$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/720987748DBD11EBB4566432C4F9AE02.roa File: 720987748DBD11EBB4566432C4F9AE02.roa (raw, json) Hash identifier: xrB/mhOTbgIhOI2yzkyZG3bhw0HWQQTWYavn+zCyChM= Subject key identifier: 80:8B:5B:38:79:DE:E3:23:41:B4:F1:74:5C:F8:98:1A:27:75:3B:A6 Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Certificate serial: 063B Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/720987748DBD11EBB4566432C4F9AE02.roa Signing time: Sun 03 Dec 2023 00:12:40 +0000 ROA not before: Sun 03 Dec 2023 00:12:40 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45411 IP address blocks: 58.87.4.0/23 maxlen: 23 220.157.73.0/24 maxlen: 24 220.157.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Validity Not Before: Dec 3 00:12:40 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656bc7f8-a9c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5d:ae:47:9b:b3:34:0b:a2:24:54:98:03:85: 4d:3b:4a:85:94:8f:c6:78:eb:ff:84:05:2e:a2:1a: f4:61:3d:fe:c0:33:64:ae:31:46:35:e4:bf:65:5f: 51:a5:6e:ba:a1:b6:a7:f9:86:df:61:16:b4:2b:c7: 65:91:e2:84:5b:09:33:38:84:88:4a:71:96:c2:72: cb:06:5b:db:06:9f:6d:80:6b:22:49:8d:98:75:94: 5b:19:88:9e:d3:6e:2f:69:3c:e8:43:c1:d0:cb:94: fe:23:94:60:75:98:8b:16:0b:c3:bc:6e:75:7d:c6: ec:b3:88:bb:3a:36:58:0b:c8:54:70:8c:c9:d9:9c: 54:8a:3c:67:c4:86:3e:fa:49:f1:3b:6f:67:fe:2c: b9:99:82:0b:f9:46:da:49:09:8a:7a:07:90:46:ce: 01:ff:38:8f:6e:42:1d:e4:94:ba:8d:1e:db:d9:80: 67:18:81:ac:c4:44:ba:ee:a0:a4:75:db:8f:29:94: 1a:e0:5f:73:7d:64:e1:71:73:47:93:25:fe:4a:b0: 16:72:a6:fa:84:d6:27:63:22:7e:29:11:5f:18:4b: 42:5b:3d:c4:c7:10:36:59:eb:7d:d7:b7:d6:14:7c: c0:03:3c:4f:b2:4f:70:f3:7a:55:58:36:e7:a7:75: d7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8B:5B:38:79:DE:E3:23:41:B4:F1:74:5C:F8:98:1A:27:75:3B:A6 X509v3 Authority Key Identifier: keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/720987748DBD11EBB4566432C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.87.4.0/23 220.157.73.0/24 220.157.76.0/24 Signature Algorithm: sha256WithRSAEncryption 77:cb:eb:f3:a4:42:34:a0:ea:c4:aa:30:b4:45:67:f2:72:13: 13:39:d6:f9:22:7d:0b:93:3c:9b:66:3f:e8:61:f4:01:4d:dd: b1:b7:ef:e6:38:ef:c5:7c:d6:a8:b2:71:88:89:2e:d2:38:4f: 20:ea:a1:01:82:de:97:5d:d3:f1:02:90:fc:0a:af:e4:e0:9b: 34:2a:2c:ad:cd:d1:8c:a2:63:4a:22:a6:86:ef:cc:5a:30:f1: 08:20:1d:45:c8:6c:d3:f5:5a:59:18:f8:7e:28:96:7c:6c:04: 0d:26:72:2c:0c:03:7e:45:dd:45:db:56:cd:f7:29:e7:ce:1e: 19:1b:db:f6:70:78:23:5c:53:41:b8:f1:74:c1:5e:d0:23:1f: 3f:4e:58:32:c6:be:93:df:7f:29:5a:ae:f9:7f:2a:ef:48:1e: 08:82:e7:30:27:c8:7a:e2:94:00:74:8a:14:8a:0d:5b:e7:0a: 6b:42:6c:cb:e3:ba:14:0d:46:9c:74:8e:85:56:41:dc:5f:5d: d7:c7:3b:b1:1b:c1:21:75:a1:72:4e:97:2e:80:ad:f8:7e:df: b8:c9:f9:7f:9a:08:3e:c6:32:c7:7d:58:fe:a9:30:32:76:9a: b0:e9:9d:5c:0a:31:d8:2b:9a:62:33:e6:c8:89:13:2f:e2:57: da:4f:4d:ab -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0RkUxMTAvBgNVBAUTKDdGNkJFMUQ1QTI3MzBGQzIyN0ZBRkM4OTZEMTM0MzMy NDE3ODMxNzkwHhcNMjMxMjAzMDAxMjQwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiYzdmOC1hOWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsl2uR5uzNAuiJFSYA4VNO0qFlI/GeOv/hAUuohr0YT3+wDNkrjFGNeS/ZV9R pW66oban+YbfYRa0K8dlkeKEWwkzOISISnGWwnLLBlvbBp9tgGsiSY2YdZRbGYie 024vaTzoQ8HQy5T+I5RgdZiLFgvDvG51fcbss4i7OjZYC8hUcIzJ2ZxUijxnxIY+ +knxO29n/iy5mYIL+UbaSQmKegeQRs4B/ziPbkId5JS6jR7b2YBnGIGsxES67qCk dduPKZQa4F9zfWThcXNHkyX+SrAWcqb6hNYnYyJ+KRFfGEtCWz3ExxA2Wet917fW FHzAAzxPsk9w83pVWDbnp3XXJwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFICLWzh5 3uMjQbTxdFz4mBondTumMB8GA1UdIwQYMBaAFH9r4dWicw/CJ/r8iW0TQzJBeDF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRGRS9DRjRBMTBFQTg1 RTExMUVCQUZCNTFFODRDNEY5QUUwMi9mMnZoMWFKekQ4SW4tdnlKYlJORE1rRjRN WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YydmgxYUp6RDhJbi12eUpiUk5ETWtGNE1Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI0RkUvQ0Y0QTEwRUE4NUUxMTFFQkFGQjUxRTg0QzRGOUFFMDIvNzIwOTg3NzQ4 REJEMTFFQkI0NTY2NDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAE6VwQDBADcnUkDBADcnUwwDQYJKoZIhvcNAQELBQADggEB AHfL6/OkQjSg6sSqMLRFZ/JyExM51vkifQuTPJtmP+hh9AFN3bG37+Y478V81qiy cYiJLtI4TyDqoQGC3pdd0/ECkPwKr+TgmzQqLK3N0YyiY0oipobvzFow8QggHUXI bNP1WlkY+H4olnxsBA0mciwMA35F3UXbVs33KefOHhkb2/ZweCNcU0G48XTBXtAj Hz9OWDLGvpPffylarvl/Ku9IHgiC5zAnyHrilAB0ihSKDVvnCmtCbMvjuhQNRpx0 joVWQdxfXdfHO7EbwSF1oXJOly6Arfh+37jJ+X+aCD7GMsd9WP6pMDJ2mrDpnVwK MdgrmmIz5siJEy/iV9pPTas= -----END CERTIFICATE-----Generated at Fri May 17 02:01:45 2024 by rpki-client on console-ams.rpki-client.org