$ rpki-client -vvf rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/07B66286E24A11EEA3478879C4F9AE02.roa File: 07B66286E24A11EEA3478879C4F9AE02.roa (raw, json) Hash identifier: qF4EEK/eOx7T8Rcy1eoQDalCeAmsHD6meK0KtySTD1g= Subject key identifier: F2:1B:29:3F:E4:BA:94:2B:C8:A0:B3:86:EE:26:45:2B:50:83:27:67 Certificate issuer: /CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Certificate serial: 33DF Authority key identifier: 7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/07B66286E24A11EEA3478879C4F9AE02.roa Signing time: Thu 14 Mar 2024 21:30:08 +0000 ROA not before: Thu 14 Mar 2024 21:30:08 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 23923 IP address blocks: 116.68.192.0/20 maxlen: 24 119.148.0.0/18 maxlen: 23 119.148.0.0/20 maxlen: 24 119.148.16.0/22 maxlen: 24 119.148.20.0/24 maxlen: 24 119.148.23.0/24 maxlen: 24 119.148.24.0/21 maxlen: 24 119.148.32.0/19 maxlen: 24 182.252.64.0/20 maxlen: 24 182.252.80.0/21 maxlen: 24 182.252.88.0/22 maxlen: 24 182.252.92.0/24 maxlen: 24 202.53.160.0/20 maxlen: 24 2401:9c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13279 (0x33df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Validity Not Before: Mar 14 21:30:08 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65f36c60-526b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:92:30:bb:0c:df:79:48:a4:32:a8:09:cb:25: aa:f4:fc:56:c8:3e:cd:82:9d:82:ec:33:96:48:04: fd:9c:70:ca:eb:fa:21:47:2c:25:7e:5b:09:a5:a4: 9c:d6:05:eb:1d:4c:31:f6:77:61:d5:95:69:6e:cb: 76:61:7d:d2:c8:65:dc:ef:57:7f:5e:21:af:f3:d0: ef:f0:64:32:f8:0b:32:49:41:2a:29:02:54:86:1a: 4c:d3:5e:76:eb:92:bb:bc:12:cf:96:fe:47:27:98: 8b:e0:fe:52:aa:aa:c3:78:61:0c:e6:e6:ae:5c:36: 78:cd:83:05:a7:c6:0c:97:f6:4d:72:c8:53:4d:1e: 43:d2:4f:5e:23:f9:bc:e1:13:c6:e3:3b:7a:37:0a: a8:fe:ce:e6:32:4a:a3:43:22:70:26:12:d8:c4:c7: 0f:e7:62:98:46:6d:1b:a0:66:c3:57:7e:17:d1:fd: 44:87:1d:a3:9e:fa:7f:36:e6:c6:7e:81:2c:8e:3f: fd:ce:9a:83:b4:ef:88:b7:16:2b:cc:09:a2:29:d6: 97:f2:10:8c:ab:ea:85:4b:d2:48:f4:76:71:38:a6: 51:a3:14:5d:38:59:25:95:40:8d:cf:bc:3f:b3:c7: 36:e9:fb:1e:06:d8:ba:f5:ba:63:7a:4c:63:35:f0: 58:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:1B:29:3F:E4:BA:94:2B:C8:A0:B3:86:EE:26:45:2B:50:83:27:67 X509v3 Authority Key Identifier: keyid:7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/07B66286E24A11EEA3478879C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.68.192.0/20 119.148.0.0/18 182.252.64.0-182.252.92.255 202.53.160.0/20 IPv6: 2401:9c00::/32 Signature Algorithm: sha256WithRSAEncryption