$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/08FA1EC60C0911EDBDF8C44FC4F9AE02.roa File: 08FA1EC60C0911EDBDF8C44FC4F9AE02.roa (raw, json) Hash identifier: T75Xn5q38IyRZJxAou7/JQR0ilXBMCjkhF2gJFQ0K3U= Subject key identifier: BB:7C:DA:B2:86:F8:0F:6A:4B:33:61:84:7B:45:8E:0B:34:46:15:3D Certificate issuer: /CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Certificate serial: 3374 Authority key identifier: 1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/08FA1EC60C0911EDBDF8C44FC4F9AE02.roa Signing time: Mon 06 Nov 2023 15:20:50 +0000 ROA not before: Mon 06 Nov 2023 15:20:50 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 45768 IP address blocks: 27.111.64.0/21 maxlen: 24 113.29.208.0/21 maxlen: 21 180.95.0.0/24 maxlen: 24 180.95.64.0/19 maxlen: 19 180.95.96.0/20 maxlen: 20 180.95.112.0/21 maxlen: 21 202.134.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13172 (0x3374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Validity Not Before: Nov 6 15:20:50 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65490451-fe2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e6:77:20:ef:50:1c:4c:1f:25:b3:5a:98:81: a2:5b:c4:40:c5:85:e8:da:1a:66:61:a6:31:27:81: 81:0b:1e:18:36:e8:0f:20:33:80:ad:d6:b5:19:fd: 94:7f:67:75:2a:6d:fc:a3:38:ea:77:d1:a0:a9:5a: 4f:2d:40:d0:ed:4e:c9:5a:e2:56:4c:dc:07:32:7e: 0a:93:67:de:25:9f:ea:0f:0b:31:e2:2f:bd:92:98: 8f:89:60:aa:10:d3:5e:13:a5:f3:c3:b7:7a:dd:34: 8d:f0:c4:78:0e:70:9e:54:65:ae:70:88:a6:56:cb: d4:11:f6:82:9a:9f:70:84:2e:09:6c:db:e2:89:4c: ba:99:c2:68:a9:98:3b:f0:b6:53:14:d0:2d:84:e8: 1f:43:bb:f4:ff:78:8d:e5:9f:cb:8a:15:0d:f0:c4: a1:36:ee:e6:54:af:1f:89:ef:92:12:c9:90:6f:0b: 30:d6:4b:ac:5e:32:34:cb:84:1c:7a:b9:59:15:97: e4:04:3d:18:df:bf:8c:16:0e:48:e4:2b:de:4f:63: f1:4f:e3:ff:a8:db:54:0b:01:e0:60:c8:d0:81:c1: eb:67:75:a1:d2:fe:50:ab:e2:fa:c0:72:0d:d4:c4: 83:19:b5:63:d6:f6:fa:8b:d5:83:cc:0a:0c:61:a3: 22:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7C:DA:B2:86:F8:0F:6A:4B:33:61:84:7B:45:8E:0B:34:46:15:3D X509v3 Authority Key Identifier: keyid:1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/08FA1EC60C0911EDBDF8C44FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.64.0/21 113.29.208.0/21 180.95.0.0/24 180.95.64.0-180.95.119.255 202.134.51.