$ rpki-client -vvf rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/F86E9DE46B9811ED9330AC4CC4F9AE02.roa File: F86E9DE46B9811ED9330AC4CC4F9AE02.roa (raw, json) Hash identifier: 2Vj+s7DHmkgLhy4IA8FdPfNPgY+cJMYTXFbPkB97l04= Subject key identifier: C6:E4:74:E3:16:8B:01:EF:69:4F:7F:3B:12:DA:5D:C1:7F:A1:2B:D3 Certificate issuer: /CN=A91D92FB/serialNumber=4C36F812E76D827ECE6E59BD1560585C51ECD992 Certificate serial: 33C9 Authority key identifier: 4C:36:F8:12:E7:6D:82:7E:CE:6E:59:BD:15:60:58:5C:51:EC:D9:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/F86E9DE46B9811ED9330AC4CC4F9AE02.roa Signing time: Tue 30 Jan 2024 14:51:01 +0000 ROA not before: Tue 30 Jan 2024 14:51:01 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 17408 IP address blocks: 202.133.224.0/19 maxlen: 24 2405:7e00:17::/48 maxlen: 48 2405:7e00:1000::/36 maxlen: 36 2405:7e00:1000::/48 maxlen: 48 2405:7e00:1002::/64 maxlen: 64 2405:7e00:1003::/48 maxlen: 48 2405:7e00:100a::/48 maxlen: 48 2405:7e00:100b::/48 maxlen: 48 2405:7e00:100c::/48 maxlen: 48 2405:7e00:100d::/48 maxlen: 48 2405:7e00:100e::/48 maxlen: 48 2405:7e00:100f::/48 maxlen: 48 2405:7e00:1011::/48 maxlen: 48 2405:7e00:1012::/48 maxlen: 48 2405:7e00:1013::/48 maxlen: 48 2405:7e00:1014::/48 maxlen: 48 2405:7e00:1015::/48 maxlen: 48 2405:7e00:1016::/48 maxlen: 48 2405:7e00:101a::/48 maxlen: 48 2405:7e00:101b::/48 maxlen: 48 2405:7e00:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.crl rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13257 (0x33c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D92FB/serialNumber=4C36F812E76D827ECE6E59BD1560585C51ECD992 Validity Not Before: Jan 30 14:51:01 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b90cd5-01bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:92:9c:ff:ee:12:de:31:a2:93:22:f2:b9:64: 28:71:75:5a:5a:bd:4f:d7:98:20:87:9b:4e:ec:9b: f8:97:ce:f0:95:dc:59:54:0e:eb:02:fb:56:90:48: 41:99:8a:ac:d8:c1:f8:76:fa:a9:2e:21:bc:c0:7e: 14:7b:06:d2:8e:d2:34:d3:b7:ab:72:ba:db:d8:61: ce:a1:9f:49:78:ef:85:b7:b6:af:2f:f2:09:32:61: d4:a4:1b:9c:1b:6e:bc:da:bd:81:42:bb:98:df:c4: a1:4d:0b:1b:b8:2c:71:0a:fa:13:0c:2a:0f:68:97: 71:2d:b6:36:55:8a:fb:97:3e:0e:26:cc:55:80:bc: b6:09:d4:e9:8b:d9:15:18:b1:19:0a:b2:b1:12:ab: 65:69:0b:03:08:13:02:1e:9b:0a:df:c0:6f:78:a4: aa:fa:b9:61:b0:8b:3b:11:bd:ef:4e:95:d4:94:d2: cd:46:0c:c0:e1:eb:b1:41:25:f4:0d:73:f3:69:61: 7a:ab:7b:32:24:29:41:c4:6a:2a:bf:26:27:ef:4f: bd:7e:28:83:b9:ce:7e:62:67:e4:81:4e:11:5e:65: 76:99:a8:5f:3b:63:8a:c5:41:e9:51:0d:55:34:13: 8a:dc:87:e7:3c:5c:ca:6d:10:af:e3:61:2d:a9:8a: f2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E4:74:E3:16:8B:01:EF:69:4F:7F:3B:12:DA:5D:C1:7F:A1:2B:D3 X509v3 Authority Key Identifier: