$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/16C96BAE18E311EFB8960668C4F9AE02.roa File: 16C96BAE18E311EFB8960668C4F9AE02.roa (raw, json) Hash identifier: GqbKfXTNwN0SIpQjwmZy3ObDrSaqHo6sguNM1x2JWQA= Subject key identifier: 0A:55:33:80:80:D0:6C:40:DD:E2:A2:EB:EF:37:72:24:AB:B1:BA:92 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1044 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/16C96BAE18E311EFB8960668C4F9AE02.roa Signing time: Thu 23 May 2024 09:01:50 +0000 ROA not before: Thu 23 May 2024 09:01:50 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 58655 IP address blocks: 220.152.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4164 (0x1044) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: May 23 09:01:50 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=664f05fd-0b63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a8:f9:ca:0d:6c:93:8f:bf:fa:e1:2d:9a:e2: a3:88:da:f9:62:0f:c7:c7:20:c3:7d:7c:d9:9d:8e: 55:4b:43:b8:86:9e:0e:cd:b0:43:2a:63:51:68:ab: 6d:14:9f:b0:da:64:1c:5b:61:8b:83:98:93:dc:72: 36:15:45:e3:e2:6a:75:20:55:5a:70:bd:08:2e:04: fb:15:ca:ac:64:d6:5c:a1:e1:c4:09:9a:f2:40:46: fb:54:87:0c:74:e0:40:41:2a:4e:2c:8f:b6:71:0f: b9:3d:06:98:fe:4d:d7:a8:a7:3f:3a:03:84:c0:39: c5:3e:4b:47:8d:09:f5:1e:c7:d2:c9:ed:f0:05:30: df:f2:f8:34:cd:cb:ad:e9:16:46:a1:07:5d:4b:40: 0a:13:49:1f:fd:be:f4:2a:37:05:0b:3f:ab:ef:08: 64:05:07:53:c9:94:18:51:3b:95:d2:50:f6:f8:fb: fd:9e:48:15:5c:e5:4b:42:8c:da:5f:ac:78:7b:26: 3b:78:78:08:1c:c3:b6:0f:f6:95:da:50:a7:7c:7c: 18:4a:0b:44:f7:00:05:b7:27:b2:ed:c4:04:68:34: e9:5f:9b:2f:57:5f:f7:05:31:7c:aa:de:d0:8d:f7: d2:9d:57:6f:a1:cb:e4:12:f7:07:34:63:14:e3:b6: f6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:55:33:80:80:D0:6C:40:DD:E2:A2:EB:EF:37:72:24:AB:B1:BA:92 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/16C96BAE18E311EFB8960668C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.152.112.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:fa:de:3c:1a:d1:2b:c5:32:8b:ef:18:b3:a8:2d:c3:53:8d: e1:e2:06:4e:03:77:f5:3a:21:08:a8:12:d4:65:dc:8b:bd:a5: 9b:7b:4b:cb:1d:ba:d6:11:d3:41:6b:5e:0e:ff:41:b3:19:4f: 7e:fa:e7:b4:52:23:e1:8f:9c:85:7e:ff:42:c0:79:43:05:79: ba:19:a4:86:7a:6c:2a:3c:68:0c:8c:fc:dc:80:d1:4b:8e:65: 7d:bf:92:47:5f:2e:fc:e9:b3:38:7c:47:4d:86:b9:e2:7a:ac: e5:a0:e7:6f:72:ba:d5:c0:06:77:f2:32:ad:b7:f8:d8:2e:fa: 84:00:20:f6:c9:f0:c2:5f:f4:43:20:e6:29:49:df:9e:e2:c4: 71:d4:18:55:14:e3:1c:68:39:6e:50:9e:c4:7f:f8:31:42:e3: 29:e8:9b:5a:82:ae:3c:4b:61:a7:a2:44:cf:38:a5:5d:0f:87: 38:d0:7b:20:50:e8:a4:b6:a0:67:53:f0:e5:a0:1b:d7:d9:42: 48:4c:2e:ee:f3:18:6e:61:f7:0a:30:cf:4f:3c:85:86:2c:bd: c1:0d:ae:de:e7:30:02:e2:eb:51:c9:ae:b6:6f:56:c2:a2:9d: e5:b2:26:d4:b5:22:39:29:af:34:1a:90:03:22:15:f8:51:3a: c8:99:94:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjQwNTIzMDkwMTUwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjRmMDVmZC0wYjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaj5yg1sk4+/+uEtmuKjiNr5Yg/HxyDDfXzZnY5VS0O4hp4OzbBDKmNRaKtt FJ+w2mQcW2GLg5iT3HI2FUXj4mp1IFVacL0ILgT7FcqsZNZcoeHECZryQEb7VIcM dOBAQSpOLI+2cQ+5PQaY/k3XqKc/OgOEwDnFPktHjQn1HsfSye3wBTDf8vg0zcut 6RZGoQddS0AKE0kf/b70KjcFCz+r7whkBQdTyZQYUTuV0lD2+Pv9nkgVXOVLQoza X6x4eyY7eHgIHMO2D/aV2lCnfHwYSgtE9wAFtyey7cQEaDTpX5svV1/3BTF8qt7Q jffSnVdvocvkEvcHNGMU47b2KQIDAQABo4IClTCCApEwHQYDVR0OBBYEFApVM4CA 0GxA3eKi6+83ciSrsbqSMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvMTZDOTZCQUUx OEUzMTFFRkI4OTYwNjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcmHAwDQYJKoZIhvcNAQELBQADggEBAA/63jwa0SvFMovv GLOoLcNTjeHiBk4Dd/U6IQioEtRl3Iu9pZt7S8sdutYR00FrXg7/QbMZT37657RS I+GPnIV+/0LAeUMFeboZpIZ6bCo8aAyM/NyA0UuOZX2/kkdfLvzpszh8R02GueJ6 rOWg529yutXABnfyMq23+Ngu+oQAIPbJ8MJf9EMg5ilJ357ixHHUGFUU4xxoOW5Q nsR/+DFC4ynom1qCrjxLYaeiRM84pV0PhzjQeyBQ6KS2oGdT8OWgG9fZQkhMLu7z GG5h9wowz088hYYsvcENrt7nMALi61HJrrZvVsKineWyJtS1IjkprzQakAMiFfhR OsiZlOM= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:26 2024 by rpki-client on console-fra.rpki-client.org