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:b4:c8:3d:47:42:1f:23:5d:8c:a6:47:31:52:e7:38:08:e4: 7f:a0:12:39:c0:1a:a2:38:d8:5a:5e:cf:ef:4d:aa:1c:54:9a: d1:3d:8e:a3:60:d0:19:11:c5:e3:7f:a2:80:41:5a:84:ae:2f: 8b:35:c7:de:b9:f6:19:20:d5:d8:91:75:0a:64:68:af:ca:06: 3b:03:53:7b:44:d5:0f:df:50:39:b2:1b:98:6d:50:e6:9f:29: e2:3a:74:e2:7f:90:b8:2b:97:1f:70:bb:7e:d7:1e:c6:d9:2d: 35:ed:91:2e:ab:c3:19:d8:28:99:24:c7:bf:61:8d:a9:71:e2: b3:23:1b:9f:04:be:4c:b8:e3:95:17:fd:7b:41:ca:ee:26:f8: c2:66:aa:4e:fc:20:51:91:fd:fc:5a:2a:28:9f:d2:ae:ad:de: 05:6a:80:c3:9b:2d:01:52:04:35:e2:4b:ff:f4:af:d8:a4:38: 24:f3:97:a6:1a:b0:87:54:2b:1a:77:e0:a3:d4:1a:7e:f1:74: 35:46:2f:e0:03:39:75:19:36:23:2c:01:bc:4c:84:1d:48:d0: 96:ea:d9:7b:5a:f0:a5:48:b7:03:aa:11:7b:5c:d8:43:a3:f1: ea:5e:2b:ed:03:f7:88:f6:05:d3:24:77:29:d3:b6:28:45:8b: e3:49:83:2b -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICM3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDQTgxMTAvBgNVBAUTKDFFNzUyQzNEMTYwNDhDM0YzRjYzMjNEMkI5MTA3MEJG MjQ3RDY4NjYwHhcNMjMxMTA2MTUyMDUwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ5MDQ1MS1mZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+Z3IO9QHEwfJbNamIGiW8RAxYXo2hpmYaYxJ4GBCx4YNugPIDOArda1Gf2U f2d1Km38ozjqd9GgqVpPLUDQ7U7JWuJWTNwHMn4Kk2feJZ/qDwsx4i+9kpiPiWCq ENNeE6Xzw7d63TSN8MR4DnCeVGWucIimVsvUEfaCmp9whC4JbNviiUy6mcJoqZg7 8LZTFNAthOgfQ7v0/3iN5Z/LihUN8MShNu7mVK8fie+SEsmQbwsw1kusXjI0y4Qc erlZFZfkBD0Y37+MFg5I5CveT2PxT+P/qNtUCwHgYMjQgcHrZ3Wh0v5Qq+L6wHIN 1MSDGbVj1vb6i9WDzAoMYaMiMwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFLt82rKG +A9qSzNhhHtFjgs0RhU9MB8GA1UdIwQYMBaAFB51LD0WBIw/P2Mj0rkQcL8kfWhm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNBOC84NzAzMjI1ODFE OUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpEOF9ZeVBTdVJCd3Z5Ujlh R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huVXNQUllFakQ4X1l5UFN1UkJ3dnlSOWFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJDQTgvODcwMzIyNTgxRDlBMTFFMkFBODZDMjg3MDhCMDJDRDIvMDhGQTFFQzYw QzA5MTFFREJERjhDNDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAMbb0ADBANxHdADBAC0XwAwDAMEBrRfQAMEA7RfcAMEAMqG MzANBgkqhkiG9w0BAQsFAAOCAQEAL7TIPUdCHyNdjKZHMVLnOAjkf6ASOcAaojjY Wl7P702qHFSa0T2Oo2DQGRHF43+igEFahK4vizXH3rn2GSDV2JF1CmRor8oGOwNT e0TVD99QObIbmG1Q5p8p4jp04n+QuCuXH3C7ftcextktNe2RLqvDGdgomSTHv2GN qXHisyMbnwS+TLjjlRf9e0HK7ib4wmaqTvwgUZH9/FoqKJ/Srq3eBWqAw5stAVIE NeJL//Sv2KQ4JPOXphqwh1QrGnfgo9QafvF0NUYv4AM5dRk2IywBvEyEHUjQlurZ e1rwpUi3A6oRe1zYQ6Px6l4r7QP3iPYF0yR3KdO2KEWL40mDKw== -----END CERTIFICATE-----Generated at Fri May 31 16:41:45 2024 by rpki-client on console-ams.rpki-client.org