$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/8A8DFF6C850111EEAE266623C4F9AE02.roa File: 8A8DFF6C850111EEAE266623C4F9AE02.roa (raw, json) Hash identifier: iGYX3B/IkkkfRtF03/OTWETd2AEHP1Oy6Q8xpuFKgCM= Subject key identifier: 94:62:B6:91:3F:34:7A:49:D7:2D:33:98:F0:46:32:CD:15:2E:BF:84 Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 070E Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/8A8DFF6C850111EEAE266623C4F9AE02.roa Signing time: Wed 31 Jan 2024 00:12:37 +0000 ROA not before: Wed 31 Jan 2024 00:12:37 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 7496 IP address blocks: 203.27.226.0/23 maxlen: 24 203.32.8.0/21 maxlen: 24 2405:8800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1806 (0x70e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Jan 31 00:12:37 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b99075-3526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b3:82:3c:e2:ef:69:96:6b:61:5c:88:78:1f: 1b:99:93:02:b5:9c:87:0e:65:96:04:8c:33:8c:4a: 2c:96:63:b5:89:97:6f:8e:42:09:73:03:b4:7d:a7: 58:f0:85:d6:2a:89:99:18:cd:14:6b:64:81:6e:43: de:75:b8:77:ba:ea:8a:07:4b:a3:1f:0f:49:7f:a2: 8e:61:ea:3f:e5:66:d1:17:63:7c:56:58:b5:15:ea: f3:33:17:4c:a9:34:48:17:6c:33:22:db:ac:26:1e: df:93:85:87:cf:cd:05:93:4c:24:12:60:e4:04:25: a6:ca:9a:e0:4f:8b:89:4d:df:21:06:b5:3d:4d:d5: c1:d0:2a:3e:6b:b7:c4:e8:6a:91:ae:dd:5b:fd:47: 80:df:5a:d9:5f:0d:9e:48:27:5b:81:05:f9:3e:3e: 2a:f3:28:62:30:94:7c:db:90:e8:3c:fd:7b:af:fd: 0e:8f:6c:7d:ac:9c:22:6c:b0:e9:17:c6:93:a5:ab: 2e:06:82:c4:49:c5:1f:32:8f:6e:5d:e7:d6:11:10: 1f:83:f1:24:0d:97:10:04:4c:f9:22:41:ba:46:b6: 17:62:b3:27:4d:fe:d8:39:07:5f:66:3c:1e:93:14: 0b:88:99:d7:1f:fc:7e:36:b9:f7:ee:b3:d5:fb:e2: 27:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:62:B6:91:3F:34:7A:49:D7:2D:33:98:F0:46:32:CD:15:2E:BF:84 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/8A8DFF6C850111EEAE266623C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.226.0/23 203.32.8.0/21 IPv6: 2405:8800::/32 Signature Algorithm: sha256WithRSAEncryption 7d:e4:08:a0:f7:c8:ec:88:09:f1:70:57:92:26:94:b0:8d:be: b8:d5:9d:ac:47:a9:ec:d0:c5:3a:62:74:fe:39:92:86:d6:77: b1:53:68:17:33:90:3b:6b:ad:ef:10:f2:8f:1a:0d:95:e6:01: 67:a6:c2:1c:b0:3b:ae:3c:06:74:62:27:cb:3d:6f:f0:51:c6: f1:bc:85:86:0b:2c:1c:a9:ca:ac:9d:ba:a4:86:25:3d:90:93: e8:92:03:3a:21:6b:10:85:cb:d8:2f:99:0c:8b:ea:5b:a0:b3: 09:0c:b9:d7:00:d5:11:1e:7a:8d:6b:56:12:8f:5d:d2:13:92: 42:2c:e2:17:9c:ce:b0:57:7d:e8:cb:91:64:9a:ec:b7:24:43: b4:4f:b9:44:9d:c5:2e:f6:1d:28:1d:61:81:c6:05:e8:42:64: f3:f0:ae:54:02:a1:9f:44:ce:5d:af:29:d2:45:6d:94:82:45: 4c:c3:22:63:8a:d7:05:9b:c8:40:8b:95:a8:b2:e0:ed:c5:24: 94:9f:8b:a6:1c:64:bf:e7:ae:95:01:f0:88:66:fa:de:49:4f: 25:b8:d4:c7:69:73:e2:dd:6a:6a:b4:0f:c9:79:c9:e3:c1:04: f7:15:98:a4:35:60:56:b5:b4:fc:b6:39:1f:16:98:1d:e9:f0: f8:9d:0f:44 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjQwMTMxMDAxMjM3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5OTA3NS0zNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrOCPOLvaZZrYVyIeB8bmZMCtZyHDmWWBIwzjEoslmO1iZdvjkIJcwO0fadY 8IXWKomZGM0Ua2SBbkPedbh3uuqKB0ujHw9Jf6KOYeo/5WbRF2N8Vli1FerzMxdM qTRIF2wzItusJh7fk4WHz80Fk0wkEmDkBCWmyprgT4uJTd8hBrU9TdXB0Co+a7fE 6GqRrt1b/UeA31rZXw2eSCdbgQX5Pj4q8yhiMJR825DoPP17r/0Oj2x9rJwibLDp F8aTpasuBoLEScUfMo9uXefWERAfg/EkDZcQBEz5IkG6RrYXYrMnTf7YOQdfZjwe kxQLiJnXH/x+Nrn37rPV++In4QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJRitpE/ NHpJ1y0zmPBGMs0VLr+EMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I3QUIvNTY3ODY1Njg0MDA5MTFFQkEzNzQyMjVCQzRGOUFFMDIvOEE4REZGNkM4 NTAxMTFFRUFFMjY2NjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAHLG+IDBAPLIAgwDQQCAAIwBwMFACQFiAAwDQYJKoZIhvcN AQELBQADggEBAH3kCKD3yOyICfFwV5ImlLCNvrjVnaxHqezQxTpidP45kobWd7FT aBczkDtrre8Q8o8aDZXmAWemwhywO648BnRiJ8s9b/BRxvG8hYYLLBypyqyduqSG JT2Qk+iSAzohaxCFy9gvmQyL6lugswkMudcA1REeeo1rVhKPXdITkkIs4heczrBX fejLkWSa7LckQ7RPuUSdxS72HSgdYYHGBehCZPPwrlQCoZ9Ezl2vKdJFbZSCRUzD ImOK1wWbyECLlaiy4O3FJJSfi6YcZL/nrpUB8Ihm+t5JTyW41Mdpc+Ldamq0D8l5 yePBBPcVmKQ1YFa1tPy2OR8WmB3p8PidD0Q= -----END CERTIFICATE-----Generated at Sun May 5 01:13:21 2024 by rpki-client on console-ams.rpki-client.org