$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/A3238958DBF411EEA5544352C4F9AE02.roa File: A3238958DBF411EEA5544352C4F9AE02.roa (raw, json) Hash identifier: /ZFxZZe083y1jsVzvfohYa+x6pLpDT6LkxFN5MPyWWM= Subject key identifier: 25:17:91:35:F6:95:2C:E7:CF:CB:29:9D:A0:6E:F4:FF:DF:EF:2E:FC Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 34BD Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/A3238958DBF411EEA5544352C4F9AE02.roa Signing time: Wed 06 Mar 2024 20:03:45 +0000 ROA not before: Wed 06 Mar 2024 20:03:45 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 44893 IP address blocks: 175.29.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13501 (0x34bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Mar 6 20:03:45 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65e8cc21-c228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fe:a6:59:56:3d:8f:bc:12:47:65:9d:b4:4c: 91:b2:d0:de:97:9e:f6:61:a3:0a:f9:0d:f4:35:0d: b5:88:2f:01:f4:9e:5a:37:b0:01:82:07:2a:a5:b1: 37:44:c4:72:f8:cc:ed:ee:37:b2:2c:c8:0f:3a:60: af:c0:d0:3a:9c:9e:2b:11:77:76:66:7c:55:3a:57: a6:ff:64:87:57:02:c8:6c:ca:36:37:b6:b3:76:cf: 00:1f:a5:a5:29:68:71:2e:b9:9e:c2:ce:70:17:93: a0:94:c8:b0:b7:92:36:37:69:d8:60:08:d3:10:f5: d9:8e:3c:56:61:18:9f:38:9e:b9:24:cf:83:08:c6: 02:98:30:2d:69:44:b3:02:90:9f:3e:0c:28:ea:27: 97:e4:20:bf:f2:32:5d:f0:87:39:9d:32:1d:0e:f3: 3c:07:e3:cd:11:8a:62:39:cc:20:fc:83:23:d3:23: 24:21:d4:ca:a7:ab:65:b9:9d:55:94:f9:c1:f3:ab: cc:bf:27:86:aa:19:b4:20:d1:30:8f:b2:fd:fc:c9: 69:b8:87:bd:d4:69:09:cb:27:5d:03:fa:a0:2f:70: 2e:2b:bc:54:65:f4:3f:be:6e:e5:6b:18:b1:1e:43: 24:e7:15:91:b4:08:ab:65:5d:fd:99:a8:99:1b:55: ff:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:17:91:35:F6:95:2C:E7:CF:CB:29:9D:A0:6E:F4:FF:DF:EF:2E:FC X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/A3238958DBF411EEA5544352C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.0.0/18 Signature Algorithm: sha256WithRSAEncryption 0d:a0:9a:b9:93:25:55:9b:00:1a:29:41:63:ac:84:a4:8c:af: 9e:2b:5c:55:fc:66:b1:db:0e:19:14:e1:f2:68:95:4a:f8:a9: d0:be:82:26:13:22:13:ee:26:81:54:3f:87:9d:e6:4e:af:f5: 97:bc:c1:b4:c0:ad:66:04:e3:82:5a:a5:c6:97:2d:08:8e:18: ba:d8:ff:5b:57:94:4e:f9:95:ee:a6:a4:4d:bb:88:ca:5b:37: e3:fa:51:63:c5:fb:7d:0b:71:34:da:a7:ee:ee:16:54:0b:03: d0:10:6e:6c:ba:0f:62:76:90:09:73:45:a7:66:c8:49:39:58: b4:4e:ed:e9:e4:3b:26:80:72:97:05:a1:db:dd:d9:e9:e0:8e: 41:e1:8d:12:02:52:a3:8c:f7:b5:1a:53:2d:a0:37:eb:dd:5f: 73:b0:bc:88:24:d6:e6:c2:cf:28:c5:d6:d6:0f:03:fe:76:a5: ce:1d:a9:da:52:94:ed:a0:36:59:46:58:9b:47:7f:60:65:9c: 3c:73:07:87:b7:96:2f:f8:00:80:db:26:df:be:e1:46:5a:bd: 2b:bb:7c:8e:c7:91:b7:46:4b:5b:de:db:a0:f3:b0:7f:46:31: 5a:29:78:e4:7d:76:d2:bd:0e:e8:9a:38:de:f1:bb:df:5c:a3: 7d:c5:92:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjQwMzA2MjAwMzQ1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU4Y2MyMS1jMjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv6mWVY9j7wSR2WdtEyRstDel572YaMK+Q30NQ21iC8B9J5aN7ABggcqpbE3 RMRy+Mzt7jeyLMgPOmCvwNA6nJ4rEXd2ZnxVOlem/2SHVwLIbMo2N7azds8AH6Wl KWhxLrmews5wF5OglMiwt5I2N2nYYAjTEPXZjjxWYRifOJ65JM+DCMYCmDAtaUSz ApCfPgwo6ieX5CC/8jJd8Ic5nTIdDvM8B+PNEYpiOcwg/IMj0yMkIdTKp6tluZ1V lPnB86vMvyeGqhm0INEwj7L9/MlpuIe91GkJyyddA/qgL3AuK7xUZfQ/vm7laxix HkMk5xWRtAirZV39maiZG1X/+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCUXkTX2 lSznz8spnaBu9P/f7y78MB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvQTMyMzg5NThE QkY0MTFFRUE1NTQ0MzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAavHQAwDQYJKoZIhvcNAQELBQADggEBAA2gmrmTJVWbABop QWOshKSMr54rXFX8ZrHbDhkU4fJolUr4qdC+giYTIhPuJoFUP4ed5k6v9Ze8wbTA rWYE44JapcaXLQiOGLrY/1tXlE75le6mpE27iMpbN+P6UWPF+30LcTTap+7uFlQL A9AQbmy6D2J2kAlzRadmyEk5WLRO7enkOyaAcpcFodvd2engjkHhjRICUqOM97Ua Uy2gN+vdX3OwvIgk1ubCzyjF1tYPA/52pc4dqdpSlO2gNllGWJtHf2BlnDxzB4e3 li/4AIDbJt++4UZavSu7fI7HkbdGS1ve26DzsH9GMVopeOR9dtK9DuiaON7xu99c o33Fktg= -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org