$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D2677928DD9811EDB2BBBA09C4F9AE02.roa File: D2677928DD9811EDB2BBBA09C4F9AE02.roa (raw, json) Hash identifier: fX1xXZuXTL6zJvqysjR8+utlk5YnmotfHsIYYUAiDmA= Subject key identifier: C6:C7:F0:9D:23:80:0C:F8:8A:14:CF:4B:43:66:29:93:7C:AB:CE:3D Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: C7 Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D2677928DD9811EDB2BBBA09C4F9AE02.roa Signing time: Sun 14 Apr 2024 22:43:50 +0000 ROA not before: Sun 14 Apr 2024 22:43:50 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 16509 IP address blocks: 116.197.148.0/24 maxlen: 24 116.197.150.0/24 maxlen: 24 116.197.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: Apr 14 22:43:50 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=661c5c26-3c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:17:74:b1:07:3a:ec:68:85:5c:aa:05:a1:4c: 56:e9:25:b3:58:6a:7c:e0:3b:7b:4a:d6:27:65:71: 48:6f:75:81:1f:b0:33:78:31:ef:94:92:61:05:d2: 59:df:29:72:a9:82:c5:cf:8f:d8:78:6c:b2:83:2f: 8e:d1:f0:3f:cf:00:e9:b8:bf:53:5a:9d:69:b3:75: 03:5f:86:96:0e:30:10:04:e1:f3:1b:62:05:41:81: e5:01:65:73:99:93:38:9d:f9:07:4e:c9:45:79:28: 1b:dd:9e:3b:d1:a4:24:06:f8:52:d6:63:3e:89:ee: f0:80:03:2e:f5:9b:10:ac:00:7b:b1:62:15:a9:8d: 02:c5:f7:b2:24:17:3f:aa:d2:95:e9:bb:02:d3:be: ca:e6:d6:90:70:90:ca:a6:39:e1:2c:9b:f9:95:cd: 11:e4:61:48:ba:a4:fd:3d:2b:cf:6f:67:0f:0a:13: 9c:0d:f4:ee:56:4e:19:a2:fb:04:a3:f2:9c:dc:06: 04:0e:9a:30:c4:4b:99:bd:66:10:f3:c3:37:98:30: b9:92:f8:d0:02:53:f9:62:fb:96:fb:66:b5:52:19: 7a:da:b8:42:2b:e6:7b:b1:a9:ea:0a:54:d8:7a:71: c7:da:25:5d:76:cd:f6:2e:ab:cd:ac:b7:12:db:67: 9e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C7:F0:9D:23:80:0C:F8:8A:14:CF:4B:43:66:29:93:7C:AB:CE:3D X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D2677928DD9811EDB2BBBA09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.197.148.0/24 116.197.150.0/23 Signature Algorithm: sha256WithRSAEncryption 91:68:61:bc:ef:81:b8:53:7f:fd:38:75:7f:a9:9b:97:25:40: 91:be:aa:ab:86:5a:bd:e7:82:fc:68:a8:98:e4:4c:dc:12:d1: c8:23:e6:b2:76:09:b2:07:16:8d:3d:b3:cb:ff:ae:d0:77:76: 99:cd:e1:98:c2:ff:37:ee:93:31:e1:28:9e:7d:29:d4:ea:c7: 83:6c:98:72:67:64:23:ab:b5:fb:eb:1f:79:78:c0:a2:da:71: ba:3a:ed:6c:51:e0:15:e9:2d:8a:17:9a:fa:1d:3f:64:92:6a: d1:08:4e:65:fa:f7:a8:bc:73:73:f8:cb:29:66:fc:9e:d8:f4: 20:23:56:50:ec:ce:7a:c6:eb:c6:dc:54:ea:7c:6c:ce:56:85: 4f:49:54:d5:6d:4e:1e:ef:e4:a7:5e:e4:5a:ba:5c:f6:40:3e: 98:c0:b4:27:45:f1:a0:e5:a0:64:44:89:a0:58:70:24:57:87: 32:0f:35:ba:15:65:08:17:5d:28:82:af:b0:16:5c:60:3b:c8: f2:b2:a6:3e:2a:0d:d1:ce:77:23:09:1e:d1:3f:9f:25:fa:a4: b3:b8:c1:45:a6:8b:f8:69:70:21:e9:b9:fb:b2:4e:16:a2:24: 64:d1:58:25:24:80:e2:bd:c5:45:de:33:e4:2a:f9:2b:db:65: 1c:a5:2e:58 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjQwNDE0MjI0MzUwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFjNWMyNi0zYzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Bd0sQc67GiFXKoFoUxW6SWzWGp84Dt7StYnZXFIb3WBH7AzeDHvlJJhBdJZ 3ylyqYLFz4/YeGyygy+O0fA/zwDpuL9TWp1ps3UDX4aWDjAQBOHzG2IFQYHlAWVz mZM4nfkHTslFeSgb3Z470aQkBvhS1mM+ie7wgAMu9ZsQrAB7sWIVqY0CxfeyJBc/ qtKV6bsC077K5taQcJDKpjnhLJv5lc0R5GFIuqT9PSvPb2cPChOcDfTuVk4ZovsE o/Kc3AYEDpowxEuZvWYQ88M3mDC5kvjQAlP5YvuW+2a1Uhl62rhCK+Z7sanqClTY enHH2iVdds32LqvNrLcS22eeLwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMbH8J0j gAz4ihTPS0NmKZN8q849MB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY2NEYvMUUwODU0QUVERDdEMTFFRDkxQTA0NjREQzRGOUFFMDIvRDI2Nzc5MjhE RDk4MTFFREIyQkJCQTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB0xZQDBAF0xZYwDQYJKoZIhvcNAQELBQADggEBAJFoYbzv gbhTf/04dX+pm5clQJG+qquGWr3ngvxoqJjkTNwS0cgj5rJ2CbIHFo09s8v/rtB3 dpnN4ZjC/zfukzHhKJ59KdTqx4NsmHJnZCOrtfvrH3l4wKLacbo67WxR4BXpLYoX mvodP2SSatEITmX696i8c3P4yylm/J7Y9CAjVlDsznrG68bcVOp8bM5WhU9JVNVt Th7v5Kde5Fq6XPZAPpjAtCdF8aDloGREiaBYcCRXhzIPNboVZQgXXSiCr7AWXGA7 yPKypj4qDdHOdyMJHtE/nyX6pLO4wUWmi/hpcCHpufuyThaiJGTRWCUkgOK9xUXe M+Qq+SvbZRylLlg= -----END CERTIFICATE-----Generated at Wed May 1 07:55:37 2024 by rpki-client on console-fra.rpki-client.org