$ rpki-client -vvf rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/096864742F4C11EDB0375D6CC4F9AE02.roa File: 096864742F4C11EDB0375D6CC4F9AE02.roa (raw, json) Hash identifier: FuHjgpF9oPy+/0lXja+8JX73oSq2n/MaM9og5kXtBRc= Subject key identifier: 93:32:9F:2D:34:EA:18:71:30:CE:9E:C3:73:6F:30:AE:37:A6:E1:FB Certificate issuer: /CN=A91813F1/serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Certificate serial: 0785 Authority key identifier: 9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/096864742F4C11EDB0375D6CC4F9AE02.roa Signing time: Wed 06 Sep 2023 21:29:01 +0000 ROA not before: Wed 06 Sep 2023 21:29:01 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38001 IP address blocks: 111.221.44.0/22 maxlen: 22 111.221.44.0/24 maxlen: 24 111.221.45.0/24 maxlen: 24 111.221.46.0/24 maxlen: 24 111.221.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1925 (0x785) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813F1/serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Validity Not Before: Sep 6 21:29:01 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f8ef1d-eb3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ff:94:34:5f:8e:4a:82:be:af:6d:28:16:00: 25:38:ed:0c:c2:da:1c:36:03:84:08:fc:67:a3:4a: a5:4c:c6:1d:3d:99:89:33:66:3a:1b:58:d6:54:60: 1e:38:98:4c:b4:80:25:97:2e:36:2a:ba:1b:0a:5b: 46:e4:01:df:b9:e0:c1:24:61:06:53:30:d3:c3:11: c1:c7:31:46:67:fe:52:e9:43:15:8f:6b:45:6d:57: 4b:52:c3:b1:7d:ee:91:a2:0d:f9:b6:36:12:77:b9: ab:06:f6:12:f8:f7:99:0e:77:9e:f3:b8:d3:9e:97: 44:9d:e7:0a:46:bb:94:47:c0:18:40:76:c1:7c:cb: 70:76:a0:98:95:b0:e1:e7:ac:6e:cb:09:5e:fe:5c: b6:c3:2d:0a:97:d6:78:1d:59:45:17:a0:7d:9c:27: 80:0c:c5:7b:e4:95:85:6d:20:21:bb:dc:78:03:80: a4:8f:f0:04:89:f7:4a:7f:ea:1c:51:71:72:7c:17: 49:b5:c0:e2:ab:18:62:e2:cc:b8:d2:52:ae:fa:ab: fd:e1:27:3f:db:82:a1:d3:ca:54:36:e9:ab:a2:35: 68:2f:da:aa:3f:71:76:a6:a4:97:61:df:ad:da:5f: 4e:9e:cc:63:f6:6a:e9:53:f2:15:73:36:14:9d:2a: df:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:32:9F:2D:34:EA:18:71:30:CE:9E:C3:73:6F:30:AE:37:A6:E1:FB X509v3 Authority Key Identifier: keyid:9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/096864742F4C11EDB0375D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.221.44.0/22 Signature Algorithm: sha256WithRSAEncryption 63:16:2c:8c:64:49:9b:60:d3:07:80:15:8f:02:9e:ae:61:ef: db:69:84:8d:e2:83:5f:c5:49:83:61:4d:a7:0a:5e:95:34:c1: 82:25:08:77:10:f4:59:2b:fc:dc:07:7d:9a:a4:5b:5a:54:02: 9c:2c:b2:f3:91:63:90:bf:f2:ca:29:8c:27:ac:4e:fe:d5:b8: ed:4a:62:03:c9:0f:06:09:f0:0c:2d:4e:c1:25:33:cb:6e:4a: 3a:24:23:8f:7e:60:97:c7:63:f5:0d:0a:0c:43:be:57:41:8b: 2a:3c:c8:74:0c:1d:a9:41:00:37:2c:0d:3b:23:7b:ee:44:f6: e1:0e:8a:ea:21:3d:28:a8:1a:8d:55:dc:c8:f8:c0:dc:21:9e: 3f:ce:88:ed:4b:67:11:1b:ce:08:3d:77:42:b9:27:71:54:4f: 60:81:9f:68:9a:5e:d9:a9:c5:d1:42:69:18:2a:c7:91:00:f2: ce:45:4d:4c:ba:13:50:9f:58:f7:e2:cd:e8:11:2e:a2:6b:6c: 8f:e3:1e:60:29:65:18:f5:ed:85:54:c8:4a:b2:25:ba:8f:0a: fb:be:db:37:d2:8c:ea:e6:48:45:33:4d:09:34:7a:80:65:5b: 7f:ed:45:f3:6a:ce:f9:b5:90:a7:e6:09:40:78:22:32:e8:cc: 4b:c4:2d:05 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRjExMTAvBgNVBAUTKDlFRkVBQTcyNEQ3MDhDRkU4MkM2QjZCRjI3MENCQjVE RDQzMDZGMjAwHhcNMjMwOTA2MjEyOTAxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY4ZWYxZC1lYjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2P+UNF+OSoK+r20oFgAlOO0MwtocNgOECPxno0qlTMYdPZmJM2Y6G1jWVGAe OJhMtIAlly42KrobCltG5AHfueDBJGEGUzDTwxHBxzFGZ/5S6UMVj2tFbVdLUsOx fe6Rog35tjYSd7mrBvYS+PeZDnee87jTnpdEnecKRruUR8AYQHbBfMtwdqCYlbDh 56xuywle/ly2wy0Kl9Z4HVlFF6B9nCeADMV75JWFbSAhu9x4A4Ckj/AEifdKf+oc UXFyfBdJtcDiqxhi4sy40lKu+qv94Sc/24Kh08pUNumrojVoL9qqP3F2pqSXYd+t 2l9Onsxj9mrpU/IVczYUnSrfawIDAQABo4IClTCCApEwHQYDVR0OBBYEFJMyny00 6hhxMM6ew3NvMK43puH7MB8GA1UdIwQYMBaAFJ7+qnJNcIz+gsa2vycMu13UMG8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNGMS9EMENBRjM4NEJB NTkxMUVBOTA0RkY5MURDNEY5QUUwMi9udjZxY2sxd2pQNkN4cmFfSnd5N1hkUXdi eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252NnFjazF3alA2Q3hyYV9Kd3k3WGRRd2J5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRjEvRDBDQUYzODRCQTU5MTFFQTkwNEZGOTFEQzRGOUFFMDIvMDk2ODY0NzQy RjRDMTFFREIwMzc1RDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJv3SwwDQYJKoZIhvcNAQELBQADggEBAGMWLIxkSZtg0weA FY8Cnq5h79tphI3ig1/FSYNhTacKXpU0wYIlCHcQ9Fkr/NwHfZqkW1pUApwssvOR Y5C/8sopjCesTv7VuO1KYgPJDwYJ8AwtTsElM8tuSjokI49+YJfHY/UNCgxDvldB iyo8yHQMHalBADcsDTsje+5E9uEOiuohPSioGo1V3Mj4wNwhnj/OiO1LZxEbzgg9 d0K5J3FUT2CBn2iaXtmpxdFCaRgqx5EA8s5FTUy6E1CfWPfizegRLqJrbI/jHmAp ZRj17YVUyEqyJbqPCvu+2zfSjOrmSEUzTQk0eoBlW3/tRfNqzvm1kKfmCUB4IjLo zEvELQU= -----END CERTIFICATE-----Generated at Fri May 10 23:04:08 2024 by rpki-client on console-ams.rpki-client.org