$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/B6413BFC536311EAB9ACF938C4F9AE02.roa File: B6413BFC536311EAB9ACF938C4F9AE02.roa (raw, json) Hash identifier: QeOFI2Kx+EFLykAXKUi6azsaK2CO9oB1eMyBsNM6wc8= Subject key identifier: BB:77:33:CE:FE:AC:07:77:6A:9E:8D:EB:EF:BD:32:30:30:C7:E9:C1 Certificate issuer: /CN=A919EF51/serialNumber=806706637950EF8DAE7BEBD1C9A74BB1F265D417 Certificate serial: 09F0 Authority key identifier: 80:67:06:63:79:50:EF:8D:AE:7B:EB:D1:C9:A7:4B:B1:F2:65:D4:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGcGY3lQ742ue-vRyadLsfJl1Bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/B6413BFC536311EAB9ACF938C4F9AE02.roa Signing time: Tue 12 Sep 2023 19:57:40 +0000 ROA not before: Tue 12 Sep 2023 19:57:40 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 0 IP address blocks: 218.100.52.0/23 maxlen: 23 218.100.54.0/24 maxlen: 24 218.100.76.0/24 maxlen: 24 218.100.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/gGcGY3lQ742ue-vRyadLsfJl1Bc.crl rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/gGcGY3lQ742ue-vRyadLsfJl1Bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGcGY3lQ742ue-vRyadLsfJl1Bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 20:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2544 (0x9f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF51/serialNumber=806706637950EF8DAE7BEBD1C9A74BB1F265D417 Validity Not Before: Sep 12 19:57:40 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6500c2b4-14ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a8:1e:97:fe:86:12:a9:b4:15:5c:b0:53:49: 92:ba:a7:4d:9d:58:b5:6d:c1:41:4a:71:42:6c:b5: 8b:1f:7a:96:80:35:2a:41:a5:ac:e5:31:39:b2:85: f7:68:39:99:3b:fa:64:03:50:13:33:45:a2:aa:ab: 2c:e9:df:ec:bf:7d:99:2b:a9:3a:b9:e7:1f:cb:0e: f8:78:59:8b:b0:52:1d:55:cd:c3:de:46:a8:22:95: 9a:98:71:e5:d0:26:0c:14:7c:1f:f4:ba:a4:5f:31: ac:9d:0d:d2:49:50:1a:fa:2f:a2:3b:04:e5:43:23: b5:7e:ab:b4:17:ed:eb:57:db:98:55:a9:e4:05:fd: e9:2f:4b:7a:07:7c:7d:e3:ea:e0:41:b6:8e:a6:6b: 59:59:48:45:71:d6:f8:fa:21:80:e0:de:ec:35:9a: 00:b2:f6:23:97:f5:b3:84:ff:e8:71:5e:20:3b:bc: 51:f4:9b:f0:01:e0:c8:79:e7:e0:9b:e0:87:87:9a: 59:ac:fd:c3:3f:70:7d:b4:d9:dc:03:6a:b2:1d:c5: 0e:c0:02:1a:58:84:c7:f3:69:bf:0b:09:36:3d:35: 8b:a9:2b:76:2d:5f:97:ea:de:db:ce:f4:cc:9d:e8: bc:b4:6c:10:7b:c8:ac:06:f4:e7:98:8d:0d:ee:94: ef:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:77:33:CE:FE:AC:07:77:6A:9E:8D:EB:EF:BD:32:30:30:C7:E9:C1 X509v3 Authority Key Identifier: keyid:80:67:06:63:79:50:EF:8D:AE:7B:EB:D1:C9:A7:4B:B1:F2:65:D4:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/gGcGY3lQ742ue-vRyadLsfJl1Bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGcGY3lQ742ue-vRyadLsfJl1Bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/B6413BFC536311EAB9ACF938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.100.52.0-218.100.54.255 218.100.76.0/24 218.100.78.