keyid:4C:36:F8:12:E7:6D:82:7E:CE:6E:59:BD:15:60:58:5C:51:EC:D9:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/F86E9DE46B9811ED9330AC4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.133.224.0/19 IPv6: 2405:7e00:17::/48 2405:7e00:1000::/36 2405:7e00:4000::/36 Signature Algorithm: sha256WithRSAEncryption 7a:cd:44:80:b2:c1:ab:ef:97:99:f4:6b:3a:2e:0b:da:1a:3b: 1b:d2:5d:30:32:ed:1c:1e:cb:4f:33:ee:66:8c:4f:9b:71:33: a6:25:7a:08:49:f3:d8:1d:6a:55:41:94:5d:d7:f5:60:0c:d3: ee:3f:e8:92:e0:01:15:ab:f6:9d:e3:9d:44:67:69:08:5f:57: 4c:5a:71:ed:67:3e:38:7d:88:52:0c:de:3c:86:85:bf:45:ed: d1:e1:9e:37:39:5f:35:dd:17:d3:20:43:1b:e1:42:12:80:b3: 72:dd:33:e9:de:13:b1:4f:c0:54:83:21:8e:29:d7:8b:c9:d9: ad:d4:eb:48:d4:0d:e6:d9:4a:95:9e:03:7c:68:de:34:06:84: 4f:e3:55:2f:a4:a4:5e:e4:8c:cb:83:21:7f:d7:20:5e:80:15: 21:0c:75:73:ad:e1:31:dc:ad:7a:c2:da:b7:45:4e:e6:16:1d: a1:e1:3a:b1:d8:99:bc:36:8f:b2:76:42:ec:67:2d:c3:bf:63: 1c:1d:2e:ce:ec:c7:3e:fc:b9:3d:67:57:7c:0b:b4:16:fb:a7: cd:dc:f8:ac:7a:33:c3:7b:55:8c:87:c2:a5:a5:10:af:59:94: fc:9a:42:e7:17:de:91:5c:cc:a4:15:d5:da:e0:ad:d5:4d:de: 60:59:20:aa -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICM8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkyRkIxMTAvBgNVBAUTKDRDMzZGODEyRTc2RDgyN0VDRTZFNTlCRDE1NjA1ODVD NTFFQ0Q5OTIwHhcNMjQwMTMwMTQ1MTAxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MGNkNS0wMWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5Kc/+4S3jGikyLyuWQocXVaWr1P15ggh5tO7Jv4l87wldxZVA7rAvtWkEhB mYqs2MH4dvqpLiG8wH4UewbSjtI007ercrrb2GHOoZ9JeO+Ft7avL/IJMmHUpBuc G2682r2BQruY38ShTQsbuCxxCvoTDCoPaJdxLbY2VYr7lz4OJsxVgLy2CdTpi9kV GLEZCrKxEqtlaQsDCBMCHpsK38BveKSq+rlhsIs7Eb3vTpXUlNLNRgzA4euxQSX0 DXPzaWF6q3syJClBxGoqvyYn70+9fiiDuc5+YmfkgU4RXmV2mahfO2OKxUHpUQ1V NBOK3IfnPFzKbRCv42EtqYryBQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFMbkdOMW iwHvaU9/OxLaXcF/oSvTMB8GA1UdIwQYMBaAFEw2+BLnbYJ+zm5ZvRVgWFxR7NmS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTJGQi8zMjdGQzZCMjFE ODgxMUUyOThGM0EzRTAwOEIwMkNEMi9URGI0RXVkdGduN09ibG05RldCWVhGSHMy WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REYjRFdWR0Z243T2JsbTlGV0JZWEZIczJaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDkyRkIvMzI3RkM2QjIxRDg4MTFFMjk4RjNBM0UwMDhCMDJDRDIvRjg2RTlERTQ2 Qjk4MTFFRDkzMzBBQzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMAwEAgABMAYDBAXKheAwHwQCAAIwGQMHACQFfgAAFwMGBCQFfgAQAwYEJAV+ AEAwDQYJKoZIhvcNAQELBQADggEBAHrNRICywavvl5n0azouC9oaOxvSXTAy7Rwe y08z7maMT5txM6YleghJ89gdalVBlF3X9WAM0+4/6JLgARWr9p3jnURnaQhfV0xa ce1nPjh9iFIM3jyGhb9F7dHhnjc5XzXdF9MgQxvhQhKAs3LdM+neE7FPwFSDIY4p 14vJ2a3U60jUDebZSpWeA3xo3jQGhE/jVS+kpF7kjMuDIX/XIF6AFSEMdXOt4THc rXrC2rdFTuYWHaHhOrHYmbw2j7J2QuxnLcO/YxwdLs7sxz78uT1nV3wLtBb7p83c +Kx6M8N7VYyHwqWlEK9ZlPyaQucX3pFczKQV1drgrdVN3mBZIKo= -----END CERTIFICATE-----Generated at Wed May 8 17:47:42 2024 by rpki-client on console-ams.rpki-client.org