$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/20068130702111EABA90E923C4F9AE02.roa File: 20068130702111EABA90E923C4F9AE02.roa (raw, json) Hash identifier: klXDKYT+Diyzs3UwDrfLwBlLTOabtuGGcpE7Ra7QhQM= Subject key identifier: 72:85:B0:03:88:01:5A:77:A8:2E:A7:47:AF:94:42:A7:4E:D6:3F:2B Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 344E Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/20068130702111EABA90E923C4F9AE02.roa Signing time: Wed 04 Oct 2023 14:50:27 +0000 ROA not before: Wed 04 Oct 2023 14:50:27 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136897 IP address blocks: 175.29.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 14:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13390 (0x344e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Oct 4 14:50:27 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651d7bb3-70be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d8:20:0d:2e:8a:62:13:6c:19:62:49:94:03: 44:3a:86:6a:f0:c5:25:c5:67:29:33:9a:68:b6:e5: 0a:7e:9a:50:52:97:64:ba:c0:f9:6d:44:b0:6d:90: a1:26:f8:b5:9e:a2:25:28:42:14:f4:fa:d6:d1:92: 23:1d:ad:fd:c7:c9:22:65:b2:e5:cd:a0:33:81:1e: 51:43:61:a3:c3:d1:69:67:e6:b4:87:c9:53:94:fd: f4:74:9b:e8:36:c0:8a:c7:c1:be:7a:0e:84:64:69: 49:dc:95:31:db:bc:13:1d:5b:c0:b5:ad:9e:fa:e5: 62:28:ef:ed:5e:9b:54:c8:5a:c7:95:b1:4d:80:55: 47:8a:75:a9:87:ca:5b:4a:af:0f:34:5c:73:89:f8: 20:cf:5f:89:12:fb:b6:4b:94:b0:05:a8:02:69:44: 93:6e:ee:34:ba:a5:0d:31:f2:ac:1b:88:d7:91:73: 3e:25:1b:82:02:0c:9b:df:92:c2:88:6c:a1:bc:03: 00:25:e1:a8:41:6b:4b:ed:08:05:88:01:f6:a2:c5: 44:b2:3b:32:7f:15:3c:3d:ac:5c:8b:af:ef:96:e6: e8:e0:a1:9e:b3:bc:f6:b0:7b:20:44:f7:3f:31:11: 0e:59:a9:e1:7e:4f:f4:de:a4:fa:5c:6a:18:ac:74: 05:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:85:B0:03:88:01:5A:77:A8:2E:A7:47:AF:94:42:A7:4E:D6:3F:2B X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/20068130702111EABA90E923C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.120.0/22 Signature Algorithm: sha256WithRSAEncryption ac:f5:62:c7:0b:ad:b5:03:e4:d4:94:56:a5:16:13:66:eb:1a: 46:b3:44:2a:a3:de:11:31:23:fe:45:4e:38:c8:fd:d9:33:99: e1:20:7b:ef:cb:f5:4a:3e:c0:4a:e5:ea:fc:13:40:25:f2:76: d2:e4:c1:26:67:27:83:47:d6:e9:cb:bb:f7:24:1e:e5:9c:01: ac:37:4d:a0:d8:13:bc:96:ab:48:a1:ab:c4:18:e2:84:f5:71: 61:ac:71:6d:db:24:bf:a7:a5:2f:c8:63:39:3c:80:ef:26:64: bb:19:a8:a0:c8:d6:cb:89:4d:e6:6e:0a:63:41:d5:65:fe:2d: 54:87:80:23:16:9f:48:93:3c:12:9b:3b:07:84:89:b3:e3:28: 25:f1:ac:a3:6b:ce:3b:33:68:cf:44:5f:0c:f3:0c:50:6b:a9: 97:cd:04:f1:07:88:e0:26:d4:02:51:98:d9:7c:dc:37:27:6b: 24:82:3b:70:5a:95:b1:7e:f1:0c:f3:ea:a6:b2:a6:df:a8:b8: 3c:b1:84:b1:fc:34:2f:26:e9:9a:6c:bb:89:4b:de:b8:6f:7c: 3b:00:75:ab:e1:d1:86:b8:44:ff:c4:99:15:90:98:ba:f4:aa: c0:26:d5:97:7c:0f:6c:ef:b7:38:b3:c9:11:48:8d:61:2f:22: 09:65:74:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjMxMDA0MTQ1MDI3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkN2JiMy03MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9ggDS6KYhNsGWJJlANEOoZq8MUlxWcpM5potuUKfppQUpdkusD5bUSwbZCh Jvi1nqIlKEIU9PrW0ZIjHa39x8kiZbLlzaAzgR5RQ2Gjw9FpZ+a0h8lTlP30dJvo NsCKx8G+eg6EZGlJ3JUx27wTHVvAta2e+uViKO/tXptUyFrHlbFNgFVHinWph8pb Sq8PNFxzifggz1+JEvu2S5SwBagCaUSTbu40uqUNMfKsG4jXkXM+JRuCAgyb35LC iGyhvAMAJeGoQWtL7QgFiAH2osVEsjsyfxU8Paxci6/vlubo4KGes7z2sHsgRPc/ MREOWanhfk/03qT6XGoYrHQFzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHKFsAOI AVp3qC6nR6+UQqdO1j8rMB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvMjAwNjgxMzA3 MDIxMTFFQUJBOTBFOTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKvHXgwDQYJKoZIhvcNAQELBQADggEBAKz1YscLrbUD5NSU VqUWE2brGkazRCqj3hExI/5FTjjI/dkzmeEge+/L9Uo+wErl6vwTQCXydtLkwSZn J4NH1unLu/ckHuWcAaw3TaDYE7yWq0ihq8QY4oT1cWGscW3bJL+npS/IYzk8gO8m ZLsZqKDI1suJTeZuCmNB1WX+LVSHgCMWn0iTPBKbOweEibPjKCXxrKNrzjszaM9E XwzzDFBrqZfNBPEHiOAm1AJRmNl83DcnaySCO3BalbF+8Qzz6qaypt+ouDyxhLH8 NC8m6Zpsu4lL3rhvfDsAdavh0Ya4RP/EmRWQmLr0qsAm1Zd8D2zvtzizyRFIjWEv IglldKE= -----END CERTIFICATE-----Generated at Mon May 20 15:11:14 2024 by rpki-client on console-fra.rpki-client.org