$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa File: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (raw, json) Hash identifier: MHbKxjRdRW+sWjeG2egcNA+1CsQobnBeLKdZis6n4A4= Subject key identifier: D0:7E:3F:E1:18:20:B1:D9:3D:38:D7:5A:B0:45:F8:3E:2F:FF:2F:9F Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0761 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa Signing time: Fri 18 Aug 2023 21:38:53 +0000 ROA not before: Fri 18 Aug 2023 21:38:53 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 198381 IP address blocks: 116.58.5.0/24 maxlen: 24 116.58.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1889 (0x761) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Aug 18 21:38:53 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64dfe4ed-b56a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:16:24:98:1b:cd:3a:00:81:67:cd:b6:ec:d6: 40:0a:59:32:9b:1e:73:77:91:1c:49:d7:98:19:f3: be:3b:13:59:5f:c4:f8:b5:f0:d2:a5:f2:27:96:d3: fb:8b:1d:ac:65:aa:26:6e:54:4f:8e:56:b3:56:ad: 7f:e3:20:c4:6f:71:fc:92:7a:13:ff:b9:98:5d:39: 7f:9a:dd:2a:b3:b0:4c:3e:5c:25:58:76:f8:9a:87: f6:f3:e2:2e:c5:5a:86:6b:0e:b4:fc:9a:7b:df:d3: 79:03:c8:01:ae:cb:cf:3c:0d:87:bc:a3:1d:a1:71: 26:4a:4a:39:bb:7f:63:3e:f6:54:e6:2b:31:2e:1b: 9b:b4:f5:4a:5e:2d:8c:fc:4a:13:18:8e:57:1b:ab: 99:fc:11:2f:e8:10:62:e1:69:bf:e5:f7:ab:e9:1a: e2:de:e0:7a:89:78:fc:2a:01:b2:03:7c:76:4e:10: c1:0f:0b:22:ce:5f:a2:34:63:51:01:97:5e:99:9e: e7:5a:84:a5:17:7b:71:ed:41:8e:0c:d6:68:0b:26: 6f:fd:a0:3f:2c:e3:4e:87:09:5e:1d:1c:9d:24:10: 35:86:ce:3e:bd:6c:17:da:13:21:ea:16:5a:a7:56: 5e:23:72:01:61:83:e5:1e:19:93:cf:d0:78:1d:37: bb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7E:3F:E1:18:20:B1:D9:3D:38:D7:5A:B0:45:F8:3E:2F:FF:2F:9F X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.58.5.0-116.58.6.255 Signature Algorithm: sha256WithRSAEncryption a9:b9:4d:b7:9d:02:60:ca:3d:f8:c1:e7:42:33:dc:c4:0c:12: 82:56:b1:dd:5d:54:e5:50:4d:21:1a:3f:9f:ac:fb:72:70:c8: a1:46:06:d7:39:8b:3e:5e:f6:68:c9:e6:55:40:50:25:74:f8: e3:7e:64:82:f2:29:4e:b1:91:e2:99:c2:ef:53:6e:11:86:e8: 1b:f5:18:1a:f4:27:2e:c0:45:fc:30:57:ca:a0:cc:1c:2a:49: 71:9f:47:69:5b:40:a6:0a:25:ff:6a:b8:e4:99:0c:f2:69:3b: 63:87:09:9f:d3:84:83:ff:75:fb:8e:8e:77:66:93:57:8c:60: 3b:f3:f0:ee:42:8c:62:c7:b0:f7:4c:24:8e:9b:1f:b4:58:11: 5b:ad:7f:a5:e1:d4:e6:43:ae:85:67:61:70:8a:5f:a4:37:76: 4d:00:f3:a6:b6:af:28:2f:7c:18:28:c9:a3:96:9a:64:3a:07: 97:95:73:49:40:20:74:8d:4e:5a:cd:cc:c0:0a:64:13:93:db: b8:35:73:ae:11:01:85:48:2c:69:28:15:2a:6c:f2:0b:1c:a7: 3c:78:78:29:3c:74:69:2d:31:07:70:d4:94:a9:a4:17:77:b2: cf:cd:dd:70:a7:f1:8f:3f:d5:5f:c7:17:7e:71:39:81:34:c7: 36:d8:04:e7 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICB2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjMwODE4MjEzODUzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRmZTRlZC1iNTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRYkmBvNOgCBZ8227NZAClkymx5zd5EcSdeYGfO+OxNZX8T4tfDSpfInltP7 ix2sZaomblRPjlazVq1/4yDEb3H8knoT/7mYXTl/mt0qs7BMPlwlWHb4mof28+Iu xVqGaw60/Jp739N5A8gBrsvPPA2HvKMdoXEmSko5u39jPvZU5isxLhubtPVKXi2M /EoTGI5XG6uZ/BEv6BBi4Wm/5fer6Rri3uB6iXj8KgGyA3x2ThDBDwsizl+iNGNR AZdemZ7nWoSlF3tx7UGODNZoCyZv/aA/LONOhwleHRydJBA1hs4+vWwX2hMh6hZa p1ZeI3IBYYPlHhmTz9B4HTe7owIDAQABo4ICnTCCApkwHQYDVR0OBBYEFNB+P+EY ILHZPTjXWrBF+D4v/y+fMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVBMEIvMTU1ODZGNDJDNEY4MTFFQThCOUI0QzEzQzRGOUFFMDIvOEM1MUFFRjhD NEZCMTFFQUFFQUU3QzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAHQ6BQMEAHQ6BjANBgkqhkiG9w0BAQsFAAOCAQEAqblN t50CYMo9+MHnQjPcxAwSglax3V1U5VBNIRo/n6z7cnDIoUYG1zmLPl72aMnmVUBQ JXT4435kgvIpTrGR4pnC71NuEYboG/UYGvQnLsBF/DBXyqDMHCpJcZ9HaVtApgol /2q45JkM8mk7Y4cJn9OEg/91+46Od2aTV4xgO/Pw7kKMYsew90wkjpsftFgRW61/ peHU5kOuhWdhcIpfpDd2TQDzpravKC98GCjJo5aaZDoHl5VzSUAgdI1OWs3MwApk E5PbuDVzrhEBhUgsaSgVKmzyCxynPHh4KTx0aS0xB3DUlKmkF3eyz83dcKfxjz/V X8cXfnE5gTTHNtgE5w== -----END CERTIFICATE-----Generated at Thu May 16 22:58:18 2024 by rpki-client on console-fra.rpki-client.org