$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/1600DBF659C311E9A04B846FC4F9AE02.roa File: 1600DBF659C311E9A04B846FC4F9AE02.roa (raw, json) Hash identifier: GkEbPkSC+QT9/jHyDhftlTk72Onx7dag9CG0TAc5ngA= Subject key identifier: CB:EB:2D:6C:30:80:66:72:68:12:5D:CB:7E:64:FE:A7:7D:DE:66:82 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 341C Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/1600DBF659C311E9A04B846FC4F9AE02.roa Signing time: Wed 04 Oct 2023 15:11:04 +0000 ROA not before: Wed 04 Oct 2023 15:11:04 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 38740 IP address blocks: 43.241.139.0/24 maxlen: 24 2405:ec00:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13340 (0x341c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Oct 4 15:11:04 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651d8088-faf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:55:67:3c:77:cd:0d:48:3b:72:c2:52:73:50: 28:4a:d4:f9:b2:53:18:d0:b7:9c:e2:14:d7:66:6a: 26:45:bd:07:f6:1e:93:6e:0f:a0:19:e0:d2:49:96: 93:0e:5d:7c:6f:a5:4b:c8:b7:ca:19:9d:4b:06:83: 76:6d:67:ab:71:1f:f6:46:3a:0e:ac:0a:74:4e:6e: 42:2a:af:e5:99:0f:3f:ca:a1:99:89:9e:83:cd:6a: 3a:c7:12:f5:12:33:5a:6b:05:49:cb:58:e9:f7:8d: e1:02:5e:f7:bc:db:29:7f:89:a5:f8:0e:33:99:d6: f0:4f:1a:4b:b6:aa:b6:3e:af:ca:2e:7f:ac:a8:74: 9b:35:c8:c8:5a:eb:c0:ff:cb:6b:bc:ac:80:8a:c6: cb:48:c8:89:a5:9d:77:b1:0e:32:13:7f:a9:a4:c8: cb:e1:4f:0e:15:62:97:c5:62:b4:93:45:9b:4c:4b: c5:ff:a5:7e:9a:1b:d1:86:ee:df:40:94:87:27:f8: e4:90:17:1f:9a:6b:db:bd:90:29:5b:fc:8d:31:93: 2c:29:dd:db:c1:41:b3:f0:1a:a0:7c:f9:e7:66:77: 8e:ed:e3:3d:77:df:9c:3c:a0:72:07:c4:3d:83:9f: f9:4a:ad:43:05:aa:f3:e2:4f:1c:47:59:8f:e4:1d: 72:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:EB:2D:6C:30:80:66:72:68:12:5D:CB:7E:64:FE:A7:7D:DE:66:82 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/1600DBF659C311E9A04B846FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.139.0/24 IPv6: 2405:ec00:8000::/48 Signature Algorithm: sha256WithRSAEncryption 53:1e:ab:ee:26:4d:aa:d6:9f:cf:ae:b7:c5:a1:55:3a:11:46: f6:01:6b:00:61:a6:4f:4e:27:bd:d9:92:91:6d:14:bc:16:2a: 1f:f3:96:1b:2a:ad:16:a3:0f:ed:41:c8:87:ae:4a:00:69:8d: 83:e8:02:f1:e3:60:f5:aa:74:52:0a:63:e0:8a:16:db:17:f4: aa:c4:8f:e7:6a:4f:0e:72:fa:7f:a5:46:25:4b:9a:2e:24:3b: bf:68:3f:e1:cf:86:25:d5:a1:ce:98:f8:cc:4c:43:ae:0d:6c: 45:65:0b:dc:ca:8e:77:f1:e9:f0:35:8f:eb:14:4a:2a:53:f4: b1:ba:61:1a:9b:a4:8b:7d:08:70:bb:59:f5:f4:be:c8:e9:e3: 6e:50:24:2d:57:bf:01:ff:93:79:44:2a:35:66:b6:97:8b:19: ed:3b:8d:e7:ef:2b:0a:90:04:bc:9e:86:25:68:04:e2:ce:03: 81:b8:ab:32:25:20:33:17:5f:d8:41:b9:65:03:1c:04:a3:90: e2:11:da:84:8e:ea:c9:21:76:1c:1b:8b:67:7a:8d:a2:94:b9: c0:bb:f2:2f:6e:90:2e:41:25:6e:25:0f:83:d1:a4:16:b5:8a: f0:a4:65:ab:52:31:3a:5d:1a:e0:f7:9b:5e:f1:20:23:cd:77: 82:58:ab:5f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjMxMDA0MTUxMTA0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkODA4OC1mYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1VnPHfNDUg7csJSc1AoStT5slMY0Lec4hTXZmomRb0H9h6Tbg+gGeDSSZaT Dl18b6VLyLfKGZ1LBoN2bWercR/2RjoOrAp0Tm5CKq/lmQ8/yqGZiZ6DzWo6xxL1 EjNaawVJy1jp943hAl73vNspf4ml+A4zmdbwTxpLtqq2Pq/KLn+sqHSbNcjIWuvA /8trvKyAisbLSMiJpZ13sQ4yE3+ppMjL4U8OFWKXxWK0k0WbTEvF/6V+mhvRhu7f QJSHJ/jkkBcfmmvbvZApW/yNMZMsKd3bwUGz8BqgfPnnZneO7eM9d9+cPKByB8Q9 g5/5Sq1DBarz4k8cR1mP5B1ydQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMvrLWww gGZyaBJdy35k/qd93maCMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGMDYvNzZFMUM0N0UxRDk1MTFFMkJFNTk1RTdEMDhCMDJDRDIvMTYwMERCRjY1 OUMzMTFFOUEwNEI4NDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAr8YswDwQCAAIwCQMHACQF7ACAADANBgkqhkiG9w0BAQsF AAOCAQEAUx6r7iZNqtafz663xaFVOhFG9gFrAGGmT04nvdmSkW0UvBYqH/OWGyqt FqMP7UHIh65KAGmNg+gC8eNg9ap0Ugpj4IoW2xf0qsSP52pPDnL6f6VGJUuaLiQ7 v2g/4c+GJdWhzpj4zExDrg1sRWUL3MqOd/Hp8DWP6xRKKlP0sbphGpuki30IcLtZ 9fS+yOnjblAkLVe/Af+TeUQqNWa2l4sZ7TuN5+8rCpAEvJ6GJWgE4s4DgbirMiUg Mxdf2EG5ZQMcBKOQ4hHahI7qySF2HBuLZ3qNopS5wLvyL26QLkElbiUPg9GkFrWK 8KRlq1IxOl0a4PebXvEgI813glirXw== -----END CERTIFICATE-----Generated at Thu May 16 17:51:51 2024 by rpki-client on console-ams.rpki-client.org