$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/7C76080E08D611EE82522448C4F9AE02.roa File: 7C76080E08D611EE82522448C4F9AE02.roa (raw, json) Hash identifier: ADKkuoHUkGzBv/V7Wfe9+b2mOsPBwAN6m6j9wCnIXH0= Subject key identifier: 34:10:9B:0D:E5:09:F9:AB:3B:00:83:F1:D1:7C:46:0A:8A:25:6A:79 Certificate issuer: /CN=A91DBAF1/serialNumber=25F3D21688AB9381AA8B952BCE2641293542A7F2 Certificate serial: 06AA Authority key identifier: 25:F3:D2:16:88:AB:93:81:AA:8B:95:2B:CE:26:41:29:35:42:A7:F2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/7C76080E08D611EE82522448C4F9AE02.roa Signing time: Thu 02 May 2024 05:24:46 +0000 ROA not before: Thu 02 May 2024 05:24:45 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 15830 IP address blocks: 51.162.8.0/21 maxlen: 21 51.162.32.0/21 maxlen: 21 51.162.48.0/22 maxlen: 22 51.162.64.0/21 maxlen: 21 51.162.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.crl rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1706 (0x6aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBAF1/serialNumber=25F3D21688AB9381AA8B952BCE2641293542A7F2 Validity Not Before: May 2 05:24:45 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6633239d-d0a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d0:ed:06:96:42:46:46:8e:a2:0c:d3:45:da: 84:2b:26:f2:6a:db:e9:d6:1c:b6:ed:12:0c:1f:92: 50:43:bf:6f:7e:e2:fd:cb:57:a5:6a:65:fb:29:9f: b4:32:af:cc:cb:cb:3f:eb:0e:2f:20:8e:03:d9:fa: c9:91:a4:1b:e5:47:b5:5e:6a:a2:0b:5c:81:7f:13: ec:fc:c0:a9:08:52:9c:48:ec:dc:ad:a6:c1:74:b2: 19:f5:bd:a5:c4:9a:07:40:e7:e2:38:72:6f:66:e7: 12:8a:d5:f7:4b:3e:16:bd:71:90:d5:e8:9e:23:1a: bc:29:4d:01:ec:41:5b:85:3c:3b:ae:e4:6c:25:d8: 31:b6:db:92:ea:e8:a3:a9:85:96:9b:92:72:be:8c: db:16:62:fd:20:74:80:91:00:18:82:0a:ae:1a:d6: 93:25:b8:7e:b5:63:fa:2e:91:58:84:17:1f:15:1d: d3:68:59:70:34:45:02:53:7e:8a:9f:aa:70:30:04: 42:af:ca:1b:b5:cf:ce:79:13:18:7a:fa:99:e4:d7: d1:81:cc:5f:2a:d4:a7:9b:f9:ec:d9:44:f1:51:1e: bc:89:6c:17:34:52:ba:a0:cd:81:8d:61:52:27:ef: 37:ec:61:0e:b6:32:f6:77:4d:07:3e:24:e2:fd:b7: 7e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:10:9B:0D:E5:09:F9:AB:3B:00:83:F1:D1:7C:46:0A:8A:25:6A:79 X509v3 Authority Key Identifier: keyid:25:F3:D2:16:88:AB:93:81:AA:8B:95:2B:CE:26:41:29:35:42:A7:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/7C76080E08D611EE82522448C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 51.162.8.0/21 51.162.32.0/21 51.162.48.0/22 51.162.64.0/21 51.162.124.