$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/2486E806F0E311EAA1C58D62C4F9AE02.roa File: 2486E806F0E311EAA1C58D62C4F9AE02.roa (raw, json) Hash identifier: /tFNPFcAlkltOR4Cb/tycUVKBSfOAFnQscvr/fRQDrI= Subject key identifier: 9C:B8:BE:BA:78:53:00:62:88:20:64:30:02:3C:DB:FB:95:35:C9:DF Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2374 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/2486E806F0E311EAA1C58D62C4F9AE02.roa Signing time: Tue 24 Oct 2023 16:02:53 +0000 ROA not before: Tue 24 Oct 2023 16:02:53 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 19905 IP address blocks: 116.0.107.0/24 maxlen: 24 124.158.230.0/24 maxlen: 24 124.158.233.0/24 maxlen: 24 203.223.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9076 (0x2374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Oct 24 16:02:53 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6537eaad-2595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a9:2f:c8:e1:1b:ca:75:76:00:94:b6:8a:41: 61:be:db:d2:88:d9:18:32:9b:7d:81:0d:ec:70:52: c7:89:35:31:45:88:64:7f:87:ca:2a:d2:2a:2b:22: b3:50:6b:03:87:99:8c:9c:b2:3e:b4:68:13:1d:af: 37:5c:a1:7f:57:e6:2b:c2:c7:e4:0b:08:f3:30:68: 45:c5:e3:d6:e3:57:6c:39:f0:39:f9:96:ed:ba:66: a6:8a:ff:99:79:a0:f1:6c:b4:7c:9c:bb:82:1a:c8: a1:49:24:49:5d:87:cd:42:50:b9:c9:2f:ab:8d:09: 91:16:38:fe:fd:38:0c:0a:b3:24:6f:89:a6:0e:b7: ee:f5:0d:51:27:18:fa:39:02:99:dc:70:6d:9e:4e: 04:ad:41:49:80:ac:f7:4e:0b:4d:4d:1c:99:5b:70: 70:ee:2e:07:ec:19:7b:ea:cb:5b:d5:25:0c:21:ca: 2f:06:97:cc:1d:bc:3a:e7:20:e4:9b:14:09:04:c6: 4e:8c:71:f7:22:60:cf:80:65:08:0e:d5:f6:db:6d: 15:6a:18:9e:05:1a:43:ce:fa:46:9c:2b:f6:6f:a0: 8d:51:73:ce:72:9e:8b:e9:a8:95:9d:b4:c7:ec:c7: e8:67:ec:80:79:4e:ce:0b:a4:f5:ee:48:80:72:66: fc:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B8:BE:BA:78:53:00:62:88:20:64:30:02:3C:DB:FB:95:35:C9:DF X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/2486E806F0E311EAA1C58D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.0.107.0/24 124.158.230.0/24 124.158.233.0/24 203.223.145.0/24 Signature Algorithm: sha256WithRSAEncryption 80:42:6c:c2:3a:5a:4b:7e:a4:48:b8:11:17:de:0b:67:25:d1: 29:d5:9a:19:ab:e7:63:cc:dc:d7:90:33:8c:56:3f:98:60:83: 7b:60:ee:d2:e4:82:cb:17:46:a5:45:79:d8:3c:f9:27:02:f3: f4:36:4f:4f:d7:e9:6e:31:bd:df:ac:6a:e1:33:aa:b7:6c:83: d8:95:06:f3:91:8f:02:b7:96:de:33:06:4d:2c:0c:73:77:b9: 8f:27:3c:52:63:8c:91:57:6e:03:c2:d2:f1:eb:cb:81:df:8c: c3:fd:09:8c:d9:3b:61:ae:77:a5:10:98:bc:0b:5e:55:a6:74: e0:75:8c:21:bd:66:9d:4e:a8:c6:75:1c:4b:9c:f8:24:d0:3b: 1e:0f:ee:57:c7:21:a7:df:3e:d5:c7:05:01:55:09:97:f5:a9: 02:1f:d2:38:97:4e:e9:03:e1:51:fe:b5:94:0b:95:9b:db:bd: 67:09:85:aa:a5:57:09:29:1c:ec:d6:27:85:b9:1f:38:81:e3: 00:84:fa:9b:b9:d7:3e:e7:cb:b9:d6:66:2d:7a:ee:f8:9c:58: 92:38:53:a8:af:76:02:b6:67:b5:21:22:7a:79:2f:8d:82:8f: 0d:9e:68:1c:a5:ba:af:b0:87:d9:45:ec:a0:fa:3f:79:4b:d9: 4a:cb:3c:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICI3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjMxMDI0MTYwMjUzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM3ZWFhZC0yNTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKkvyOEbynV2AJS2ikFhvtvSiNkYMpt9gQ3scFLHiTUxRYhkf4fKKtIqKyKz UGsDh5mMnLI+tGgTHa83XKF/V+YrwsfkCwjzMGhFxePW41dsOfA5+Zbtumamiv+Z eaDxbLR8nLuCGsihSSRJXYfNQlC5yS+rjQmRFjj+/TgMCrMkb4mmDrfu9Q1RJxj6 OQKZ3HBtnk4ErUFJgKz3TgtNTRyZW3Bw7i4H7Bl76stb1SUMIcovBpfMHbw65yDk mxQJBMZOjHH3ImDPgGUIDtX2220VahieBRpDzvpGnCv2b6CNUXPOcp6L6aiVnbTH 7MfoZ+yAeU7OC6T17kiAcmb8+wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFJy4vrp4 UwBiiCBkMAI82/uVNcnfMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUwQTUvMTdERkIzNUE0NkU2MTFFNUIwOERBMTdCQzRGOUFFMDIvMjQ4NkU4MDZG MEUzMTFFQUExQzU4RDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAB0AGsDBAB8nuYDBAB8nukDBADL35EwDQYJKoZIhvcNAQEL BQADggEBAIBCbMI6Wkt+pEi4ERfeC2cl0SnVmhmr52PM3NeQM4xWP5hgg3tg7tLk gssXRqVFedg8+ScC8/Q2T0/X6W4xvd+sauEzqrdsg9iVBvORjwK3lt4zBk0sDHN3 uY8nPFJjjJFXbgPC0vHry4HfjMP9CYzZO2Gud6UQmLwLXlWmdOB1jCG9Zp1OqMZ1 HEuc+CTQOx4P7lfHIaffPtXHBQFVCZf1qQIf0jiXTukD4VH+tZQLlZvbvWcJhaql VwkpHOzWJ4W5HziB4wCE+pu51z7ny7nWZi167vicWJI4U6ivdgK2Z7UhInp5L42C jw2eaByluq+wh9lF7KD6P3lL2UrLPOM= -----END CERTIFICATE-----Generated at Tue Apr 30 19:21:23 2024 by rpki-client on console-ams.rpki-client.org