$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AE8BB766178911EC876F5F50C4F9AE02.roa File: AE8BB766178911EC876F5F50C4F9AE02.roa (raw, json) Hash identifier: lFUTTleJWpxB1XcaomK4gRGpuzKUF1xvFlhr9ehhIs4= Subject key identifier: 7A:58:9E:08:FE:D5:39:27:68:B0:22:15:65:7C:95:DD:08:BA:95:F8 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 03F3 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AE8BB766178911EC876F5F50C4F9AE02.roa Signing time: Thu 03 Aug 2023 01:01:58 +0000 ROA not before: Thu 03 Aug 2023 01:01:58 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 58780 IP address blocks: 161.43.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Aug 3 01:01:58 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cafc85-407e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7c:68:b4:c2:23:90:10:27:4d:13:f2:7f:c3: 53:d2:0f:54:5c:12:04:38:12:6d:9f:a8:52:07:c9: 2a:79:af:63:be:34:16:20:60:3d:4f:59:ab:3c:e7: 8e:c0:ee:24:66:ee:00:50:f4:92:90:51:03:49:f9: c8:9b:4a:50:e7:65:79:8b:87:87:fb:9f:78:db:87: 6a:23:bb:0c:2a:d3:40:09:f2:7d:dc:f6:57:c9:1d: 94:cd:83:5f:ff:af:eb:27:8d:73:da:57:c0:e1:c2: 6e:e5:27:29:8b:32:c3:4d:b7:46:84:69:86:b9:4d: d6:01:7c:79:2a:80:0a:b9:8a:62:40:1f:07:27:9d: fb:31:4d:fe:92:32:ee:0c:10:fc:fc:cb:ce:61:e9: d6:20:50:84:f1:43:0c:87:49:7a:dd:ff:82:04:ba: 47:19:0d:45:fb:f8:e4:e8:19:54:83:2a:65:3b:9b: 01:c3:bd:2c:c7:2d:99:ba:a1:b9:9a:87:6d:4c:bd: 50:69:2f:19:5a:80:c1:49:02:cb:cd:92:60:37:4a: 76:c8:ef:55:1e:55:ec:47:40:6a:43:31:2b:35:4b: cf:0e:ef:42:88:e6:02:cc:bd:39:9b:d1:d8:ff:ed: 0e:45:4c:15:b7:6f:c1:3b:12:3f:8c:70:76:cc:6a: 63:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:58:9E:08:FE:D5:39:27:68:B0:22:15:65:7C:95:DD:08:BA:95:F8 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AE8BB766178911EC876F5F50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.43.223.0/24 Signature Algorithm: sha256WithRSAEncryption 30:ed:6c:45:78:1b:c4:cd:72:b9:71:d7:b3:28:4e:62:8d:c3: 63:85:0c:10:79:f8:4a:93:08:81:29:9e:8a:95:21:c4:06:88: 6d:75:18:64:ef:2d:f7:da:45:73:80:e3:b4:fc:9c:4b:c9:ea: 04:1e:bb:91:a3:0e:fa:62:7f:66:04:00:4b:ec:fb:48:5f:bf: d0:ab:33:02:f2:9f:9a:c3:83:9e:6e:66:e2:9c:f4:b0:89:2f: 14:26:b1:1f:5e:8f:4f:a0:45:8a:e2:a0:65:78:e3:25:9d:6c: 29:3a:3d:99:35:00:d6:63:6a:1e:37:47:49:1b:96:45:c2:6b: ce:1b:61:e8:d4:e4:97:71:c4:c4:c4:03:af:20:f6:bd:86:d4: 2c:70:8b:df:63:7d:fe:51:06:05:52:30:a8:be:f1:e9:1b:e7: 24:4f:5d:e5:5a:aa:a1:13:08:f7:ee:d4:cd:08:90:87:0c:ff: f3:9e:eb:4d:2d:7b:40:8f:b2:38:32:5f:05:68:1d:95:f6:2d: 5a:93:97:7c:77:28:f2:56:f0:f2:eb:d6:09:60:37:92:68:7c: 1a:9a:ae:90:e1:67:d8:83:59:c6:15:6a:71:cf:66:90:73:f3: c8:12:3c:7a:83:7e:ba:1e:11:a7:06:87:ca:1f:54:97:05:82: c6:aa:98:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjMwODAzMDEwMTU4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmM4NS00MDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHxotMIjkBAnTRPyf8NT0g9UXBIEOBJtn6hSB8kqea9jvjQWIGA9T1mrPOeO wO4kZu4AUPSSkFEDSfnIm0pQ52V5i4eH+59424dqI7sMKtNACfJ93PZXyR2UzYNf /6/rJ41z2lfA4cJu5ScpizLDTbdGhGmGuU3WAXx5KoAKuYpiQB8HJ537MU3+kjLu DBD8/MvOYenWIFCE8UMMh0l63f+CBLpHGQ1F+/jk6BlUgyplO5sBw70sxy2ZuqG5 modtTL1QaS8ZWoDBSQLLzZJgN0p2yO9VHlXsR0BqQzErNUvPDu9CiOYCzL05m9HY /+0ORUwVt2/BOxI/jHB2zGpjuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHpYngj+ 1TknaLAiFWV8ld0IupX4MB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvQUU4QkI3NjYx Nzg5MTFFQzg3NkY1RjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAChK98wDQYJKoZIhvcNAQELBQADggEBADDtbEV4G8TNcrlx 17MoTmKNw2OFDBB5+EqTCIEpnoqVIcQGiG11GGTvLffaRXOA47T8nEvJ6gQeu5Gj Dvpif2YEAEvs+0hfv9CrMwLyn5rDg55uZuKc9LCJLxQmsR9ej0+gRYrioGV44yWd bCk6PZk1ANZjah43R0kblkXCa84bYejU5JdxxMTEA68g9r2G1Cxwi99jff5RBgVS MKi+8ekb5yRPXeVaqqETCPfu1M0IkIcM//Oe600te0CPsjgyXwVoHZX2LVqTl3x3 KPJW8PLr1glgN5JofBqarpDhZ9iDWcYVanHPZpBz88gSPHqDfroeEacGh8ofVJcF gsaqmGQ= -----END CERTIFICATE-----Generated at Thu May 23 02:34:45 2024 by rpki-client on console-fra.rpki-client.org