$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7EA8FE8AE74011EEA0AA1E52C4F9AE02.roa File: 7EA8FE8AE74011EEA0AA1E52C4F9AE02.roa (raw, json) Hash identifier: IBIp2IPb4ywtAoVMkzTadAK3s7hljhOfRV/NfJg+hv4= Subject key identifier: 52:C3:EF:AF:72:D0:A9:75:D0:9A:85:92:16:18:E0:4B:50:72:67:12 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 1006 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7EA8FE8AE74011EEA0AA1E52C4F9AE02.roa Signing time: Thu 21 Mar 2024 05:05:01 +0000 ROA not before: Thu 21 Mar 2024 05:05:01 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 6830 IP address blocks: 115.167.28.0/22 maxlen: 22 202.92.19.0/24 maxlen: 24 202.92.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4102 (0x1006) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Mar 21 05:05:01 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65fbbffd-e25a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9a:d0:18:02:78:c5:78:0d:82:d1:9c:01:e6: 1c:69:70:10:49:16:e3:71:f6:51:3b:1a:fe:c0:5a: fb:88:e3:84:da:21:ad:22:4a:c6:1a:ca:86:a4:52: 20:0d:48:14:fd:da:79:db:5c:c2:d9:7c:13:cc:ae: 30:6d:91:e9:aa:de:c6:f2:b0:1b:ff:f0:11:83:78: 9f:e0:3f:07:02:ae:ec:2e:7d:2f:61:8f:47:b6:14: f9:3d:07:18:56:c8:9b:02:70:0f:4d:85:76:6e:42: 60:85:ab:b7:71:0e:dc:a4:61:53:83:73:94:4a:36: 3a:da:6d:cc:1f:0a:02:fc:66:ab:e3:c6:3b:3a:18: 63:b9:d6:57:04:af:3c:1e:19:0f:b9:c8:7d:f2:eb: 61:70:e1:6c:e2:fa:0c:38:fa:a8:d2:d7:4a:de:2d: 70:03:6d:36:a4:5f:4f:63:01:57:00:19:78:d4:0d: a1:3e:f7:ed:61:cc:67:79:5a:98:71:1e:8a:05:83: c4:e5:20:13:10:0f:fb:f1:74:1d:9a:0f:b9:a1:95: 5f:b4:52:01:87:04:82:2c:9c:e9:98:e9:cf:9f:cc: 60:e1:53:5f:b4:6f:c5:cd:f9:e5:f6:cb:de:79:95: ed:f1:bb:0d:04:f2:b4:41:3b:47:65:8b:5b:1e:d0: 46:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C3:EF:AF:72:D0:A9:75:D0:9A:85:92:16:18:E0:4B:50:72:67:12 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7EA8FE8AE74011EEA0AA1E52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.167.28.0/22 202.92.19.0/24 202.92.21.0/24 Signature Algorithm: sha256WithRSAEncryption 71:5a:0c:b9:86:04:43:98:7d:14:bb:16:ce:4c:b6:e4:15:5a: dc:34:9f:ba:a3:24:16:4e:ed:5f:00:b0:5c:20:42:10:7d:2b: 14:0d:63:05:27:b9:47:fc:36:aa:69:35:f9:fe:39:2d:9e:78: 2f:3a:63:d6:59:e4:62:cc:22:66:76:c8:b2:64:68:27:6d:cf: 25:d2:05:79:83:aa:0b:6b:f5:21:fd:26:8e:97:51:34:46:fb: 21:ca:8f:4e:0f:64:25:6f:5c:0e:11:60:c1:e4:55:d9:6a:49: b8:39:89:d6:3c:5d:b4:00:a0:c8:66:27:cd:80:5a:67:67:18: 78:b3:68:48:29:90:65:5c:89:87:c4:b2:8c:42:3c:92:d3:0e: c6:7b:9d:a2:20:61:b8:53:71:ca:82:b8:27:9b:33:9f:90:54: 41:74:b3:00:35:1a:62:93:8c:5b:19:2b:9c:67:a3:76:a5:9f: b0:59:25:1d:b6:2b:42:3e:47:cb:9f:ca:82:36:cd:29:7c:3b: 85:c4:68:0b:cd:ac:5d:95:88:f0:73:23:ab:70:6b:f9:48:18: 71:f7:c4:0a:27:75:de:f7:86:ad:64:e7:15:15:94:37:e2:3c: 0d:d4:5c:55:a7:06:a3:3d:6a:a6:48:0c:8c:12:3c:26:2b:ba: fd:c1:93:b4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjQwMzIxMDUwNTAxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiYmZmZC1lMjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2prQGAJ4xXgNgtGcAeYcaXAQSRbjcfZROxr+wFr7iOOE2iGtIkrGGsqGpFIg DUgU/dp521zC2XwTzK4wbZHpqt7G8rAb//ARg3if4D8HAq7sLn0vYY9HthT5PQcY VsibAnAPTYV2bkJghau3cQ7cpGFTg3OUSjY62m3MHwoC/Gar48Y7OhhjudZXBK88 HhkPuch98uthcOFs4voMOPqo0tdK3i1wA202pF9PYwFXABl41A2hPvftYcxneVqY cR6KBYPE5SATEA/78XQdmg+5oZVftFIBhwSCLJzpmOnPn8xg4VNftG/Fzfnl9sve eZXt8bsNBPK0QTtHZYtbHtBGGQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFLD769y 0Kl10JqFkhYY4EtQcmcSMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvN0VBOEZFOEFF NzQwMTFFRUEwQUExRTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJzpxwDBADKXBMDBADKXBUwDQYJKoZIhvcNAQELBQADggEB AHFaDLmGBEOYfRS7Fs5MtuQVWtw0n7qjJBZO7V8AsFwgQhB9KxQNYwUnuUf8Nqpp Nfn+OS2eeC86Y9ZZ5GLMImZ2yLJkaCdtzyXSBXmDqgtr9SH9Jo6XUTRG+yHKj04P ZCVvXA4RYMHkVdlqSbg5idY8XbQAoMhmJ82AWmdnGHizaEgpkGVciYfEsoxCPJLT DsZ7naIgYbhTccqCuCebM5+QVEF0swA1GmKTjFsZK5xno3aln7BZJR22K0I+R8uf yoI2zSl8O4XEaAvNrF2ViPBzI6twa/lIGHH3xAondd73hq1k5xUVlDfiPA3UXFWn BqM9aqZIDIwSPCYruv3Bk7Q= -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:10 2024 by rpki-client on console-ams.rpki-client.org