: n/6JXGW2LGiVtVdZfeb8YYT96ymmzFPMsDEDo1BegtM= Subject key identifier: 8D:AB:FD:CE:2C:DF:DD:42:BF:90:E8:22:6D:DA:8B:E9:BE:3F:E5:A0 Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 09B1 Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/829DF1C85EA811EAA1DC5284C4F9AE02.roa Signing time: Thu 02 Nov 2023 20:48:04 +0000 ROA not before: Thu 02 Nov 2023 20:48:04 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 139619 IP address blocks: 223.119.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 21:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2481 (0x9b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Nov 2 20:48:04 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65440b04-66e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b3:f2:70:a9:ad:03:41:3b:80:b0:d2:22:82: 9f:23:25:46:da:40:d5:19:fe:d9:3b:19:80:9c:c6: 73:cb:0d:d3:bd:5d:4e:b8:cd:f3:87:a1:df:3c:db: 6f:24:22:3c:89:0e:dd:75:4d:f8:b3:36:9b:6f:e0: 8e:0b:05:51:c5:63:8a:16:f7:aa:e4:84:91:97:af: 01:36:45:29:f5:66:98:22:a2:9e:93:f0:85:9d:f6: 56:0c:cb:26:b4:dc:82:b8:99:c5:96:da:be:f4:f1: 5f:b8:c0:de:9b:13:2f:41:df:15:97:6d:f1:5e:56: 14:ed:3c:c1:6a:80:83:62:91:47:77:99:3b:14:a6: 44:1f:dd:4a:e8:48:e5:a7:f2:a5:bf:cd:8f:b5:82: 1f:0d:e1:0e:b1:b1:89:c8:45:ba:8c:b1:e6:ea:d2: 80:fe:de:b5:17:71:b8:5a:63:26:ef:87:40:23:e0: 17:01:6c:28:b4:f7:26:b6:ba:54:ff:f9:4d:3c:4c: b9:64:4f:99:7a:35:51:e3:3a:6c:40:9b:37:0c:43: d1:e9:a1:35:fc:cc:f6:53:80:03:36:82:19:db:e9: 54:b0:3d:7d:f7:1c:de:98:6b:db:14:d1:73:91:fa: 45:3a:59:80:fb:13:3d:0d:fe:18:3a:a1:5d:79:7e: 1b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:AB:FD:CE:2C:DF:DD:42:BF:90:E8:22:6D:DA:8B:E9:BE:3F:E5:A0 X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/829DF1C85EA811EAA1DC5284C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.119.255.0/24 Signature Algorithm: sha256WithRSAEncryption 18:e1:6e:fd:89:c3:1d:eb:99:c7:19:43:16:a0:53:5b:a3:e7: 4f:cb:90:29:52:72:70:7d:17:aa:dd:21:91:51:7b:24:e5:c7: 66:8c:84:e5:af:15:aa:1d:af:43:e2:bd:0a:61:1f:9e:7b:73: 87:76:7a:e5:29:ba:61:be:d4:63:f0:3f:eb:af:9c:f5:f1:4d: 2c:7d:7b:a3:19:a2:12:88:f4:ce:b5:c9:fc:ff:c7:13:8a:c9: 4e:74:8d:48:a2:a4:6c:32:ad:2d:e8:86:62:3d:51:66:31:32: 6b:6e:c1:65:d7:1c:59:de:86:25:e4:fd:ae:e5:2e:86:59:10: 58:d6:79:ea:10:f3:bf:74:ec:30:ca:27:b1:47:27:a8:e9:ee: c0:ef:ef:29:f2:16:08:b8:bb:95:a0:1e:cb:b9:47:ba:4d:c7: e0:af:82:37:bf:17:4b:48:22:45:78:42:d0:8f:2c:37:cd:cd: 93:7c:09:b2:55:8e:1f:9f:49:22:3c:0c:be:77:10:90:12:e6: a7:24:67:51:3c:f5:d8:ec:49:24:32:26:f0:5c:8e:bf:ff:2d: 30:2e:f1:0d:b9:38:72:e0:33:21:61:3f:9c:4e:3b:c5:dc:0e: 5b:c2:5b:f8:b3:b7:0b:45:21:b6:d0:d4:93:d4:e3:58:51:dd: 7c:a9:99:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjMxMTAyMjA0ODA0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MGIwNC02NmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrPycKmtA0E7gLDSIoKfIyVG2kDVGf7ZOxmAnMZzyw3TvV1OuM3zh6HfPNtv JCI8iQ7ddU34szabb+COCwVRxWOKFveq5ISRl68BNkUp9WaYIqKek/CFnfZWDMsm tNyCuJnFltq+9PFfuMDemxMvQd8Vl23xXlYU7TzBaoCDYpFHd5k7FKZEH91K6Ejl p/Klv82PtYIfDeEOsbGJyEW6jLHm6tKA/t61F3G4WmMm74dAI+AXAWwotPcmtrpU //lNPEy5ZE+ZejVR4zpsQJs3DEPR6aE1/Mz2U4ADNoIZ2+lUsD199xzemGvbFNFz kfpFOlmA+xM9Df4YOqFdeX4biwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI2r/c4s 391Cv5DoIm3ai+m+P+WgMB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvODI5REYxQzg1 RUE4MTFFQUExREM1Mjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADfd/8wDQYJKoZIhvcNAQELBQADggEBABjhbv2Jwx3rmccZ QxagU1uj50/LkClScnB9F6rdIZFReyTlx2aMhOWvFaodr0PivQphH557c4d2euUp umG+1GPwP+uvnPXxTSx9e6MZohKI9M61yfz/xxOKyU50jUiipGwyrS3ohmI9UWYx MmtuwWXXHFnehiXk/a7lLoZZEFjWeeoQ87907DDKJ7FHJ6jp7sDv7ynyFgi4u5Wg Hsu5R7pNx+Cvgje/F0tIIkV4QtCPLDfNzZN8CbJVjh+fSSI8DL53EJAS5qckZ1E8 9djsSSQyJvBcjr//LTAu8Q25OHLgMyFhP5xOO8XcDlvCW/iztwtFIbbQ1JPU41hR 3Xypmd8= -----END CERTIFICATE-----Generated at Fri Jun 7 00:12:19 2024 by rpki-client on console-ams.rpki-client.org