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:7f:a8:f7:6e:56:2a:a5:f5:ca:b0:df:6a:36:35:1c:fb:18: d1:59:ec:59:48:42:0e:11:5e:9e:85:9e:c9:42:1a:a2:e7:61: f1:41:81:22:f0:42:32:07:96:0b:ba:bd:9b:25:c4:e2:53:d4: 65:8c:66:32:56:c1:20:09:7b:c1:45:98:c5:c1:e3:f5:43:1f: 66:f4:56:ea:ca:ae:3f:48:92:dd:39:de:7f:b4:10:76:62:12: 67:d4:df:3c:90:12:7b:67:9a:23:35:0c:63:03:79:63:b2:b0: 6c:9b:9f:e9:1c:d4:25:3b:67:e3:db:d7:0c:0b:f1:82:73:91: 08:5e:b3:7a:e9:04:90:07:26:7e:84:2a:34:31:22:c0:85:82: 55:1f:6d:4e:6e:0d:fb:d6:86:31:d6:04:46:eb:51:57:ae:38: a5:88:a8:dc:78:42:87:35:b5:17:e5:77:e8:19:e4:f3:0b:25: ad:d0:f7:9e:37:fe:11:cd:43:c4:09:22:55:c7:6b:e6:a8:a0: 72:6c:79:6b:fd:74:a4:23:b4:9e:b1:ab:e0:49:3e:cc:86:a3: 21:a2:c1:63:9e:7f:f5:19:ce:f1:45:39:5f:31:93:36:de:de: 96:24:48:08:2c:9d:4c:87:ef:5f:cc:df:2b:ce:f5:99:36:b3: 2c:ad:d2:06 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNTExMTAvBgNVBAUTKDgwNjcwNjYzNzk1MEVGOERBRTdCRUJEMUM5QTc0QkIx RjI2NUQ0MTcwHhcNMjMwOTEyMTk1NzQwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwYzJiNC0xNGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwagel/6GEqm0FVywU0mSuqdNnVi1bcFBSnFCbLWLH3qWgDUqQaWs5TE5soX3 aDmZO/pkA1ATM0Wiqqss6d/sv32ZK6k6uecfyw74eFmLsFIdVc3D3kaoIpWamHHl 0CYMFHwf9LqkXzGsnQ3SSVAa+i+iOwTlQyO1fqu0F+3rV9uYVankBf3pL0t6B3x9 4+rgQbaOpmtZWUhFcdb4+iGA4N7sNZoAsvYjl/WzhP/ocV4gO7xR9JvwAeDIeefg m+CHh5pZrP3DP3B9tNncA2qyHcUOwAIaWITH82m/Cwk2PTWLqSt2LV+X6t7bzvTM nei8tGwQe8isBvTnmI0N7pTv3QIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFLt3M87+ rAd3ap6N6++9MjAwx+nBMB8GA1UdIwQYMBaAFIBnBmN5UO+Nrnvr0cmnS7HyZdQX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY1MS9BODgzRTgxQzNE ODIxMUVBOUYyNjczNzBDNEY5QUUwMi9nR2NHWTNsUTc0MnVlLXZSeWFkTHNmSmwx QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dHY0dZM2xRNzQydWUtdlJ5YWRMc2ZKbDFCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGNTEvQTg4M0U4MUMzRDgyMTFFQTlGMjY3MzcwQzRGOUFFMDIvQjY0MTNCRkM1 MzYzMTFFQUI5QUNGOTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAtpkNAMEANpkNgMEANpkTAMEANpkTjANBgkqhkiG9w0B AQsFAAOCAQEAH3+o925WKqX1yrDfajY1HPsY0VnsWUhCDhFenoWeyUIaoudh8UGB IvBCMgeWC7q9myXE4lPUZYxmMlbBIAl7wUWYxcHj9UMfZvRW6squP0iS3Tnef7QQ dmISZ9TfPJASe2eaIzUMYwN5Y7KwbJuf6RzUJTtn49vXDAvxgnORCF6zeukEkAcm foQqNDEiwIWCVR9tTm4N+9aGMdYERutRV644pYio3HhChzW1F+V36Bnk8wslrdD3 njf+Ec1DxAkiVcdr5qigcmx5a/10pCO0nrGr4Ek+zIajIaLBY55/9RnO8UU5XzGT Nt7eliRICCydTIfvX8zfK871mTazLK3SBg== -----END CERTIFICATE-----Generated at Thu Apr 18 23:10:16 2024 by rpki-client on console-ams.rpki-client.org