$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/65037DC0F72B11EE94855861C4F9AE02.roa File: 65037DC0F72B11EE94855861C4F9AE02.roa (raw, json) Hash identifier: Wl95wm3SY3Y1dODx6FTJD+myIUBbRn30Sw754YRIsHQ= Subject key identifier: 8F:A0:0E:5A:97:6C:E6:83:9E:DE:08:2A:2D:4B:25:EF:20:0D:53:E9 Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 34DB Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/65037DC0F72B11EE94855861C4F9AE02.roa Signing time: Thu 11 Apr 2024 18:29:19 +0000 ROA not before: Thu 11 Apr 2024 18:29:19 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 7018 IP address blocks: 175.29.128.0/21 maxlen: 24 203.76.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13531 (0x34db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Apr 11 18:29:19 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66182bff-0215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:65:cd:40:e7:84:c9:4a:77:38:59:bf:61:2b: d0:d3:69:86:a3:9a:7e:78:d0:a7:15:f8:42:ab:a6: ab:78:8a:24:22:ad:6a:5f:ba:bd:d0:08:74:16:b8: f1:53:a2:9b:f4:e8:67:9f:4c:ae:f2:a6:30:29:f0: 72:61:9a:69:cf:5f:5b:b0:cb:f2:06:b1:8d:3b:9a: b1:e9:e7:68:f5:46:a1:30:c2:12:8e:1b:74:d8:33: dc:1b:c2:28:52:16:3e:3a:3c:7a:77:8f:88:d3:0c: b7:8a:d8:b2:f5:09:67:30:ba:21:f1:21:47:06:40: 6a:80:1f:19:76:ac:12:78:af:a1:32:7d:d4:1c:eb: 00:8f:d9:93:10:5a:41:e1:b0:da:c3:f6:a4:9e:e4: c6:ed:70:e0:35:1c:db:79:4d:2c:88:fc:dd:ac:dd: 1b:21:20:f9:ca:47:e4:b9:65:50:27:50:87:b7:5a: 12:8b:d4:6b:ac:c1:a1:eb:38:7d:ce:f1:c6:58:63: 0a:f2:98:40:73:e5:9d:05:ef:14:d7:08:59:4f:0f: 08:23:1d:71:0a:73:11:60:55:e2:61:41:3f:2f:f1: 45:69:b6:e4:5a:d2:95:72:95:35:94:af:d6:ff:da: d3:a4:eb:7c:51:bf:22:b8:c5:0c:10:1e:15:57:a7: f9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A0:0E:5A:97:6C:E6:83:9E:DE:08:2A:2D:4B:25:EF:20:0D:53:E9 X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/65037DC0F72B11EE94855861C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.128.0/21 203.76.152.0/21 Signature Algorithm: sha256WithRSAEncryption a4:2e:15:6f:83:f8:87:1d:df:86:eb:78:1e:1c:fa:da:61:d3: 96:b9:5b:28:c1:dc:87:62:40:c5:64:39:0a:d1:d2:cb:cf:e5: 18:42:1d:91:63:a3:d7:50:3c:10:f3:28:09:08:5a:75:2d:10: a8:e1:c8:9f:8d:ac:bc:31:81:1a:ed:25:22:7a:99:de:1c:54: d7:bf:a5:bb:db:0a:d4:9d:c8:2a:3e:a4:9a:55:13:e3:67:6c: f2:44:31:e2:7a:47:14:00:ee:e6:72:9b:bb:cc:02:8f:be:61: 88:bc:e6:3e:53:ec:5e:c3:76:48:5c:bb:ac:1c:8d:81:f3:2b: b5:e7:22:92:25:96:3d:52:cd:46:c9:0a:ea:b9:fa:3b:e5:15: 81:1e:a9:e0:e7:5b:f9:2c:15:3c:1c:0c:01:4e:d3:56:c1:42: f0:ed:d4:e1:35:9d:97:7c:b4:be:68:fc:27:f8:83:32:f7:b8: be:aa:76:87:b7:69:dc:12:75:a6:5d:0d:d1:41:da:dd:30:d8: 6b:30:1e:d8:1d:ea:88:bb:43:52:32:c5:e6:5f:e4:5d:ae:f3: 7c:4d:c5:bc:b8:bd:8d:af:d7:d1:69:d1:5f:01:5f:62:72:ca: 2b:41:57:6c:9a:ff:0d:f2:de:58:86:eb:6a:3c:89:fa:52:e0: 18:c8:13:ba -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjQwNDExMTgyOTE5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE4MmJmZi0wMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2XNQOeEyUp3OFm/YSvQ02mGo5p+eNCnFfhCq6areIokIq1qX7q90Ah0Frjx U6Kb9Ohnn0yu8qYwKfByYZppz19bsMvyBrGNO5qx6edo9UahMMISjht02DPcG8Io UhY+Ojx6d4+I0wy3itiy9QlnMLoh8SFHBkBqgB8ZdqwSeK+hMn3UHOsAj9mTEFpB 4bDaw/aknuTG7XDgNRzbeU0siPzdrN0bISD5ykfkuWVQJ1CHt1oSi9RrrMGh6zh9 zvHGWGMK8phAc+WdBe8U1whZTw8IIx1xCnMRYFXiYUE/L/FFabbkWtKVcpU1lK/W /9rTpOt8Ub8iuMUMEB4VV6f5qwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI+gDlqX bOaDnt4IKi1LJe8gDVPpMB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvNjUwMzdEQzBG NzJCMTFFRTk0ODU1ODYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAOvHYADBAPLTJgwDQYJKoZIhvcNAQELBQADggEBAKQuFW+D +Icd34breB4c+tph05a5WyjB3IdiQMVkOQrR0svP5RhCHZFjo9dQPBDzKAkIWnUt EKjhyJ+NrLwxgRrtJSJ6md4cVNe/pbvbCtSdyCo+pJpVE+NnbPJEMeJ6RxQA7uZy m7vMAo++YYi85j5T7F7Ddkhcu6wcjYHzK7XnIpIllj1SzUbJCuq5+jvlFYEeqeDn W/ksFTwcDAFO01bBQvDt1OE1nZd8tL5o/Cf4gzL3uL6qdoe3adwSdaZdDdFB2t0w 2GswHtgd6oi7Q1IyxeZf5F2u83xNxby4vY2v19Fp0V8BX2JyyitBV2ya/w3y3liG 62o8ifpS4BjIE7o= -----END CERTIFICATE-----Generated at Thu May 2 17:18:28 2024 by rpki-client on console-ams.rpki-client.org