$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AF0A3F14178911EC876F5F50C4F9AE02.roa File: AF0A3F14178911EC876F5F50C4F9AE02.roa (raw, json) Hash identifier: QDfT9hOVpoApckwOzJZ1G4QaXGfi3L3noHOtzJVi/yc= Subject key identifier: ED:AE:02:83:E2:9B:E2:74:82:45:85:8F:01:EF:36:5E:0D:06:33:FF Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 03F4 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AF0A3F14178911EC876F5F50C4F9AE02.roa Signing time: Thu 03 Aug 2023 01:01:59 +0000 ROA not before: Thu 03 Aug 2023 01:01:59 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 7474 IP address blocks: 161.43.64.0/18 maxlen: 18 161.43.96.0/24 maxlen: 24 161.43.97.0/24 maxlen: 24 161.43.192.0/18 maxlen: 18 161.43.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Aug 3 01:01:59 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cafc86-9163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:26:a4:16:40:9c:db:b1:50:b3:a5:b3:75:3c: 70:74:af:da:ab:ca:96:ca:6f:41:58:d0:d9:b1:b5: 19:fa:3c:6e:68:60:bd:25:76:f2:df:23:fa:e1:5c: eb:a5:fb:6e:79:3b:b3:63:90:cb:64:c5:bd:8b:ce: 58:c5:98:8e:34:d2:4a:cd:24:57:be:b7:c1:ea:2d: 90:f0:47:d7:e0:81:28:36:fb:0f:5a:c6:81:b8:6f: 9d:85:dd:95:4b:43:46:f1:91:c2:e9:ff:6e:ba:83: 85:d7:de:5c:1b:f7:1c:44:fc:f5:54:44:9a:63:52: 81:57:d6:85:19:e4:55:24:67:c6:d7:4b:fe:5e:21: 0d:eb:8a:56:bd:6c:55:9b:cc:07:3c:04:30:1d:f7: 6d:81:01:92:54:a3:6b:9a:3d:6f:40:99:a8:03:70: 9a:6c:2e:78:59:28:6f:6c:b9:35:ef:29:6c:f5:f4: 1e:15:c1:86:34:4f:c1:31:31:18:20:5d:59:03:1b: cf:ba:0a:4c:f5:7d:42:fc:fe:33:2d:91:86:65:2d: b8:85:da:e7:a0:41:81:40:26:98:4f:5c:ab:db:94: 1e:70:04:d8:88:75:9c:ef:b1:fe:35:13:9c:05:94: 6a:0f:3b:f1:34:7d:2f:e1:1c:f1:6d:d9:d8:7b:95: c3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:AE:02:83:E2:9B:E2:74:82:45:85:8F:01:EF:36:5E:0D:06:33:FF X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AF0A3F14178911EC876F5F50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.43.64.0/18 161.43.192.0/18 Signature Algorithm: sha256WithRSAEncryption 11:5a:c4:1c:c1:a3:aa:66:50:54:ad:01:21:82:21:f9:d4:18: d6:cf:82:24:47:9c:c0:ac:36:b3:e0:99:28:ee:3a:50:5e:2b: 53:4f:43:84:f8:f0:60:5d:1d:87:31:bb:d4:bd:cb:b3:eb:2a: 7a:64:a2:c4:fa:e8:64:0d:b4:fc:e5:77:17:71:f6:9e:fe:85: 4c:53:6f:b5:96:02:6b:da:15:99:68:7c:f0:99:6d:0b:75:8c: 47:6e:4b:b0:cf:b8:f8:94:d2:fe:8b:bc:01:cf:87:5d:44:3c: fb:b8:4b:e7:25:79:7c:25:09:32:59:44:87:86:29:3c:ef:be: 18:b0:56:f8:04:6e:d6:c2:9a:14:4c:f1:29:ff:e7:88:05:ed: 3b:af:50:76:5d:b8:ae:95:7f:d0:1f:d3:93:90:c3:25:21:2e: d0:98:f7:80:26:8c:ff:71:42:a2:da:5f:c7:f8:cb:e2:2d:20: 3a:2c:ee:3f:c8:20:b9:8d:54:31:1d:45:f4:b0:78:de:3c:26: c1:85:9e:1c:eb:45:b2:6e:bc:c9:b4:b6:46:77:68:f7:63:03: 1f:5b:85:6c:4b:07:08:0b:61:6b:81:2a:6d:49:6a:c6:c2:22: fe:f4:72:4e:f2:64:90:97:33:2a:cc:83:7c:f1:41:9c:e0:6f: ab:bc:72:36 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjMwODAzMDEwMTU5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmM4Ni05MTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiakFkCc27FQs6WzdTxwdK/aq8qWym9BWNDZsbUZ+jxuaGC9JXby3yP64Vzr pftueTuzY5DLZMW9i85YxZiONNJKzSRXvrfB6i2Q8EfX4IEoNvsPWsaBuG+dhd2V S0NG8ZHC6f9uuoOF195cG/ccRPz1VESaY1KBV9aFGeRVJGfG10v+XiEN64pWvWxV m8wHPAQwHfdtgQGSVKNrmj1vQJmoA3CabC54WShvbLk17yls9fQeFcGGNE/BMTEY IF1ZAxvPugpM9X1C/P4zLZGGZS24hdrnoEGBQCaYT1yr25QecATYiHWc77H+NROc BZRqDzvxNH0v4RzxbdnYe5XDhwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO2uAoPi m+J0gkWFjwHvNl4NBjP/MB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvQUYwQTNGMTQx Nzg5MTFFQzg3NkY1RjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAahK0ADBAahK8AwDQYJKoZIhvcNAQELBQADggEBABFaxBzB o6pmUFStASGCIfnUGNbPgiRHnMCsNrPgmSjuOlBeK1NPQ4T48GBdHYcxu9S9y7Pr KnpkosT66GQNtPzldxdx9p7+hUxTb7WWAmvaFZlofPCZbQt1jEduS7DPuPiU0v6L vAHPh11EPPu4S+cleXwlCTJZRIeGKTzvvhiwVvgEbtbCmhRM8Sn/54gF7TuvUHZd uK6Vf9Af05OQwyUhLtCY94AmjP9xQqLaX8f4y+ItIDos7j/IILmNVDEdRfSweN48 JsGFnhzrRbJuvMm0tkZ3aPdjAx9bhWxLBwgLYWuBKm1JasbCIv70ck7yZJCXMyrM g3zxQZzgb6u8cjY= -----END CERTIFICATE-----Generated at Fri May 17 02:38:38 2024 by rpki-client on console-fra.rpki-client.org