$ rpki-client -vvf rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/0F91DE9EAD4C11EB903C150DC4F9AE02.roa File: 0F91DE9EAD4C11EB903C150DC4F9AE02.roa (raw, json) Hash identifier: amWkI8EJnpB0l45lHnJHw1bJ3YiEznB3Tvl/Qm8umkw= Subject key identifier: 0C:30:A0:3F:60:E9:B3:BD:55:20:38:3F:C4:4C:10:A9:67:0A:37:D5 Certificate issuer: /CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Certificate serial: 079F Authority key identifier: 36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/0F91DE9EAD4C11EB903C150DC4F9AE02.roa Signing time: Thu 02 Nov 2023 22:09:31 +0000 ROA not before: Thu 02 Nov 2023 22:09:31 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45250 IP address blocks: 202.43.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1951 (0x79f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Validity Not Before: Nov 2 22:09:31 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65441e1b-1421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:86:7d:48:e8:a5:b7:94:f8:6f:02:d1:23:b2: 3a:07:91:81:b6:b8:62:a6:a0:ba:32:52:cd:b2:b3: af:d9:26:68:a4:7f:06:56:21:92:f4:98:1a:66:21: 20:22:6a:63:51:9c:30:99:60:15:5a:7e:7a:33:35: 89:ab:04:bb:fb:73:f1:ad:81:ea:54:3b:6d:5a:5a: 81:18:e5:b4:bd:b2:99:cc:8a:0f:1f:1c:5f:ed:78: 8d:c3:c5:0a:0c:1b:af:01:f5:88:1b:3a:d2:91:87: b1:18:58:02:b3:41:29:bc:e9:d5:67:bb:2d:a5:cc: 8d:45:5c:7d:d7:3e:bb:83:cc:57:52:7e:de:72:b4: 57:d0:9e:b5:f0:ce:84:ca:6d:54:45:60:aa:8f:53: 72:3a:54:b6:a1:d7:cf:72:17:84:f2:78:16:a2:12: 91:0e:5a:68:0c:b5:88:ed:81:d8:96:5d:bf:2e:04: f7:88:83:f4:1c:72:fd:bd:d2:ba:4a:89:ca:1a:1d: 29:b8:4a:3c:50:17:4b:3b:5e:75:30:ba:3c:29:e0: ba:63:4d:a0:fa:5c:6f:74:c9:32:64:b2:cf:81:22: 6f:7c:05:f5:8b:01:9e:78:65:f5:40:d0:7b:fa:07: b7:fd:2d:aa:c6:89:2b:78:3a:6f:75:73:d5:fe:ac: 09:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:30:A0:3F:60:E9:B3:BD:55:20:38:3F:C4:4C:10:A9:67:0A:37:D5 X509v3 Authority Key Identifier: keyid:36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/0F91DE9EAD4C11EB903C150DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.239.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:1b:ef:62:ea:e9:df:22:c2:dd:12:88:5d:60:3f:83:34:95: ed:a7:bd:b0:65:a6:ea:0a:c6:3f:be:f3:4d:d7:5c:68:01:33: b8:97:0e:6b:eb:7f:45:93:90:bf:c5:93:5f:e7:66:35:8e:a2: aa:3f:ae:fa:c6:d6:b3:bd:b1:82:c0:02:30:4a:6f:f9:24:bc: 77:9a:2a:9b:79:be:36:0a:a6:84:e6:59:12:b9:dd:07:f8:40: 60:5e:79:3f:4a:b9:8c:d7:cd:a9:82:d2:f3:3b:4b:0a:dc:74: e6:61:59:bb:8a:9e:f1:bf:c8:4e:a2:5b:64:f6:0d:55:5e:1f: 3f:34:49:40:3d:52:77:09:47:09:03:e7:5a:da:ff:78:7c:5d: 11:2f:b0:ca:5e:6d:49:80:b4:6e:4c:ea:ef:49:72:96:1b:d9: 4c:87:68:ed:e6:09:ae:dc:08:03:54:68:c4:f7:2a:b9:51:0c: 59:de:e8:ad:ed:0d:52:7a:00:32:26:c6:b0:e2:b8:0e:de:0d: bc:42:44:54:77:27:3d:81:18:4e:28:3c:1f:4f:7e:4c:07:ab: f4:8c:ca:d8:e0:91:ce:1e:6a:94:ad:e0:33:9e:df:d7:09:b3: c2:45:ac:09:b8:2c:e2:b8:44:07:42:71:77:d3:b8:b1:3b:89: 7d:3d:49:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyQUMxMTAvBgNVBAUTKDM2RDc3RTkyNDNBQkJBMkZENTQ5NkEyOTE4MzBCN0Qz OEIwQkNCQzQwHhcNMjMxMTAyMjIwOTMxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MWUxYi0xNDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IZ9SOilt5T4bwLRI7I6B5GBtrhipqC6MlLNsrOv2SZopH8GViGS9JgaZiEg ImpjUZwwmWAVWn56MzWJqwS7+3PxrYHqVDttWlqBGOW0vbKZzIoPHxxf7XiNw8UK DBuvAfWIGzrSkYexGFgCs0EpvOnVZ7stpcyNRVx91z67g8xXUn7ecrRX0J618M6E ym1URWCqj1NyOlS2odfPcheE8ngWohKRDlpoDLWI7YHYll2/LgT3iIP0HHL9vdK6 SonKGh0puEo8UBdLO151MLo8KeC6Y02g+lxvdMkyZLLPgSJvfAX1iwGeeGX1QNB7 +ge3/S2qxokreDpvdXPV/qwJYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAwwoD9g 6bO9VSA4P8RMEKlnCjfVMB8GA1UdIwQYMBaAFDbXfpJDq7ov1UlqKRgwt9OLC8vE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTJBQy9BNDhENTk2NkJC M0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVpX1ZTV29wR0RDMzA0c0x5 OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050ZC1ra09ydWlfVlNXb3BHREMzMDRzTHk4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUyQUMvQTQ4RDU5NjZCQjNFMTFFQUEyOUVFMzIxQzRGOUFFMDIvMEY5MURFOUVB RDRDMTFFQjkwM0MxNTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKK+8wDQYJKoZIhvcNAQELBQADggEBAA8b72Lq6d8iwt0S iF1gP4M0le2nvbBlpuoKxj++803XXGgBM7iXDmvrf0WTkL/Fk1/nZjWOoqo/rvrG 1rO9sYLAAjBKb/kkvHeaKpt5vjYKpoTmWRK53Qf4QGBeeT9KuYzXzamC0vM7Swrc dOZhWbuKnvG/yE6iW2T2DVVeHz80SUA9UncJRwkD51ra/3h8XREvsMpebUmAtG5M 6u9JcpYb2UyHaO3mCa7cCANUaMT3KrlRDFne6K3tDVJ6ADImxrDiuA7eDbxCRFR3 Jz2BGE4oPB9PfkwHq/SMytjgkc4eapSt4DOe39cJs8JFrAm4LOK4RAdCcXfTuLE7 iX09SXA= -----END CERTIFICATE-----Generated at Sun May 26 23:05:27 2024 by rpki-client on console-ams.rpki-client.org