$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa File: FE60ECB0879311EB84047577C4F9AE02.roa (raw, json) Hash identifier: HMYkkHF8wzszCT03b/fn+ryBFfhplqg/NikJU1t3Vus= Subject key identifier: 66:E1:83:12:C0:79:0B:63:21:3A:3A:9E:B4:44:36:E2:FC:D5:68:77 Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 0719 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa Signing time: Thu 10 Aug 2023 21:38:25 +0000 ROA not before: Thu 10 Aug 2023 21:38:25 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 18422 IP address blocks: 140.96.0.0/16 maxlen: 19 140.96.0.0/18 maxlen: 24 140.96.2.0/24 maxlen: 24 140.96.4.0/23 maxlen: 23 140.96.4.0/24 maxlen: 24 140.96.10.0/23 maxlen: 24 140.96.64.0/19 maxlen: 23 140.96.64.0/20 maxlen: 24 140.96.80.0/21 maxlen: 24 140.96.88.0/22 maxlen: 24 140.96.92.0/23 maxlen: 24 140.96.94.0/24 maxlen: 24 140.96.100.0/22 maxlen: 24 140.96.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1817 (0x719) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Aug 10 21:38:25 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d558d1-49fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:69:9d:18:21:6c:15:53:33:a3:44:1e:c1:81: 6e:33:cb:5a:84:9d:6d:16:be:ec:8a:49:52:78:75: a7:c7:8f:70:a2:8a:74:1c:c7:16:48:ad:06:10:3a: 9e:52:9b:f9:91:91:89:43:2e:ee:0c:50:94:a1:8f: 3f:81:57:88:d8:a2:1b:85:87:7f:49:18:12:85:66: f8:22:c3:47:0a:a4:46:c5:c9:e8:14:65:97:26:e3: 2e:d1:33:85:77:e2:3c:94:35:d3:ab:22:71:19:f5: a9:96:b1:06:f5:4c:8f:9f:2a:2e:be:32:4a:4b:20: 92:62:9f:f2:5f:e3:cf:eb:92:0f:c3:88:4d:20:69: b4:3b:ff:47:40:2d:e4:4a:0c:09:db:d4:e7:4a:1a: 4d:53:ae:69:43:29:fa:b9:10:0c:c1:fd:ff:c1:a7: 15:1b:6e:a8:3f:6e:8e:dc:3f:8e:3c:02:2e:82:f2: 48:5f:ad:d1:44:5d:34:b6:75:be:b7:41:62:2d:a7: 1d:8c:6e:a2:be:60:38:25:8a:00:6b:fd:4c:1b:23: 1a:3b:d2:03:7a:4d:39:4f:77:1b:5c:bd:f2:4e:df: fa:52:2b:47:b5:86:57:44:e1:3c:4b:df:ff:60:85: 6b:9c:b3:26:5e:47:2e:52:5f:93:5e:0e:e1:9b:5e: 84:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E1:83:12:C0:79:0B:63:21:3A:3A:9E:B4:44:36:E2:FC:D5:68:77 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:39:d2:f8:da:f6:1d:73:64:21:35:85:de:38:08:3f:a5:69: 8a:da:1a:96:7d:6a:18:6e:b2:f7:e6:a7:dd:77:0d:4b:03:89: 5d:4d:31:db:42:35:69:b7:68:2a:f5:5f:2f:b5:c5:b6:37:50: ab:0b:19:dd:be:88:09:74:59:fe:67:d1:22:11:cf:ca:02:9d: 48:1f:b8:2e:e2:48:28:28:bf:66:34:82:af:b1:d3:04:e4:f9: ee:78:dd:de:99:19:73:fb:1f:1f:95:df:34:f4:ed:63:2a:62: b0:c9:a6:41:62:9b:44:b2:97:f3:b0:3d:ce:43:0d:fd:70:c5: 1b:b2:ce:ac:0c:e7:60:f6:97:99:07:36:c8:07:7b:d0:ec:ae: dc:db:5d:1b:bc:a8:69:3e:02:04:1d:15:6f:76:d6:f0:bf:a1: c6:8b:92:de:cb:71:c8:1d:42:7b:82:52:e8:74:82:a9:d2:c5: 44:b7:44:9c:0d:e6:aa:77:79:e9:b9:83:62:2d:33:49:e2:f8: a0:e0:b1:c5:3d:6a:7c:59:ce:2c:16:d3:60:dd:aa:96:de:e2: 39:86:8a:ff:ef:dc:e2:d4:2a:d8:f8:63:0c:be:5a:56:53:5b: eb:94:ca:d7:8c:40:64:9b:10:ee:d4:12:33:d5:e0:f6:85:aa: d0:be:a0:34 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjMwODEwMjEzODI1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ1NThkMS00OWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWmdGCFsFVMzo0QewYFuM8tahJ1tFr7siklSeHWnx49woop0HMcWSK0GEDqe Upv5kZGJQy7uDFCUoY8/gVeI2KIbhYd/SRgShWb4IsNHCqRGxcnoFGWXJuMu0TOF d+I8lDXTqyJxGfWplrEG9UyPnyouvjJKSyCSYp/yX+PP65IPw4hNIGm0O/9HQC3k SgwJ29TnShpNU65pQyn6uRAMwf3/wacVG26oP26O3D+OPAIugvJIX63RRF00tnW+ t0FiLacdjG6ivmA4JYoAa/1MGyMaO9IDek05T3cbXL3yTt/6UitHtYZXROE8S9// YIVrnLMmXkcuUl+TXg7hm16EhwIDAQABo4IClDCCApAwHQYDVR0OBBYEFGbhgxLA eQtjITo6nrRENuL81Wh3MB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhCNkYvRTQ0OEJGMThDNEVGMTFFQTg3RjQzODEwQzRGOUFFMDIvRkU2MEVDQjA4 NzkzMTFFQjg0MDQ3NTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCMYDANBgkqhkiG9w0BAQsFAAOCAQEACDnS+Nr2HXNkITWF 3jgIP6Vpitoaln1qGG6y9+an3XcNSwOJXU0x20I1abdoKvVfL7XFtjdQqwsZ3b6I CXRZ/mfRIhHPygKdSB+4LuJIKCi/ZjSCr7HTBOT57njd3pkZc/sfH5XfNPTtYypi sMmmQWKbRLKX87A9zkMN/XDFG7LOrAznYPaXmQc2yAd70Oyu3NtdG7yoaT4CBB0V b3bW8L+hxouS3stxyB1Ce4JS6HSCqdLFRLdEnA3mqnd56bmDYi0zSeL4oOCxxT1q fFnOLBbTYN2qlt7iOYaK/+/c4tQq2PhjDL5aVlNb65TK14xAZJsQ7tQSM9Xg9oWq 0L6gNA== -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org