$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa File: A23D5DE87A6911EA930EB439C4F9AE02.roa (raw, json) Hash identifier: kNKsyq1i1C6Xbz1o1/LD4SNgAN2MFmbW7qA4JteOOlY= Subject key identifier: 2B:28:BF:77:EE:03:0C:2F:03:EC:05:DA:00:F4:EA:00:7A:48:45:B2 Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 088A Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa Signing time: Tue 20 Jun 2023 21:32:39 +0000 ROA not before: Tue 20 Jun 2023 21:32:39 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 134201 IP address blocks: 45.118.60.0/22 maxlen: 24 103.58.92.0/22 maxlen: 24 2402:6480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Jun 20 21:32:39 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64921af7-e5f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b0:fd:3e:65:7f:f4:d8:d5:83:b2:aa:27:08: 42:33:73:fd:ca:d8:69:0c:e2:c4:b3:db:35:b4:86: fb:1e:37:1e:5d:2e:b6:05:e4:87:87:8f:13:ca:6b: 94:6f:f5:16:74:ca:e3:d7:86:9b:70:d7:de:4b:f2: 3d:3e:c4:73:e1:ec:1b:80:32:7e:a2:c8:58:d4:77: 63:82:15:7b:b3:aa:bb:92:8b:9d:1c:bb:58:19:fe: 64:7e:cb:a2:ea:a3:2f:39:e4:a4:ed:56:60:e4:76: fe:92:46:18:6f:5a:b7:4d:26:1e:fa:6c:3f:06:a8: d4:71:b6:c2:01:92:a5:8e:42:ac:68:de:11:3d:4f: e9:b9:6a:42:06:8f:bc:7a:8e:99:e8:23:be:ab:d9: ac:1c:96:75:52:ad:cd:41:0f:14:55:77:d8:ac:21: 76:cb:86:f9:96:a5:fd:da:e2:d2:bb:c4:9f:cf:af: 5d:1b:02:b4:8c:4d:a5:8a:16:38:fa:1a:90:33:bc: 32:7e:0e:e7:ed:6a:c3:4d:9c:d2:06:f3:69:9d:f1: e8:cc:3f:07:04:4f:9d:f4:cb:cb:01:9f:e4:6a:6b: 44:55:48:70:06:72:e3:b4:e7:28:6a:ff:6c:88:0a: be:f8:a3:70:06:06:66:9d:c4:49:02:0a:88:83:19: 41:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:28:BF:77:EE:03:0C:2F:03:EC:05:DA:00:F4:EA:00:7A:48:45:B2 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.118.60.0/22 103.58.92.0/22 IPv6: 2402:6480::/32 Signature Algorithm: sha256WithRSAEncryption 8d:32:b6:6a:b2:2c:01:6f:11:a2:4e:ce:1e:6f:17:46:34:06: 13:ee:29:f5:00:99:a5:47:28:19:1f:10:1f:35:52:75:05:09: 30:cd:45:9a:96:81:6b:80:2b:b3:03:09:b9:1e:19:91:73:f3: 98:56:7d:f7:d0:05:05:d3:8b:5d:93:db:5b:9f:4f:4c:8f:54: 01:c3:a5:f2:de:bc:57:25:98:48:44:2a:b2:38:38:e3:11:6f: 41:f1:a9:ba:27:43:78:8e:78:5e:92:f9:c0:e5:54:fc:e7:95: 90:4c:1e:b9:56:47:e0:a0:32:24:46:89:29:51:4b:01:c2:cd: e3:20:d8:ae:5f:d0:cb:9b:23:38:be:29:47:22:ba:07:ea:2e: 92:d0:d1:b3:51:d9:c4:da:12:9c:3d:33:9b:eb:84:54:f9:be: dd:50:ac:dc:31:69:3f:54:90:56:19:a1:42:2f:6b:85:07:a7: 6b:45:c1:7d:7c:6b:61:87:87:40:5c:71:19:d5:48:ef:e2:20: d8:46:f2:eb:2c:10:2b:02:74:0f:1f:2e:d7:08:74:d4:14:b1: 4a:23:67:13:bb:71:36:fa:f1:ae:26:6f:c9:bc:93:2f:df:46: 01:7b:1b:4a:90:9f:1a:71:43:08:6e:68:4b:a1:68:a1:29:2a: bb:0a:fb:b5 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjMwNjIwMjEzMjM5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDkyMWFmNy1lNWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7D9PmV/9NjVg7KqJwhCM3P9ythpDOLEs9s1tIb7HjceXS62BeSHh48TymuU b/UWdMrj14abcNfeS/I9PsRz4ewbgDJ+oshY1HdjghV7s6q7koudHLtYGf5kfsui 6qMvOeSk7VZg5Hb+kkYYb1q3TSYe+mw/BqjUcbbCAZKljkKsaN4RPU/puWpCBo+8 eo6Z6CO+q9msHJZ1Uq3NQQ8UVXfYrCF2y4b5lqX92uLSu8Sfz69dGwK0jE2lihY4 +hqQM7wyfg7n7WrDTZzSBvNpnfHozD8HBE+d9MvLAZ/kamtEVUhwBnLjtOcoav9s iAq++KNwBgZmncRJAgqIgxlBEwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCsov3fu AwwvA+wF2gD06gB6SEWyMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjYyMjcvMEQ3MjhBMEE3QTNGMTFFQThFM0Q4MDM1QzRGOUFFMDIvQTIzRDVERTg3 QTY5MTFFQTkzMEVCNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItdjwDBAJnOlwwDQQCAAIwBwMFACQCZIAwDQYJKoZIhvcN AQELBQADggEBAI0ytmqyLAFvEaJOzh5vF0Y0BhPuKfUAmaVHKBkfEB81UnUFCTDN RZqWgWuAK7MDCbkeGZFz85hWfffQBQXTi12T21ufT0yPVAHDpfLevFclmEhEKrI4 OOMRb0HxqbonQ3iOeF6S+cDlVPznlZBMHrlWR+CgMiRGiSlRSwHCzeMg2K5f0Mub Izi+KUciugfqLpLQ0bNR2cTaEpw9M5vrhFT5vt1QrNwxaT9UkFYZoUIva4UHp2tF wX18a2GHh0BccRnVSO/iINhG8ussECsCdA8fLtcIdNQUsUojZxO7cTb68a4mb8m8 ky/fRgF7G0qQnxpxQwhuaEuhaKEpKrsK+7U= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:33 2024 by rpki-client on console-ams.rpki-client.org