$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa File: 491E49AECDCA11ED8F57D386C4F9AE02.roa (raw, json) Hash identifier: HeHiKiU2am5mAD9ao3AQsTEkTqrsywdKgvFD/DrBQFY= Subject key identifier: BB:01:BF:02:F8:5A:3C:A5:2E:7D:7D:34:31:81:9A:55:33:9D:5E:E5 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 341E Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa Signing time: Wed 18 Oct 2023 14:40:26 +0000 ROA not before: Wed 18 Oct 2023 14:40:26 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 18049 IP address blocks: 61.71.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13342 (0x341e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Oct 18 14:40:26 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652fee5a-6714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:26:82:cc:5f:09:61:93:d0:8b:53:ae:20:b6: e9:77:57:c7:47:2c:54:b2:a1:23:02:9a:2e:f7:3e: d6:90:f3:89:63:9f:ad:cb:5d:1a:1b:b0:6c:3b:ff: 3c:60:09:d6:86:42:88:c5:7b:e8:d7:4b:87:3f:07: cf:19:6e:d4:b7:ae:d5:1f:55:8c:99:04:ea:6f:a1: 04:77:6c:d1:ed:6e:66:37:95:fa:06:cf:ac:0a:44: 2f:3f:e0:05:77:4b:5a:6d:8b:fd:e4:ee:19:cc:11: 2c:e9:33:16:ed:cf:2a:48:c5:76:11:fa:e0:e7:84: be:e2:a1:2c:42:ad:6e:03:43:dd:08:c3:b5:dd:2e: 1d:99:c0:84:45:b6:d8:89:6c:d8:cb:3c:8f:42:ab: d5:78:17:bf:79:e4:dc:52:8b:11:d0:c1:e3:18:c8: 08:d5:15:16:2e:c7:20:45:03:ee:d0:84:55:03:a5: 94:cf:e4:a0:25:bb:3e:bd:14:f7:35:b4:ad:66:f8: 52:c8:04:e1:22:90:d7:58:01:4e:e7:6c:be:0d:17: 89:bc:0b:da:fb:56:eb:0c:9f:e3:82:8f:35:95:d3: 83:91:73:8d:a0:37:30:33:12:3b:e3:96:cb:c4:06: 74:aa:8a:62:23:43:92:2f:b2:83:26:89:ee:89:7d: 00:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:01:BF:02:F8:5A:3C:A5:2E:7D:7D:34:31:81:9A:55:33:9D:5E:E5 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.71.0.0/19 Signature Algorithm: sha256WithRSAEncryption 13:4e:24:df:8c:d9:54:3e:1c:b5:2d:68:f0:d8:8b:74:e3:f4: 32:ff:00:d1:c1:a3:02:b8:34:83:f5:49:45:ec:07:b3:c6:ea: 5e:8b:68:65:a2:70:26:b1:3e:78:2b:5c:06:d7:33:59:92:7d: cc:22:0b:c6:1b:49:a2:f3:cb:dc:8e:42:a4:d0:c6:1b:22:75: 0c:75:1e:c8:b1:16:60:47:5b:09:ce:6d:b1:8d:55:c8:ef:ff: d2:a1:a4:cd:3f:a0:9f:90:9d:16:d6:db:f0:72:12:17:26:ae: 2d:42:bd:91:eb:c2:a8:77:ba:78:83:76:c1:bf:1f:e1:4b:51: 5e:6b:1b:99:32:f9:47:10:6b:4a:69:aa:0e:0d:6c:c7:71:0b: 55:d9:fb:ea:80:af:ed:92:de:7e:6e:5e:14:3f:f6:65:31:c6: be:ec:43:b1:52:89:ad:09:a2:8d:31:cb:cb:44:fa:6d:9b:a5: b3:43:86:84:fe:c4:21:f3:32:05:1b:7d:2e:dc:8e:40:99:17: 5a:37:be:45:48:9b:11:c5:be:da:89:af:81:25:29:c0:c7:56: 34:80:7b:eb:32:e6:c4:bd:81:34:f3:9a:a1:51:6f:b9:42:e8: 9b:0d:19:7d:7e:d1:d6:cd:d3:72:16:c4:10:5d:0b:86:5b:e1: 9b:84:43:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjMxMDE4MTQ0MDI2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJmZWU1YS02NzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyaCzF8JYZPQi1OuILbpd1fHRyxUsqEjApou9z7WkPOJY5+ty10aG7BsO/88 YAnWhkKIxXvo10uHPwfPGW7Ut67VH1WMmQTqb6EEd2zR7W5mN5X6Bs+sCkQvP+AF d0tabYv95O4ZzBEs6TMW7c8qSMV2Efrg54S+4qEsQq1uA0PdCMO13S4dmcCERbbY iWzYyzyPQqvVeBe/eeTcUosR0MHjGMgI1RUWLscgRQPu0IRVA6WUz+SgJbs+vRT3 NbStZvhSyAThIpDXWAFO52y+DReJvAva+1brDJ/jgo81ldODkXONoDcwMxI745bL xAZ0qopiI0OSL7KDJonuiX0AUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLsBvwL4 WjylLn19NDGBmlUznV7lMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGNDcvQjRBODZDMzgxRDg0MTFFMjk2OUZDNURBMDhCMDJDRDIvNDkxRTQ5QUVD RENBMTFFRDhGNTdEMzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAU9RwAwDQYJKoZIhvcNAQELBQADggEBABNOJN+M2VQ+HLUt aPDYi3Tj9DL/ANHBowK4NIP1SUXsB7PG6l6LaGWicCaxPngrXAbXM1mSfcwiC8Yb SaLzy9yOQqTQxhsidQx1HsixFmBHWwnObbGNVcjv/9KhpM0/oJ+QnRbW2/ByEhcm ri1CvZHrwqh3uniDdsG/H+FLUV5rG5ky+UcQa0ppqg4NbMdxC1XZ++qAr+2S3n5u XhQ/9mUxxr7sQ7FSia0Joo0xy8tE+m2bpbNDhoT+xCHzMgUbfS7cjkCZF1o3vkVI mxHFvtqJr4ElKcDHVjSAe+sy5sS9gTTzmqFRb7lC6JsNGX1+0dbN03IWxBBdC4Zb 4ZuEQ9U= -----END CERTIFICATE-----Generated at Fri May 24 18:23:58 2024 by rpki-client on console-ams.rpki-client.org