$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/69BA51482C9C11EBB49A3A32C4F9AE02.roa File: 69BA51482C9C11EBB49A3A32C4F9AE02.roa (raw, json) Hash identifier: 61ebvHln7P8JgHVIjhyuvS6INNaPluy8PBDesNazLu0= Subject key identifier: 7F:60:E7:73:B9:67:60:D4:F4:D7:87:B4:EE:62:E5:7B:00:2D:03:9E Certificate issuer: /CN=A91B6F87/serialNumber=7ED17AFD7370A6A908D8262B86DABC7EED3D6140 Certificate serial: 0695 Authority key identifier: 7E:D1:7A:FD:73:70:A6:A9:08:D8:26:2B:86:DA:BC:7E:ED:3D:61:40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ftF6_XNwpqkI2CYrhtq8fu09YUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/69BA51482C9C11EBB49A3A32C4F9AE02.roa Signing time: Tue 14 May 2024 23:33:43 +0000 ROA not before: Tue 14 May 2024 23:33:43 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 45178 IP address blocks: 64.207.208.0/21 maxlen: 21 64.207.208.0/22 maxlen: 22 64.207.208.0/23 maxlen: 23 64.207.208.0/24 maxlen: 24 64.207.209.0/24 maxlen: 24 64.207.210.0/23 maxlen: 23 64.207.210.0/24 maxlen: 24 64.207.211.0/24 maxlen: 24 64.207.212.0/23 maxlen: 23 64.207.212.0/24 maxlen: 24 64.207.213.0/24 maxlen: 24 64.207.214.0/23 maxlen: 23 64.207.214.0/24 maxlen: 24 64.207.215.0/24 maxlen: 24 74.118.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/ftF6_XNwpqkI2CYrhtq8fu09YUA.crl rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/ftF6_XNwpqkI2CYrhtq8fu09YUA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ftF6_XNwpqkI2CYrhtq8fu09YUA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1685 (0x695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F87/serialNumber=7ED17AFD7370A6A908D8262B86DABC7EED3D6140 Validity Not Before: May 14 23:33:43 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6643f4d6-8893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d9:05:6e:7b:67:d1:ae:9c:db:a5:4a:da:a6: f6:ff:4d:f0:c4:90:1f:11:f5:3d:4c:b0:c6:5d:c6: c5:d8:10:e7:d6:c0:6c:d5:6c:8d:44:ed:cd:5a:7a: 94:c9:8c:15:3f:e6:af:d9:dc:c5:01:92:8c:f9:f8: 9c:33:12:e5:5a:6c:7b:7f:92:bc:4e:6d:cb:6b:ec: 77:48:d1:bb:1c:16:43:87:fa:91:e3:d0:52:03:e8: 3c:9d:b8:4a:83:36:21:24:f6:8f:8e:7c:fa:cd:1c: df:24:4c:b2:c4:44:b5:6b:56:0c:2c:db:c4:c0:c7: ca:ef:43:1f:da:a7:e4:91:da:80:7b:8a:ef:aa:51: 81:99:39:a8:c8:1b:8c:39:43:67:5f:d5:11:1d:c7: e3:fc:85:70:63:de:12:14:73:6b:31:2e:b5:c6:1f: a9:5e:97:64:d5:89:dd:ae:92:a0:b7:27:2c:4b:fc: a5:a7:66:72:f8:b0:cd:2a:98:ea:f9:99:6d:8b:ab: d5:ce:6f:5a:15:b4:25:38:03:39:d8:8a:61:78:e4: 99:a5:33:d5:38:c8:c8:40:c7:89:11:2f:e8:6c:e6: 99:d9:b4:fe:e8:7a:42:20:c6:5e:61:da:af:38:2b: 51:90:07:c5:c2:fa:f9:4f:25:c4:2c:f3:b9:b9:a4: c8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:60:E7:73:B9:67:60:D4:F4:D7:87:B4:EE:62:E5:7B:00:2D:03:9E X509v3 Authority Key Identifier: keyid:7E:D1:7A:FD:73:70:A6:A9:08:D8:26:2B:86:DA:BC:7E:ED:3D:61:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/ftF6_XNwpqkI2CYrhtq8fu09YUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ftF6_XNwpqkI2CYrhtq8fu09YUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/69BA51482C9C11EBB49A3A32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.207.208.0/21 74.118.80.0/22 Signature Algorithm: sha256WithRSAEncryption 37:95:bb:49:c9:df:fd:b9:16:01:48:a3:a3:a2:3c:68:e1:05: db:07:4e:b2:e1:50:6e:b9:cd:66:48:b4:81:b9:55:6a:03:3f: d2:2d:8d:b2:00:af:84:39:1f:4b:df:9a:66:b9:9a:63:98:7e: 07:3f:82:83:9b:af:3c:a6:90:72:c8:07:d0:56:22:e3:4c:72: 21:a1:ec:ad:2c:86:29:d3:da:5b:24:34:d6:bc:1b:83:e3:c8: e2:fa:61:56:3c:5f:0a:93:29:fd:69:18:c5:ab:7f:0c:78:96: 7d:32:c7:50:82:ec:bb:19:f2:25:9e:17:b5:0c:1b:8c:16:f7: 99:bc:23:38:15:68:48:bd:ab:02:0f:68:c2:de:eb:bd:5a:fa: 02:2a:0c:18:f1:70:d7:24:95:9c:66:36:8f:62:0b:2d:86:dc: b9:b4:3f:9f:75:b5:b0:de:9b:91:83:72:e7:e4:1d:d2:92:6e: ef:f9:5a:16:63:85:18:90:de:ee:bc:5d:0b:4e:3c:c6:ad:5e: 4b:28:2e:2f:37:3a:68:89:9d:25:05:c3:21:54:da:6e:c8:f5: 2f:c7:6c:c8:4c:18:3e:b3:07:70:76:2e:b4:27:7a:a1:d5:3a: 10:11:42:14:54:e1:9d:c6:2d:57:8b:ba:76:a0:d2:bb:5f:5d: 79:8e:d4:d7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGODcxMTAvBgNVBAUTKDdFRDE3QUZENzM3MEE2QTkwOEQ4MjYyQjg2REFCQzdF RUQzRDYxNDAwHhcNMjQwNTE0MjMzMzQzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzZjRkNi04ODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tkFbntn0a6c26VK2qb2/03wxJAfEfU9TLDGXcbF2BDn1sBs1WyNRO3NWnqU yYwVP+av2dzFAZKM+ficMxLlWmx7f5K8Tm3La+x3SNG7HBZDh/qR49BSA+g8nbhK gzYhJPaPjnz6zRzfJEyyxES1a1YMLNvEwMfK70Mf2qfkkdqAe4rvqlGBmTmoyBuM OUNnX9URHcfj/IVwY94SFHNrMS61xh+pXpdk1YndrpKgtycsS/ylp2Zy+LDNKpjq +Zlti6vVzm9aFbQlOAM52IpheOSZpTPVOMjIQMeJES/obOaZ2bT+6HpCIMZeYdqv OCtRkAfFwvr5TyXELPO5uaTIPwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFH9g53O5 Z2DU9NeHtO5i5XsALQOeMB8GA1UdIwQYMBaAFH7Rev1zcKapCNgmK4bavH7tPWFA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY4Ny9BN0VBNzU1QzI2 ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9mdEY2X1hOd3Bxa0kyQ1lyaHRxOGZ1MDlZ VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2Z0RjZfWE53cHFrSTJDWXJodHE4ZnUwOVlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGODcvQTdFQTc1NUMyNjg4MTFFQkJFN0M2ODJCQzRGOUFFMDIvNjlCQTUxNDgy QzlDMTFFQkI0OUEzQTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANAz9ADBAJKdlAwDQYJKoZIhvcNAQELBQADggEBADeVu0nJ 3/25FgFIo6OiPGjhBdsHTrLhUG65zWZItIG5VWoDP9ItjbIAr4Q5H0vfmma5mmOY fgc/goObrzymkHLIB9BWIuNMciGh7K0shinT2lskNNa8G4PjyOL6YVY8XwqTKf1p GMWrfwx4ln0yx1CC7LsZ8iWeF7UMG4wW95m8IzgVaEi9qwIPaMLe671a+gIqDBjx cNcklZxmNo9iCy2G3Lm0P591tbDem5GDcufkHdKSbu/5WhZjhRiQ3u68XQtOPMat XksoLi83OmiJnSUFwyFU2m7I9S/HbMhMGD6zB3B2LrQneqHVOhARQhRU4Z3GLVeL unag0rtfXXmO1Nc= -----END CERTIFICATE-----Generated at Fri May 17 00:24:22 2024 by rpki-client on console-fra.rpki-client.org