a6:fa:49:ca:ac:21:62:30:48:a2:a4:a8:ca:30:3a:ce:42:10: 4b:f4:f7:4f:f0:c5:ea:9b:3b:3e:a4:5b:11:55:31:9d:96:ad: b4:59:8f:7b:21:e1:39:e9:c8:91:b7:c0:7c:6b:b9:75:9b:e4: 7b:ec:49:47:5e:b6:61:d4:04:97:21:99:f7:59:55:52:01:ff: e0:eb:23:87:46:98:f2:8e:35:0f:18:e1:f7:fa:2b:86:17:c0: 06:3e:17:74:8f:75:72:5c:5d:e9:65:cb:22:42:9b:b6:16:25: 7e:83:86:f1:a0:c7:65:d9:f0:67:79:52:a0:0d:1d:2d:64:7f: cf:cb:c3:84:86:38:af:04:2f:1b:94:c9:b9:30:d7:0d:0f:0b: 54:ba:f0:43:39:e2:3b:52:88:29:ff:04:4b:2d:33:ae:de:54: bb:16:b2:61:b2:91:51:cb:ab:d4:9a:f5:f8:4b:37:9f:61:5a: d5:78:51:fe:c4:98:3a:da:21:0e:35:82:e5:2d:c1:1d:e5:04: a9:ef:30:fb:15:d1:3d:c4:37:f9:80:1b:b7:57:50:47:57:3e: 22:79:00:41:ae:1c:77:05:ee:69:e2:f5:1c:03:de:77:af:94: a6:8d:91:37:17:6d:56:9b:25:80:96:53:96:e8:71:ae:ce:c6: f7:3e:1f:5a -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICM98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU5QTUxMTAvBgNVBAUTKDdBQUM2N0RCQzFFQjkyOEUyOTUxMzYyRTBCQzZBQzc2 NzdFMkRDN0IwHhcNMjQwMzE0MjEzMDA4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzNmM2MC01MjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypIwuwzfeUikMqgJyyWq9PxWyD7Ngp2C7DOWSAT9nHDK6/ohRywlflsJpaSc 1gXrHUwx9ndh1ZVpbst2YX3SyGXc71d/XiGv89Dv8GQy+AsySUEqKQJUhhpM0152 65K7vBLPlv5HJ5iL4P5SqqrDeGEM5uauXDZ4zYMFp8YMl/ZNcshTTR5D0k9eI/m8 4RPG4zt6Nwqo/s7mMkqjQyJwJhLYxMcP52KYRm0boGbDV34X0f1Ehx2jnvp/NubG foEsjj/9zpqDtO+ItxYrzAmiKdaX8hCMq+qFS9JI9HZxOKZRoxRdOFkllUCNz7w/ s8c26fseBti69bpjekxjNfBYZwIDAQABo4ICvjCCArowHQYDVR0OBBYEFPIbKT/k upQryKCzhu4mRStQgydnMB8GA1UdIwQYMBaAFHqsZ9vB65KOKVE2LgvGrHZ34tx7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTlBNS9BMzJFRkVCODFE ODkxMUUyOTJFNEZERTIwOEIwMkNEMi9lcXhuMjhIcmtvNHBVVFl1Qzhhc2RuZmkz SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VxeG4yOEhya280cFVUWXVDOGFzZG5maTNIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUU5QTUvQTMyRUZFQjgxRDg5MTFFMjkyRTRGREUyMDhCMDJDRDIvMDdCNjYyODZF MjRBMTFFRUEzNDc4ODc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCYEAgABMCADBAR0RMADBAZ3lAAwDAMEBrb8QAMEALb8XAMEBMo1oDANBAIA AjAHAwUAJAGcADANBgkqhkiG9w0BAQsFAAOCAQEApvpJyqwhYjBIoqSoyjA6zkIQ S/T3T/DF6ps7PqRbEVUxnZattFmPeyHhOenIkbfAfGu5dZvke+xJR162YdQElyGZ 91lVUgH/4Osjh0aY8o41Dxjh9/orhhfABj4XdI91clxd6WXLIkKbthYlfoOG8aDH ZdnwZ3lSoA0dLWR/z8vDhIY4rwQvG5TJuTDXDQ8LVLrwQzniO1KIKf8ESy0zrt5U uxayYbKRUcur1Jr1+Es3n2Fa1XhR/sSYOtohDjWC5S3BHeUEqe8w+xXRPcQ3+YAb t1dQR1c+InkAQa4cdwXuaeL1HAPed6+Upo2RNxdtVpslgJZTluhxrs7G9z4fWg== -----END CERTIFICATE-----Generated at Sat May 18 15:26:05 2024 by rpki-client on console-fra.rpki-client.org