$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/A7FBA00E778811EDAE39280CC4F9AE02.roa File: A7FBA00E778811EDAE39280CC4F9AE02.roa (raw, json) Hash identifier: HdSIlqkmEmGZWEcgoomAB6LsDN+Rlx7lECjDlBmF5a8= Subject key identifier: 0E:EF:01:8A:D2:E1:C3:1B:EB:B1:C8:D4:49:FD:1B:07:C9:11:7A:D9 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 02C8 Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/A7FBA00E778811EDAE39280CC4F9AE02.roa Signing time: Fri 19 Apr 2024 03:35:40 +0000 ROA not before: Fri 19 Apr 2024 03:35:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 142005 IP address blocks: 209.35.96.0/23 maxlen: 24 209.35.114.0/23 maxlen: 24 209.35.156.0/23 maxlen: 24 209.35.188.0/23 maxlen: 24 216.107.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 712 (0x2c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Apr 19 03:35:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6621e68c-8c67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:25:ec:8d:10:e9:85:51:22:33:6d:2c:36:78: 6a:28:bb:ca:ba:df:e1:b0:12:d8:b3:77:32:79:b4: 74:13:30:99:83:5b:f2:91:71:18:21:d4:f0:90:22: 7c:f9:b8:29:e1:55:81:79:bd:ac:35:e1:bc:cf:25: 7d:d5:97:51:1e:d9:7f:87:3f:c1:ce:1c:f1:a4:da: bd:59:0b:fc:b8:95:81:76:46:09:91:ab:6d:e1:92: 41:f4:d3:c5:15:60:2d:ad:bc:08:1b:9e:5e:c5:0a: b4:05:bb:4d:14:62:8d:37:b3:8d:9b:78:4e:30:72: 70:20:c3:82:f6:b0:a8:06:61:e0:c8:d3:ce:0d:e1: c7:50:b7:34:9e:88:f7:37:59:74:9f:33:83:05:1d: f0:7f:31:5b:11:b9:52:db:aa:a8:98:dd:71:5e:dc: 3a:4a:c6:2f:98:af:eb:ba:56:b7:e9:df:f6:dd:b8: ac:2e:de:97:f0:5c:3d:2a:6c:01:63:7b:b3:42:d8: 77:dc:bb:45:34:3d:28:aa:72:3b:7e:88:a4:f1:4a: 90:6b:c0:3d:72:d9:7d:fc:c4:ef:d2:ad:d4:9b:a0: 8b:75:63:9f:03:40:e4:dd:93:f3:42:17:5b:58:1f: 9b:4c:5e:93:4c:2f:75:ec:f2:1b:33:18:2a:c4:2c: af:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:EF:01:8A:D2:E1:C3:1B:EB:B1:C8:D4:49:FD:1B:07:C9:11:7A:D9 X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/A7FBA00E778811EDAE39280CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 209.35.96.0/23 209.35.114.0/23 209.35.156.0/23 209.35.188.0/23 216.107.240.0/20 Signature Algorithm: sha256WithRSAEncryption 98:f3:8e:e4:23:73:e0:eb:2c:f4:fe:de:10:b5:ef:82:45:3f: 11:e0:df:fe:23:36:42:b9:79:64:72:51:8c:3e:5d:c6:44:b3: 93:a5:31:56:d2:83:98:0c:35:c5:47:70:c0:31:f1:5a:c0:ef: cf:83:9b:b3:df:af:1b:3e:b1:68:60:64:f9:67:05:43:17:3c: 7d:b4:74:39:db:c0:64:09:dc:dc:8f:97:43:6f:ee:e4:eb:4f: 6c:31:e5:ce:28:73:fe:c7:14:34:a0:d1:bd:e4:c6:53:aa:e9: 38:2a:39:4a:75:31:fc:c4:ad:01:0c:93:2b:0c:fb:f6:65:e0: 03:c1:92:91:73:d8:8f:c4:f2:1c:11:7c:73:1b:ef:49:89:a5: 23:f9:2a:45:36:a3:91:cf:b4:d0:61:4f:28:59:6f:ed:ec:6a: ff:ba:88:39:a0:6e:f0:65:0b:36:4f:4a:49:29:37:94:3c:1c: a3:ce:36:45:db:2b:e4:64:05:b9:71:0b:db:68:3c:e7:e9:aa: ce:b2:24:e8:90:a3:ee:4d:e6:c3:ab:65:9c:c0:20:62:0a:03: 7d:45:6b:73:0b:3c:85:20:02:c9:f2:17:80:39:14:7e:e1:c6: 78:38:9c:13:fe:d5:1b:97:90:b1:18:4c:a7:cd:52:a2:86:b0: aa:ab:07:09 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjQwNDE5MDMzNTQwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxZTY4Yy04YzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyXsjRDphVEiM20sNnhqKLvKut/hsBLYs3cyebR0EzCZg1vykXEYIdTwkCJ8 +bgp4VWBeb2sNeG8zyV91ZdRHtl/hz/BzhzxpNq9WQv8uJWBdkYJkatt4ZJB9NPF FWAtrbwIG55exQq0BbtNFGKNN7ONm3hOMHJwIMOC9rCoBmHgyNPODeHHULc0noj3 N1l0nzODBR3wfzFbEblS26qomN1xXtw6SsYvmK/rula36d/23bisLt6X8Fw9KmwB Y3uzQth33LtFND0oqnI7foik8UqQa8A9ctl9/MTv0q3Um6CLdWOfA0Dk3ZPzQhdb WB+bTF6TTC917PIbMxgqxCyvBQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFA7vAYrS 4cMb67HI1En9GwfJEXrZMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQyQzUvMUY0MDRFMzBBNEU5MTFFQ0FGM0ZCMTUyQzRGOUFFMDIvQTdGQkEwMEU3 Nzg4MTFFREFFMzkyODBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAHRI2ADBAHRI3IDBAHRI5wDBAHRI7wDBATYa/AwDQYJKoZI hvcNAQELBQADggEBAJjzjuQjc+DrLPT+3hC174JFPxHg3/4jNkK5eWRyUYw+XcZE s5OlMVbSg5gMNcVHcMAx8VrA78+Dm7Pfrxs+sWhgZPlnBUMXPH20dDnbwGQJ3NyP l0Nv7uTrT2wx5c4oc/7HFDSg0b3kxlOq6TgqOUp1MfzErQEMkysM+/Zl4APBkpFz 2I/E8hwRfHMb70mJpSP5KkU2o5HPtNBhTyhZb+3sav+6iDmgbvBlCzZPSkkpN5Q8 HKPONkXbK+RkBblxC9toPOfpqs6yJOiQo+5N5sOrZZzAIGIKA31Fa3MLPIUgAsny F4A5FH7hxng4nBP+1RuXkLEYTKfNUqKGsKqrBwk= -----END CERTIFICATE-----Generated at Mon May 27 04:53:36 2024 by rpki-client on console-fra.rpki-client.org