$ rpki-client -vvf rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/2A00F51ACDC411EBA2B42F4FC4F9AE02.roa File: 2A00F51ACDC411EBA2B42F4FC4F9AE02.roa (raw, json) Hash identifier: ++G/F+Ju6AF3FX4wXdMvAYNt02d1NK+Z51nDXZBl5jo= Subject key identifier: F9:B3:64:66:D4:CB:90:72:1E:B4:C1:44:06:19:ED:18:F2:C3:9B:E9 Certificate issuer: /CN=A91602BE/serialNumber=17F951844051448C89061404CFB41EAAE0473A7A Certificate serial: 0D89 Authority key identifier: 17:F9:51:84:40:51:44:8C:89:06:14:04:CF:B4:1E:AA:E0:47:3A:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/2A00F51ACDC411EBA2B42F4FC4F9AE02.roa Signing time: Thu 18 Apr 2024 18:56:57 +0000 ROA not before: Thu 18 Apr 2024 18:56:57 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141039 IP address blocks: 116.204.195.0/24 maxlen: 24 2400:bb40:2000::/48 maxlen: 48 2400:bb40:2001::/48 maxlen: 48 2400:bb40:2002::/48 maxlen: 48 2400:bb40:2003::/48 maxlen: 48 2400:bb40:2004::/48 maxlen: 48 2400:bb40:2005::/48 maxlen: 48 2400:bb40:2006::/48 maxlen: 48 2400:bb40:2007::/48 maxlen: 48 2400:bb40:2008::/48 maxlen: 48 2400:bb40:2009::/48 maxlen: 48 2400:bb40:2010::/48 maxlen: 48 2400:bb40:2011::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.crl rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 18:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3465 (0xd89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602BE/serialNumber=17F951844051448C89061404CFB41EAAE0473A7A Validity Not Before: Apr 18 18:56:57 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66216cf8-1f22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:a2:d3:e2:32:53:07:82:10:2b:4d:71:4e: 5a:ec:ef:49:65:90:12:e7:64:24:fe:59:b6:47:ae: 4c:4c:1f:26:42:89:1f:cd:d7:63:97:14:d6:ec:5e: 9d:56:13:9a:93:e3:fb:6a:89:e2:a4:22:61:f2:26: 62:f2:03:59:e0:56:32:29:5c:b0:9d:89:67:0f:63: 4e:4f:bb:f5:0c:9e:0c:bf:8b:9f:3c:ce:b1:72:1d: c8:52:d6:e4:9a:33:61:e8:91:b9:21:84:2d:63:4a: b6:91:10:25:22:03:c6:95:ad:f7:13:cc:7e:28:36: 59:e1:d1:98:d4:eb:3b:ef:e1:a2:02:06:9c:25:25: 86:0f:b9:17:0c:f6:b8:7a:ec:d0:6c:f7:f6:88:bb: 48:c7:ab:9d:f9:66:69:76:5c:30:6e:36:f0:b7:e0: ac:06:78:d7:92:f0:9d:54:a1:13:e7:cb:d0:9c:15: a6:6f:46:00:23:57:32:49:08:ef:ca:c9:7f:05:2e: b1:03:5a:21:dc:67:3c:bf:cc:37:71:4b:7b:38:66: 62:36:e4:c2:ec:65:e4:e9:e5:f0:ce:6a:88:64:25: 66:7a:07:fd:02:2e:08:ce:0c:9d:77:4c:2d:dc:34: 07:16:f6:a4:f2:9d:e7:b9:0d:ae:79:52:5a:34:d1: a6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B3:64:66:D4:CB:90:72:1E:B4:C1:44:06:19:ED:18:F2:C3:9B:E9 X509v3 Authority Key Identifier: keyid:17:F9:51:84:40:51:44:8C:89:06:14:04:CF:B4:1E:AA:E0:47:3A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/2A00F51ACDC411EBA2B42F4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.195.0/24 