$ rpki-client -vvf rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/F5660FBC160611ECB3912A7EC4F9AE02.roa File: F5660FBC160611ECB3912A7EC4F9AE02.roa (raw, json) Hash identifier: ZS0Ps9zt1KsTmOllUG6ftCs0PaLZcAbnGpSEXnM0GrQ= Subject key identifier: E5:0F:BF:B3:48:12:EF:7E:E9:91:7A:26:CD:5F:B5:02:F0:4B:8E:D3 Certificate issuer: /CN=A91473F8/serialNumber=0BF2B5944C3A2CCAB6C1D12BC36A5AF3C2DCF77F Certificate serial: 0BD6 Authority key identifier: 0B:F2:B5:94:4C:3A:2C:CA:B6:C1:D1:2B:C3:6A:5A:F3:C2:DC:F7:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C_K1lEw6LMq2wdErw2pa88Lc938.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/F5660FBC160611ECB3912A7EC4F9AE02.roa Signing time: Tue 02 Apr 2024 19:27:55 +0000 ROA not before: Tue 02 Apr 2024 19:27:55 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 38011 IP address blocks: 202.44.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/C_K1lEw6LMq2wdErw2pa88Lc938.crl rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/C_K1lEw6LMq2wdErw2pa88Lc938.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C_K1lEw6LMq2wdErw2pa88Lc938.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3030 (0xbd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91473F8/serialNumber=0BF2B5944C3A2CCAB6C1D12BC36A5AF3C2DCF77F Validity Not Before: Apr 2 19:27:55 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c5c3a-aca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:80:1d:86:fc:ed:2c:dc:40:9d:85:e0:8f:f0: 1e:f6:ab:56:63:15:5e:0b:d1:66:c1:af:2a:d7:87: f5:92:96:da:fa:a0:a1:c0:77:11:c9:4d:a7:30:1e: 98:8c:01:31:7e:84:94:de:e6:94:0e:7d:d5:95:fe: 18:8f:a8:9d:d4:f0:bf:cd:ff:a3:0a:84:e9:02:e3: e9:92:8e:1b:fd:d8:a2:20:56:b9:ed:06:4c:80:db: d4:bd:f6:92:b1:1f:f9:e2:3a:69:46:f8:04:01:cd: d8:c3:5c:5a:38:e1:23:eb:23:ae:f8:31:cf:c4:5a: 9d:17:bc:cd:2b:d1:1f:e1:16:5d:d1:fd:8f:20:12: da:12:5a:fb:ec:62:70:34:82:e5:07:b7:3f:2d:fd: 03:02:33:a5:14:b8:04:18:d3:a4:73:65:3a:9e:8c: 16:0b:27:96:f9:f1:cd:a8:85:11:ec:03:eb:fb:1f: e5:a8:6b:a8:31:ae:fb:cd:8f:55:b4:8e:93:32:94: 84:df:12:0a:60:54:95:e1:0c:17:cf:2d:e9:3d:01: fb:29:9e:d6:95:c7:81:40:e9:e1:0d:0a:db:01:a5: 7c:a6:7d:d8:51:b9:64:62:2f:3b:b8:f9:4d:c0:18: e6:2a:c2:7b:8d:ae:99:45:35:0f:40:f6:09:7d:d8: b1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:0F:BF:B3:48:12:EF:7E:E9:91:7A:26:CD:5F:B5:02:F0:4B:8E:D3 X509v3 Authority Key Identifier: keyid:0B:F2:B5:94:4C:3A:2C:CA:B6:C1:D1:2B:C3:6A:5A:F3:C2:DC:F7:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/C_K1lEw6LMq2wdErw2pa88Lc938.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C_K1lEw6LMq2wdErw2pa88Lc938.