$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/13335846175711ECB0193A7BC4F9AE02.roa File: 13335846175711ECB0193A7BC4F9AE02.roa (raw, json) Hash identifier: j5BMrnB2eJaUYuNsShYdECS4/o2i8fjOWoaiHMJEHvk= Subject key identifier: 96:C2:08:D0:57:D7:51:CF:FF:35:74:1C:54:14:76:6A:02:24:0D:B8 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 03F2 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/13335846175711ECB0193A7BC4F9AE02.roa Signing time: Thu 03 Aug 2023 01:01:57 +0000 ROA not before: Thu 03 Aug 2023 01:01:57 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 4804 IP address blocks: 161.43.224.0/21 maxlen: 21 161.43.232.0/21 maxlen: 21 198.142.0.0/16 maxlen: 16 198.142.33.0/24 maxlen: 24 198.142.62.0/24 maxlen: 24 198.142.70.0/24 maxlen: 24 198.142.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1010 (0x3f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Aug 3 01:01:57 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cafc85-dbed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:44:64:7c:51:0b:22:47:68:8d:e0:30:28:68: a9:a4:45:b9:6e:bb:22:fc:b1:76:e7:cb:6b:50:39: db:61:2e:6d:72:01:54:26:64:a1:8a:dd:25:18:80: a4:98:fa:cf:ea:bd:06:06:10:82:81:de:a8:c5:29: 0c:cb:ae:3e:f6:45:b9:8d:f8:01:08:98:f5:b8:ca: 70:3e:c6:de:ef:74:f8:71:bd:79:6b:72:8a:b5:9b: f9:a0:46:81:2f:48:a9:69:bc:9b:03:5f:a4:9a:bf: e6:9b:29:32:8b:8c:78:ef:c6:02:39:91:b0:07:66: 09:9c:2d:e6:c7:b1:23:9d:0c:9e:1a:79:58:41:d7: 30:99:ba:3c:f8:b2:30:91:a8:50:03:e6:a9:69:97: 88:43:8a:5c:0e:de:75:97:7f:21:47:74:c2:89:45: d3:82:ca:15:bc:87:2a:31:28:fa:b6:da:0a:29:7e: 07:04:44:76:f8:55:2c:8d:ca:b2:61:e1:f1:fa:b7: 0f:63:3c:45:64:01:ad:c2:39:79:f6:99:be:1c:0c: ec:09:1f:07:7a:da:3f:df:1d:ef:5b:a7:e9:a0:24: 8f:d4:d7:46:3f:84:cc:f2:ed:42:9b:f3:86:3f:b0: 9c:39:60:fb:98:b2:8a:79:81:42:9b:27:1d:43:5a: 2f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C2:08:D0:57:D7:51:CF:FF:35:74:1C:54:14:76:6A:02:24:0D:B8 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/13335846175711ECB0193A7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.43.224.0/20 198.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 32:58:82:d2:4f:e0:49:d2:ad:66:08:b7:40:88:fa:0c:b6:10: 13:59:bf:27:37:0f:84:2c:86:a1:39:43:bc:7a:de:f4:05:59: a5:fa:cd:66:da:4b:04:03:28:99:f6:e8:d3:50:6c:c8:33:2b: 87:5f:90:aa:df:3e:36:75:7d:41:f5:6a:c2:d0:25:94:e7:98: 9f:ab:20:c3:32:09:07:ce:7e:2d:c0:23:58:18:aa:90:b7:d3: ef:0f:a7:be:7d:c9:11:40:50:4d:76:47:17:8a:d6:f0:72:fc: 9b:77:97:52:3b:f7:6d:30:53:b4:70:2d:39:26:2f:2b:a1:9a: f8:6e:32:e7:26:ea:ce:8f:22:3e:9f:5e:5a:e2:16:df:e6:f3: 58:80:e7:d1:d8:d5:36:03:d5:c4:5b:f8:39:f1:8d:dc:8e:b9: a6:bf:df:35:20:05:ea:c8:56:d7:6f:c7:c0:3b:77:41:32:7b: 8f:09:22:e5:f9:0b:54:d7:05:9c:3f:be:80:28:63:5c:d7:10: 6e:a9:8e:84:67:b1:c8:cc:cf:f6:59:86:d3:05:70:d2:89:35: 33:b1:41:eb:53:9d:51:b8:ca:c6:76:e8:22:28:8b:a9:34:57: 91:a7:2d:b6:4d:61:1b:47:bf:c9:84:14:a3:33:0f:83:7b:3a: a5:3c:b3:b9 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICA/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjMwODAzMDEwMTU3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmM4NS1kYmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtERkfFELIkdojeAwKGippEW5brsi/LF258trUDnbYS5tcgFUJmShit0lGICk mPrP6r0GBhCCgd6oxSkMy64+9kW5jfgBCJj1uMpwPsbe73T4cb15a3KKtZv5oEaB L0ipabybA1+kmr/mmykyi4x478YCOZGwB2YJnC3mx7EjnQyeGnlYQdcwmbo8+LIw kahQA+apaZeIQ4pcDt51l38hR3TCiUXTgsoVvIcqMSj6ttoKKX4HBER2+FUsjcqy YeHx+rcPYzxFZAGtwjl59pm+HAzsCR8Heto/3x3vW6fpoCSP1NdGP4TM8u1Cm/OG P7CcOWD7mLKKeYFCmycdQ1ovywIDAQABo4ICmjCCApYwHQYDVR0OBBYEFJbCCNBX 11HP/zV0HFQUdmoCJA24MB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvMTMzMzU4NDYx NzU3MTFFQ0IwMTkzQTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDBAShK+ADAwDGjjANBgkqhkiG9w0BAQsFAAOCAQEAMliC0k/g SdKtZgi3QIj6DLYQE1m/JzcPhCyGoTlDvHre9AVZpfrNZtpLBAMomfbo01BsyDMr h1+Qqt8+NnV9QfVqwtAllOeYn6sgwzIJB85+LcAjWBiqkLfT7w+nvn3JEUBQTXZH F4rW8HL8m3eXUjv3bTBTtHAtOSYvK6Ga+G4y5ybqzo8iPp9eWuIW3+bzWIDn0djV NgPVxFv4OfGN3I65pr/fNSAF6shW12/HwDt3QTJ7jwki5fkLVNcFnD++gChjXNcQ bqmOhGexyMzP9lmG0wVw0ok1M7FB61OdUbjKxnboIiiLqTRXkacttk1hG0e/yYQU ozMPg3s6pTyzuQ== -----END CERTIFICATE-----Generated at Thu May 23 02:34:45 2024 by rpki-client on console-fra.rpki-client.org