$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/41E32C9852E411EC9E19AA2FC4F9AE02.roa File: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (raw, json) Hash identifier: Rzh0A53RJhQ7nkX8l0r1eEVHybEfvcunuAZy12At2jc= Subject key identifier: 39:8F:70:6A:72:FF:A8:C4:C1:4A:2E:3B:35:CC:69:42:08:13:30:3C Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 0331 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/41E32C9852E411EC9E19AA2FC4F9AE02.roa Signing time: Sat 05 Aug 2023 01:42:39 +0000 ROA not before: Sat 05 Aug 2023 01:42:39 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 16509 IP address blocks: 202.92.192.0/24 maxlen: 24 202.92.193.0/24 maxlen: 24 202.92.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Apr 2024 01:41:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Aug 5 01:42:39 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cda90f-a3f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:79:96:ec:a4:58:e0:9d:d6:ec:fe:a8:4c:f7: 47:c7:bb:f7:ce:10:dd:83:f1:f5:79:94:bb:c6:0d: c7:61:6a:c6:54:22:95:cb:bc:f6:02:0f:15:80:09: e0:0d:11:95:f4:a1:19:df:3f:01:c5:63:ef:d4:e2: 88:89:db:ea:a8:bd:a4:ba:75:94:f5:96:9b:e5:a3: 53:fb:4f:b6:0f:b1:41:5d:b4:43:e6:6c:76:5b:5a: 40:c9:e1:99:7c:ab:16:e3:87:6f:17:d4:ef:e8:7d: 59:e4:d4:0a:bc:ba:27:2d:98:de:1f:38:b1:8c:e4: 63:e9:57:96:61:5c:ff:14:01:d6:84:c3:50:63:ad: 9d:f1:6a:db:8e:f5:ba:d3:85:97:a2:a8:ba:4d:58: 5a:31:64:8a:27:de:23:b7:b1:ef:c0:20:37:cd:76: 47:35:b9:6c:42:98:8c:37:f3:5a:aa:24:19:ba:2d: e4:b7:e5:f4:2a:49:61:34:ad:db:b2:bc:d9:e8:8e: 27:cc:3d:d0:da:d8:f7:a6:c2:26:bd:be:ee:6e:0c: 2f:07:2d:98:fa:9f:10:14:9d:1e:a3:db:69:4c:69: 31:97:97:fe:aa:c7:41:76:5d:57:a0:9a:d1:ff:23: d3:7f:83:d4:e2:80:bd:96:6c:f0:3a:0b:87:ec:99: 66:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:8F:70:6A:72:FF:A8:C4:C1:4A:2E:3B:35:CC:69:42:08:13:30:3C X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/41E32C9852E411EC9E19AA2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.92.192.0/23 202.92.197.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:80:40:22:ab:d1:0d:55:c4:c3:8b:9c:b7:6b:60:49:d1:34: 12:5f:4a:b3:18:44:c0:14:b7:1e:3f:05:ab:63:08:75:10:d0: fe:4a:b6:e5:40:8f:fd:90:68:1f:cb:84:dd:59:b8:c6:bd:9b: 65:b1:b0:e1:7e:09:d2:27:9d:e2:54:5e:76:f5:70:2c:b4:54: 2b:df:5e:a8:77:65:be:86:2c:9f:b6:e4:1d:fa:60:49:dd:c2: 80:d2:90:c7:3c:73:c5:e4:06:3e:bd:24:74:86:a7:09:f7:00: c8:50:17:88:6b:2a:0e:2e:c1:b4:45:cd:46:c9:38:9c:2e:e8: 54:63:89:c2:35:0a:ff:ed:1f:f7:9c:6e:aa:7c:ed:fb:bc:75: f7:51:d7:77:04:44:b5:c2:b2:0c:54:92:19:b6:66:ab:23:61: 5e:ae:df:cf:74:c2:c6:ed:26:08:fd:cc:ca:4b:db:6f:f8:31: 53:fa:ad:ca:c3:08:65:b9:c8:00:4b:76:4d:50:33:fd:2b:df: 6a:43:6c:11:46:d3:1c:63:ab:a7:29:29:36:f6:78:94:91:ea: 95:35:55:9d:c6:e6:ca:62:ab:95:ed:5d:92:22:ef:2a:6f:ad: 88:09:f2:66:0b:ef:4c:ee:c9:a7:41:29:77:89:c4:11:b1:5d: 0f:eb:3f:cf -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjMwODA1MDE0MjM5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkYTkwZi1hM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXmW7KRY4J3W7P6oTPdHx7v3zhDdg/H1eZS7xg3HYWrGVCKVy7z2Ag8VgAng DRGV9KEZ3z8BxWPv1OKIidvqqL2kunWU9Zab5aNT+0+2D7FBXbRD5mx2W1pAyeGZ fKsW44dvF9Tv6H1Z5NQKvLonLZjeHzixjORj6VeWYVz/FAHWhMNQY62d8WrbjvW6 04WXoqi6TVhaMWSKJ94jt7HvwCA3zXZHNblsQpiMN/NaqiQZui3kt+X0KklhNK3b srzZ6I4nzD3Q2tj3psImvb7ubgwvBy2Y+p8QFJ0eo9tpTGkxl5f+qsdBdl1XoJrR /yPTf4PU4oC9lmzwOguH7Jlm/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDmPcGpy /6jEwUouOzXMaUIIEzA8MB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNDRkYvOUE1RUMxNkM0NkZFMTFFQzk0RTNEMjRBQzRGOUFFMDIvNDFFMzJDOTg1 MkU0MTFFQzlFMTlBQTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHKXMADBADKXMUwDQYJKoZIhvcNAQELBQADggEBAE2AQCKr 0Q1VxMOLnLdrYEnRNBJfSrMYRMAUtx4/BatjCHUQ0P5KtuVAj/2QaB/LhN1ZuMa9 m2WxsOF+CdInneJUXnb1cCy0VCvfXqh3Zb6GLJ+25B36YEndwoDSkMc8c8XkBj69 JHSGpwn3AMhQF4hrKg4uwbRFzUbJOJwu6FRjicI1Cv/tH/ecbqp87fu8dfdR13cE RLXCsgxUkhm2ZqsjYV6u3890wsbtJgj9zMpL22/4MVP6rcrDCGW5yABLdk1QM/0r 32pDbBFG0xxjq6cpKTb2eJSR6pU1VZ3G5spiq5XtXZIi7ypvrYgJ8mYL70zuyadB KXeJxBGxXQ/rP88= -----END CERTIFICATE-----Generated at Wed Apr 17 03:11:58 2024 by rpki-client on console-fra.rpki-client.org