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:43:c6:18:42:ed:38:22:3e:02:c4:15:8c:8f:81:1f:85:41: 71:cb:cd:af:eb:ea:64:22:d6:9d:c1:b8:a7:4e:9a:ed:3d:70: 19:a2:88:04:49:bd:62:c1:93:8b:ef:ae:bd:35:34:07:d9:3a: 79:f9:0b:0b:73:a0:8a:60:ac:9f:94:6e:e1:eb:fc:28:b5:2a: 35:8a:01:26:30:27:2e:ef:90:ae:e4:92:b4:41:35:48:73:db: 3e:be:98:c9:b5:84:2c:22:d6:8e:3b:38:c7:db:f3:8c:04:42: 65:99:e1:2d:95:24:3c:f6:13:6d:93:20:8a:1f:37:60:32:fc: 48:86:34:c2:27:f9:09:dc:87:89:b0:a1:92:19:58:90:00:6f: 49:03:e9:af:da:fe:c7:fa:11:90:74:88:3c:e8:fb:10:a8:aa: f0:3c:33:d4:12:16:84:f3:9c:cb:a1:4c:fc:b9:0d:22:91:e3: e8:7b:bc:de:23:38:f7:95:fd:92:8c:cb:f6:5a:79:3e:c4:0e: 02:72:8b:8f:a5:a2:35:c2:f0:9b:6e:bd:e8:db:44:5f:4f:67: ec:c3:78:ce:5e:6d:8d:24:79:b1:de:3a:0d:6e:58:1b:ef:29: 53:81:e7:2b:30:a7:50:14:1d:e3:28:82:61:75:37:52:e8:a3: 91:61:77:52 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICBqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBRjExMTAvBgNVBAUTKDI1RjNEMjE2ODhBQjkzODFBQThCOTUyQkNFMjY0MTI5 MzU0MkE3RjIwHhcNMjQwNTAyMDUyNDQ1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzMjM5ZC1kMGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9DtBpZCRkaOogzTRdqEKybyatvp1hy27RIMH5JQQ79vfuL9y1elamX7KZ+0 Mq/My8s/6w4vII4D2frJkaQb5Ue1XmqiC1yBfxPs/MCpCFKcSOzcrabBdLIZ9b2l xJoHQOfiOHJvZucSitX3Sz4WvXGQ1eieIxq8KU0B7EFbhTw7ruRsJdgxttuS6uij qYWWm5JyvozbFmL9IHSAkQAYggquGtaTJbh+tWP6LpFYhBcfFR3TaFlwNEUCU36K n6pwMARCr8obtc/OeRMYevqZ5NfRgcxfKtSnm/ns2UTxUR68iWwXNFK6oM2BjWFS J+837GEOtjL2d00HPiTi/bd+/QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFDQQmw3l CfmrOwCD8dF8RgqKJWp5MB8GA1UdIwQYMBaAFCXz0haIq5OBqouVK84mQSk1Qqfy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkFGMS84NkRCMkNDQzI0 OEUxMUVCQUJFRjJCMkZDNEY5QUUwMi9KZlBTRm9pcms0R3FpNVVyemlaQktUVkNw X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pmUFNGb2lyazRHcWk1VXJ6aVpCS1RWQ3BfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJBRjEvODZEQjJDQ0MyNDhFMTFFQkFCRUYyQjJGQzRGOUFFMDIvN0M3NjA4MEUw OEQ2MTFFRTgyNTIyNDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAMzoggDBAMzoiADBAIzojADBAMzokADBAIzonwwDQYJKoZI hvcNAQELBQADggEBAJpDxhhC7TgiPgLEFYyPgR+FQXHLza/r6mQi1p3BuKdOmu09 cBmiiARJvWLBk4vvrr01NAfZOnn5CwtzoIpgrJ+UbuHr/Ci1KjWKASYwJy7vkK7k krRBNUhz2z6+mMm1hCwi1o47OMfb84wEQmWZ4S2VJDz2E22TIIofN2Ay/EiGNMIn +Qnch4mwoZIZWJAAb0kD6a/a/sf6EZB0iDzo+xCoqvA8M9QSFoTznMuhTPy5DSKR 4+h7vN4jOPeV/ZKMy/ZaeT7EDgJyi4+lojXC8JtuvejbRF9PZ+zDeM5ebY0kebHe Og1uWBvvKVOB5yswp1AUHeMogmF1N1Loo5Fhd1I= -----END CERTIFICATE-----Generated at Sun May 5 00:14:46 2024 by rpki-client on console-ams.rpki-client.org