$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/DDBC2904F43811EB996EF71CC4F9AE02.roa File: DDBC2904F43811EB996EF71CC4F9AE02.roa (raw, json) Hash identifier: KrCTzS2XbgtLsY6GZt/EHaNU/HloOc9wNHxytXA1aYg= Subject key identifier: A8:85:DC:EE:30:07:93:4D:53:BC:67:2A:F3:FE:47:0E:DD:A8:A0:E7 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 5EE7 Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/DDBC2904F43811EB996EF71CC4F9AE02.roa Signing time: Tue 26 Mar 2024 21:40:14 +0000 ROA not before: Tue 26 Mar 2024 21:40:14 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 10082 IP address blocks: 218.188.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 21:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24295 (0x5ee7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Mar 26 21:40:14 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=660340bd-3f1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:63:36:68:26:05:b6:a6:aa:41:da:ec:f1:85: 7f:88:b8:47:95:72:94:93:cf:89:4e:39:ca:e5:d7: 9d:ed:02:5d:30:8e:f8:a1:af:30:7d:b7:e2:be:08: 95:2d:cf:66:c4:d1:7a:1f:29:63:fb:04:9e:d1:72: 80:64:18:21:66:5d:b8:47:64:bf:b6:4c:71:9b:71: a0:98:a6:f6:e0:38:63:16:92:da:88:4a:02:b8:54: 0a:09:09:82:fc:f6:66:ff:aa:b7:6c:c7:13:c1:a0: 3e:85:1e:6c:1f:46:16:34:38:86:26:51:6c:30:b6: 5d:b5:1a:95:2f:57:01:22:98:93:09:95:fe:30:99: 48:8d:0a:a6:26:b2:41:fb:94:6c:da:9e:1d:c4:12: 50:da:15:93:9c:03:6b:35:bb:3f:00:30:69:a1:12: 8b:f7:00:fe:4c:3f:fd:46:94:5b:d1:be:da:67:cc: d9:04:0d:06:05:c7:44:06:2d:aa:42:a9:b0:9c:07: a5:81:98:03:ac:2a:47:fc:96:87:30:0c:e3:58:8c: 9d:52:67:34:d2:b0:de:34:da:03:57:ac:46:80:c7: af:b8:14:0d:5d:9d:8c:63:a5:22:a9:40:ed:dd:80: 22:1f:1a:ee:74:79:73:02:93:43:a0:fa:66:d0:21: c2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:85:DC:EE:30:07:93:4D:53:BC:67:2A:F3:FE:47:0E:DD:A8:A0:E7 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/DDBC2904F43811EB996EF71CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.188.93.0/24 Signature Algorithm: sha256WithRSAEncryption 24:e3:1a:8f:ba:87:b8:db:c5:c4:09:e8:9e:bd:25:f7:04:69: 82:14:8b:4a:20:de:fb:01:1f:a4:1f:87:3f:1f:77:aa:2e:c4: 2c:56:e2:59:ce:19:da:d2:97:f1:34:f5:9e:a5:f6:a6:46:8e: a9:83:3f:b9:3c:44:d4:c1:7e:3a:bf:b8:ac:f5:ae:ab:dd:2a: fa:8c:fb:fb:2f:1a:3c:40:71:80:f4:3f:6a:3b:34:ef:83:26: d9:54:82:86:97:58:31:9c:a8:b9:7e:3d:9b:d3:65:f2:32:49: c8:03:11:b1:cc:0b:c3:19:3b:d9:6f:2e:c0:6b:c4:26:72:20: 58:02:7a:68:98:86:c8:9e:47:c0:fb:70:ea:98:e2:60:85:76: 7a:79:28:01:fe:a4:df:5b:d1:3e:90:29:12:44:c6:69:d4:ba: 8f:c2:c9:94:6f:05:d2:4e:e5:04:da:99:8b:34:96:64:b9:8e: f8:40:67:90:43:e5:62:88:03:d5:2c:27:db:09:cb:62:55:48: 71:6d:8f:e9:ae:53:c7:a5:52:8f:09:15:2f:2d:17:02:01:b5: fe:0a:70:62:4a:35:7f:cc:15:1a:8b:cc:ff:6a:0c:ca:e8:ba: 02:3b:67:4d:0f:0c:2b:bc:ba:88:e5:c9:ae:c3:9a:ae:3d:5b: f3:2b:c1:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICXucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjQwMzI2MjE0MDE0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzNDBiZC0zZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7mM2aCYFtqaqQdrs8YV/iLhHlXKUk8+JTjnK5ded7QJdMI74oa8wfbfivgiV Lc9mxNF6Hylj+wSe0XKAZBghZl24R2S/tkxxm3GgmKb24DhjFpLaiEoCuFQKCQmC /PZm/6q3bMcTwaA+hR5sH0YWNDiGJlFsMLZdtRqVL1cBIpiTCZX+MJlIjQqmJrJB +5Rs2p4dxBJQ2hWTnANrNbs/ADBpoRKL9wD+TD/9RpRb0b7aZ8zZBA0GBcdEBi2q QqmwnAelgZgDrCpH/JaHMAzjWIydUmc00rDeNNoDV6xGgMevuBQNXZ2MY6UiqUDt 3YAiHxrudHlzApNDoPpm0CHCywIDAQABo4IClTCCApEwHQYDVR0OBBYEFKiF3O4w B5NNU7xnKvP+Rw7dqKDnMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvRERCQzI5MDRG NDM4MTFFQjk5NkVGNzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADavF0wDQYJKoZIhvcNAQELBQADggEBACTjGo+6h7jbxcQJ 6J69JfcEaYIUi0og3vsBH6Qfhz8fd6ouxCxW4lnOGdrSl/E09Z6l9qZGjqmDP7k8 RNTBfjq/uKz1rqvdKvqM+/svGjxAcYD0P2o7NO+DJtlUgoaXWDGcqLl+PZvTZfIy ScgDEbHMC8MZO9lvLsBrxCZyIFgCemiYhsieR8D7cOqY4mCFdnp5KAH+pN9b0T6Q KRJExmnUuo/CyZRvBdJO5QTamYs0lmS5jvhAZ5BD5WKIA9UsJ9sJy2JVSHFtj+mu U8elUo8JFS8tFwIBtf4KcGJKNX/MFRqLzP9qDMrougI7Z00PDCu8uojlya7Dmq49 W/MrweA= -----END CERTIFICATE-----Generated at Tue May 14 22:49:21 2024 by rpki-client on console-ams.rpki-client.org