$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/85EE8F1E10FF11EFB863D551C4F9AE02.roa File: 85EE8F1E10FF11EFB863D551C4F9AE02.roa (raw, json) Hash identifier: V3sJBTcfWs06qSQrjEx4bA10QlatrvesKTDL6hw9gQs= Subject key identifier: 43:08:2F:12:ED:EE:5B:A5:E4:88:E0:39:18:C1:B1:A8:DD:3C:F5:B0 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0113 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/85EE8F1E10FF11EFB863D551C4F9AE02.roa Signing time: Mon 13 May 2024 08:05:12 +0000 ROA not before: Mon 13 May 2024 08:05:12 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 151933 IP address blocks: 157.66.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: May 13 08:05:12 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6641c9b8-f91c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:de:43:00:84:85:f6:6e:f7:56:1d:74:fd:74: 59:7e:e6:0b:8e:78:f0:9f:e6:ac:2e:38:86:27:0e: 66:45:e2:e9:db:05:d0:b1:b0:d0:7e:d4:d5:48:52: 9e:5e:80:cb:88:79:b9:3c:71:c8:a7:e2:e5:e1:6d: 9e:d2:4a:56:5c:27:f0:ee:5d:f5:c2:f9:be:ec:88: bd:6a:c5:46:d4:44:2d:d9:fe:4a:7d:ca:6f:c1:b3: 13:a7:b8:60:b5:29:12:a9:f1:a3:ec:73:81:a8:50: 62:35:da:4a:a4:c0:53:8b:5e:bd:3c:3d:05:25:a9: 04:cd:05:da:75:c8:40:31:d8:00:66:3b:58:03:8c: e0:2c:12:a7:c3:80:9e:e9:c8:d1:de:5f:91:cc:0b: 27:a9:8c:c0:6e:6b:d6:4a:db:30:fd:70:7b:ad:3b: a0:e6:1b:27:3a:3f:bc:a0:de:1b:2e:58:9a:59:44: d1:58:74:e5:08:36:10:e7:a0:ef:05:0b:a4:d8:98: fa:3e:e3:0a:12:98:9c:86:b6:41:be:9f:d7:93:f8: 0f:f6:87:79:c8:18:18:7f:6e:11:f3:9d:2b:5d:e3: bd:d7:bc:06:d0:8b:e2:4d:73:91:31:e6:1e:db:fe: 9d:bc:b9:cc:9c:24:61:50:73:92:d4:18:fa:92:6a: b7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:08:2F:12:ED:EE:5B:A5:E4:88:E0:39:18:C1:B1:A8:DD:3C:F5:B0 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/85EE8F1E10FF11EFB863D551C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.224.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:2f:ff:7a:9c:20:04:f8:c4:45:9b:c7:1b:bb:d1:b1:84:b3: 7f:e9:04:00:9c:d0:ca:86:3b:04:8c:92:0d:f9:12:5a:57:8c: 1a:b2:5d:f7:0f:23:0e:ff:d9:24:e5:e9:59:96:6c:46:1a:c7: e9:85:c4:a7:1c:b0:16:35:99:b1:31:83:96:fc:06:1e:81:ba: e1:71:ac:b0:91:db:c8:5b:e2:75:cd:dc:15:0c:dd:d1:54:ea: 38:4f:95:da:84:e5:38:df:42:e5:c6:b0:30:08:8d:fd:9d:cb: 1f:23:bc:3d:1f:ec:f5:1f:1c:f0:fe:48:95:d8:4d:1b:45:81: 6a:c2:fb:4e:29:19:99:fb:78:87:4e:3b:42:dd:e4:25:ea:47: 31:3a:92:05:f2:db:7c:bd:55:c3:3f:e5:57:15:19:6b:d4:f1: 28:52:5e:c5:d2:89:47:0d:ef:d1:67:d9:28:3d:1e:4f:50:8d: cc:0f:c5:2a:2f:03:31:29:67:8d:34:d7:33:a0:50:45:c9:47: 62:a3:0a:41:94:f2:6d:80:4e:77:d8:4f:58:26:8b:21:f9:a5: 08:96:1d:c2:e3:dd:09:51:a8:15:4c:d2:48:8b:64:4b:dc:ac: 95:5d:e7:23:14:16:62:70:76:d9:00:68:1c:c9:db:65:46:7a: ca:54:3c:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwNTEzMDgwNTEyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxYzliOC1mOTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxd5DAISF9m73Vh10/XRZfuYLjnjwn+asLjiGJw5mReLp2wXQsbDQftTVSFKe XoDLiHm5PHHIp+Ll4W2e0kpWXCfw7l31wvm+7Ii9asVG1EQt2f5KfcpvwbMTp7hg tSkSqfGj7HOBqFBiNdpKpMBTi169PD0FJakEzQXadchAMdgAZjtYA4zgLBKnw4Ce 6cjR3l+RzAsnqYzAbmvWStsw/XB7rTug5hsnOj+8oN4bLliaWUTRWHTlCDYQ56Dv BQuk2Jj6PuMKEpichrZBvp/Xk/gP9od5yBgYf24R850rXeO917wG0IviTXORMeYe 2/6dvLnMnCRhUHOS1Bj6kmq3bQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEMILxLt 7lul5IjgORjBsajdPPWwMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvODVFRThGMUUx MEZGMTFFRkI4NjNENTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQuAwDQYJKoZIhvcNAQELBQADggEBAHwv/3qcIAT4xEWb xxu70bGEs3/pBACc0MqGOwSMkg35ElpXjBqyXfcPIw7/2STl6VmWbEYax+mFxKcc sBY1mbExg5b8Bh6BuuFxrLCR28hb4nXN3BUM3dFU6jhPldqE5TjfQuXGsDAIjf2d yx8jvD0f7PUfHPD+SJXYTRtFgWrC+04pGZn7eIdOO0Ld5CXqRzE6kgXy23y9VcM/ 5VcVGWvU8ShSXsXSiUcN79Fn2Sg9Hk9QjcwPxSovAzEpZ4001zOgUEXJR2KjCkGU 8m2ATnfYT1gmiyH5pQiWHcLj3QlRqBVM0kiLZEvcrJVd5yMUFmJwdtkAaBzJ22VG espUPLE= -----END CERTIFICATE-----Generated at Fri May 31 16:41:39 2024 by rpki-client on console-ams.rpki-client.org