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/F5660FBC160611ECB3912A7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.44.104.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:14:d4:bf:8a:04:61:7f:ca:09:bc:7d:ec:1e:08:5f:15:e3: 52:bc:0d:10:e2:93:04:94:57:5e:56:38:82:a1:82:8b:e8:9c: 8b:85:c1:64:e1:5d:a6:8a:a6:bd:d5:2e:8d:a9:24:56:9c:0c: 59:bc:dc:1e:c0:59:61:ab:cd:5c:3a:9d:56:55:13:23:36:1b: 1a:33:a1:72:7d:45:70:54:d3:0d:a5:c0:ab:ee:d3:49:c8:a8: aa:18:b5:db:a0:8a:52:96:b9:87:f9:a8:1d:d2:00:97:6b:26: 2d:37:92:a2:5c:e8:10:1b:1c:8e:bc:14:c8:83:ae:cf:a4:b7: ae:8c:af:f3:f2:37:54:f1:e2:e4:de:4b:aa:62:11:83:54:05: c7:29:91:a3:1e:b3:3b:f5:e1:a8:4d:26:1a:e5:8b:57:1f:c4: a5:da:f3:8b:9a:02:32:cb:da:38:1f:2e:3c:66:98:22:54:a5: 6b:a6:17:86:f4:e2:ab:de:e4:4c:ea:72:cc:27:09:ac:34:b9: 93:b1:9a:16:cf:c2:45:9b:40:2e:1e:13:46:09:77:c4:b9:e7: 6b:f3:7b:fd:ad:dd:81:4e:0d:8c:71:7e:2d:9a:17:95:9b:02: 76:c0:0e:92:bf:35:f9:1e:f2:77:ef:3a:02:4a:29:91:5f:9a: 76:de:da:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDczRjgxMTAvBgNVBAUTKDBCRjJCNTk0NEMzQTJDQ0FCNkMxRDEyQkMzNkE1QUYz QzJEQ0Y3N0YwHhcNMjQwNDAyMTkyNzU1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjNWMzYS1hY2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYAdhvztLNxAnYXgj/Ae9qtWYxVeC9Fmwa8q14f1kpba+qChwHcRyU2nMB6Y jAExfoSU3uaUDn3Vlf4Yj6id1PC/zf+jCoTpAuPpko4b/diiIFa57QZMgNvUvfaS sR/54jppRvgEAc3Yw1xaOOEj6yOu+DHPxFqdF7zNK9Ef4RZd0f2PIBLaElr77GJw NILlB7c/Lf0DAjOlFLgEGNOkc2U6nowWCyeW+fHNqIUR7APr+x/lqGuoMa77zY9V tI6TMpSE3xIKYFSV4QwXzy3pPQH7KZ7WlceBQOnhDQrbAaV8pn3YUblkYi87uPlN wBjmKsJ7ja6ZRTUPQPYJfdixcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOUPv7NI Eu9+6ZF6Js1ftQLwS47TMB8GA1UdIwQYMBaAFAvytZRMOizKtsHRK8NqWvPC3Pd/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzNGOC80QjQ1NkM4OEYz NjkxMUU5OUM2N0EwNjFDNEY5QUUwMi9DX0sxbEV3NkxNcTJ3ZEVydzJwYTg4TGM5 MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NfSzFsRXc2TE1xMndkRXJ3MnBhODhMYzkzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDczRjgvNEI0NTZDODhGMzY5MTFFOTlDNjdBMDYxQzRGOUFFMDIvRjU2NjBGQkMx NjA2MTFFQ0IzOTEyQTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKLGgwDQYJKoZIhvcNAQELBQADggEBAJsU1L+KBGF/ygm8 feweCF8V41K8DRDikwSUV15WOIKhgovonIuFwWThXaaKpr3VLo2pJFacDFm83B7A WWGrzVw6nVZVEyM2GxozoXJ9RXBU0w2lwKvu00nIqKoYtdugilKWuYf5qB3SAJdr Ji03kqJc6BAbHI68FMiDrs+kt66Mr/PyN1Tx4uTeS6piEYNUBccpkaMeszv14ahN Jhrli1cfxKXa84uaAjLL2jgfLjxmmCJUpWumF4b04qve5EzqcswnCaw0uZOxmhbP wkWbQC4eE0YJd8S552vze/2t3YFODYxxfi2aF5WbAnbADpK/Nfke8nfvOgJKKZFf mnbe2pc= -----END CERTIFICATE-----Generated at Wed May 8 21:03:56 2024 by rpki-client on console-fra.rpki-client.org