$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/D29FCC80A6BD11EEB785E054C4F9AE02.roa File: D29FCC80A6BD11EEB785E054C4F9AE02.roa (raw, json) Hash identifier: smlZD/jyuRBspD70MoDwtTzARKipVkt+GABequXsGvg= Subject key identifier: 35:48:50:A5:9D:3B:63:D2:AD:21:22:A3:18:CE:23:63:22:4C:A8:09 Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 348C Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/D29FCC80A6BD11EEB785E054C4F9AE02.roa Signing time: Sat 30 Dec 2023 02:47:51 +0000 ROA not before: Sat 30 Dec 2023 02:47:51 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 5065 IP address blocks: 175.29.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Dec 30 02:47:51 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=658f84d7-7faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:27:82:b3:0e:f0:b3:d4:82:f8:e6:2b:84:d1: 0f:01:83:b9:d1:fd:3b:c2:49:10:86:64:cb:3c:cc: 0e:38:a1:1f:42:40:89:f2:25:37:c7:10:06:91:78: 0a:be:a7:b7:cb:c6:d9:5b:e6:9d:a1:1a:25:c1:9a: 17:ea:e9:e8:b9:fa:53:76:91:ac:ae:50:81:4a:bf: 5f:51:25:90:55:a7:10:df:27:ab:47:6f:12:9f:7b: 98:a8:f4:99:eb:e2:97:cb:d8:df:ab:7e:7e:59:71: cc:3e:fd:a6:65:ba:0f:20:a1:a0:be:a5:da:70:2c: 89:72:4c:42:24:53:ea:a5:23:b9:2a:1a:f7:e2:1b: 51:d7:f1:18:14:1e:79:5d:94:63:47:df:22:cd:fc: d8:3b:a2:e8:d6:09:ab:0b:ff:c5:d7:95:4e:32:a3: 6f:97:14:7d:b5:97:4b:56:d6:65:4e:5d:07:20:ae: 49:94:75:a7:25:04:e7:db:38:c0:45:3b:10:a7:6f: 50:88:e7:c1:87:a4:ee:a4:d1:10:1a:a5:97:1c:9a: cc:47:23:07:fd:e7:91:f7:d7:c6:13:b4:b4:79:00: 42:f0:e3:62:5b:44:17:a0:f1:a0:14:bf:26:26:68: 41:66:7e:a1:66:9b:d9:1e:e2:ef:05:c5:60:1a:71: 87:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:48:50:A5:9D:3B:63:D2:AD:21:22:A3:18:CE:23:63:22:4C:A8:09 X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/D29FCC80A6BD11EEB785E054C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.200.0/21 Signature Algorithm: sha256WithRSAEncryption 46:e3:b9:d7:2f:82:15:df:30:41:d2:a5:af:eb:46:bd:8b:f2: 88:81:26:12:f5:0a:20:c2:ca:6f:4b:5e:01:e1:72:93:19:26: ed:99:63:2f:a9:d5:91:a9:38:29:50:53:7b:58:9f:f5:ad:2b: 20:38:45:40:c4:23:fd:f0:74:bb:1b:f0:2c:e3:72:51:9b:7a: ba:6d:d8:ac:fd:b0:3c:ae:aa:cf:b1:7b:7f:71:e9:cb:89:e8: 8c:d5:6c:12:3f:91:77:2f:57:51:d9:72:ce:3b:a3:3a:83:ae: 9a:a8:92:76:6a:e4:e6:21:91:de:89:e0:38:ce:75:c8:2c:e7: fc:3d:b6:d6:5b:ac:f7:81:a0:02:61:09:f2:b2:dd:e2:c7:da: 25:18:91:5a:5a:ed:b7:fd:16:08:df:73:0e:f4:7b:dc:21:d1: 97:6d:7d:e7:cd:70:f2:e0:60:f9:29:d4:c0:03:6a:41:19:64: d9:e8:83:4c:46:e7:30:cc:fd:41:56:bd:f5:7c:ad:69:03:80: 45:86:53:a5:2a:76:b1:a4:91:50:cc:89:bb:d3:83:1e:c9:c8: da:1e:40:aa:0f:c4:20:45:d8:47:54:3d:66:b7:dc:37:3d:31: 72:e4:82:27:cc:35:28:6f:b6:c2:3d:32:2a:6f:56:3a:40:91: f2:8c:fc:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjMxMjMwMDI0NzUxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NThmODRkNy03ZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSeCsw7ws9SC+OYrhNEPAYO50f07wkkQhmTLPMwOOKEfQkCJ8iU3xxAGkXgK vqe3y8bZW+adoRolwZoX6unoufpTdpGsrlCBSr9fUSWQVacQ3yerR28Sn3uYqPSZ 6+KXy9jfq35+WXHMPv2mZboPIKGgvqXacCyJckxCJFPqpSO5Khr34htR1/EYFB55 XZRjR98izfzYO6Lo1gmrC//F15VOMqNvlxR9tZdLVtZlTl0HIK5JlHWnJQTn2zjA RTsQp29QiOfBh6TupNEQGqWXHJrMRyMH/eeR99fGE7S0eQBC8ONiW0QXoPGgFL8m JmhBZn6hZpvZHuLvBcVgGnGH9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDVIUKWd O2PSrSEioxjOI2MiTKgJMB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvRDI5RkNDODBB NkJEMTFFRUI3ODVFMDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOvHcgwDQYJKoZIhvcNAQELBQADggEBAEbjudcvghXfMEHS pa/rRr2L8oiBJhL1CiDCym9LXgHhcpMZJu2ZYy+p1ZGpOClQU3tYn/WtKyA4RUDE I/3wdLsb8CzjclGberpt2Kz9sDyuqs+xe39x6cuJ6IzVbBI/kXcvV1HZcs47ozqD rpqoknZq5OYhkd6J4DjOdcgs5/w9ttZbrPeBoAJhCfKy3eLH2iUYkVpa7bf9Fgjf cw70e9wh0ZdtfefNcPLgYPkp1MADakEZZNnog0xG5zDM/UFWvfV8rWkDgEWGU6Uq drGkkVDMibvTgx7JyNoeQKoPxCBF2EdUPWa33Dc9MXLkgifMNShvtsI9MipvVjpA kfKM/CU= -----END CERTIFICATE-----Generated at Sat May 4 15:45:46 2024 by rpki-client on console-fra.rpki-client.org