$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa File: D64176D81B9911ECAB0E1678C4F9AE02.roa (raw, json) Hash identifier: rwIaCHs751bp3CHJshIBZ72YBuLElDd7VYksH4R4uKc= Subject key identifier: 6C:5D:A8:FB:3F:E5:99:43:C7:8B:69:BB:06:72:8A:28:58:4C:3E:77 Certificate issuer: /CN=A919F0DA/serialNumber=082F1EE92FEA6373FDA1D5AEC46E2F2D8AE8AC87 Certificate serial: 066E Authority key identifier: 08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa Signing time: Thu 22 Jun 2023 14:40:05 +0000 ROA not before: Thu 22 Jun 2023 14:40:05 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 4758 IP address blocks: 164.100.0.0/16 maxlen: 16 164.100.0.0/17 maxlen: 17 164.100.0.0/18 maxlen: 24 164.100.64.0/19 maxlen: 24 164.100.96.0/19 maxlen: 19 164.100.96.0/20 maxlen: 20 164.100.96.0/23 maxlen: 24 164.100.98.0/24 maxlen: 24 164.100.99.0/24 maxlen: 24 164.100.100.0/22 maxlen: 24 164.100.104.0/21 maxlen: 24 164.100.112.0/20 maxlen: 24 164.100.128.0/17 maxlen: 23 164.100.128.0/19 maxlen: 24 164.100.160.0/20 maxlen: 24 164.100.176.0/21 maxlen: 24 164.100.184.0/22 maxlen: 24 164.100.188.0/24 maxlen: 24 164.100.190.0/23 maxlen: 24 164.100.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA/serialNumber=082F1EE92FEA6373FDA1D5AEC46E2F2D8AE8AC87 Validity Not Before: Jun 22 14:40:05 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64945d45-dcd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a4:74:34:96:96:b8:69:7b:17:84:6c:d8:de: cc:e0:6d:67:e9:d7:d7:6c:a2:20:c3:90:6f:52:8c: 49:93:40:37:4d:05:72:2c:62:2e:6a:2e:46:a1:32: 65:b5:ab:e0:a1:78:8e:43:88:f5:48:40:63:1f:3c: c2:69:b0:3e:d0:c7:c1:81:2a:14:99:ee:02:ec:c6: 82:01:01:8f:e0:b2:50:8b:fc:2a:89:06:09:bf:a0: e4:02:86:00:51:72:45:b4:9b:5c:e1:c9:cb:c4:a1: ef:1e:da:9f:53:f8:40:47:e9:f4:f9:34:99:d3:e4: 53:b8:19:ca:49:09:9b:cc:f5:5c:57:55:90:16:90: de:1e:37:fe:66:d6:49:31:a5:95:d0:7f:e9:a1:de: 3e:ce:f3:27:e7:8d:32:a8:8b:f8:aa:6b:42:8b:63: ee:69:b0:ad:24:45:2a:11:bd:62:4b:08:30:24:77: bb:9d:99:c0:d1:36:3e:78:0f:c4:10:54:6a:c5:f5: 59:76:40:68:eb:be:47:c7:53:4a:a1:02:ed:ed:99: 8d:78:e9:fe:10:35:c8:fb:59:cf:b1:05:d5:8a:70: c4:90:cc:90:68:5a:28:4a:46:3a:31:59:7f:2f:0f: b2:d9:42:c1:39:e5:1a:77:94:53:d7:4a:03:40:81: 89:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:5D:A8:FB:3F:E5:99:43:C7:8B:69:BB:06:72:8A:28:58:4C:3E:77 X509v3 Authority Key Identifier: