$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/640C18A214AD11EEAA685687C4F9AE02.roa File: 640C18A214AD11EEAA685687C4F9AE02.roa (raw, json) Hash identifier: V+Z1scvo5UHb+Ra3Ka2uleBikTmA8/0+Tgf2EQamPk4= Subject key identifier: 0F:5D:30:0F:78:A3:0E:1F:74:5E:AB:09:BC:DE:BC:23:5C:07:A5:B1 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0DB2 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/640C18A214AD11EEAA685687C4F9AE02.roa Signing time: Thu 28 Dec 2023 18:56:36 +0000 ROA not before: Thu 28 Dec 2023 18:56:36 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 1221 IP address blocks: 61.47.88.0/21 maxlen: 24 116.92.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3506 (0xdb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Dec 28 18:56:36 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658dc4e3-88dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:01:0c:11:65:ba:e7:68:76:04:bd:06:72:3a: bc:e0:fa:f0:cb:61:3d:c6:bf:a9:67:0c:60:1d:85: 52:9a:4e:40:e8:d6:fa:ab:ad:1f:a2:33:e2:62:9b: d9:e0:09:2a:ce:cb:66:50:df:45:c9:17:63:a5:b9: 77:d6:d9:1b:a3:45:5f:73:ab:d7:70:97:4a:ba:65: 19:f2:e9:fe:13:29:8f:db:ff:fb:dd:6f:c1:76:8a: 4e:c7:ca:ef:eb:2b:83:5a:08:78:7b:4b:eb:fc:db: 82:24:45:71:c6:4d:05:11:c7:a9:d8:2d:4d:a4:8c: 6c:88:2c:a2:72:8c:35:ac:4b:7d:3e:47:04:fb:d0: f6:3c:1e:1c:f7:65:1b:4b:fb:48:0b:ce:87:fc:ad: bb:e2:75:f3:7d:36:97:50:c7:a8:fd:2f:af:53:2d: 3a:43:0b:ef:a2:6d:df:4e:19:5d:68:ce:e9:fa:14: cd:1b:6d:db:ef:10:94:54:56:49:b0:91:13:8a:26: 25:ac:47:f2:6d:38:fe:74:54:08:d5:51:19:05:38: b8:8c:a2:60:71:6b:9e:5d:7b:36:bb:97:c9:ac:db: 3f:13:72:17:5b:f1:58:99:03:e7:c6:61:64:58:73: d2:aa:ac:af:c5:f1:27:e5:7e:c2:ee:ac:52:83:87: cc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5D:30:0F:78:A3:0E:1F:74:5E:AB:09:BC:DE:BC:23:5C:07:A5:B1 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/640C18A214AD11EEAA685687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.47.88.0/21 116.92.64.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:87:1a:d4:fc:12:7b:41:c7:7c:05:02:eb:15:cf:7e:df:ca: ef:c2:31:a4:7b:28:e7:71:da:d6:89:9a:d1:7d:39:3e:1a:66: e1:d5:67:ba:6f:6d:f5:70:16:c6:2a:3c:d4:2e:aa:2a:50:1a: a7:8d:e2:53:4b:2d:9e:03:0b:1c:c2:6e:da:c9:3f:03:a2:49: 8e:a2:88:94:79:24:ba:b5:c3:48:6f:c6:31:f0:4b:96:b3:99: 00:3c:83:57:73:51:23:0a:2f:59:19:3f:dc:f1:61:44:eb:f7: 4c:08:54:4c:f6:24:8b:4c:35:24:6d:fc:f4:99:2a:c8:eb:d1: a8:d6:6b:60:00:b1:03:e3:47:3e:f5:e7:36:3d:6e:8a:42:79: 84:a0:56:62:9d:e0:29:6d:90:6d:12:f8:ed:81:cf:98:d7:24: b5:d5:7c:0d:d9:ab:57:82:42:eb:ed:1f:fe:98:03:56:ff:98: fc:d2:eb:60:af:b3:ba:37:05:bb:0c:05:36:a5:c8:47:ab:1c: 19:94:af:58:0d:65:04:2a:9e:cb:5d:ad:5f:1f:0d:91:1e:e8: d1:28:c2:3f:93:4d:7f:eb:7a:4e:d2:d7:73:93:9b:cc:6f:36: 86:f9:12:fc:9b:9c:d6:c4:d6:92:88:68:f4:2b:1c:25:4a:cb: 6c:62:9b:8e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjMxMjI4MTg1NjM2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzRlMy04OGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8wEMEWW652h2BL0Gcjq84Prwy2E9xr+pZwxgHYVSmk5A6Nb6q60fojPiYpvZ 4AkqzstmUN9FyRdjpbl31tkbo0Vfc6vXcJdKumUZ8un+EymP2//73W/BdopOx8rv 6yuDWgh4e0vr/NuCJEVxxk0FEcep2C1NpIxsiCyicow1rEt9PkcE+9D2PB4c92Ub S/tIC86H/K274nXzfTaXUMeo/S+vUy06Qwvvom3fThldaM7p+hTNG23b7xCUVFZJ sJETiiYlrEfybTj+dFQI1VEZBTi4jKJgcWueXXs2u5fJrNs/E3IXW/FYmQPnxmFk WHPSqqyvxfEn5X7C7qxSg4fMFQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFA9dMA94 ow4fdF6rCbzevCNcB6WxMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNjQwQzE4QTIx NEFEMTFFRUFBNjg1Njg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAM9L1gDBAN0XEAwDQYJKoZIhvcNAQELBQADggEBAFyHGtT8 EntBx3wFAusVz37fyu/CMaR7KOdx2taJmtF9OT4aZuHVZ7pvbfVwFsYqPNQuqipQ GqeN4lNLLZ4DCxzCbtrJPwOiSY6iiJR5JLq1w0hvxjHwS5azmQA8g1dzUSMKL1kZ P9zxYUTr90wIVEz2JItMNSRt/PSZKsjr0ajWa2AAsQPjRz715zY9bopCeYSgVmKd 4CltkG0S+O2Bz5jXJLXVfA3Zq1eCQuvtH/6YA1b/mPzS62Cvs7o3BbsMBTalyEer HBmUr1gNZQQqnstdrV8fDZEe6NEowj+TTX/rek7S13OTm8xvNob5EvybnNbE1pKI aPQrHCVKy2xim44= -----END CERTIFICATE-----Generated at Thu May 16 20:25:55 2024 by rpki-client on console-ams.rpki-client.org