$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/9A1D8B2E867D11ED856A8E54C4F9AE02.roa File: 9A1D8B2E867D11ED856A8E54C4F9AE02.roa (raw, json) Hash identifier: 0DGna2tww9RB/UuCw1bERJWQSSMHCxUHVLlu1VAXUAE= Subject key identifier: 66:01:7B:6E:86:58:D5:DA:25:95:C9:46:57:E5:20:B3:3F:02:1F:26 Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Certificate serial: 0411 Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/9A1D8B2E867D11ED856A8E54C4F9AE02.roa Signing time: Sat 09 Dec 2023 01:53:57 +0000 ROA not before: Sat 09 Dec 2023 01:53:57 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 65001 IP address blocks: 42.104.91.0/24 maxlen: 24 123.63.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1041 (0x411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Validity Not Before: Dec 9 01:53:57 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6573c8b5-b0e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8d:c9:d9:c8:5a:30:01:b2:e3:21:e9:41:a2: a0:6c:9b:8e:0c:e4:2d:d7:b5:e2:6f:55:6f:78:93: 4c:74:bd:42:4e:53:70:a9:2e:35:54:4b:cd:6b:8e: 05:68:cd:f5:21:69:92:47:e0:8b:0b:ab:91:fc:e8: 3f:e5:b9:43:2a:73:d4:a6:dd:e2:3c:62:c5:87:05: 2b:05:26:a6:42:4e:43:d8:73:1b:cb:d3:f1:f9:e8: fb:6a:6d:32:21:b4:b8:74:06:2b:de:22:ba:e1:10: 97:cc:74:ec:af:db:75:3f:2f:78:d0:03:af:71:82: ce:ee:a0:90:c9:51:98:a0:a8:52:53:a5:24:96:62: a4:0d:3b:2a:fb:8b:4d:da:65:cf:a1:ba:10:d4:b8: ba:3f:b6:c2:a4:87:8a:7e:20:66:8a:b6:b4:7b:b2: 2c:cc:e1:62:ee:32:d5:55:f4:f9:b8:bb:5b:2b:05: fe:eb:50:0a:52:1d:29:1d:a7:a9:58:43:81:89:7d: 78:bd:b6:34:12:a8:af:59:dc:4a:8f:d5:f7:19:b8: 4b:cf:0f:b6:21:40:99:02:cd:71:db:49:47:88:fc: bb:07:fb:27:3a:d0:9b:ed:ba:08:b1:4e:59:b1:14: f5:f8:70:13:f2:38:93:8d:0e:25:35:0e:d8:e8:5b: 8e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:01:7B:6E:86:58:D5:DA:25:95:C9:46:57:E5:20:B3:3F:02:1F:26 X509v3 Authority Key Identifier: keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/9A1D8B2E867D11ED856A8E54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.104.91.0/24 123.63.162.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:20:ce:40:2d:96:1f:09:c7:0f:02:76:d2:0e:56:be:69:75: 64:03:21:b1:1c:ae:b2:b4:be:da:b3:2a:fa:dc:96:45:cd:11: cc:2f:2f:5f:6c:f0:50:2b:08:9c:62:83:e9:be:18:81:bd:4b: d1:e6:14:f6:e0:cb:f0:4a:6b:de:4c:73:28:f9:25:36:75:ea: 1b:52:25:63:09:c9:be:bc:9f:74:1a:92:2f:3e:d4:50:b6:bd: 06:8a:7f:b8:8f:a7:9d:1d:39:a4:ce:5c:b8:69:24:7c:48:8a: e7:35:40:b8:70:76:0f:23:19:b5:03:2e:b0:80:e1:c7:00:25: d8:a2:08:77:9e:88:c2:01:0a:88:0d:57:85:ae:39:ac:76:47: 74:b2:ae:7e:98:f8:39:05:2f:ca:a6:3e:8a:0b:69:39:ff:3f: 13:aa:60:7e:07:b0:f8:fe:0e:46:95:74:6f:86:44:98:07:6c: 50:cc:56:be:9e:e3:dd:39:c2:bc:d6:84:9a:c6:0a:08:6a:55: 6f:c6:17:d2:4f:d2:38:90:a5:e7:c8:da:ae:39:62:7f:93:e9: 3b:62:b5:6c:d0:d9:77:35:f6:7d:f2:c8:12:2e:a3:57:b7:f4: 21:b6:80:c3:1e:d2:88:5d:82:39:6d:bc:f9:dc:d3:6d:51:bb: 1d:ad:09:26 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDU2Qjk4M0U0NkJDQkExMTVGRjIyNjVGRTQ5MTkwOUM3 RDc0MTQ3RjMwHhcNMjMxMjA5MDE1MzU3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczYzhiNS1iMGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAro3J2chaMAGy4yHpQaKgbJuODOQt17Xib1VveJNMdL1CTlNwqS41VEvNa44F aM31IWmSR+CLC6uR/Og/5blDKnPUpt3iPGLFhwUrBSamQk5D2HMby9Px+ej7am0y IbS4dAYr3iK64RCXzHTsr9t1Py940AOvcYLO7qCQyVGYoKhSU6UklmKkDTsq+4tN 2mXPoboQ1Li6P7bCpIeKfiBmira0e7IszOFi7jLVVfT5uLtbKwX+61AKUh0pHaep WEOBiX14vbY0EqivWdxKj9X3GbhLzw+2IUCZAs1x20lHiPy7B/snOtCb7boIsU5Z sRT1+HAT8jiTjQ4lNQ7Y6FuOYwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGYBe26G WNXaJZXJRlflILM/Ah8mMB8GA1UdIwQYMBaAFFa5g+Rry6EV/yJl/kkZCcfXQUfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ERTdEMkY5NDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9Wcm1ENUd2TG9SWF9JbVgtU1JrSng5ZEJS X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZybUQ1R3ZMb1JYX0ltWC1TUmtKeDlkQlJfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QzOUQvREU3RDJGOTQ0RTc2MTFFQ0E1NzIwQjc5QzRGOUFFMDIvOUExRDhCMkU4 NjdEMTFFRDg1NkE4RTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAqaFsDBAB7P6IwDQYJKoZIhvcNAQELBQADggEBAD0gzkAt lh8Jxw8CdtIOVr5pdWQDIbEcrrK0vtqzKvrclkXNEcwvL19s8FArCJxig+m+GIG9 S9HmFPbgy/BKa95Mcyj5JTZ16htSJWMJyb68n3Qaki8+1FC2vQaKf7iPp50dOaTO XLhpJHxIiuc1QLhwdg8jGbUDLrCA4ccAJdiiCHeeiMIBCogNV4WuOax2R3Syrn6Y +DkFL8qmPooLaTn/PxOqYH4HsPj+DkaVdG+GRJgHbFDMVr6e4905wrzWhJrGCghq VW/GF9JP0jiQpefI2q45Yn+T6TtitWzQ2Xc19n3yyBIuo1e39CG2gMMe0ohdgjlt vPnc021Rux2tCSY= -----END CERTIFICATE-----Generated at Tue May 21 03:39:39 2024 by rpki-client on console-ams.rpki-client.org