$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa File: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (raw, json) Hash identifier: Iv7i7A/6Mu+lxzLCeTQNY67J4Y8FkA9karezRmCzZ0A= Subject key identifier: CD:9A:73:1A:2F:72:FC:10:89:E9:AB:45:9B:B7:3F:7D:85:2E:34:87 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 0500 Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa Signing time: Thu 25 May 2023 01:58:25 +0000 ROA not before: Thu 25 May 2023 01:58:25 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 9790 IP address blocks: 202.3.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1280 (0x500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: May 25 01:58:25 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646ec0c1-ce03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:92:c9:1d:19:4e:ba:97:0d:ca:f2:17:ec:85: 49:8b:7b:25:14:90:42:15:7e:4d:ec:c4:da:34:08: 52:a0:61:53:6a:a2:e7:ad:d2:b5:42:49:55:43:f5: a8:9b:56:4b:a4:e0:86:81:96:72:5d:da:c0:e0:83: fc:ed:fd:9f:ae:59:67:ee:0d:5c:0b:32:7a:e5:52: c2:37:74:15:5c:71:5a:78:69:78:1f:0b:dd:63:3d: 65:99:52:4c:3b:fc:28:cd:af:ee:fe:71:e5:e1:57: 1b:98:3c:df:8b:4e:37:1e:c6:dd:69:43:17:13:36: 7c:2c:09:33:c8:86:ce:ae:e6:23:21:a0:90:89:7d: 12:9a:7c:c5:9f:cc:07:a2:ca:b0:3e:f7:6b:c4:77: ab:e5:51:1e:b6:12:32:90:6c:a5:f0:c9:37:e0:05: bb:b3:c0:58:1a:72:1b:4b:a6:6b:b7:e7:00:a5:d0: 07:b0:ea:39:1e:fc:9c:c8:32:cf:eb:98:10:71:50: 70:3f:dc:b8:44:30:e7:41:e4:31:1f:d3:40:24:42: 33:a0:66:be:3d:17:67:c5:ab:52:52:99:d8:fa:c3: 34:37:2f:75:f4:13:b6:fb:25:a5:1b:97:2a:38:5b: c4:ca:3c:31:65:c8:56:6b:1d:c6:c9:85:a9:e1:01: 73:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:9A:73:1A:2F:72:FC:10:89:E9:AB:45:9B:B7:3F:7D:85:2E:34:87 X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.3.88.0/21 Signature Algorithm: sha256WithRSAEncryption 84:0d:6d:ea:74:fe:0c:0e:9f:43:af:74:ce:44:99:88:3e:f4: 76:73:58:9e:49:a7:3b:67:e3:55:dc:a6:ec:ad:f6:74:41:bb: 0c:cf:e0:b5:ec:ca:6d:f4:f9:5b:9f:e8:b2:8f:9c:31:62:7d: f7:ba:8f:a9:22:02:87:0c:8c:05:34:9a:9d:23:37:48:31:7b: 5a:a3:4d:14:8f:97:74:6f:8a:6b:f0:03:90:bf:74:fa:3f:54: 42:9f:0b:44:89:bc:68:d5:8b:f9:70:00:58:a1:da:4d:af:9b: c9:c6:7c:94:97:0a:42:e8:aa:9a:51:7b:40:17:ad:ad:b6:d2: b3:16:62:2a:a7:af:87:f5:14:ed:b5:1d:8f:41:77:5b:8d:ac: 4f:d3:a3:9f:0c:55:68:13:ee:76:f9:b9:81:a7:16:33:65:27: 34:04:4a:b9:02:0b:f8:21:0c:8b:40:05:40:65:98:b2:8d:30: 8d:37:54:26:fe:37:3e:16:78:a4:cb:c7:03:75:36:0c:76:6f: 4c:c9:64:e8:af:bf:5e:95:b7:24:13:e4:17:dc:96:da:ff:4d: c4:56:87:a5:94:5d:19:88:88:56:bd:c3:58:2f:7b:4c:d9:b3: ac:e9:fe:f5:f4:eb:09:4a:e9:7b:f0:d4:2c:0d:e4:e8:f3:e1: 8c:10:71:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjMwNTI1MDE1ODI1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZlYzBjMS1jZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5LJHRlOupcNyvIX7IVJi3slFJBCFX5N7MTaNAhSoGFTaqLnrdK1QklVQ/Wo m1ZLpOCGgZZyXdrA4IP87f2frlln7g1cCzJ65VLCN3QVXHFaeGl4HwvdYz1lmVJM O/woza/u/nHl4VcbmDzfi043HsbdaUMXEzZ8LAkzyIbOruYjIaCQiX0SmnzFn8wH osqwPvdrxHer5VEethIykGyl8Mk34AW7s8BYGnIbS6Zrt+cApdAHsOo5HvycyDLP 65gQcVBwP9y4RDDnQeQxH9NAJEIzoGa+PRdnxatSUpnY+sM0Ny919BO2+yWlG5cq OFvEyjwxZchWax3GyYWp4QFzCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM2acxov cvwQiemrRZu3P32FLjSHMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjczRUQvNEQ4RkEyMEU3RDQ5MTFFQkExNjU3MzdCQzRGOUFFMDIvQkRCRkZCODY3 RDU0MTFFQjhDQkU1QjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKA1gwDQYJKoZIhvcNAQELBQADggEBAIQNbep0/gwOn0Ov dM5EmYg+9HZzWJ5Jpztn41Xcpuyt9nRBuwzP4LXsym30+Vuf6LKPnDFiffe6j6ki AocMjAU0mp0jN0gxe1qjTRSPl3RvimvwA5C/dPo/VEKfC0SJvGjVi/lwAFih2k2v m8nGfJSXCkLoqppRe0AXra220rMWYiqnr4f1FO21HY9Bd1uNrE/To58MVWgT7nb5 uYGnFjNlJzQESrkCC/ghDItABUBlmLKNMI03VCb+Nz4WeKTLxwN1Ngx2b0zJZOiv v16VtyQT5Bfcltr/TcRWh6WUXRmIiFa9w1gve0zZs6zp/vX06wlK6Xvw1CwN5Ojz 4YwQcRw= -----END CERTIFICATE-----Generated at Fri May 17 01:02:49 2024 by rpki-client on console-ams.rpki-client.org