$ rpki-client -vvf rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/CFE87CFEE74911EE9E36BA2AC4F9AE02.roa File: CFE87CFEE74911EE9E36BA2AC4F9AE02.roa (raw, json) Hash identifier: PUjVsLMakoeiQgCADxJ0sNiMuXuae7hB49f6/P7jIFA= Subject key identifier: C9:30:DA:FD:13:80:CF:E4:D8:ED:51:91:43:AF:FE:B4:BC:84:02:74 Certificate issuer: /CN=A91D73BB/serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Certificate serial: 0B Authority key identifier: 93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/CFE87CFEE74911EE9E36BA2AC4F9AE02.roa Signing time: Thu 21 Mar 2024 06:11:10 +0000 ROA not before: Thu 21 Mar 2024 06:11:10 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135315 IP address blocks: 159.73.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D73BB/serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Validity Not Before: Mar 21 06:11:10 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65fbcf7e-3904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:2f:26:0a:be:89:c3:bd:e2:87:a4:8b:d2:c4: 94:7d:8d:18:87:a1:5b:5f:5a:a3:ad:c7:18:29:a1: d3:af:75:c5:a2:30:a9:83:ef:f8:83:79:f7:3e:bd: 74:74:73:fb:46:0e:9d:2b:b6:32:71:49:8b:81:91: 95:40:87:e6:0e:36:46:bd:a8:33:34:b8:b1:c7:f9: c9:34:fe:7c:e3:3b:cb:74:39:e9:59:f0:eb:96:48: 78:a4:64:32:a6:18:d6:66:bd:af:73:06:73:a6:eb: 6b:d4:ae:b1:96:e2:b3:4a:d2:de:62:f0:b1:f2:e6: 68:ba:da:72:8b:5b:39:4e:b2:09:02:6e:9f:86:ea: ce:41:a7:6b:ca:3f:8b:48:ca:98:3d:49:60:98:fb: a8:8c:76:4e:f0:9f:8f:ad:97:28:ef:44:63:57:3f: 49:f6:88:63:f5:1f:e6:5e:94:a7:08:26:04:5d:07: ea:1f:44:66:fa:7a:a9:86:86:28:d9:9a:17:cf:70: 40:ac:20:ba:fa:73:28:8a:59:e2:e8:8f:93:2c:04: d0:b9:cb:2c:88:c5:03:6a:50:db:3a:2d:36:bd:af: a0:c9:3b:6d:b9:a7:79:40:74:a8:7c:86:57:cb:21: 83:d3:31:70:cf:bf:37:7e:06:ca:0d:da:94:8d:d0: 55:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:30:DA:FD:13:80:CF:E4:D8:ED:51:91:43:AF:FE:B4:BC:84:02:74 X509v3 Authority Key Identifier: keyid:93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/CFE87CFEE74911EE9E36BA2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 159.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption b7:57:53:f2:4e:b6:b1:93:02:60:45:34:1c:ec:b2:5e:af:a4: 8d:a9:4b:8a:6c:09:dd:ab:43:43:c2:07:74:c2:20:88:f5:83: f5:a7:1f:7b:48:d0:15:aa:14:80:c1:bf:a2:26:b1:6d:6a:75: 1e:06:8d:4f:63:e0:01:b7:f6:38:77:1f:61:23:00:de:e7:c7: f3:c0:fa:0e:e6:d5:02:e0:ff:61:17:a4:bd:74:cb:e8:61:f1: 41:57:9b:58:f3:a1:d5:c3:86:c4:59:2a:89:00:6b:9a:ed:fa: 7b:41:bf:26:22:e6:f1:da:95:64:03:8a:ca:71:f5:e7:e7:7a: 44:c2:e9:b3:7f:a2:c6:65:7a:4c:a3:40:c6:07:17:01:05:4e: fc:eb:db:1e:0a:38:c5:60:23:db:87:2c:e3:6d:79:83:13:24: 4d:34:aa:8e:5e:ce:d0:37:3c:95:c2:11:40:d9:4c:9d:a6:5c: f6:83:2d:14:fd:63:d8:f5:c6:ff:a9:37:f8:66:df:c4:0c:40: 15:d7:24:91:68:8a:9f:70:61:11:50:5f:6e:b2:e6:04:59:40: 61:8a:c4:b6:7c:c4:3e:80:da:23:06:69:3f:96:33:11:b3:1c: 6d:a7:65:b3:b3:d5:6e:01:ed:95:f5:75:09:c6:ec:7e:39:97: 00:52:72:b7 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzNCQjExMC8GA1UEBRMoOTM3QTFCNUZFQjBBMjkzMzYwRUE0RTg4NDczNTJFN0ZE MzZDQzdBNTAeFw0yNDAzMjEwNjExMTBaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmJjZjdlLTM5MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD3LyYKvonDveKHpIvSxJR9jRiHoVtfWqOtxxgpodOvdcWiMKmD7/iDefc+vXR0 c/tGDp0rtjJxSYuBkZVAh+YONka9qDM0uLHH+ck0/nzjO8t0OelZ8OuWSHikZDKm GNZmva9zBnOm62vUrrGW4rNK0t5i8LHy5mi62nKLWzlOsgkCbp+G6s5Bp2vKP4tI ypg9SWCY+6iMdk7wn4+tlyjvRGNXP0n2iGP1H+ZelKcIJgRdB+ofRGb6eqmGhijZ mhfPcECsILr6cyiKWeLoj5MsBNC5yyyIxQNqUNs6LTa9r6DJO225p3lAdKh8hlfL IYPTMXDPvzd+BsoN2pSN0FWZAgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUyTDa/ROA z+TY7VGRQ6/+tLyEAnQwHwYDVR0jBBgwFoAUk3obX+sKKTNg6k6IRzUuf9Nsx6Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3M0JCLzdFRDU3NTg2RTE4 RDExRUU5OTBGRUM0RkM0RjlBRTAyL2szb2JYLXNLS1ROZzZrNklSelV1ZjlOc3g2 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvazNvYlgtc0tLVE5nNms2SVJ6VXVmOU5zeDZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzNCQi83RUQ1NzU4NkUxOEQxMUVFOTkwRkVDNEZDNEY5QUUwMi9DRkU4N0NGRUU3 NDkxMUVFOUUzNkJBMkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAJ9JMA0GCSqGSIb3DQEBCwUAA4IBAQC3V1PyTraxkwJgRTQc 7LJer6SNqUuKbAndq0NDwgd0wiCI9YP1px97SNAVqhSAwb+iJrFtanUeBo1PY+AB t/Y4dx9hIwDe58fzwPoO5tUC4P9hF6S9dMvoYfFBV5tY86HVw4bEWSqJAGua7fp7 Qb8mIubx2pVkA4rKcfXn53pEwumzf6LGZXpMo0DGBxcBBU7869seCjjFYCPbhyzj bXmDEyRNNKqOXs7QNzyVwhFA2Uydplz2gy0U/WPY9cb/qTf4Zt/EDEAV1ySRaIqf cGERUF9usuYEWUBhisS2fMQ+gNojBmk/ljMRsxxtp2Wzs9VuAe2V9XUJxux+OZcA UnK3 -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:33 2024 by rpki-client on console-ams.rpki-client.org