$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/20C6F2EC699D11EAA33EAE83C4F9AE02.roa File: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (raw, json) Hash identifier: 2Wfkdn7MfVQXrZ9H0XtMLTt93Bf8/BHzsOt+OvV3+jE= Subject key identifier: C9:4C:A7:42:5D:AA:F2:FF:AC:47:EC:9A:71:24:2F:78:1C:7C:23:11 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 19E1 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/20C6F2EC699D11EAA33EAE83C4F9AE02.roa Signing time: Thu 04 Apr 2024 14:50:36 +0000 ROA not before: Thu 04 Apr 2024 14:50:36 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 12008 IP address blocks: 116.51.28.192/26 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6625 (0x19e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Apr 4 14:50:36 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660ebe3b-6675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5d:19:10:25:87:14:b4:ab:29:59:16:36:c9: 2b:f0:de:81:7a:ec:c9:45:ef:56:ba:87:c2:70:51: c1:2b:fa:87:82:8f:96:f9:49:b2:b3:18:e3:c7:6f: 70:d5:c5:7d:e4:16:bc:92:e7:97:90:24:44:4b:18: c1:6f:11:4c:08:1f:ca:5e:a8:ce:11:0a:a4:d5:01: ce:ea:91:81:6a:5c:bc:2d:dc:7b:f7:64:9a:a2:91: 52:0d:cc:19:5b:20:32:de:30:eb:2e:62:85:4d:6a: aa:3a:ca:4e:0a:75:43:83:c4:23:b7:1d:3f:b7:2a: e6:14:eb:e4:1d:11:85:75:fe:8a:d1:e7:e7:20:ad: 59:4b:c5:e9:59:22:bf:9f:c7:2b:e2:b3:63:b9:26: eb:60:7a:a2:c6:01:c3:45:f3:18:37:35:5c:d3:e1: e4:39:59:d3:57:38:95:31:87:ea:e1:3e:3d:f5:92: b3:75:f2:fd:2b:69:1e:a8:75:dd:5a:2e:45:dc:66: d7:a7:2c:e2:be:ad:13:c5:d9:c5:61:aa:f9:02:e7: 23:f3:d1:c7:08:bf:42:e8:7f:2c:ad:ab:c1:bb:56: f8:d0:8d:47:b2:f0:32:86:e2:44:26:f2:a0:12:cc: a4:a1:14:2d:90:58:46:16:fc:51:b3:aa:ce:77:a8: 8a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:4C:A7:42:5D:AA:F2:FF:AC:47:EC:9A:71:24:2F:78:1C:7C:23:11 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/20C6F2EC699D11EAA33EAE83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.51.28.192/26 Signature Algorithm: sha256WithRSAEncryption a8:ed:e1:61:a1:69:58:a0:2a:c0:72:0a:6d:7a:b8:41:5d:74: 46:54:39:7d:28:59:e6:81:f4:6a:f1:63:93:89:dc:48:a9:c4: 53:92:f7:ec:df:1b:b1:63:03:b6:a8:3d:c4:89:dc:d0:7a:ee: 91:e6:71:64:f9:3f:32:7d:be:7a:75:39:5d:ce:c5:0d:2b:91: 6d:33:f6:64:28:25:47:da:3b:f0:88:9b:16:7f:f0:9c:75:99: 36:17:cf:95:33:cb:d4:07:a6:98:d3:f2:4f:91:d3:f1:b3:58: bc:0f:b0:fb:4a:7d:d4:64:eb:d2:dc:de:12:77:0a:2f:88:0d: a7:0d:22:ec:7b:a3:ea:a1:b4:a7:54:db:c2:12:69:a1:70:fa: 14:3f:21:cc:d3:3d:5e:ad:9f:7a:54:20:33:52:95:50:f0:29: 05:48:d5:df:a1:d0:60:6d:5d:b7:06:62:1a:f5:42:c8:01:e1: d8:aa:bd:e1:c1:5e:e9:f6:a5:f2:85:b7:ae:9e:16:30:43:e0: bc:39:5b:3f:ce:ab:f8:ca:5f:47:c9:3e:7c:84:7a:4f:fe:ec: 2e:4d:d1:b5:78:e6:2a:dc:ea:60:5e:0d:24:42:d6:34:2d:98: 48:07:90:ad:a9:84:09:be:7a:81:ac:b9:00:a6:f9:ae:f2:60: aa:7d:f5:6b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICGeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjQwNDA0MTQ1MDM2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlYmUzYi02Njc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsF0ZECWHFLSrKVkWNskr8N6BeuzJRe9WuofCcFHBK/qHgo+W+Umysxjjx29w 1cV95Ba8kueXkCRESxjBbxFMCB/KXqjOEQqk1QHO6pGBaly8Ldx792SaopFSDcwZ WyAy3jDrLmKFTWqqOspOCnVDg8Qjtx0/tyrmFOvkHRGFdf6K0efnIK1ZS8XpWSK/ n8cr4rNjuSbrYHqixgHDRfMYNzVc0+HkOVnTVziVMYfq4T499ZKzdfL9K2keqHXd Wi5F3GbXpyzivq0TxdnFYar5Aucj89HHCL9C6H8sravBu1b40I1HsvAyhuJEJvKg EsykoRQtkFhGFvxRs6rOd6iK6QIDAQABo4ICljCCApIwHQYDVR0OBBYEFMlMp0Jd qvL/rEfsmnEkL3gcfCMRMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZENUQvOURDQjY4RTAxRDg4MTFFMjk0Qjk1NUUxMDhCMDJDRDIvMjBDNkYyRUM2 OTlEMTFFQUEzM0VBRTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgABMAcDBQZ0MxzAMA0GCSqGSIb3DQEBCwUAA4IBAQCo7eFhoWlYoCrA cgpterhBXXRGVDl9KFnmgfRq8WOTidxIqcRTkvfs3xuxYwO2qD3EidzQeu6R5nFk +T8yfb56dTldzsUNK5FtM/ZkKCVH2jvwiJsWf/CcdZk2F8+VM8vUB6aY0/JPkdPx s1i8D7D7Sn3UZOvS3N4SdwoviA2nDSLse6PqobSnVNvCEmmhcPoUPyHM0z1erZ96 VCAzUpVQ8CkFSNXfodBgbV23BmIa9ULIAeHYqr3hwV7p9qXyhbeunhYwQ+C8OVs/ zqv4yl9HyT58hHpP/uwuTdG1eOYq3OpgXg0kQtY0LZhIB5CtqYQJvnqBrLkApvmu 8mCqffVr -----END CERTIFICATE-----Generated at Sat May 4 15:55:04 2024 by rpki-client on console-ams.rpki-client.org