$ rpki-client -vvf rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/40838EC01EDA11ED90A3A71FC4F9AE02.roa File: 40838EC01EDA11ED90A3A71FC4F9AE02.roa (raw, json) Hash identifier: cO8jFcBIw78UFhLzmH1tbggMtAXv+rY30GeLNAx0yfk= Subject key identifier: 51:0B:92:09:27:12:B7:50:D9:26:BB:7C:C7:EC:D3:EA:A3:FB:7F:E4 Certificate issuer: /CN=A91F33A5/serialNumber=C4F638C09E372046C01DF4604C281164F6AC1622 Certificate serial: 01EF Authority key identifier: C4:F6:38:C0:9E:37:20:46:C0:1D:F4:60:4C:28:11:64:F6:AC:16:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/40838EC01EDA11ED90A3A71FC4F9AE02.roa Signing time: Fri 29 Sep 2023 02:44:33 +0000 ROA not before: Fri 29 Sep 2023 02:44:33 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134111 IP address blocks: 202.8.32.0/21 maxlen: 24 202.9.8.0/22 maxlen: 24 202.9.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.crl rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F33A5/serialNumber=C4F638C09E372046C01DF4604C281164F6AC1622 Validity Not Before: Sep 29 02:44:33 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65163a11-fa9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1f:db:16:ca:14:de:4d:3e:26:1c:d1:9b:07: 7a:58:fc:52:96:04:f5:a5:8b:92:fd:73:1d:fc:d5: 61:16:24:20:b4:c7:55:8f:d0:9e:e1:4f:b5:e2:f9: 81:31:e7:89:6f:52:5a:3a:7f:5c:37:7f:8c:f9:a2: 75:1a:86:43:88:9c:2d:53:b6:8b:cc:6e:ac:6c:a1: 1f:07:86:86:44:a2:6d:dd:8e:94:48:0e:1b:86:e9: 92:b2:8f:97:2e:db:71:c1:aa:85:1b:ef:81:ea:e7: 1a:a6:db:1f:11:54:82:da:fd:86:45:e9:1e:11:41: d3:97:db:78:1a:d7:d8:5a:b1:3d:cb:fb:17:cc:c5: 45:d9:c0:4d:e0:17:09:07:0d:79:0f:70:82:0a:56: 36:be:65:58:87:08:26:5f:98:c7:55:1e:82:fb:e6: ea:61:84:e8:d7:0e:d1:37:b4:1c:3b:67:44:14:d8: b0:cb:a4:68:ee:11:5a:03:bf:16:48:58:57:79:cd: 65:5f:b2:8b:1f:70:63:a7:30:e4:ca:41:dd:de:26: 92:22:88:ca:d4:d6:ab:56:73:5b:39:5d:7a:60:4e: 24:19:36:89:f1:1e:27:c1:ac:f3:01:86:64:3e:46: ad:3a:22:06:e3:de:d3:9d:89:73:d1:06:99:91:78: 64:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:0B:92:09:27:12:B7:50:D9:26:BB:7C:C7:EC:D3:EA:A3:FB:7F:E4 X509v3 Authority Key Identifier: keyid:C4:F6:38:C0:9E:37:20:46:C0:1D:F4:60:4C:28:11:64:F6:AC:16:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/40838EC01EDA11ED90A3A71FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.8.32.0/21 202.9.8.0-202.9.13.255 Signature Algorithm: sha256WithRSAEncryption 1b:9d:ce:df:ee:55:20:34:1c:af:9e:cc:9a:cf:18:c5:b8:4b: 