IPv6: 2400:bb40:2000::-2400:bb40:2009:ffff:ffff:ffff:ffff:ffff 2400:bb40:2010::/47 Signature Algorithm: sha256WithRSAEncryption 57:1d:50:9f:ce:51:64:cc:e4:f5:5f:b3:d0:8f:16:2d:79:f4: ed:b9:47:3b:6a:63:a2:7b:37:66:b4:41:45:cc:cd:25:ab:aa: 9f:8b:37:13:8a:7d:67:96:3f:6c:17:9a:fe:b7:ce:cb:0e:77: 63:b1:75:90:7c:6c:4b:de:03:2a:33:2a:6f:a4:c7:ef:ca:5a: 16:86:bf:0d:81:08:2f:87:24:d3:4f:bd:33:19:d3:a2:93:13: 86:a9:3c:22:f2:93:99:f5:07:c1:60:c9:d0:99:23:79:58:ec: 77:e6:0c:b4:bc:bf:f2:d3:6c:81:66:9c:04:d7:fd:f4:b2:da: 75:44:88:90:a2:84:fe:2a:c9:f2:c3:47:2e:71:3d:31:8e:30: 55:40:c6:b7:bd:78:b5:74:07:ed:eb:5f:21:a4:01:41:b7:81: 15:b7:db:49:fe:8e:e1:04:5b:2c:04:67:af:ee:3b:12:07:fb: cf:68:77:81:37:07:8d:54:10:7b:f9:a2:05:da:b8:dd:1c:c9: bc:07:85:f0:8a:b9:ee:50:ff:67:5a:64:ec:ba:b7:76:e9:96: 6d:29:9b:14:7e:a0:ef:53:da:49:3a:55:9f:16:29:52:a7:5c: a5:b7:18:cf:a4:d8:ef:52:78:c6:c7:58:c9:b6:41:8e:14:7f: ef:41:39:83 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICDYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyQkUxMTAvBgNVBAUTKDE3Rjk1MTg0NDA1MTQ0OEM4OTA2MTQwNENGQjQxRUFB RTA0NzNBN0EwHhcNMjQwNDE4MTg1NjU3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxNmNmOC0xZjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKqi0+IyUweCECtNcU5a7O9JZZAS52Qk/lm2R65MTB8mQokfzddjlxTW7F6d VhOak+P7aonipCJh8iZi8gNZ4FYyKVywnYlnD2NOT7v1DJ4Mv4ufPM6xch3IUtbk mjNh6JG5IYQtY0q2kRAlIgPGla33E8x+KDZZ4dGY1Os77+GiAgacJSWGD7kXDPa4 euzQbPf2iLtIx6ud+WZpdlwwbjbwt+CsBnjXkvCdVKET58vQnBWmb0YAI1cySQjv ysl/BS6xA1oh3Gc8v8w3cUt7OGZiNuTC7GXk6eXwzmqIZCVmegf9Ai4Izgydd0wt 3DQHFvak8p3nuQ2ueVJaNNGmxwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFPmzZGbU y5ByHrTBRAYZ7Rjyw5vpMB8GA1UdIwQYMBaAFBf5UYRAUUSMiQYUBM+0HqrgRzp6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJCRS8zODIxODMzMkEy MUQxMUU5OUM5REM3N0RDNEY5QUUwMi9GX2xSaEVCUlJJeUpCaFFFejdRZXF1QkhP bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZfbFJoRUJSUkl5SkJoUUV6N1FlcXVCSE9uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjAyQkUvMzgyMTgzMzJBMjFEMTFFOTlDOURDNzdEQzRGOUFFMDIvMkEwMEY1MUFD REM0MTFFQkEyQjQyRjRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMAwEAgABMAYDBAB0zMMwIgQCAAIwHDARAwYFJAC7QCADBwEkALtAIAgDBwEk ALtAIBAwDQYJKoZIhvcNAQELBQADggEBAFcdUJ/OUWTM5PVfs9CPFi159O25Rztq Y6J7N2a0QUXMzSWrqp+LNxOKfWeWP2wXmv63zssOd2OxdZB8bEveAyozKm+kx+/K WhaGvw2BCC+HJNNPvTMZ06KTE4apPCLyk5n1B8FgydCZI3lY7HfmDLS8v/LTbIFm nATX/fSy2nVEiJCihP4qyfLDRy5xPTGOMFVAxre9eLV0B+3rXyGkAUG3gRW320n+ juEEWywEZ6/uOxIH+89od4E3B41UEHv5ogXauN0cybwHhfCKue5Q/2daZOy6t3bp lm0pmxR+oO9T2kk6VZ8WKVKnXKW3GM+k2O9SeMbHWMm2QY4Uf+9BOYM= -----END CERTIFICATE-----Generated at Mon May 20 19:59:40 2024 by rpki-client on console-ams.rpki-client.org