$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F20038CA44A311E9AEF6F25AC4F9AE02.roa File: F20038CA44A311E9AEF6F25AC4F9AE02.roa (raw, json) Hash identifier: F/ivONbJr3Hl0IzBLzPbN2a637a+OHUkf5OpMaFrCmU= Subject key identifier: 45:2C:16:FA:6C:C4:34:5C:8A:A6:C0:FE:24:BF:F2:91:60:A9:9D:8C Certificate issuer: /CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Certificate serial: 257A Authority key identifier: 4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F20038CA44A311E9AEF6F25AC4F9AE02.roa Signing time: Tue 02 May 2023 16:32:52 +0000 ROA not before: Tue 02 May 2023 16:32:52 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 6163 IP address blocks: 61.9.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9594 (0x257a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Validity Not Before: May 2 16:32:52 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64513b34-e6e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:dc:25:aa:b2:20:6e:3a:ec:0a:1d:d9:5f:c0: 4d:07:77:dd:0b:fd:aa:e0:f6:09:63:5b:b8:03:29: a1:82:3f:4b:ff:3a:a4:c5:6b:08:45:0f:32:1e:7e: ac:18:69:38:ea:7f:9f:c3:ef:49:26:d8:b9:40:d4: 24:87:51:c4:9c:aa:2d:0e:c7:5f:b7:22:b3:4a:37: ef:c5:af:49:71:a6:90:75:43:e9:8a:f7:86:30:64: fe:c5:44:0a:3f:ef:e8:89:e7:c6:a8:fd:79:79:4f: 2f:41:3d:fc:a6:02:16:06:9d:1d:20:ff:8a:86:59: b7:30:f2:91:49:06:41:4b:92:11:6b:df:bb:37:8d: 8a:ed:aa:9a:d3:c6:3b:66:af:d8:e2:15:d4:f9:7a: 4b:48:23:2a:db:2a:bc:e1:ad:04:27:28:17:1b:0d: a2:d8:da:f9:31:43:5f:57:ec:b1:4e:45:7b:43:5b: 61:c6:2e:80:91:b2:f8:bf:59:aa:ee:dc:48:36:ee: 95:aa:b8:28:85:ea:90:50:1d:37:84:c4:91:c8:7a: 47:7a:4d:58:08:be:39:36:21:5e:e4:64:03:d4:75: 68:3c:fe:06:62:a0:3d:ec:f3:52:6e:f8:59:4c:ce: 0c:70:f2:c5:c1:3f:84:40:27:d9:94:15:b5:45:27: d4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:2C:16:FA:6C:C4:34:5C:8A:A6:C0:FE:24:BF:F2:91:60:A9:9D:8C X509v3 Authority Key Identifier: keyid:4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F20038CA44A311E9AEF6F25AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.9.80.0/21 Signature Algorithm: sha256WithRSAEncryption 89:47:01:90:21:19:bb:de:db:1b:d8:27:e1:33:71:a3:a6:45: a6:88:10:9d:e9:09:7a:3d:27:7d:0c:9f:e8:f3:45:69:75:eb: a1:19:c2:26:a2:a9:bf:c4:63:dd:6b:36:16:03:b9:ef:7f:e5: 41:17:af:21:14:06:a0:6f:cb:25:42:b2:88:f1:fe:15:d9:00: e1:e4:9d:02:60:2e:cb:a4:e1:0d:f2:c5:b4:c3:6c:52:4d:d2: e3:6d:f0:0b:44:ee:3a:12:ee:92:86:eb:26:95:56:ba:42:1f: 38:e9:94:9b:49:b4:b0:c9:b6:32:5d:ea:bb:85:aa:69:51:c0: fa:29:41:ce:b1:74:80:38:d4:94:9f:2b:30:42:96:8c:53:f8: 3f:44:33:fd:2f:9a:f9:70:46:44:ae:6a:4f:e7:7e:ba:6b:f8: dd:c1:76:0b:49:e4:df:2f:d5:5e:68:7a:ee:29:07:a8:ef:d3: a8:55:43:33:1e:1f:eb:d4:4c:6f:65:14:5b:6e:a2:97:6c:fa: eb:2d:91:0a:69:bc:28:57:74:11:5e:11:47:16:19:07:9a:bf: 83:7c:ca:f0:31:49:c9:89:f7:ea:2a:29:d8:0d:79:79:5e:be: 34:4b:ea:60:1d:09:c5:30:6d:cb:b2:f8:9c:9f:c5:4f:41:17: 19:35:21:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkQxMTAvBgNVBAUTKDRFMTBGMTNGMjk1RkJGMkIzNTlDODREREQxNjUxQkM4 NTFBQThBRjUwHhcNMjMwNTAyMTYzMjUyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxM2IzNC1lNmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNwlqrIgbjrsCh3ZX8BNB3fdC/2q4PYJY1u4Aymhgj9L/zqkxWsIRQ8yHn6s GGk46n+fw+9JJti5QNQkh1HEnKotDsdftyKzSjfvxa9JcaaQdUPpiveGMGT+xUQK P+/oiefGqP15eU8vQT38pgIWBp0dIP+Khlm3MPKRSQZBS5IRa9+7N42K7aqa08Y7 Zq/Y4hXU+XpLSCMq2yq84a0EJygXGw2i2Nr5MUNfV+yxTkV7Q1thxi6AkbL4v1mq 7txINu6VqrgoheqQUB03hMSRyHpHek1YCL45NiFe5GQD1HVoPP4GYqA97PNSbvhZ TM4McPLFwT+EQCfZlBW1RSfUFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEUsFvps xDRciqbA/iS/8pFgqZ2MMB8GA1UdIwQYMBaAFE4Q8T8pX78rNZyE3dFlG8hRqor1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9FMUVGRDlCNkRF Q0UxMUU0QTE0RjAwNjhDNEY5QUUwMi9UaER4UHlsZnZ5czFuSVRkMFdVYnlGR3Fp dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RoRHhQeWxmdnlzMW5JVGQwV1VieUZHcWl2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1RkQvRTFFRkQ5QjZERUNFMTFFNEExNEYwMDY4QzRGOUFFMDIvRjIwMDM4Q0E0 NEEzMTFFOUFFRjZGMjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAM9CVAwDQYJKoZIhvcNAQELBQADggEBAIlHAZAhGbve2xvY J+EzcaOmRaaIEJ3pCXo9J30Mn+jzRWl166EZwiaiqb/EY91rNhYDue9/5UEXryEU BqBvyyVCsojx/hXZAOHknQJgLsuk4Q3yxbTDbFJN0uNt8AtE7joS7pKG6yaVVrpC HzjplJtJtLDJtjJd6ruFqmlRwPopQc6xdIA41JSfKzBCloxT+D9EM/0vmvlwRkSu ak/nfrpr+N3BdgtJ5N8v1V5oeu4pB6jv06hVQzMeH+vUTG9lFFtuopds+ustkQpp vChXdBFeEUcWGQeav4N8yvAxScmJ9+oqKdgNeXlevjRL6mAdCcUwbcuy+JyfxU9B Fxk1IcQ= -----END CERTIFICATE-----Generated at Thu May 2 17:43:03 2024 by rpki-client on console-fra.rpki-client.org