$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/B34D1A26F6C811EEBC4BE00BC4F9AE02.roa File: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (raw, json) Hash identifier: cEHfcporY2Xrm8zzfMtLLWTL/BLOa+RHRiXEST5Wwlw= Subject key identifier: 01:16:6A:37:FE:FF:38:88:4B:25:98:8B:31:1F:BF:F9:0D:A6:46:A1 Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: D4 Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/B34D1A26F6C811EEBC4BE00BC4F9AE02.roa Signing time: Tue 09 Apr 2024 23:27:16 +0000 ROA not before: Tue 09 Apr 2024 23:27:16 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 19905 IP address blocks: 119.15.0.0/22 maxlen: 24 119.15.4.0/22 maxlen: 24 119.15.8.0/24 maxlen: 24 119.15.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Apr 9 23:27:16 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6615ced3-b6be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1f:26:a6:91:f0:82:b9:94:db:8e:aa:85:86: 84:d4:e2:5b:a9:ca:37:82:10:5f:a1:88:8e:94:43: 99:2b:06:2b:a7:3d:c5:9a:a3:02:29:a6:18:59:16: a2:3f:30:e0:20:b3:e6:b8:7f:a9:fd:ab:7c:a6:31: 6f:62:11:92:b2:82:c1:dd:1e:18:9c:9f:79:23:a2: 74:fc:af:2a:d0:26:ed:69:41:c3:82:0f:e3:07:10: 6b:0b:07:61:73:8d:4a:d3:bb:67:ea:21:e0:ad:d0: ea:69:fd:88:82:43:38:ed:de:95:64:54:5b:96:f9: a0:71:b5:54:b4:40:bd:38:71:4a:55:e2:91:d0:2b: 9a:c7:71:94:b5:d3:4b:47:c5:09:dd:24:d4:3a:62: e3:53:d6:2a:26:57:38:fa:df:29:f9:29:1b:5a:05: 02:28:cd:25:22:4b:68:21:4a:d5:52:ab:69:e9:0c: d8:7d:93:9e:93:44:81:a6:dc:12:38:76:b3:21:3a: fe:6f:b2:b6:28:39:13:b4:c4:33:8f:64:bf:11:02: 7f:0d:f6:cf:f3:3f:56:be:68:7d:5f:4a:90:e7:8d: 96:be:ac:5b:cb:44:2b:3c:7b:2d:0c:e7:6f:22:60: d1:ed:06:ae:6a:ee:52:2b:ba:21:23:d0:05:ef:a8: f6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:16:6A:37:FE:FF:38:88:4B:25:98:8B:31:1F:BF:F9:0D:A6:46:A1 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/B34D1A26F6C811EEBC4BE00BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.15.0.0-119.15.8.255 119.15.13.0/24 Signature Algorithm: sha256WithRSAEncryption 63:2a:63:d5:27:5c:ef:73:70:4d:1f:b7:ef:d9:e0:fd:1e:f1: ee:9e:75:cd:fa:08:d2:1b:3a:a4:3a:f7:93:fb:cc:be:09:1f: 4b:85:76:7e:ad:bb:37:45:0d:fa:ad:bb:a0:d7:ba:01:2b:fb: 67:4c:58:8d:20:f7:d5:57:55:67:c0:25:87:54:9a:c8:53:b3: 3c:46:45:60:a0:ce:58:25:6b:a9:29:e4:d8:04:f7:11:aa:51: ba:79:22:79:e3:36:75:4b:49:50:80:cd:03:09:1b:f5:65:17: ae:59:e7:5e:ab:5b:b8:a6:d9:1b:c2:aa:e0:de:81:3b:99:11: a2:25:23:59:a3:54:bc:9f:1c:c5:93:e1:37:3a:3e:d6:b7:b7: cf:0c:8d:0b:0a:a8:54:8d:ca:21:8f:56:68:b5:8c:58:63:c7: ef:30:e4:83:38:e7:11:8c:d2:1f:4f:97:f7:68:35:a7:7b:76: 6e:00:38:54:8f:9a:89:cd:20:2b:71:ed:e3:d1:4e:1d:b3:c7: 2d:a7:15:b9:a7:8f:5d:b6:28:3c:55:8e:1a:0d:52:cd:40:5e: fa:7a:65:d8:11:77:47:04:cf:05:d3:8b:97:af:e1:d8:32:e3: c9:11:ec:ab:d1:cd:50:78:6c:b4:95:65:39:17:9e:1b:0c:4d: be:29:8c:5a -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjQwNDA5MjMyNzE2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE1Y2VkMy1iNmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2B8mppHwgrmU246qhYaE1OJbqco3ghBfoYiOlEOZKwYrpz3FmqMCKaYYWRai PzDgILPmuH+p/at8pjFvYhGSsoLB3R4YnJ95I6J0/K8q0CbtaUHDgg/jBxBrCwdh c41K07tn6iHgrdDqaf2IgkM47d6VZFRblvmgcbVUtEC9OHFKVeKR0Cuax3GUtdNL R8UJ3STUOmLjU9YqJlc4+t8p+SkbWgUCKM0lIktoIUrVUqtp6QzYfZOek0SBptwS OHazITr+b7K2KDkTtMQzj2S/EQJ/DfbP8z9Wvmh9X0qQ542Wvqxby0QrPHstDOdv ImDR7Qauau5SK7ohI9AF76j2EQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAEWajf+ /ziISyWYizEfv/kNpkahMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY0QTcvQzgwNTVGRDZDOTI1MTFFRDgwOTM2MTQ5QzRGOUFFMDIvQjM0RDFBMjZG NkM4MTFFRUJDNEJFMDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgABMBMwCwMDAHcPAwQAdw8IAwQAdw8NMA0GCSqGSIb3DQEBCwUAA4IB AQBjKmPVJ1zvc3BNH7fv2eD9HvHunnXN+gjSGzqkOveT+8y+CR9LhXZ+rbs3RQ36 rbug17oBK/tnTFiNIPfVV1VnwCWHVJrIU7M8RkVgoM5YJWupKeTYBPcRqlG6eSJ5 4zZ1S0lQgM0DCRv1ZReuWedeq1u4ptkbwqrg3oE7mRGiJSNZo1S8nxzFk+E3Oj7W t7fPDI0LCqhUjcohj1ZotYxYY8fvMOSDOOcRjNIfT5f3aDWne3ZuADhUj5qJzSAr ce3j0U4ds8ctpxW5p49dtig8VY4aDVLNQF76emXYEXdHBM8F04uXr+HYMuPJEeyr 0c1QeGy0lWU5F54bDE2+KYxa -----END CERTIFICATE-----Generated at Wed May 1 07:06:29 2024 by rpki-client on console-fra.rpki-client.org