keyid:08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0f:38:63:73:29:a5:b7:6e:32:69:a6:f5:3f:37:73:0b:0f:ec: d9:9e:3b:ac:26:45:4b:c6:ba:bc:f6:f6:4b:5a:12:62:be:88: 81:a5:59:d4:62:c0:38:6e:31:d6:46:ed:2a:7e:cf:70:9e:2a: ec:11:71:22:d4:31:4d:83:02:22:d8:00:f7:6a:e9:46:1e:18: ba:36:d4:e3:c3:34:6b:eb:a9:9d:e5:20:ed:82:44:bb:1f:23: 93:31:01:b2:0b:e6:bc:6d:9a:57:fe:da:41:99:d9:27:82:83: 6c:82:45:9b:0b:87:42:d0:f2:4e:53:59:90:a0:5a:63:a0:9f: 27:aa:c9:5f:33:5c:78:9b:a5:9c:c6:68:9d:d2:9a:c6:df:17: 71:41:b6:ec:96:f9:72:15:fd:f6:91:b8:c8:4e:5e:a6:f9:43: 8a:33:e9:6c:fb:64:a0:c0:ad:0d:fb:ca:26:a3:93:1b:d5:2e: 92:18:18:84:cc:f0:9f:b9:7a:14:b6:31:55:97:03:80:32:57: b6:77:85:e7:56:d0:20:a5:a3:c5:ae:0a:84:cd:eb:6b:63:0e: 88:e9:0d:d1:e0:9d:61:2d:ef:12:f4:57:c8:80:53:4e:d9:aa: c2:c2:73:c8:c1:53:9b:78:da:c4:4f:4a:ad:4d:43:8e:ba:9b: 2e:9d:14:cd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDA4MkYxRUU5MkZFQTYzNzNGREExRDVBRUM0NkUyRjJE OEFFOEFDODcwHhcNMjMwNjIyMTQ0MDA1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0NWQ0NS1kY2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KR0NJaWuGl7F4Rs2N7M4G1n6dfXbKIgw5BvUoxJk0A3TQVyLGIuai5GoTJl tavgoXiOQ4j1SEBjHzzCabA+0MfBgSoUme4C7MaCAQGP4LJQi/wqiQYJv6DkAoYA UXJFtJtc4cnLxKHvHtqfU/hAR+n0+TSZ0+RTuBnKSQmbzPVcV1WQFpDeHjf+ZtZJ MaWV0H/pod4+zvMn540yqIv4qmtCi2PuabCtJEUqEb1iSwgwJHe7nZnA0TY+eA/E EFRqxfVZdkBo675Hx1NKoQLt7ZmNeOn+EDXI+1nPsQXVinDEkMyQaFooSkY6MVl/ Lw+y2ULBOeUad5RT10oDQIGJGwIDAQABo4IClDCCApAwHQYDVR0OBBYEFGxdqPs/ 5ZlDx4tpuwZyiihYTD53MB8GA1UdIwQYMBaAFAgvHukv6mNz/aHVrsRuLy2K6KyH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9DQzhlNlNfcVkzUDlvZFd1eEc0dkxZcm9y SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NDOGU2U19xWTNQOW9kV3V4RzR2TFlyb3JJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwREEvRkM2MUUwMDgxRDY3MTFFMjhDMTgyOEE0MDhCMDJDRDIvRDY0MTc2RDgx Qjk5MTFFQ0FCMEUxNjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCkZDANBgkqhkiG9w0BAQsFAAOCAQEADzhjcymlt24yaab1 PzdzCw/s2Z47rCZFS8a6vPb2S1oSYr6IgaVZ1GLAOG4x1kbtKn7PcJ4q7BFxItQx TYMCItgA92rpRh4YujbU48M0a+upneUg7YJEux8jkzEBsgvmvG2aV/7aQZnZJ4KD bIJFmwuHQtDyTlNZkKBaY6CfJ6rJXzNceJulnMZondKaxt8XcUG27Jb5chX99pG4 yE5epvlDijPpbPtkoMCtDfvKJqOTG9UukhgYhMzwn7l6FLYxVZcDgDJXtneF51bQ IKWjxa4KhM3ra2MOiOkN0eCdYS3vEvRXyIBTTtmqwsJzyMFTm3jaxE9KrU1Djrqb Lp0UzQ== -----END CERTIFICATE-----Generated at Sat May 18 15:58:23 2024 by rpki-client on console-ams.rpki-client.org