$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/16DDC0F4CFE811ECA193B36BC4F9AE02.roa File: 16DDC0F4CFE811ECA193B36BC4F9AE02.roa (raw, json) Hash identifier: DLCDb39Hu0SATBAuZHrW7S+IKgDrM89Hzg8XBQ/XrQE= Subject key identifier: 5C:69:C6:B8:4B:4C:35:8D:53:45:C3:C0:BA:11:78:2C:65:F3:76:98 Certificate issuer: /CN=A91BC269/serialNumber=226F7289D4E37FECE2260C64D3BCBA7AC0315A75 Certificate serial: 0200 Authority key identifier: 22:6F:72:89:D4:E3:7F:EC:E2:26:0C:64:D3:BC:BA:7A:C0:31:5A:75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Im9yidTjf-ziJgxk07y6esAxWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/16DDC0F4CFE811ECA193B36BC4F9AE02.roa Signing time: Fri 03 Nov 2023 03:54:04 +0000 ROA not before: Fri 03 Nov 2023 03:54:04 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 55850 IP address blocks: 139.180.64.0/18 maxlen: 18 149.19.16.0/20 maxlen: 20 167.179.216.0/21 maxlen: 21 208.56.208.0/20 maxlen: 20 209.87.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/Im9yidTjf-ziJgxk07y6esAxWnU.crl rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/Im9yidTjf-ziJgxk07y6esAxWnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Im9yidTjf-ziJgxk07y6esAxWnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC269/serialNumber=226F7289D4E37FECE2260C64D3BCBA7AC0315A75 Validity Not Before: Nov 3 03:54:04 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65446edb-00d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3b:b8:64:a7:8e:aa:21:a7:15:f9:d4:2d:15: 98:bb:4e:13:07:b7:3b:56:a6:3c:11:a4:fa:38:5b: 8c:3d:cb:2c:74:ad:22:fc:42:87:cb:dc:f5:42:4e: b3:7f:01:05:f3:2a:fb:0f:4b:45:c9:17:04:8d:bf: f4:b4:67:08:21:18:b9:2e:2b:81:16:e9:08:5f:b5: 11:6f:92:39:dd:6c:2c:52:89:1d:a1:ab:c2:a4:5d: d1:30:a1:aa:85:bd:25:01:51:b5:e5:a3:0a:50:e6: 5b:52:fb:90:82:48:dc:ed:3e:e0:0e:3f:50:4b:3c: f9:22:69:79:35:1e:4f:2c:5a:b9:14:f4:a1:df:93: 32:51:96:e1:f4:96:0e:76:7a:f2:c4:c4:5c:bd:db: b7:20:da:35:cf:b9:92:fd:61:ee:e7:59:c1:83:e9: 0d:2f:d6:24:12:ad:06:31:91:c3:a9:31:dd:f1:86: d6:3a:d7:82:bf:d7:86:b3:07:de:63:8d:56:c0:99: de:1c:76:5d:2e:45:26:55:c5:e2:51:9a:4a:0a:0b: 63:bf:ad:0f:f4:2c:83:9a:77:57:f6:18:9b:00:7a: b2:8d:d5:0a:8b:bc:74:cc:16:4e:80:05:b1:cd:34: f2:d1:c9:d3:aa:9f:34:28:43:b5:9d:60:c2:1b:1e: 96:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:69:C6:B8:4B:4C:35:8D:53:45:C3:C0:BA:11:78:2C:65:F3:76:98 X509v3 Authority Key Identifier: keyid:22:6F:72:89:D4:E3:7F:EC:E2:26:0C:64:D3:BC:BA:7A:C0:31:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/Im9yidTjf-ziJgxk07y6esAxWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Im9yidTjf-ziJgxk07y6esAxWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/16DDC0F4CFE811ECA193B36BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.180.64.0/18 149.19.16.0/20 167.179.216.0/21 208.56.208.0/20 209.87.188.