$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa File: B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa (raw, json) Hash identifier: icXVNVT7p9gqqT6T6N/nqjjEgwvoL9M+Js5FxgE4rqo= Subject key identifier: 96:FD:57:7D:29:F1:17:2C:C7:BB:8E:77:A6:34:E8:DC:E7:72:BA:AE Certificate issuer: /CN=A91D8704/serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Certificate serial: 078B Authority key identifier: 03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa Signing time: Thu 14 Dec 2023 21:49:17 +0000 ROA not before: Thu 14 Dec 2023 21:49:17 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 24320 IP address blocks: 202.72.240.0/24 maxlen: 24 202.72.241.0/24 maxlen: 24 202.72.242.0/24 maxlen: 24 202.72.243.0/24 maxlen: 24 202.72.244.0/24 maxlen: 24 202.72.245.0/24 maxlen: 24 202.72.246.0/24 maxlen: 24 202.72.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 22:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1931 (0x78b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8704/serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Validity Not Before: Dec 14 21:49:17 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657b785d-19c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:aa:bd:3e:b0:e5:20:9d:9f:ee:6f:c1:e0:ac: b3:2b:47:0d:6d:41:19:d7:3c:28:a7:8c:9d:b9:b8: bb:32:52:c6:3b:7d:ea:d4:6f:12:ae:bd:19:f6:c6: d3:e0:3d:d6:7f:20:df:17:11:74:71:68:3d:00:2d: e1:7a:3c:2a:87:3a:75:26:c6:21:49:b1:7d:f9:88: 73:4d:cf:6f:e7:ad:8f:f1:b2:36:23:ca:5c:a0:bf: 7b:97:29:21:69:b2:21:91:5d:ad:93:a5:0f:73:77: 46:ed:57:ba:1c:bc:d3:ae:2d:4b:ea:ef:1e:f0:ce: 91:5c:f8:21:f9:e7:8d:fd:d0:ef:32:fb:c5:fa:75: 9f:46:cc:5c:c3:09:83:93:09:3a:dd:cf:bb:e3:9c: 98:35:a8:03:15:10:b6:83:c1:48:15:fe:e7:46:28: d9:20:ed:d1:f5:6c:71:15:a2:b2:85:e1:cb:32:2b: 1b:15:57:d0:fc:a0:77:59:5d:83:f8:f4:14:7c:c0: 92:50:72:c1:e6:af:f6:1b:a0:d3:90:df:91:2e:f5: 99:8a:d7:aa:65:29:e0:4c:d3:8b:29:ee:4b:ed:8c: e2:7f:86:cb:17:c4:8e:d5:6d:8f:09:44:03:14:17: bc:34:f2:da:88:25:bb:84:a5:ac:48:f6:1c:05:a0: 4a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:FD:57:7D:29:F1:17:2C:C7:BB:8E:77:A6:34:E8:DC:E7:72:BA:AE X509v3 Authority Key Identifier: keyid:03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 08:fb:d4:43:33:e2:7b:8b:af:d0:3b:10:f4:80:39:0f:6e:b9: 93:cb:75:1a:3d:79:db:9a:05:23:95:a4:01:5e:a7:67:5c:34: 3c:89:27:fd:f6:3d:ea:71:7f:1e:17:5f:b7:17:21:66:c3:4b: 22:20:ae:22:7d:1b:fd:74:5a:cf:81:ff:0c:38:31:56:98:d1: 8b:20:68:32:ee:34:71:7e:4c:ad:ff:4f:28:a7:05:04:be:f3: 7b:b7:14:01:15:44:cc:e7:b4:56:2e:cc:c2:04:b6:64:fe:c8: aa:62:df:8e:54:56:3b:03:6a:40:a6:9d:cb:c8:28:9e:93:7e: 5f:4b:04:e9:d5:f7:bd:40:e2:47:c6:10:25:c8:d8:fb:bf:58: 2b:e3:19:66:fa:24:c5:31:35:65:ea:60:42:61:8a:67:41:b3: df:c3:97:e1:fc:ea:76:f8:93:17:39:bc:4b:1c:3d:06:ca:1b: 65:14:1d:92:44:85:af:41:6f:00:e9:5a:5f:5e:39:e1:e4:ca: ac:c7:61:71:56:fd:5e:17:b1:ba:ee:51:85:a2:4b:1e:5d:4a: aa:b0:b2:69:bf:b4:49:2a:51:3a:80:2f:3e:1a:17:c7:40:a0: df:14:24:39:a3:44:2f:cb:36:12:da:61:37:bb:71:4b:d8:11: 56:ec:86:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3MDQxMTAvBgNVBAUTKDAzMDdFRjBGMjlDRjIyREIwOTcwRjUwODNDMDIzQzJB QTBENkY1MTcwHhcNMjMxMjE0MjE0OTE3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiNzg1ZC0xOWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46q9PrDlIJ2f7m/B4KyzK0cNbUEZ1zwop4ydubi7MlLGO33q1G8Srr0Z9sbT 4D3WfyDfFxF0cWg9AC3hejwqhzp1JsYhSbF9+YhzTc9v562P8bI2I8pcoL97lykh abIhkV2tk6UPc3dG7Ve6HLzTri1L6u8e8M6RXPgh+eeN/dDvMvvF+nWfRsxcwwmD kwk63c+745yYNagDFRC2g8FIFf7nRijZIO3R9WxxFaKyheHLMisbFVfQ/KB3WV2D +PQUfMCSUHLB5q/2G6DTkN+RLvWZiteqZSngTNOLKe5L7Yzif4bLF8SO1W2PCUQD FBe8NPLaiCW7hKWsSPYcBaBKpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJb9V30p 8Rcsx7uOd6Y06NzncrquMB8GA1UdIwQYMBaAFAMH7w8pzyLbCXD1CDwCPCqg1vUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODcwNC81NjU1QUM5OEJD MEMxMUVBOTFFMDlCNjhDNEY5QUUwMi9Bd2Z2RHluUEl0c0pjUFVJUEFJOEtxRFc5 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F3ZnZEeW5QSXRzSmNQVUlQQUk4S3FEVzlSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg3MDQvNTY1NUFDOThCQzBDMTFFQTkxRTA5QjY4QzRGOUFFMDIvQjFBQUM1QjJC QzQxMTFFQTlBNUIyNzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKSPAwDQYJKoZIhvcNAQELBQADggEBAAj71EMz4nuLr9A7 EPSAOQ9uuZPLdRo9eduaBSOVpAFep2dcNDyJJ/32Pepxfx4XX7cXIWbDSyIgriJ9 G/10Ws+B/ww4MVaY0YsgaDLuNHF+TK3/TyinBQS+83u3FAEVRMzntFYuzMIEtmT+ yKpi345UVjsDakCmncvIKJ6Tfl9LBOnV971A4kfGECXI2Pu/WCvjGWb6JMUxNWXq YEJhimdBs9/Dl+H86nb4kxc5vEscPQbKG2UUHZJEha9BbwDpWl9eOeHkyqzHYXFW /V4XsbruUYWiSx5dSqqwsmm/tEkqUTqALz4aF8dAoN8UJDmjRC/LNhLaYTe7cUvY EVbshoc= -----END CERTIFICATE-----Generated at Fri May 24 23:25:45 2024 by rpki-client on console-fra.rpki-client.org