59:a1:02:ff:62:25:d4:e3:1f:88:d0:2f:c1:e7:3b:c9:5b:7c: 2f:0a:8c:fe:ca:ab:26:c4:d6:dd:cc:52:e7:f4:78:18:3c:29: 1c:0d:73:02:87:ce:11:a6:e7:2a:1f:c0:50:07:ad:3a:42:d4: 7d:97:f9:d6:b5:20:a9:60:d7:e3:8c:43:3a:4c:64:7b:b4:b5: 12:eb:0a:06:12:7a:c9:a1:86:87:d3:50:0b:4c:5f:00:8e:c2: ad:8a:bc:5a:ce:24:6b:4a:4c:c6:8d:b0:1e:c9:be:82:4d:0c: 36:37:f8:ca:55:2e:68:2f:55:ad:3b:be:b8:27:ab:2f:11:e9: 10:be:29:62:24:8e:ce:a3:40:fd:6c:d7:e2:f2:35:00:df:51: 54:99:e4:b8:e5:fb:c2:58:97:ef:d6:53:c5:45:ff:9d:76:5c: 5a:31:c3:86:fe:fe:f6:74:4b:9d:4b:46:40:81:b9:8d:e3:87: 1b:0a:b8:6d:9c:7f:88:96:5c:87:22:91:18:9d:2d:99:82:b9: 5c:fe:9b:92:3f:79:56:28:88:87:3b:de:96:92:e3:75:a1:a8: cb:f9:9e:03:df:b3:e0:85:43:7d:90:02:55:01:d3:69:12:a0: 54:83:8d:33 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMzQTUxMTAvBgNVBAUTKEM0RjYzOEMwOUUzNzIwNDZDMDFERjQ2MDRDMjgxMTY0 RjZBQzE2MjIwHhcNMjMwOTI5MDI0NDMzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE2M2ExMS1mYTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4h/bFsoU3k0+JhzRmwd6WPxSlgT1pYuS/XMd/NVhFiQgtMdVj9Ce4U+14vmB MeeJb1JaOn9cN3+M+aJ1GoZDiJwtU7aLzG6sbKEfB4aGRKJt3Y6USA4bhumSso+X LttxwaqFG++B6ucaptsfEVSC2v2GRekeEUHTl9t4GtfYWrE9y/sXzMVF2cBN4BcJ Bw15D3CCClY2vmVYhwgmX5jHVR6C++bqYYTo1w7RN7QcO2dEFNiwy6Ro7hFaA78W SFhXec1lX7KLH3BjpzDkykHd3iaSIojK1NarVnNbOV16YE4kGTaJ8R4nwazzAYZk PkatOiIG497TnYlz0QaZkXhkVwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFFELkgkn ErdQ2Sa7fMfs0+qj+3/kMB8GA1UdIwQYMBaAFMT2OMCeNyBGwB30YEwoEWT2rBYi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzNBNS8xQzBFNzA2QUQ0 RDgxMUVDQTQyNDVGMTBDNEY5QUUwMi94UFk0d0o0M0lFYkFIZlJnVENnUlpQYXNG aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQWTR3SjQzSUViQUhmUmdUQ2dSWlBhc0ZpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMzQTUvMUMwRTcwNkFENEQ4MTFFQ0E0MjQ1RjEwQzRGOUFFMDIvNDA4MzhFQzAx RURBMTFFRDkwQTNBNzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAPKCCAwDAMEA8oJCAMEAcoJDDANBgkqhkiG9w0BAQsFAAOC AQEAG53O3+5VIDQcr57Mms8YxbhLWaEC/2Il1OMfiNAvwec7yVt8LwqM/sqrJsTW 3cxS5/R4GDwpHA1zAofOEabnKh/AUAetOkLUfZf51rUgqWDX44xDOkxke7S1EusK BhJ6yaGGh9NQC0xfAI7CrYq8Ws4ka0pMxo2wHsm+gk0MNjf4ylUuaC9VrTu+uCer LxHpEL4pYiSOzqNA/WzX4vI1AN9RVJnkuOX7wliX79ZTxUX/nXZcWjHDhv7+9nRL nUtGQIG5jeOHGwq4bZx/iJZchyKRGJ0tmYK5XP6bkj95ViiIhzvelpLjdaGoy/me A9+z4IVDfZACVQHTaRKgVIONMw== -----END CERTIFICATE-----Generated at Sat Jun 15 05:09:25 2024 by rpki-client on console-ams.rpki-client.org