$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5F9FA12E0CA411ED96936D79C4F9AE02.roa File: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (raw, json) Hash identifier: d9Y8e8kwXktCEDAI4+yfDEKSMkmM2i4tO6pb496wEAU= Subject key identifier: 51:21:7A:36:1C:A7:BB:9A:16:88:6A:7B:1F:A9:61:B6:CA:26:8B:89 Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 0260 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5F9FA12E0CA411ED96936D79C4F9AE02.roa Signing time: Thu 27 Jul 2023 02:05:00 +0000 ROA not before: Thu 27 Jul 2023 02:05:00 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133861 IP address blocks: 208.87.200.0/24 maxlen: 24 208.87.201.0/24 maxlen: 24 208.87.202.0/24 maxlen: 24 208.87.203.0/24 maxlen: 24 208.87.204.0/24 maxlen: 24 208.87.205.0/24 maxlen: 24 208.87.206.0/24 maxlen: 24 208.87.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Jul 27 02:05:00 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1d0cc-4cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8e:2a:74:fe:f7:45:84:13:07:b6:5c:a2:16: 80:36:25:5d:15:0b:3e:24:cf:cb:80:28:ba:2a:c6: b7:ae:41:e0:95:25:6e:ee:ee:8b:6f:77:8e:4d:63: 28:12:ec:fc:08:35:35:8b:66:5e:d6:6d:ad:03:43: d4:df:0b:6a:b5:43:6d:cd:fb:00:de:3e:d9:88:17: af:6e:0c:e7:d9:ab:79:48:67:f1:2a:16:aa:79:37: 1b:67:11:7b:d6:38:af:55:4a:da:68:b8:e5:aa:80: bd:28:95:61:40:78:24:bc:71:21:46:98:21:91:8d: 57:c5:03:88:63:88:2a:b0:91:b7:ad:6a:34:a7:dc: 93:21:33:a9:c8:f2:bc:1e:48:8d:c5:3a:81:dd:43: 51:b4:ea:4b:c4:40:1c:7a:c4:0b:d6:cf:a4:d5:38: bf:18:f3:25:ff:43:e6:58:41:66:1e:b2:80:db:05: 72:b5:03:c0:43:6d:e8:19:1e:22:40:89:4b:56:c9: 1f:59:ab:34:b0:07:df:61:49:c4:ed:7e:18:90:4e: 27:4b:09:d2:ea:9c:13:b5:34:82:f5:8f:9b:ca:d1: 44:81:a9:80:0e:45:e7:80:a7:b8:26:90:d6:05:6f: 00:11:ca:14:b9:89:40:e2:2c:fe:2d:4d:4f:22:75: 7e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:21:7A:36:1C:A7:BB:9A:16:88:6A:7B:1F:A9:61:B6:CA:26:8B:89 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5F9FA12E0CA411ED96936D79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 208.87.200.0/21 Signature Algorithm: sha256WithRSAEncryption 2d:31:05:40:94:c2:6b:b4:93:a0:28:a7:ad:39:69:18:0c:87: a8:71:fd:60:44:c0:9e:b9:5a:d7:7f:88:a8:78:10:af:2b:25: d9:9e:65:0c:d1:bf:b2:a5:ee:58:8f:04:f6:0a:a2:11:ef:8b: 54:e1:01:e2:f2:d9:bb:b1:25:86:c7:49:bd:4b:06:ac:b6:5b: 15:dc:60:39:d2:6e:a0:3c:20:30:53:ea:08:6c:d9:58:f9:de: 4a:f0:23:71:52:ff:b9:dc:77:37:c3:87:51:4d:3b:66:d9:ad: 95:0c:7e:06:3e:d6:d6:6b:1c:96:4c:ee:b3:58:25:f0:98:51: 07:25:76:e1:84:36:ea:d7:03:35:ac:ac:7d:d4:80:1d:3f:54: ca:04:99:fe:38:c0:30:8b:ee:07:1a:cc:94:06:97:c1:bb:e5: c2:57:c5:33:5e:db:3a:49:b6:5b:a4:c9:48:fa:1e:20:df:1b: 39:f8:6e:3e:23:87:5d:ee:47:cf:9c:82:20:39:8d:1e:42:0e: ab:a6:f8:83:a5:2d:cb:23:3f:f3:2c:77:6f:fc:e1:74:4b:09: 37:ad:8f:38:ef:e7:17:e3:3b:ba:2a:1e:d8:3e:ea:97:9c:4a: 26:e3:65:fa:5c:5d:7d:88:85:8d:3a:7d:b9:b9:67:8a:e3:16: c0:12:bf:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjMwNzI3MDIwNTAwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxZDBjYy00Y2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA044qdP73RYQTB7ZcohaANiVdFQs+JM/LgCi6Ksa3rkHglSVu7u6Lb3eOTWMo Euz8CDU1i2Ze1m2tA0PU3wtqtUNtzfsA3j7ZiBevbgzn2at5SGfxKhaqeTcbZxF7 1jivVUraaLjlqoC9KJVhQHgkvHEhRpghkY1XxQOIY4gqsJG3rWo0p9yTITOpyPK8 HkiNxTqB3UNRtOpLxEAcesQL1s+k1Ti/GPMl/0PmWEFmHrKA2wVytQPAQ23oGR4i QIlLVskfWas0sAffYUnE7X4YkE4nSwnS6pwTtTSC9Y+bytFEgamADkXngKe4JpDW BW8AEcoUuYlA4iz+LU1PInV+ewIDAQABo4IClTCCApEwHQYDVR0OBBYEFFEhejYc p7uaFohqex+pYbbKJouJMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNEUzRTM2N0U5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvNUY5RkExMkUw Q0E0MTFFRDk2OTM2RDc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPQV8gwDQYJKoZIhvcNAQELBQADggEBAC0xBUCUwmu0k6Ao p605aRgMh6hx/WBEwJ65Wtd/iKh4EK8rJdmeZQzRv7Kl7liPBPYKohHvi1ThAeLy 2buxJYbHSb1LBqy2WxXcYDnSbqA8IDBT6ghs2Vj53krwI3FS/7ncdzfDh1FNO2bZ rZUMfgY+1tZrHJZM7rNYJfCYUQclduGENurXAzWsrH3UgB0/VMoEmf44wDCL7gca zJQGl8G75cJXxTNe2zpJtlukyUj6HiDfGzn4bj4jh13uR8+cgiA5jR5CDqum+IOl LcsjP/Msd2/84XRLCTetjzjv5xfjO7oqHtg+6pecSibjZfpcXX2IhY06fbm5Z4rj FsASv4Q= -----END CERTIFICATE-----Generated at Mon May 13 04:10:46 2024 by rpki-client on console-fra.rpki-client.org