$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/C8A0E422831611EA95762453C4F9AE02.roa File: C8A0E422831611EA95762453C4F9AE02.roa (raw, json) Hash identifier: sDxyWDjxy3FFVai72/RKSzm5kH6Wl/u3rzH8bUHmbvs= Subject key identifier: 7F:E4:84:3B:8F:D6:74:79:A7:60:04:23:51:DC:9B:26:69:A8:F4:B6 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0917 Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/C8A0E422831611EA95762453C4F9AE02.roa Signing time: Mon 26 Feb 2024 21:29:29 +0000 ROA not before: Mon 26 Feb 2024 21:29:29 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 56054 IP address blocks: 123.0.16.0/20 maxlen: 24 2400:cb60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2327 (0x917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Feb 26 21:29:29 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65dd02b9-44a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:30:ed:68:40:17:f9:d0:52:90:c5:02:8f:64: 9b:d5:9a:7a:6c:bc:75:b6:4c:af:80:60:2a:82:c3: 7b:82:57:1a:cb:ba:fd:0a:76:f3:0c:e5:e2:fb:b1: 41:f4:aa:6e:f3:d4:46:2a:60:55:46:1d:9b:45:df: c0:68:c8:bc:83:7c:e0:b9:98:5b:52:22:f9:a2:42: 29:dc:04:16:db:94:f7:e2:11:5f:0a:2d:23:a6:a6: 05:82:92:38:3f:bd:cd:e7:24:be:ad:f0:d0:69:a7: 46:94:e2:99:9d:83:40:9a:86:16:9d:66:c0:ce:61: b1:99:5d:48:e6:09:1b:fa:6b:82:97:c4:cd:b0:65: 52:f8:25:d7:b6:42:35:4b:bd:fb:1f:38:35:2f:56: b2:0e:9c:f3:00:f5:ff:f1:bb:e8:9a:e9:47:a6:75: 5f:77:8e:e4:d1:4c:a0:0f:2a:93:31:ca:74:ce:2d: f6:68:0a:52:d2:97:68:7b:44:38:7a:89:07:b3:22: cd:a7:19:52:63:1d:38:8d:9f:73:25:9d:24:3c:44: ff:1c:20:26:46:6c:5f:7c:a8:e6:4c:26:fc:73:86: cd:98:56:8d:60:bd:f3:1d:51:86:ea:c4:ba:b8:f0: ce:63:de:1c:16:e1:cd:4a:5a:bf:68:c1:14:b3:7b: 67:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E4:84:3B:8F:D6:74:79:A7:60:04:23:51:DC:9B:26:69:A8:F4:B6 X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/C8A0E422831611EA95762453C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.0.16.0/20 IPv6: 2400:cb60::/32 Signature Algorithm: sha256WithRSAEncryption ac:30:12:e7:bb:22:2e:0d:fa:b6:b4:69:21:56:75:44:e0:46: d1:c0:e1:71:a6:53:87:cc:1d:df:5f:cf:3d:60:7e:2f:87:7d: 69:09:b5:c7:d2:98:73:53:39:e3:92:87:0a:0c:49:f5:bb:50: ff:c6:8e:a6:71:53:38:77:cb:c9:c2:9b:e7:66:e3:3b:f5:57: 1a:8c:0f:5b:b3:68:29:fb:26:0f:7d:18:20:a9:5b:b1:48:10: 3f:db:55:72:5d:26:61:52:8f:c7:55:ad:c9:90:8e:41:70:2a: b3:38:31:94:3f:18:96:04:bd:0d:88:01:af:68:6d:f7:c0:bb: 18:41:94:ec:de:97:ce:44:9c:41:5f:5b:66:7e:24:87:18:96: 67:dd:5b:36:39:9d:24:c0:fd:17:38:e9:97:b0:dd:e3:fe:00: 46:94:de:66:ca:ba:3c:9d:ee:80:03:9e:d6:be:be:33:f6:c8: 78:55:ef:40:d7:85:26:38:7e:7b:ab:38:f1:30:79:fe:0b:cd: 6e:1c:4f:47:e7:69:17:8e:2d:f6:74:d1:84:df:cd:e0:58:65: f8:2d:a9:7e:d0:29:95:0f:ac:b5:36:da:8c:ac:23:8c:28:80: 5f:87:0a:c4:60:8e:fe:a8:aa:22:6d:3e:db:19:92:50:74:75: b8:b1:8d:22 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjQwMjI2MjEyOTI5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRkMDJiOS00NGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjDtaEAX+dBSkMUCj2Sb1Zp6bLx1tkyvgGAqgsN7glcay7r9CnbzDOXi+7FB 9Kpu89RGKmBVRh2bRd/AaMi8g3zguZhbUiL5okIp3AQW25T34hFfCi0jpqYFgpI4 P73N5yS+rfDQaadGlOKZnYNAmoYWnWbAzmGxmV1I5gkb+muCl8TNsGVS+CXXtkI1 S737Hzg1L1ayDpzzAPX/8bvomulHpnVfd47k0UygDyqTMcp0zi32aApS0pdoe0Q4 eokHsyLNpxlSYx04jZ9zJZ0kPET/HCAmRmxffKjmTCb8c4bNmFaNYL3zHVGG6sS6 uPDOY94cFuHNSlq/aMEUs3tnbQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFH/khDuP 1nR5p2AEI1HcmyZpqPS2MB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYwRUMvOTkxQ0VGN0U3OTU4MTFFQTkzQUU5NjQ2QzRGOUFFMDIvQzhBMEU0MjI4 MzE2MTFFQTk1NzYyNDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAR7ABAwDQQCAAIwBwMFACQAy2AwDQYJKoZIhvcNAQELBQAD ggEBAKwwEue7Ii4N+ra0aSFWdUTgRtHA4XGmU4fMHd9fzz1gfi+HfWkJtcfSmHNT OeOShwoMSfW7UP/GjqZxUzh3y8nCm+dm4zv1VxqMD1uzaCn7Jg99GCCpW7FIED/b VXJdJmFSj8dVrcmQjkFwKrM4MZQ/GJYEvQ2IAa9obffAuxhBlOzel85EnEFfW2Z+ JIcYlmfdWzY5nSTA/Rc46Zew3eP+AEaU3mbKujyd7oADnta+vjP2yHhV70DXhSY4 fnurOPEwef4LzW4cT0fnaReOLfZ00YTfzeBYZfgtqX7QKZUPrLU22oysI4wogF+H CsRgjv6oqiJtPtsZklB0dbixjSI= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org