$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa File: BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa (raw, json) Hash identifier: re/ox5EHbX4AgbSgdttCWw4KM4XprMMRG7YhKjmQ4KQ= Subject key identifier: 9A:2F:76:1C:38:F4:12:A8:05:32:AD:E6:6D:BB:33:48:CD:90:F1:54 Certificate issuer: /CN=A91B49F2/serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Certificate serial: 0CD1 Authority key identifier: 1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa Signing time: Fri 28 Jul 2023 18:35:50 +0000 ROA not before: Fri 28 Jul 2023 18:35:50 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55944 IP address blocks: 216.183.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3281 (0xcd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2/serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Validity Not Before: Jul 28 18:35:50 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c40a86-c977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:68:f2:89:fd:a1:01:40:22:d7:7c:12:2e:f6: 6c:77:d9:22:6d:83:e3:79:69:16:2e:bb:44:9a:af: 0f:0f:b6:01:41:59:b2:a4:b5:e3:ca:21:62:58:f2: c7:df:4d:ee:67:40:87:d5:6b:6f:40:ba:f0:67:f2: f1:9b:5a:7b:f2:e0:04:ae:0d:d7:99:24:b9:f0:78: 9c:66:46:e4:07:b8:2a:86:3e:d3:1f:11:37:20:bc: da:a4:62:4e:db:09:f0:96:be:e6:e6:8c:38:ce:d7: 94:f9:15:75:58:14:5b:db:4e:a6:81:9e:98:2c:df: ff:e3:b9:a9:b9:b5:9c:6a:11:98:6e:bb:ac:c8:7c: e6:e1:4f:8b:51:4b:26:5e:ff:36:3f:4e:06:7e:78: f8:2f:7a:86:f5:ef:bf:24:45:68:03:40:1f:c5:f9: be:0f:d2:94:97:f3:d7:e6:79:3e:6f:33:59:f6:ec: 74:19:fe:94:1d:bd:af:1f:02:70:42:e9:2c:43:f1: 4f:ac:ab:1c:f8:0b:d3:b9:2f:fa:05:b9:0c:5a:c4: ce:a0:37:4f:49:ae:31:2f:68:82:a7:73:0b:11:e3: bc:30:6c:03:1c:8b:20:e3:61:a7:a7:60:8b:38:c2: e2:7b:33:bf:d1:f4:91:68:c0:14:0c:5d:7c:36:0b: 89:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:2F:76:1C:38:F4:12:A8:05:32:AD:E6:6D:BB:33:48:CD:90:F1:54 X509v3 Authority Key Identifier: keyid:1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.183.208.0/20 Signature Algorithm: sha256WithRSAEncryption 3e:dd:0d:95:fa:18:15:60:a8:f6:64:47:c9:d4:40:19:e3:77: ed:6e:c5:6e:13:95:20:ad:e6:69:88:85:9b:6e:fd:b1:9b:59: 9b:ef:82:c0:14:1a:8c:bb:b9:65:ba:7f:56:a4:9e:12:bf:79: e8:86:4d:78:70:b1:9e:01:43:19:76:e0:7c:00:9e:81:be:2d: 93:a4:fe:62:68:23:3e:b7:a1:a1:15:04:bc:2e:77:8b:c9:4c: 40:dc:dd:6d:7d:e9:14:78:5b:5c:d6:0f:d9:6a:fb:81:c1:be: f6:2f:ff:14:61:f3:92:1a:b1:bb:23:aa:17:73:9f:0f:11:5b: ad:f6:7e:18:d4:fa:e7:03:9d:ba:47:cc:20:6d:cf:57:34:94: d6:ad:2b:15:87:78:80:7b:fe:86:3d:fa:59:74:a1:4d:a3:73: 86:ac:3a:2c:c6:4f:0d:b9:82:4c:cc:55:65:44:ba:7c:b8:d5: b2:27:60:db:ca:2c:eb:12:ab:91:48:70:b4:a2:00:91:95:d3: 46:b6:b5:29:57:d0:da:e4:51:31:27:27:97:7b:5f:23:60:52: e0:e3:9a:3d:aa:23:4e:75:b7:b4:7f:0e:8c:ab:be:61:ed:df: 4c:15:b6:4b:bb:2f:6e:19:00:32:d6:5e:fe:8a:52:46:77:0c: 2d:98:e6:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKDFCQkIyOTdCQzgyODE2NkFBNDk3RDM3QzcyNjVCRkI2 MDFBRTAzNjAwHhcNMjMwNzI4MTgzNTUwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM0MGE4Ni1jOTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGjyif2hAUAi13wSLvZsd9kibYPjeWkWLrtEmq8PD7YBQVmypLXjyiFiWPLH 303uZ0CH1WtvQLrwZ/Lxm1p78uAErg3XmSS58HicZkbkB7gqhj7THxE3ILzapGJO 2wnwlr7m5ow4zteU+RV1WBRb206mgZ6YLN//47mpubWcahGYbrusyHzm4U+LUUsm Xv82P04Gfnj4L3qG9e+/JEVoA0Afxfm+D9KUl/PX5nk+bzNZ9ux0Gf6UHb2vHwJw QuksQ/FPrKsc+AvTuS/6BbkMWsTOoDdPSa4xL2iCp3MLEeO8MGwDHIsg42Gnp2CL OMLiezO/0fSRaMAUDF18NguJUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJovdhw4 9BKoBTKt5m27M0jNkPFUMB8GA1UdIwQYMBaAFBu7KXvIKBZqpJfTfHJlv7YBrgNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi83QzA2RTc5Q0E2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0ZtcWtsOU44Y21XX3RnR3VB MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0c3c3BlOGdvRm1xa2w5TjhjbVdfdGdHdUEyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQ5RjIvN0MwNkU3OUNBNkVFMTFFOTg1RjNCMDExQzRGOUFFMDIvQkEwQ0M3MDYw QTNEMTFFQjgyRUNFQTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATYt9AwDQYJKoZIhvcNAQELBQADggEBAD7dDZX6GBVgqPZk R8nUQBnjd+1uxW4TlSCt5mmIhZtu/bGbWZvvgsAUGoy7uWW6f1aknhK/eeiGTXhw sZ4BQxl24HwAnoG+LZOk/mJoIz63oaEVBLwud4vJTEDc3W196RR4W1zWD9lq+4HB vvYv/xRh85Iasbsjqhdznw8RW632fhjU+ucDnbpHzCBtz1c0lNatKxWHeIB7/oY9 +ll0oU2jc4asOizGTw25gkzMVWVEuny41bInYNvKLOsSq5FIcLSiAJGV00a2tSlX 0NrkUTEnJ5d7XyNgUuDjmj2qI051t7R/DoyrvmHt30wVtku7L24ZADLWXv6KUkZ3 DC2Y5kM= -----END CERTIFICATE-----Generated at Thu May 16 19:10:56 2024 by rpki-client on console-fra.rpki-client.org