$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/5549A1DA0ADD11EC8109AE1EC4F9AE02.roa File: 5549A1DA0ADD11EC8109AE1EC4F9AE02.roa (raw, json) Hash identifier: +T54sK8dyUMxd2f5rHiKzoO23jhqXytNmv5qmZdboJc= Subject key identifier: 1A:4C:A8:36:C9:78:F3:E0:F5:38:98:14:FE:AB:9F:0A:DB:70:A5:B7 Certificate issuer: /CN=A91DBAF1/serialNumber=25F3D21688AB9381AA8B952BCE2641293542A7F2 Certificate serial: 06C0 Authority key identifier: 25:F3:D2:16:88:AB:93:81:AA:8B:95:2B:CE:26:41:29:35:42:A7:F2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/5549A1DA0ADD11EC8109AE1EC4F9AE02.roa Signing time: Thu 06 Jun 2024 23:52:47 +0000 ROA not before: Thu 06 Jun 2024 23:52:47 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137840 IP address blocks: 51.162.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.crl rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 20:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBAF1/serialNumber=25F3D21688AB9381AA8B952BCE2641293542A7F2 Validity Not Before: Jun 6 23:52:47 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66624bcf-57d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b9:4f:e4:90:5c:af:6b:37:9d:17:70:c6:7f: 59:aa:43:f6:c0:76:35:03:ad:d5:1a:8c:1a:24:ad: 5e:5f:60:b1:42:14:83:42:dc:25:e4:66:63:11:1b: 25:bc:e2:4d:dc:9b:25:d1:42:4e:3d:a5:e7:36:09: cc:67:96:b7:8b:79:55:75:e7:72:c5:b2:8f:d6:db: 9e:ca:f9:d8:68:1b:c7:da:d3:e2:ca:45:91:be:59: 4e:75:b0:d8:20:0e:c5:48:bf:9c:99:89:e6:61:37: b5:46:b9:2e:ce:e3:42:af:f9:96:98:2f:a6:de:35: 8e:e2:a5:fc:54:62:0f:07:58:d1:19:64:30:e6:17: 22:ec:26:e9:a4:f8:10:5d:01:b0:3d:7d:40:c8:e3: 6a:30:21:79:cf:37:ce:63:09:16:40:8c:a0:18:f4: eb:09:4d:46:64:71:62:59:3c:a2:55:3e:68:77:a7: 35:87:7d:c5:2b:b2:62:0e:82:b6:a9:11:47:9a:bd: 59:ac:5f:f4:1d:14:b1:b0:b7:f9:6c:ae:cb:39:1a: c5:d7:b5:e5:64:8b:e0:95:2f:00:9e:b4:c5:de:7b: 73:96:5b:e6:bb:05:f9:60:39:3c:2a:ca:5f:2b:12: 57:bd:cc:47:5a:90:b8:1f:19:d7:c1:08:50:25:50: f6:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4C:A8:36:C9:78:F3:E0:F5:38:98:14:FE:AB:9F:0A:DB:70:A5:B7 X509v3 Authority Key Identifier: keyid:25:F3:D2:16:88:AB:93:81:AA:8B:95:2B:CE:26:41:29:35:42:A7:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/5549A1DA0ADD11EC8109AE1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 51.162.124.