$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/D166652A072211EF9AC24D5BC4F9AE02.roa File: D166652A072211EF9AC24D5BC4F9AE02.roa (raw, json) Hash identifier: 6EnVuw6ZfUYXqCSV2smHwvRY6qKL4X2LNKW/sqTbKds= Subject key identifier: A8:48:2A:D0:0A:92:DA:AE:90:DB:5B:2F:3D:6A:51:17:2E:BF:79:1D Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 34F1 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/D166652A072211EF9AC24D5BC4F9AE02.roa Signing time: Tue 30 Apr 2024 18:52:40 +0000 ROA not before: Tue 30 Apr 2024 18:52:40 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150750 IP address blocks: 116.90.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Apr 30 18:52:40 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66313df7-daaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1e:93:10:70:b9:6f:ff:6f:44:cb:26:9e:80: 50:53:bd:8d:24:0e:75:2d:50:67:37:f7:bc:5c:59: 66:8c:9c:c8:43:14:9e:0c:07:09:1e:06:13:f7:6a: 48:61:d0:19:e4:f4:8d:d8:f3:54:6b:23:25:13:ba: d2:7a:b9:1d:a8:76:15:b0:26:89:ee:56:56:8b:a0: 32:96:83:3b:37:ec:2e:a5:36:cd:59:ec:6c:5b:57: 91:de:bc:d9:3c:ba:d3:b1:41:8e:92:3a:8e:a8:db: 78:02:34:40:91:ed:40:58:f8:bf:98:8c:17:e7:1f: d1:c4:42:4f:8e:d5:21:f2:5d:81:e6:94:0d:b4:df: 7e:a3:6f:ba:62:47:d7:ca:f2:87:9a:da:f1:38:df: ee:99:b1:da:ef:01:c2:f3:e1:d9:b6:ac:63:52:e4: f3:13:c7:f2:57:0e:a1:5f:62:07:58:e5:04:57:fe: 16:34:50:dc:c7:e2:94:d3:84:54:72:85:d5:7b:df: 1f:2a:8c:c3:da:52:24:79:c1:cd:45:59:aa:ae:48: a0:84:a7:a3:6b:94:be:65:0d:c0:c1:65:22:b8:65: 47:a1:77:1d:13:ca:98:7c:d7:9a:42:3c:c9:d1:7a: f1:79:32:c9:17:09:b0:b7:6b:7c:e1:61:04:dd:62: a3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:48:2A:D0:0A:92:DA:AE:90:DB:5B:2F:3D:6A:51:17:2E:BF:79:1D X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/D166652A072211EF9AC24D5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.121.0/24 Signature Algorithm: sha256WithRSAEncryption 91:85:1c:27:f4:b7:75:62:42:18:a1:6c:f4:5f:fc:73:9d:ff: 75:75:32:6a:8d:64:0c:a6:32:53:8d:53:53:42:4a:f1:fd:b1: 60:0a:64:93:bc:c2:57:78:7a:33:0b:95:1b:ea:d4:a1:91:79: cb:cd:90:02:90:87:72:33:c4:1e:9f:ec:68:77:3a:5d:5d:c6: f6:8c:29:03:7d:3f:0c:07:c9:ec:0d:cf:6d:c7:f4:05:b0:fa: 44:4b:59:e9:15:75:37:18:29:98:ba:19:34:15:a0:f4:b6:30: 27:83:77:bc:fe:06:f5:7b:b2:23:c3:05:79:8a:96:a2:83:eb: fc:b5:03:bb:fe:c0:13:30:c1:62:cd:13:44:fb:58:c3:c0:38: 9f:40:43:b5:6e:5b:90:b7:03:b7:26:4f:b2:21:9f:6e:b9:3b: b8:22:ad:93:17:c8:e0:23:89:28:32:50:81:e7:8a:09:cc:c1: f6:fb:2e:bc:00:fc:27:65:d1:a3:ae:f4:c9:f7:b8:d7:a3:6c: 95:5b:e4:f0:27:1f:de:bf:bf:b5:6d:0c:03:c0:a5:97:7a:96: 0e:c3:66:83:7f:ee:e4:9c:fa:e6:fa:4b:4c:e5:b2:e1:20:ca: 78:96:66:0e:70:eb:36:68:b8:16:da:67:15:55:18:50:38:9c: 8e:59:71:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQwNDMwMTg1MjQwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxM2RmNy1kYWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5x6TEHC5b/9vRMsmnoBQU72NJA51LVBnN/e8XFlmjJzIQxSeDAcJHgYT92pI YdAZ5PSN2PNUayMlE7rSerkdqHYVsCaJ7lZWi6AyloM7N+wupTbNWexsW1eR3rzZ PLrTsUGOkjqOqNt4AjRAke1AWPi/mIwX5x/RxEJPjtUh8l2B5pQNtN9+o2+6YkfX yvKHmtrxON/umbHa7wHC8+HZtqxjUuTzE8fyVw6hX2IHWOUEV/4WNFDcx+KU04RU coXVe98fKozD2lIkecHNRVmqrkighKeja5S+ZQ3AwWUiuGVHoXcdE8qYfNeaQjzJ 0XrxeTLJFwmwt2t84WEE3WKjlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKhIKtAK ktqukNtbLz1qURcuv3kdMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvRDE2NjY1MkEw NzIyMTFFRjlBQzI0RDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0WnkwDQYJKoZIhvcNAQELBQADggEBAJGFHCf0t3ViQhih bPRf/HOd/3V1MmqNZAymMlONU1NCSvH9sWAKZJO8wld4ejMLlRvq1KGRecvNkAKQ h3IzxB6f7Gh3Ol1dxvaMKQN9PwwHyewNz23H9AWw+kRLWekVdTcYKZi6GTQVoPS2 MCeDd7z+BvV7siPDBXmKlqKD6/y1A7v+wBMwwWLNE0T7WMPAOJ9AQ7VuW5C3A7cm T7Ihn265O7girZMXyOAjiSgyUIHnignMwfb7LrwA/Cdl0aOu9Mn3uNejbJVb5PAn H96/v7VtDAPApZd6lg7DZoN/7uSc+ub6S0zlsuEgyniWZg5w6zZouBbaZxVVGFA4 nI5ZcUk= -----END CERTIFICATE-----Generated at Thu May 16 16:14:59 2024 by rpki-client on console-fra.rpki-client.org