$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa File: D3204D78E81811EEACBDBB30C4F9AE02.roa (raw, json) Hash identifier: VdipcoxjyL+pzQNpSDbJTdFKgJjvxsa/DovLt9RB0uo= Subject key identifier: AB:CF:A3:41:00:F4:9F:03:4D:D3:AE:86:C0:EE:BD:1B:EA:BE:97:B8 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 95 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa Signing time: Fri 22 Mar 2024 06:53:01 +0000 ROA not before: Fri 22 Mar 2024 06:53:01 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 151911 IP address blocks: 157.20.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Mar 22 06:53:01 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65fd2acd-229b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:aa:55:5f:43:64:39:58:5e:4e:9f:93:ab:aa: ec:40:bb:53:d4:a4:d4:26:c0:e7:ee:ae:ed:e3:b7: 68:fa:4b:65:2e:e1:d9:f6:d0:67:f4:de:6e:41:af: 40:b0:ca:ea:e7:8f:5b:f6:af:fd:e1:b9:34:0e:8f: c9:9a:37:41:20:7b:ae:32:00:7c:fc:36:5b:6a:7e: f7:25:01:9d:4e:02:67:79:29:ba:bb:13:24:40:29: 7b:81:ec:0c:3a:92:5a:2e:9d:2f:cc:46:c1:77:c9: d3:0d:b8:e3:82:03:e6:46:61:75:47:88:39:02:5a: c1:b4:7e:02:40:79:88:98:05:84:ef:96:84:e9:05: 5c:4f:80:6e:9e:36:c3:71:a8:91:04:01:90:22:5b: 6e:92:2b:4f:a4:79:25:e9:72:fb:3c:ee:0b:c0:26: 87:d8:0b:57:63:fb:40:37:8c:c5:29:35:6e:09:ca: 65:fc:c5:b2:7f:90:e3:ed:8d:27:87:c9:de:a1:16: 25:6e:66:f9:ac:ff:3f:99:1d:2a:b9:f0:d8:38:81: c1:f2:a7:e5:5f:f7:bb:0e:6c:e4:25:1c:56:40:2b: 91:2f:62:62:62:2f:b5:18:4f:37:69:ed:f8:07:28: 3c:fb:57:17:3c:a2:85:6b:5b:ea:0a:73:f6:9f:cc: 7a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:CF:A3:41:00:F4:9F:03:4D:D3:AE:86:C0:EE:BD:1B:EA:BE:97:B8 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.200.0/23 Signature Algorithm: sha256WithRSAEncryption 91:b1:f8:8f:8b:e3:0f:40:3c:9f:ec:23:88:0f:35:d8:5c:f7: a0:e5:52:bb:8b:e7:3d:7b:84:dd:e1:e6:e0:40:0f:72:43:13: 2c:44:df:5f:51:7e:bd:14:d0:f4:6f:84:6e:bc:99:6b:96:a3: d5:88:be:17:ba:ee:cd:cb:08:f3:90:da:3f:05:81:e3:f2:1f: 4b:52:bc:fc:08:95:02:6e:ff:5a:9f:7e:27:d8:93:7b:f8:80: e4:55:70:34:5e:d7:ea:47:19:d5:82:2d:29:47:87:c2:66:f0: e2:83:25:b7:ff:f8:96:2c:da:7a:f4:72:e8:ff:1b:57:dd:2b: 4e:e9:98:3e:6f:a2:81:86:c0:89:02:ca:ab:8d:10:f2:3e:c7: 3f:15:f6:b5:c2:5c:03:4b:07:84:9a:9b:45:08:cb:b9:f4:7e: 05:7b:d3:d5:97:12:11:94:3b:f0:c4:80:dd:76:d0:c3:b7:ec: 77:12:c6:cf:cf:32:b3:9d:b4:97:e7:96:54:09:fe:31:80:b7: c7:da:c5:83:82:14:83:ab:36:ea:1e:03:d3:d3:73:db:79:45: 01:76:1b:d7:24:df:c4:a1:7a:48:58:4e:ed:6d:ef:c1:ff:87: 92:5e:75:99:a7:11:d0:d5:71:ac:96:de:e9:29:ee:23:23:9b: 0c:6b:5d:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQwMzIyMDY1MzAxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZkMmFjZC0yMjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5apVX0NkOVheTp+Tq6rsQLtT1KTUJsDn7q7t47do+ktlLuHZ9tBn9N5uQa9A sMrq549b9q/94bk0Do/JmjdBIHuuMgB8/DZban73JQGdTgJneSm6uxMkQCl7gewM OpJaLp0vzEbBd8nTDbjjggPmRmF1R4g5AlrBtH4CQHmImAWE75aE6QVcT4BunjbD caiRBAGQIltukitPpHkl6XL7PO4LwCaH2AtXY/tAN4zFKTVuCcpl/MWyf5Dj7Y0n h8neoRYlbmb5rP8/mR0qufDYOIHB8qflX/e7DmzkJRxWQCuRL2JiYi+1GE83ae34 Byg8+1cXPKKFa1vqCnP2n8x6ywIDAQABo4IClTCCApEwHQYDVR0OBBYEFKvPo0EA 9J8DTdOuhsDuvRvqvpe4MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRDMyMDRENzhF ODE4MTFFRUFDQkRCQjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFMgwDQYJKoZIhvcNAQELBQADggEBAJGx+I+L4w9APJ/s I4gPNdhc96DlUruL5z17hN3h5uBAD3JDEyxE319Rfr0U0PRvhG68mWuWo9WIvhe6 7s3LCPOQ2j8FgePyH0tSvPwIlQJu/1qffifYk3v4gORVcDRe1+pHGdWCLSlHh8Jm 8OKDJbf/+JYs2nr0cuj/G1fdK07pmD5vooGGwIkCyquNEPI+xz8V9rXCXANLB4Sa m0UIy7n0fgV709WXEhGUO/DEgN120MO37HcSxs/PMrOdtJfnllQJ/jGAt8faxYOC FIOrNuoeA9PTc9t5RQF2G9ck38ShekhYTu1t78H/h5JedZmnEdDVcayW3ukp7iMj mwxrXc0= -----END CERTIFICATE-----Generated at Fri May 31 15:08:32 2024 by rpki-client on console-fra.rpki-client.org