$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa File: 8FFA8D36FF0C11EA854DE24CC4F9AE02.roa (raw, json) Hash identifier: tnJ3XOL1qQV4G/mV0ORt0qAipnI6yxGGobtXPhZDv0c= Subject key identifier: 4F:A4:15:18:74:F1:70:4D:E4:C6:B5:8E:82:27:D1:B6:6E:BC:45:54 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 5EEA Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa Signing time: Tue 26 Mar 2024 21:40:16 +0000 ROA not before: Tue 26 Mar 2024 21:40:16 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 55355 IP address blocks: 118.143.207.0/24 maxlen: 24 118.143.209.0/24 maxlen: 24 218.188.96.0/24 maxlen: 24 218.188.97.0/24 maxlen: 24 218.188.98.0/24 maxlen: 24 218.188.99.0/24 maxlen: 24 218.188.100.0/24 maxlen: 24 218.189.10.0/24 maxlen: 24 218.189.124.0/24 maxlen: 24 218.189.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 21:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24298 (0x5eea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Mar 26 21:40:16 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=660340c0-a2e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e4:a5:8f:97:a6:e8:94:3f:79:68:78:05:e3: 1b:c1:d9:cd:23:4d:7b:f7:d2:7f:fc:61:d0:92:07: 62:cc:42:3d:a4:52:09:c0:4e:2e:42:ca:e3:f3:19: 94:aa:5c:3d:ae:e7:85:b6:08:71:ef:d8:00:3f:2b: 62:92:55:17:7b:20:79:aa:88:78:a0:66:68:71:d1: 8b:a2:01:a9:1a:c7:a7:9c:c5:89:f8:e9:cb:95:c0: 12:39:9d:7b:d8:0e:76:fc:1a:76:5e:ca:df:7e:91: 18:73:39:18:20:1a:82:a4:6b:f6:40:ba:92:49:8f: fa:c0:51:4d:f9:e3:74:03:1b:b5:5c:c4:db:c6:0c: 09:8b:60:f2:32:04:ae:a6:6a:67:08:b9:dc:e0:cd: cb:50:3c:14:ce:ec:d7:3e:fb:8d:74:ba:8c:3f:16: c2:0c:be:2b:9b:ad:8c:92:64:fb:d0:f9:07:6c:58: 6a:ef:80:20:db:81:f2:39:76:43:57:38:e2:7f:09: bc:bd:9c:24:2d:65:89:b4:57:da:06:f3:a4:bc:b7: c5:69:2c:2a:e8:b4:e9:5a:cf:2e:3d:36:d7:b4:7c: 6b:cb:62:99:49:e3:b0:c7:1c:3c:cb:af:51:c5:e0: fd:03:c1:ab:03:cd:09:29:bf:ad:a7:3e:e4:ff:0c: 2a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A4:15:18:74:F1:70:4D:E4:C6:B5:8E:82:27:D1:B6:6E:BC:45:54 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.143.207.0/24 118.143.209.0/24 218.188.96.0-218.188.100.255 218.189.10.0/24 218.189.124.0/23 Signature Algorithm: sha256WithRSAEncryption a9:04:a6:b4:c0:a1:19:ba:92:a7:c7:12:69:54:3f:c8:b6:a1: 1b:d2:a9:e2:b3:5a:41:39:81:32:14:6c:7d:71:22:23:e2:29: f9:37:55:9b:28:5c:04:e5:1f:db:58:cc:e1:5c:ac:1d:51:c6: 46:eb:3e:64:e7:4a:3c:24:1a:bc:9f:47:1a:a3:f6:6b:5c:75: 16:7f:a8:75:54:08:6c:f2:69:2e:aa:66:05:59:6f:28:07:1d: a8:38:bc:68:8f:ba:ae:1a:60:d1:0c:5c:d7:ba:0d:eb:e5:1a: dd:59:f2:a9:82:b2:99:70:cc:c8:39:eb:7f:24:7b:e8:6a:c3: f9:9b:f5:81:fe:c6:a0:09:7b:70:44:41:00:23:dc:28:b3:6b: bc:0a:5b:4f:b8:f6:8c:51:5e:29:8e:a7:94:f9:a8:aa:a3:38: b9:0d:36:af:ce:fc:37:a2:f9:e2:01:6e:e9:af:ab:1e:23:99: da:a6:af:bb:e1:55:13:cb:70:14:df:3f:c2:93:62:94:ba:c8: b1:26:ab:60:bd:03:06:4d:c4:b8:56:e1:0c:a3:14:ce:5a:32: 48:2a:df:cf:2f:e9:d3:41:e5:40:97:36:7d:a4:5f:54:7c:a1: 3e:75:48:3b:e5:e1:46:3f:22:67:a6:3d:6c:a5:27:9c:e5:7f: bc:58:6f:01 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICXuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjQwMzI2MjE0MDE2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzNDBjMC1hMmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+Slj5em6JQ/eWh4BeMbwdnNI01799J//GHQkgdizEI9pFIJwE4uQsrj8xmU qlw9rueFtghx79gAPytiklUXeyB5qoh4oGZocdGLogGpGsennMWJ+OnLlcASOZ17 2A52/Bp2XsrffpEYczkYIBqCpGv2QLqSSY/6wFFN+eN0Axu1XMTbxgwJi2DyMgSu pmpnCLnc4M3LUDwUzuzXPvuNdLqMPxbCDL4rm62MkmT70PkHbFhq74Ag24HyOXZD Vzjifwm8vZwkLWWJtFfaBvOkvLfFaSwq6LTpWs8uPTbXtHxry2KZSeOwxxw8y69R xeD9A8GrA80JKb+tpz7k/wwq6QIDAQABo4ICtTCCArEwHQYDVR0OBBYEFE+kFRh0 8XBN5Ma1joIn0bZuvEVUMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvOEZGQThEMzZG RjBDMTFFQTg1NERFMjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAB2j88DBAB2j9EwDAMEBdq8YAMEANq8ZAMEANq9CgMEAdq9 fDANBgkqhkiG9w0BAQsFAAOCAQEAqQSmtMChGbqSp8cSaVQ/yLahG9Kp4rNaQTmB MhRsfXEiI+Ip+TdVmyhcBOUf21jM4VysHVHGRus+ZOdKPCQavJ9HGqP2a1x1Fn+o dVQIbPJpLqpmBVlvKAcdqDi8aI+6rhpg0Qxc17oN6+Ua3VnyqYKymXDMyDnrfyR7 6GrD+Zv1gf7GoAl7cERBACPcKLNrvApbT7j2jFFeKY6nlPmoqqM4uQ02r878N6L5 4gFu6a+rHiOZ2qavu+FVE8twFN8/wpNilLrIsSarYL0DBk3EuFbhDKMUzloySCrf zy/p00HlQJc2faRfVHyhPnVIO+XhRj8iZ6Y9bKUnnOV/vFhvAQ== -----END CERTIFICATE-----Generated at Tue May 14 22:49:21 2024 by rpki-client on console-ams.rpki-client.org