$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/2F123D768D2C11EBA4296045C4F9AE02.roa File: 2F123D768D2C11EBA4296045C4F9AE02.roa (raw, json) Hash identifier: D3r/ZetbG3mBkP89gIsax0iHyWxH/ITQdPS4aPt8Vvs= Subject key identifier: 3F:D4:31:86:56:39:50:8B:35:73:D4:76:77:30:7E:D8:16:AA:AB:94 Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Certificate serial: 063C Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/2F123D768D2C11EBA4296045C4F9AE02.roa Signing time: Sun 03 Dec 2023 00:12:41 +0000 ROA not before: Sun 03 Dec 2023 00:12:41 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 9268 IP address blocks: 220.157.68.0/24 maxlen: 24 220.157.74.0/23 maxlen: 23 220.157.74.0/24 maxlen: 24 220.157.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Validity Not Before: Dec 3 00:12:41 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656bc7f9-e653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:86:43:69:25:5d:b8:a1:d2:fd:b7:2f:78:7f: b0:6b:49:82:b0:70:35:e0:01:98:a2:4d:16:b3:8d: 7f:8b:9c:f4:42:c2:11:ad:50:b2:80:1c:37:4b:09: 60:ae:0e:e1:ee:2a:57:85:00:55:59:50:6d:a7:67: 7b:b5:d4:a2:11:41:dc:64:59:6b:30:97:f3:1a:9b: 10:55:37:de:4e:31:7d:d6:07:9b:4c:4e:c1:ea:4d: 05:52:9c:b2:ca:c8:78:9d:65:de:fc:38:89:ca:db: 4c:f1:5d:e9:4a:a0:34:1f:23:1b:40:57:f4:84:41: 4f:ea:ce:f8:ba:7e:12:54:5a:12:2a:e5:81:44:dc: 69:07:3e:1f:f9:39:9c:35:6f:44:4c:e8:b1:37:e1: 63:24:3c:a0:3c:a1:3b:ef:b1:29:d0:31:2a:f4:d9: 45:e9:6c:08:be:06:52:28:1f:73:33:ab:4e:83:31: 7b:e8:7e:a4:33:8e:c6:dc:04:4f:14:68:48:fb:05: 0e:52:e4:a4:d3:e7:8f:78:5d:7d:12:0b:53:51:a1: 3a:5c:1f:b0:22:6f:49:9e:c4:9a:fc:96:a4:31:ac: cd:55:9a:c6:e8:e8:33:90:e0:bf:3c:11:3c:dc:fe: 39:38:29:4e:64:00:bc:a4:e0:cc:cc:f2:cb:65:de: 57:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:D4:31:86:56:39:50:8B:35:73:D4:76:77:30:7E:D8:16:AA:AB:94 X509v3 Authority Key Identifier: keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/2F123D768D2C11EBA4296045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.157.68.0/24 220.157.74.0/23 Signature Algorithm: sha256WithRSAEncryption 55:9b:6b:9c:3b:8f:a3:23:55:aa:01:2c:3e:a8:6b:69:e1:3b: b1:97:93:e3:da:29:80:0c:c6:48:4a:88:6b:f1:8d:4a:99:16: 60:9e:e0:ac:2e:ee:d6:3d:20:a0:aa:2c:d8:29:90:72:7a:9e: 6d:dc:29:60:85:96:03:23:5c:84:18:aa:b0:c5:d1:93:b1:f8: 59:77:0c:fb:9c:e3:8c:ee:15:86:d1:c3:77:1e:ca:23:62:5f: 63:71:3e:79:9c:de:14:f9:4b:de:82:99:60:a2:85:35:f1:73: 04:6b:f3:db:9c:5a:6a:d5:c6:54:8e:6e:28:45:7d:35:94:07: f2:5e:22:dc:97:0e:be:a0:91:d6:d8:64:c1:37:0b:35:d2:27: c5:30:c2:66:79:0a:a6:12:36:ba:ee:82:d2:dd:0e:6f:60:3c: 5e:ac:f8:63:9d:fe:b8:ce:99:49:c1:7d:80:76:4f:85:04:f5: a0:8a:a3:f6:35:e7:f5:47:5d:fe:3a:c8:2b:57:14:00:c1:76: 3c:32:61:eb:0e:67:3b:a1:23:ef:dc:66:1a:4e:ea:8f:24:6e: 9a:7b:4c:eb:60:26:a0:51:f6:3a:2d:c6:55:26:01:80:cb:c4: e2:2a:fc:c2:d4:72:d7:dc:cd:7c:73:84:57:e5:1c:67:c9:3f: 2e:65:2f:81 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0RkUxMTAvBgNVBAUTKDdGNkJFMUQ1QTI3MzBGQzIyN0ZBRkM4OTZEMTM0MzMy NDE3ODMxNzkwHhcNMjMxMjAzMDAxMjQxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiYzdmOS1lNjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoZDaSVduKHS/bcveH+wa0mCsHA14AGYok0Ws41/i5z0QsIRrVCygBw3Swlg rg7h7ipXhQBVWVBtp2d7tdSiEUHcZFlrMJfzGpsQVTfeTjF91gebTE7B6k0FUpyy ysh4nWXe/DiJyttM8V3pSqA0HyMbQFf0hEFP6s74un4SVFoSKuWBRNxpBz4f+Tmc NW9ETOixN+FjJDygPKE777Ep0DEq9NlF6WwIvgZSKB9zM6tOgzF76H6kM47G3ARP FGhI+wUOUuSk0+ePeF19EgtTUaE6XB+wIm9JnsSa/JakMazNVZrG6OgzkOC/PBE8 3P45OClOZAC8pODMzPLLZd5XyQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFD/UMYZW OVCLNXPUdncwftgWqquUMB8GA1UdIwQYMBaAFH9r4dWicw/CJ/r8iW0TQzJBeDF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRGRS9DRjRBMTBFQTg1 RTExMUVCQUZCNTFFODRDNEY5QUUwMi9mMnZoMWFKekQ4SW4tdnlKYlJORE1rRjRN WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YydmgxYUp6RDhJbi12eUpiUk5ETWtGNE1Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI0RkUvQ0Y0QTEwRUE4NUUxMTFFQkFGQjUxRTg0QzRGOUFFMDIvMkYxMjNENzY4 RDJDMTFFQkE0Mjk2MDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADcnUQDBAHcnUowDQYJKoZIhvcNAQELBQADggEBAFWba5w7 j6MjVaoBLD6oa2nhO7GXk+PaKYAMxkhKiGvxjUqZFmCe4Kwu7tY9IKCqLNgpkHJ6 nm3cKWCFlgMjXIQYqrDF0ZOx+Fl3DPuc44zuFYbRw3ceyiNiX2NxPnmc3hT5S96C mWCihTXxcwRr89ucWmrVxlSObihFfTWUB/JeItyXDr6gkdbYZME3CzXSJ8UwwmZ5 CqYSNrrugtLdDm9gPF6s+GOd/rjOmUnBfYB2T4UE9aCKo/Y15/VHXf46yCtXFADB djwyYesOZzuhI+/cZhpO6o8kbpp7TOtgJqBR9jotxlUmAYDLxOIq/MLUctfczXxz hFflHGfJPy5lL4E= -----END CERTIFICATE-----Generated at Fri May 17 01:07:00 2024 by rpki-client on console-fra.rpki-client.org