$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2BABEEB482EE11EAB170FD4BC4F9AE02.roa File: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (raw, json) Hash identifier: Qo9ujKHP/HIgjR+Cul2ZeUPgzD/7WS2wzo33IIGZAg8= Subject key identifier: 5F:B1:F5:5E:21:FC:DE:0E:25:5D:AF:4E:D5:8E:A0:73:3D:3F:B3:E6 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0BC7 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2BABEEB482EE11EAB170FD4BC4F9AE02.roa Signing time: Mon 10 Jul 2023 18:35:42 +0000 ROA not before: Mon 10 Jul 2023 18:35:42 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 27435 IP address blocks: 116.68.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3015 (0xbc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Jul 10 18:35:42 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64ac4f7d-119c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:16:7a:10:e2:4f:d3:0a:a6:97:34:88:8c:38: a8:b4:20:bc:d1:08:82:e3:38:e6:b3:d5:e3:35:4b: c3:87:c9:e1:1d:19:3a:03:cc:dd:d5:d8:85:65:84: 94:1c:ae:61:5f:9d:8a:f4:fc:ba:53:72:17:28:21: 29:72:1f:75:bf:ce:af:ab:ea:4a:84:11:51:26:c2: e1:1d:b9:8b:18:13:22:39:74:f6:ff:18:5b:1d:70: 35:94:b0:73:25:e6:49:cd:d9:89:63:6c:eb:88:26: 65:0c:37:3c:30:be:47:74:4b:c4:72:a6:3c:63:8b: 15:52:87:84:07:31:b6:1f:65:d3:c5:75:80:dd:24: b8:5f:63:9b:8a:88:39:ad:9b:26:ca:cc:ae:fe:da: 94:c1:4e:be:ff:c7:90:74:25:19:05:0f:0d:c2:88: bd:35:00:4c:49:d6:79:3a:62:f3:63:6a:02:5d:12: eb:38:81:a8:1b:2d:c4:86:2d:5a:9b:3b:97:98:87: 50:85:c2:53:56:1b:bc:7b:2b:39:5d:76:10:0e:29: b7:97:71:20:1a:4a:ae:d7:2c:cd:c2:a1:cf:29:c2: 54:0f:cf:a4:10:ae:8f:f9:4f:8c:cd:9b:39:99:7c: 21:eb:59:45:2f:88:2d:0c:98:77:5b:57:b5:e7:34: fc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B1:F5:5E:21:FC:DE:0E:25:5D:AF:4E:D5:8E:A0:73:3D:3F:B3:E6 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2BABEEB482EE11EAB170FD4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.68.157.0/24 Signature Algorithm: sha256WithRSAEncryption 54:9d:da:f9:77:bb:c8:e5:51:28:60:a5:f7:b6:70:89:d5:a8: 75:94:06:86:bf:6b:17:d4:f9:99:92:01:d7:bc:30:ec:0f:c8: e5:1d:c6:57:bc:b6:75:69:f3:27:76:35:cb:7f:2e:5a:d0:10: a3:1a:cf:0b:26:79:76:27:19:42:d9:7f:b6:69:fe:cb:17:2b: d8:8b:d9:d8:07:69:0d:cd:a3:47:bb:f6:f7:02:a6:21:90:86: 4b:8e:f9:0f:4b:9a:1e:db:96:0a:9b:50:72:23:cb:35:be:72: 08:2c:6e:d0:c5:d0:b1:f8:f9:9d:a6:41:1f:fd:fc:11:b9:e4: 07:4a:68:60:3f:6f:81:46:c6:35:6d:88:ea:84:3a:6e:b4:19: 11:5f:80:85:91:ff:b1:e6:da:25:97:54:d0:23:18:9e:d4:f8: 39:73:58:74:a1:16:7b:55:56:8b:65:22:73:a7:30:7a:a3:6f: cc:30:6b:20:77:2f:0e:19:45:d9:ec:2b:c4:c7:00:7d:e9:16: ff:44:3e:82:6a:94:7c:73:4f:06:8c:94:b4:63:ab:84:63:f1: b0:e0:b4:92:ae:35:4b:14:f8:f7:31:f8:2b:f7:d2:ac:4b:8b: 2e:4e:07:76:4f:73:c7:09:c2:67:7f:8c:92:1d:09:c3:06:a1: 20:53:8a:b2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjMwNzEwMTgzNTQyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFjNGY3ZC0xMTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8RZ6EOJP0wqmlzSIjDiotCC80QiC4zjms9XjNUvDh8nhHRk6A8zd1diFZYSU HK5hX52K9Py6U3IXKCEpch91v86vq+pKhBFRJsLhHbmLGBMiOXT2/xhbHXA1lLBz JeZJzdmJY2zriCZlDDc8ML5HdEvEcqY8Y4sVUoeEBzG2H2XTxXWA3SS4X2Obiog5 rZsmysyu/tqUwU6+/8eQdCUZBQ8Nwoi9NQBMSdZ5OmLzY2oCXRLrOIGoGy3Ehi1a mzuXmIdQhcJTVhu8eys5XXYQDim3l3EgGkqu1yzNwqHPKcJUD8+kEK6P+U+MzZs5 mXwh61lFL4gtDJh3W1e15zT8FQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF+x9V4h /N4OJV2vTtWOoHM9P7PmMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY2QTAvNjI1RkY3MjZEOUU3MTFFOTg4MDU0MDE2QzRGOUFFMDIvMkJBQkVFQjQ4 MkVFMTFFQUIxNzBGRDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0RJ0wDQYJKoZIhvcNAQELBQADggEBAFSd2vl3u8jlUShg pfe2cInVqHWUBoa/axfU+ZmSAde8MOwPyOUdxle8tnVp8yd2Nct/LlrQEKMazwsm eXYnGULZf7Zp/ssXK9iL2dgHaQ3No0e79vcCpiGQhkuO+Q9Lmh7blgqbUHIjyzW+ cggsbtDF0LH4+Z2mQR/9/BG55AdKaGA/b4FGxjVtiOqEOm60GRFfgIWR/7Hm2iWX VNAjGJ7U+DlzWHShFntVVotlInOnMHqjb8wwayB3Lw4ZRdnsK8THAH3pFv9EPoJq lHxzTwaMlLRjq4Rj8bDgtJKuNUsU+Pcx+Cv30qxLiy5OB3ZPc8cJwmd/jJIdCcMG oSBTirI= -----END CERTIFICATE-----Generated at Thu May 16 20:25:56 2024 by rpki-client on console-ams.rpki-client.org