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:8c:2d:52:d2:6e:bd:f4:e7:7b:b3:03:38:7b:72:bc:2e:1f: 1e:ad:50:fb:79:08:c9:22:de:68:75:93:b0:16:62:82:39:49: f1:45:e9:80:4c:a8:2b:43:b3:95:ae:25:47:7a:da:c1:0f:dc: 86:45:22:e9:0f:c5:3b:d0:c9:aa:e7:8b:71:99:d3:86:71:35: ea:a1:e9:b9:95:22:88:69:00:42:f2:f6:a4:09:0a:be:e5:e6: aa:ab:74:33:1b:1a:aa:8a:36:d4:60:9c:dd:e6:38:8c:5d:69: 48:96:ca:8e:94:31:c4:3d:a3:67:f7:a4:46:52:0d:5f:fd:1e: d3:84:78:2a:38:30:a1:a4:47:fb:c3:c5:1c:13:5a:9d:b4:97: 2e:7f:79:d4:c1:23:df:67:ae:ad:bf:6d:4a:31:82:79:68:97: 12:e9:fe:73:72:38:a4:a4:a7:07:31:92:57:ed:5a:53:66:88: 60:d0:f2:62:85:51:e1:5c:10:8a:0f:f5:be:4a:f8:32:f1:c6: c4:42:a8:68:a4:7e:7e:63:67:72:17:89:ed:51:ac:1d:84:c9: 94:01:5f:b6:80:bb:3a:ce:a4:ff:50:e7:37:f0:5c:cb:85:19: 98:6a:1f:ed:da:a7:4f:1f:39:34:59:cf:ed:cc:21:9d:a8:b9: 23:49:6d:55 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyNjkxMTAvBgNVBAUTKDIyNkY3Mjg5RDRFMzdGRUNFMjI2MEM2NEQzQkNCQTdB QzAzMTVBNzUwHhcNMjMxMTAzMDM1NDA0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0NmVkYi0wMGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzu4ZKeOqiGnFfnULRWYu04TB7c7VqY8EaT6OFuMPcssdK0i/EKHy9z1Qk6z fwEF8yr7D0tFyRcEjb/0tGcIIRi5LiuBFukIX7URb5I53WwsUokdoavCpF3RMKGq hb0lAVG15aMKUOZbUvuQgkjc7T7gDj9QSzz5Iml5NR5PLFq5FPSh35MyUZbh9JYO dnryxMRcvdu3INo1z7mS/WHu51nBg+kNL9YkEq0GMZHDqTHd8YbWOteCv9eGswfe Y41WwJneHHZdLkUmVcXiUZpKCgtjv60P9CyDmndX9hibAHqyjdUKi7x0zBZOgAWx zTTy0cnTqp80KEO1nWDCGx6W9QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFFxpxrhL TDWNU0XDwLoReCxl83aYMB8GA1UdIwQYMBaAFCJvconU43/s4iYMZNO8unrAMVp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzI2OS9CMTYxMzExOENG RTUxMUVDOTRCQkM3NUFDNEY5QUUwMi9JbTl5aWRUamYtemlKZ3hrMDd5NmVzQXhX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ltOXlpZFRqZi16aUpneGswN3k2ZXNBeFduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMyNjkvQjE2MTMxMThDRkU1MTFFQzk0QkJDNzVBQzRGOUFFMDIvMTZEREMwRjRD RkU4MTFFQ0ExOTNCMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAaLtEADBASVExADBAOns9gDBATQONADBALRV7wwDQYJKoZI hvcNAQELBQADggEBACqMLVLSbr3053uzAzh7crwuHx6tUPt5CMki3mh1k7AWYoI5 SfFF6YBMqCtDs5WuJUd62sEP3IZFIukPxTvQyarni3GZ04ZxNeqh6bmVIohpAELy 9qQJCr7l5qqrdDMbGqqKNtRgnN3mOIxdaUiWyo6UMcQ9o2f3pEZSDV/9HtOEeCo4 MKGkR/vDxRwTWp20ly5/edTBI99nrq2/bUoxgnlolxLp/nNyOKSkpwcxklftWlNm iGDQ8mKFUeFcEIoP9b5K+DLxxsRCqGikfn5jZ3IXie1RrB2EyZQBX7aAuzrOpP9Q 5zfwXMuFGZhqH+3ap08fOTRZz+3MIZ2ouSNJbVU= -----END CERTIFICATE-----Generated at Sun May 19 05:08:06 2024 by rpki-client on console-ams.rpki-client.org