$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa File: 06820D08961011ECA540626AC4F9AE02.roa (raw, json) Hash identifier: XV9cX75RXsqKNTf84cASXCPO6bvZez9c+lizXgZPdBE= Subject key identifier: 54:5D:59:50:DE:93:51:B8:47:C4:28:E4:6E:D1:79:A0:E9:18:A6:65 Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 025F Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa Signing time: Thu 27 Jul 2023 02:04:59 +0000 ROA not before: Thu 27 Jul 2023 02:04:59 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133199 IP address blocks: 208.87.200.0/24 maxlen: 24 208.87.201.0/24 maxlen: 24 208.87.202.0/24 maxlen: 24 208.87.203.0/24 maxlen: 24 208.87.204.0/24 maxlen: 24 208.87.205.0/24 maxlen: 24 208.87.206.0/24 maxlen: 24 208.87.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Jul 27 02:04:59 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1d0ca-d02c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e2:3a:4e:04:03:11:eb:df:42:a3:d8:9b:29: 0e:d4:17:62:17:65:dd:62:37:32:92:1e:a3:73:49: 92:0c:b2:51:14:3b:30:db:70:ff:00:0e:bf:6d:17: b2:52:7f:e8:ef:81:d9:31:70:9e:45:f7:5b:15:d5: c3:49:a2:5c:98:e5:b0:ce:15:b9:e3:dd:9a:32:c4: 4e:6b:fc:26:67:61:3e:9f:39:99:90:9d:6c:24:86: 20:2f:1b:eb:0a:49:ce:6e:8b:c6:0f:ae:33:b5:f2: 42:07:fd:2e:a8:85:bf:c3:21:6b:d2:18:06:e5:f4: de:ec:c9:f5:f7:b1:6d:ce:54:2f:ea:e5:e3:d3:8b: 7a:0b:39:23:59:d7:5d:70:92:98:98:54:6c:ef:ff: 3e:c7:6c:96:a2:e4:9f:9e:46:f0:25:1e:77:19:74: 7a:ac:50:12:d6:88:f7:54:a3:cc:57:06:d1:2b:7e: e6:79:74:0a:06:3e:82:a2:30:ca:4d:02:a3:fc:98: 55:c5:e2:0b:a8:fe:b0:45:c4:65:6c:8a:1f:b7:8b: d7:5c:a9:67:7e:64:8b:76:81:cf:0b:3c:a8:81:f1: e6:9e:0e:52:e8:30:db:3f:b3:66:42:0b:69:d9:68: f6:7f:63:3d:2a:d5:97:4c:d3:13:8c:d8:69:b0:40: 66:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:5D:59:50:DE:93:51:B8:47:C4:28:E4:6E:D1:79:A0:E9:18:A6:65 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 208.87.200.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:74:ad:09:57:b5:2e:5d:cc:fe:66:6b:c5:8f:7b:6e:99:45: 86:2b:73:c6:bf:d9:fc:12:f9:a3:36:d4:1e:68:28:0b:eb:0b: 29:57:87:b7:43:c2:1b:48:5e:f2:71:66:14:6c:05:88:e9:1a: 63:74:1e:80:6b:e1:f7:a0:ef:e5:07:bb:9a:eb:eb:08:4d:88: 10:0c:07:3d:5f:2b:a6:74:4c:65:9a:0a:f7:6a:dd:31:d1:53: 10:c1:10:14:dc:e5:62:02:b0:85:79:d2:63:5c:0e:4e:33:f1: dd:c5:76:03:82:8c:0c:ee:21:2d:79:bc:05:d6:94:95:9d:aa: 85:64:a9:db:d7:6b:3d:b9:7a:b7:38:84:8a:34:67:91:6e:a0: 90:7a:55:ad:39:09:79:aa:d3:35:8e:19:b5:13:bf:9f:c2:9b: 88:79:05:f3:08:2c:ee:9e:e7:a7:92:f6:be:17:7f:54:23:16: 1d:9d:7c:e8:2b:f2:16:39:3b:e4:4b:d2:35:e0:42:b7:f2:f9: 15:53:23:df:32:e1:f3:5a:b0:e4:33:98:f7:c5:d3:dd:70:5b: 57:57:e5:5f:10:3e:42:37:41:17:65:b7:65:b6:aa:40:f7:bb: 9a:62:78:09:a8:66:02:cd:83:5c:44:89:bd:b3:6a:29:ec:15: 11:b3:e4:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjMwNzI3MDIwNDU5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxZDBjYS1kMDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eI6TgQDEevfQqPYmykO1BdiF2XdYjcykh6jc0mSDLJRFDsw23D/AA6/bRey Un/o74HZMXCeRfdbFdXDSaJcmOWwzhW5492aMsROa/wmZ2E+nzmZkJ1sJIYgLxvr CknObovGD64ztfJCB/0uqIW/wyFr0hgG5fTe7Mn197FtzlQv6uXj04t6CzkjWddd cJKYmFRs7/8+x2yWouSfnkbwJR53GXR6rFAS1oj3VKPMVwbRK37meXQKBj6CojDK TQKj/JhVxeILqP6wRcRlbIoft4vXXKlnfmSLdoHPCzyogfHmng5S6DDbP7NmQgtp 2Wj2f2M9KtWXTNMTjNhpsEBmIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFRdWVDe k1G4R8Qo5G7ReaDpGKZlMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNEUzRTM2N0U5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvMDY4MjBEMDg5 NjEwMTFFQ0E1NDA2MjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPQV8gwDQYJKoZIhvcNAQELBQADggEBAH50rQlXtS5dzP5m a8WPe26ZRYYrc8a/2fwS+aM21B5oKAvrCylXh7dDwhtIXvJxZhRsBYjpGmN0HoBr 4feg7+UHu5rr6whNiBAMBz1fK6Z0TGWaCvdq3THRUxDBEBTc5WICsIV50mNcDk4z 8d3FdgOCjAzuIS15vAXWlJWdqoVkqdvXaz25erc4hIo0Z5FuoJB6Va05CXmq0zWO GbUTv5/Cm4h5BfMILO6e56eS9r4Xf1QjFh2dfOgr8hY5O+RL0jXgQrfy+RVTI98y 4fNasOQzmPfF091wW1dX5V8QPkI3QRdlt2W2qkD3u5pieAmoZgLNg1xEib2zains FRGz5HM= -----END CERTIFICATE-----Generated at Thu Apr 25 04:06:42 2024 by rpki-client on console-ams.rpki-client.org