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:2e:a7:2e:22:bf:25:53:b8:c4:70:01:de:e0:83:4c:ca:81: 18:f2:87:92:88:2a:5a:4e:71:0d:ed:a9:3c:5a:27:37:06:b2: 5b:85:c6:84:b6:9c:fc:4b:bf:66:59:79:f7:50:4f:63:fa:78: 66:3d:65:ef:67:52:46:dc:ea:14:39:fc:32:2f:3f:c1:60:d4: 89:70:26:1f:63:7c:98:4a:49:b5:02:ab:f0:4a:52:8b:d8:85: 4e:51:c4:84:e4:74:8a:8a:6b:52:d6:d9:1e:f9:42:93:72:e2: af:a2:4e:9b:e5:46:46:8a:7b:79:c2:a8:93:c1:e6:29:7b:0f: 89:ec:48:87:b5:9f:bf:b9:d4:15:cf:4a:a6:d5:27:6e:93:f3: 0b:b5:4a:30:f2:8f:14:ce:36:bf:d7:bd:e0:cc:87:ef:14:2a: 89:33:12:7d:bd:df:d4:57:07:a4:cf:46:12:55:00:6b:28:3e: 23:ad:35:f7:eb:d7:4c:0d:fc:51:c4:36:87:ba:bc:2a:4a:4f: e5:00:2a:80:9e:36:71:a0:f7:f3:86:0b:04:f8:a1:f9:ea:c6: 8c:bd:e9:47:30:96:ce:6a:eb:ca:42:5f:d2:ad:99:d1:dd:f7: c3:c8:23:62:55:5c:9c:6f:a0:fb:36:c9:eb:d8:48:e9:40:a8: 0b:5e:38:c8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBRjExMTAvBgNVBAUTKDI1RjNEMjE2ODhBQjkzODFBQThCOTUyQkNFMjY0MTI5 MzU0MkE3RjIwHhcNMjQwNjA2MjM1MjQ3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyNGJjZi01N2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLlP5JBcr2s3nRdwxn9ZqkP2wHY1A63VGowaJK1eX2CxQhSDQtwl5GZjERsl vOJN3Jsl0UJOPaXnNgnMZ5a3i3lVdedyxbKP1tueyvnYaBvH2tPiykWRvllOdbDY IA7FSL+cmYnmYTe1RrkuzuNCr/mWmC+m3jWO4qX8VGIPB1jRGWQw5hci7CbppPgQ XQGwPX1AyONqMCF5zzfOYwkWQIygGPTrCU1GZHFiWTyiVT5od6c1h33FK7JiDoK2 qRFHmr1ZrF/0HRSxsLf5bK7LORrF17XlZIvglS8AnrTF3ntzllvmuwX5YDk8Kspf KxJXvcxHWpC4HxnXwQhQJVD28QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBpMqDbJ ePPg9TiYFP6rnwrbcKW3MB8GA1UdIwQYMBaAFCXz0haIq5OBqouVK84mQSk1Qqfy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkFGMS84NkRCMkNDQzI0 OEUxMUVCQUJFRjJCMkZDNEY5QUUwMi9KZlBTRm9pcms0R3FpNVVyemlaQktUVkNw X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pmUFNGb2lyazRHcWk1VXJ6aVpCS1RWQ3BfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJBRjEvODZEQjJDQ0MyNDhFMTFFQkFCRUYyQjJGQzRGOUFFMDIvNTU0OUExREEw QUREMTFFQzgxMDlBRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIzonwwDQYJKoZIhvcNAQELBQADggEBACsupy4ivyVTuMRw Ad7gg0zKgRjyh5KIKlpOcQ3tqTxaJzcGsluFxoS2nPxLv2ZZefdQT2P6eGY9Ze9n Ukbc6hQ5/DIvP8Fg1IlwJh9jfJhKSbUCq/BKUovYhU5RxITkdIqKa1LW2R75QpNy 4q+iTpvlRkaKe3nCqJPB5il7D4nsSIe1n7+51BXPSqbVJ26T8wu1SjDyjxTONr/X veDMh+8UKokzEn2939RXB6TPRhJVAGsoPiOtNffr10wN/FHENoe6vCpKT+UAKoCe NnGg9/OGCwT4ofnqxoy96Ucwls5q68pCX9KtmdHd98PII2JVXJxvoPs2yevYSOlA qAteOMg= -----END CERTIFICATE-----Generated at Mon Jun 17 02:12:25 2024 by rpki-client on console-ams.rpki-client.org