$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa File: A64C29AA3D9811EE88B2694CC4F9AE02.roa (raw, json) Hash identifier: ujyLBupHLsj0dtDycNLIKoglpRomUsdFwQR1IaNx+4A= Subject key identifier: 23:0F:86:2E:EE:3D:9E:EA:16:60:86:E4:11:4C:D6:53:42:13:A5:03 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 0723 Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa Signing time: Fri 18 Aug 2023 07:27:13 +0000 ROA not before: Fri 18 Aug 2023 07:27:13 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 36131 IP address blocks: 169.136.68.0/24 maxlen: 24 169.136.69.0/24 maxlen: 24 169.136.70.0/24 maxlen: 24 169.136.71.0/24 maxlen: 24 169.136.72.0/24 maxlen: 24 169.136.73.0/24 maxlen: 24 169.136.128.0/24 maxlen: 24 169.136.130.0/24 maxlen: 24 169.136.132.0/24 maxlen: 24 169.136.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1827 (0x723) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Aug 18 07:27:13 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64df1d51-c079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:60:b9:d7:11:bd:74:b2:80:a3:89:a4:8b:91: 7a:8b:85:12:0b:a5:21:ce:1a:24:49:13:31:17:98: 49:a6:41:63:e6:a2:d2:1e:d1:20:a3:5e:eb:25:63: 1a:6f:95:9b:29:63:62:41:a2:56:b0:49:0d:21:e8: 28:4c:d3:14:86:32:9a:71:2d:e4:d9:25:b5:0c:b6: a0:9e:1f:ff:cd:e1:4c:29:be:a8:64:55:8d:cd:92: 9b:80:ad:41:9b:3c:55:cd:02:74:1b:f4:8f:13:f0: 6c:89:6c:4a:96:51:68:7a:f1:94:69:85:b5:67:10: b1:58:6b:cd:bb:47:74:bb:8f:60:19:86:28:8f:2f: 70:8a:6d:fd:dd:f8:67:01:75:19:4e:b4:60:88:34: 19:de:88:c7:f8:d0:5c:6f:33:19:7c:fb:78:7b:46: 86:e6:4a:d0:45:6c:3d:87:73:b4:bc:46:5e:6a:60: 72:9d:53:f0:42:f4:f5:32:1f:59:a7:ad:a9:ba:21: a1:18:4c:15:59:16:42:fa:20:36:db:1b:0a:d3:28: f6:36:d6:66:ec:5c:c3:fc:8a:d9:db:6a:ba:8f:a5: 80:f9:09:30:f7:ce:06:f0:53:08:67:32:40:c6:01: 0a:33:6b:40:da:db:4e:35:7d:f4:83:47:30:be:8f: 09:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:0F:86:2E:EE:3D:9E:EA:16:60:86:E4:11:4C:D6:53:42:13:A5:03 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 169.136.68.0-169.136.73.255 169.136.128.0/24 169.136.130.0/24 169.136.132.0/24 169.136.141.0/24 Signature Algorithm: sha256WithRSAEncryption 40:ad:28:9d:b4:ce:02:d6:93:4a:2c:ea:95:8f:49:de:d1:c7: 6d:b6:d9:96:2f:63:8f:10:16:54:d7:e3:2c:ef:ec:4f:4f:14: cd:af:95:72:4b:e7:82:d7:58:4c:91:6c:5f:a1:15:b8:c5:da: e3:e4:27:85:e0:bd:c4:2d:cf:ce:49:0f:70:9f:db:12:e0:d1: 1b:8a:92:8e:77:38:79:e4:c9:3d:e1:b3:c9:b6:68:95:2c:4a: 2d:5c:6c:c5:ec:43:69:f5:b1:16:ad:c9:e0:f3:b1:0f:36:8e: c8:6d:95:cb:38:8f:fb:c9:c5:55:d6:f1:0a:ef:11:b7:09:fe: 90:70:2f:87:9d:f0:e9:c6:6f:bf:7f:3d:7b:1e:d4:b2:48:b0: b0:4e:38:16:a7:07:e6:4a:70:60:a3:b8:19:5c:70:b0:18:ef: 53:9c:55:f9:4c:3c:c8:44:a4:6d:36:e9:5c:05:28:17:02:e4: 2d:ed:80:d3:cd:85:40:3c:b8:c5:ec:9d:eb:42:bc:51:48:86: f6:3d:59:d4:72:2e:fb:36:f7:55:93:17:0c:b6:92:eb:09:64: 28:99:b7:35:9e:05:80:75:1e:e3:ed:cc:35:62:7d:e2:20:6d: c4:e5:5e:75:16:1c:92:e0:13:aa:bf:b4:88:82:50:a9:6e:84: d7:df:16:12 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICByMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjMwODE4MDcyNzEzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRmMWQ1MS1jMDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WC51xG9dLKAo4mki5F6i4USC6UhzhokSRMxF5hJpkFj5qLSHtEgo17rJWMa b5WbKWNiQaJWsEkNIegoTNMUhjKacS3k2SW1DLagnh//zeFMKb6oZFWNzZKbgK1B mzxVzQJ0G/SPE/BsiWxKllFoevGUaYW1ZxCxWGvNu0d0u49gGYYojy9wim393fhn AXUZTrRgiDQZ3ojH+NBcbzMZfPt4e0aG5krQRWw9h3O0vEZeamBynVPwQvT1Mh9Z p62puiGhGEwVWRZC+iA22xsK0yj2NtZm7FzD/IrZ22q6j6WA+Qkw984G8FMIZzJA xgEKM2tA2ttONX30g0cwvo8JIwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFCMPhi7u PZ7qFmCG5BFM1lNCE6UDMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvQTY0QzI5QUEz RDk4MTFFRTg4QjI2OTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYwDAMEAqmIRAMEAamISAMEAKmIgAMEAKmIggMEAKmIhAMEAKmI jTANBgkqhkiG9w0BAQsFAAOCAQEAQK0onbTOAtaTSizqlY9J3tHHbbbZli9jjxAW VNfjLO/sT08Uza+VckvngtdYTJFsX6EVuMXa4+QnheC9xC3PzkkPcJ/bEuDRG4qS jnc4eeTJPeGzybZolSxKLVxsxexDafWxFq3J4POxDzaOyG2VyziP+8nFVdbxCu8R twn+kHAvh53w6cZvv389ex7UskiwsE44FqcH5kpwYKO4GVxwsBjvU5xV+Uw8yESk bTbpXAUoFwLkLe2A082FQDy4xeyd60K8UUiG9j1Z1HIu+zb3VZMXDLaS6wlkKJm3 NZ4FgHUe4+3MNWJ94iBtxOVedRYckuATqr+0iIJQqW6E198WEg== -----END CERTIFICATE-----Generated at Thu May 16 23:39:17 2024 by rpki-client on console-ams.rpki-client.org