$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/0AF12B12DDA411E88E25E96FC4F9AE02.roa File: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (raw, json) Hash identifier: meHsVMG/UsAGDgOcFaaDbCP72zPv3JQL3Q+3+fdFJ58= Subject key identifier: 1B:A7:C2:EF:77:28:6D:99:70:4E:5F:6A:81:2B:16:5B:13:A1:C3:FC Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 10E8 Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/0AF12B12DDA411E88E25E96FC4F9AE02.roa Signing time: Sat 12 Aug 2023 17:34:54 +0000 ROA not before: Sat 12 Aug 2023 17:34:54 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 56037 IP address blocks: 210.56.83.0/24 maxlen: 24 210.56.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 17:54:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4328 (0x10e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Aug 12 17:34:54 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d7c2be-3246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:8f:48:8d:27:71:a7:ac:9e:12:e6:35:0f: e5:f8:9f:ce:41:d4:af:41:8a:3f:78:d4:16:e3:f0: 9f:ac:cb:3f:28:4c:49:b4:db:79:8a:10:2d:24:68: 02:a8:4b:5a:41:bc:88:b2:8e:a6:7d:ed:a7:6c:4e: 95:77:34:81:d0:76:dd:31:7e:0c:78:16:d0:52:46: 6c:68:92:f8:85:26:95:b9:c4:0c:1a:6f:77:b4:b8: fa:d5:31:75:f8:33:dd:5b:9f:21:96:03:47:3c:47: 69:78:5c:0d:09:87:fe:14:ec:22:55:4a:e3:db:c1: 77:db:0e:8d:f8:15:64:e3:ee:10:40:ce:50:b7:e7: 44:8a:41:9c:a6:4b:6c:7a:db:27:94:ab:bd:84:c5: 62:57:17:7f:60:3c:11:d6:ef:e7:78:6b:7d:1f:99: 43:33:da:88:df:90:e8:14:cf:e2:0c:a6:3e:d7:91: be:57:32:9c:c4:00:d8:3c:da:64:1e:16:7d:a5:13: 17:76:b5:27:62:e4:f1:a0:fb:52:0d:ce:cb:f9:8a: e4:88:32:7b:21:f2:13:b2:9f:a6:df:2d:11:67:47: 70:cc:9c:20:3b:6a:56:31:d0:41:19:43:12:24:dc: 38:57:95:38:8f:2f:69:43:58:12:c9:f8:0e:46:a1: 10:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A7:C2:EF:77:28:6D:99:70:4E:5F:6A:81:2B:16:5B:13:A1:C3:FC X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/0AF12B12DDA411E88E25E96FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.56.83.0/24 210.56.94.0/24 Signature Algorithm: sha256WithRSAEncryption 10:73:98:00:df:d1:de:a2:f8:f5:99:68:18:96:57:37:13:cf: 67:d4:5c:ad:3c:fd:e9:1a:33:82:93:d7:28:d9:a6:65:48:37: aa:45:bd:be:77:a2:3b:4d:47:e1:b1:a1:77:1e:6e:0a:d7:5f: 7c:1c:72:4b:ca:8a:ab:1d:e3:8c:f2:7c:1b:ec:b5:fe:11:7a: 08:df:df:3b:0f:1a:69:ca:a9:86:40:aa:fd:99:60:7f:2a:9d: f1:8b:fe:46:8e:89:62:cf:ed:97:90:77:93:57:4b:9a:ef:70: 12:bd:f3:5c:a0:35:2b:f9:9e:1f:5d:bf:94:e5:a8:a4:7b:a7: 17:9e:0d:62:81:1e:46:d1:92:c5:f5:94:23:bb:08:a3:8e:36: 34:ca:cf:16:47:2b:90:77:ae:ea:52:4c:48:6a:21:81:13:91: a6:16:4d:36:03:97:60:a9:6e:8e:d1:5f:9e:b0:15:8a:6e:0d: 31:ec:a5:84:65:21:30:e7:31:cc:e6:84:60:49:a6:95:9a:11: 1d:cd:89:2f:7f:06:7c:35:d0:a1:90:7b:38:bd:f0:f0:a7:5b: 0d:d5:64:a7:20:cf:85:fa:1a:3e:98:53:da:99:81:41:84:af: c2:63:49:d5:78:3e:a2:9d:6d:ed:b9:fd:66:ca:f5:6f:e9:9b: 21:19:07:7f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjMwODEyMTczNDU0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ3YzJiZS0zMjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwESPSI0ncaesnhLmNQ/l+J/OQdSvQYo/eNQW4/CfrMs/KExJtNt5ihAtJGgC qEtaQbyIso6mfe2nbE6VdzSB0HbdMX4MeBbQUkZsaJL4hSaVucQMGm93tLj61TF1 +DPdW58hlgNHPEdpeFwNCYf+FOwiVUrj28F32w6N+BVk4+4QQM5Qt+dEikGcpkts etsnlKu9hMViVxd/YDwR1u/neGt9H5lDM9qI35DoFM/iDKY+15G+VzKcxADYPNpk HhZ9pRMXdrUnYuTxoPtSDc7L+YrkiDJ7IfITsp+m3y0RZ0dwzJwgO2pWMdBBGUMS JNw4V5U4jy9pQ1gSyfgORqEQpwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBunwu93 KG2ZcE5faoErFlsTocP8MB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI2OEEvODRGQjRDOUNEREExMTFFOEEyRTc4QTY5QzRGOUFFMDIvMEFGMTJCMTJE REE0MTFFODhFMjVFOTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADSOFMDBADSOF4wDQYJKoZIhvcNAQELBQADggEBABBzmADf 0d6i+PWZaBiWVzcTz2fUXK08/ekaM4KT1yjZpmVIN6pFvb53ojtNR+GxoXcebgrX X3wcckvKiqsd44zyfBvstf4Regjf3zsPGmnKqYZAqv2ZYH8qnfGL/kaOiWLP7ZeQ d5NXS5rvcBK981ygNSv5nh9dv5TlqKR7pxeeDWKBHkbRksX1lCO7CKOONjTKzxZH K5B3rupSTEhqIYETkaYWTTYDl2Cpbo7RX56wFYpuDTHspYRlITDnMczmhGBJppWa ER3NiS9/Bnw10KGQezi98PCnWw3VZKcgz4X6Gj6YU9qZgUGEr8JjSdV4PqKdbe25 /WbK9W/pmyEZB38= -----END CERTIFICATE-----Generated at Tue May 28 19:33:33 2024 by rpki-client on console-ams.rpki-client.org