$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/DAC02F0C5E8E11EAB819EF35C4F9AE02.roa File: DAC02F0C5E8E11EAB819EF35C4F9AE02.roa (raw, json) Hash identifier: qJtDKLs8ma+xa1LjnPDiVYXGL1osrR2+nxFYkfdR7OY= Subject key identifier: B6:96:61:3E:98:40:53:1E:A4:A4:21:40:91:53:F8:FA:35:BE:E2:C5 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1915 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/DAC02F0C5E8E11EAB819EF35C4F9AE02.roa Signing time: Thu 06 Apr 2023 14:50:33 +0000 ROA not before: Thu 06 Apr 2023 14:50:33 +0000 ROA not after: Wed 29 May 2024 00:00:00 +0000 asID: 3949 IP address blocks: 116.51.19.0/24 maxlen: 24 116.51.20.0/24 maxlen: 24 116.51.21.0/24 maxlen: 24 116.51.23.192/27 maxlen: 27 116.51.30.192/27 maxlen: 27 116.51.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jul 2023 14:35:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6421 (0x1915) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Apr 6 14:50:33 2023 GMT Not After : May 29 00:00:00 2024 GMT Subject: CN=642edc39-0b6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:df:b8:30:7b:60:8f:51:31:62:20:af:bc: 40:50:57:84:6e:d0:5c:78:92:93:67:e7:48:6b:1d: 3f:01:a4:41:44:56:3f:28:43:83:bd:cc:99:75:35: 20:08:fe:d8:f7:e0:80:c2:a4:04:0c:cb:45:86:84: 1f:92:2e:11:59:cb:d9:69:54:a7:79:2a:7e:89:ce: ae:b2:59:8d:7a:b6:a6:74:2d:f7:e1:96:f0:29:03: 69:95:31:56:68:b3:f6:88:1f:64:66:39:cf:46:01: 9f:3f:77:07:40:33:ae:bf:a2:05:38:e1:66:45:0a: c1:c1:ff:54:ee:61:d0:ed:f4:85:55:1f:23:7e:51: a6:e6:a0:7b:c2:c2:90:81:fa:43:26:f3:bd:1b:e7: eb:9d:7c:cf:0e:a8:61:c4:2f:4c:91:84:f0:7a:e1: 6b:f5:dc:5c:0b:ba:23:7a:25:91:5a:27:d5:69:a7: ee:63:c0:51:47:07:1b:75:5e:84:27:b7:24:00:a6: 10:0e:ab:0c:f6:2e:95:cc:0e:77:cb:21:39:d4:c4: 24:7b:a6:0b:ea:90:09:28:ec:a8:5d:6e:76:a3:b1: 47:c4:f8:ea:6b:a3:50:33:27:40:9c:76:74:b5:74: 80:99:2e:aa:e9:22:67:49:cc:37:d3:89:18:2f:8c: 1e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:96:61:3E:98:40:53:1E:A4:A4:21:40:91:53:F8:FA:35:BE:E2:C5 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/DAC02F0C5E8E11EAB819EF35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.51.19.0-116.51.21.255 116.51.23.192/27 116.51.30.192/27 116.51.40.0/24 Signature Algorithm: sha256WithRSAEncryption 31:d9:7f:e0:f9:5c:af:4b:60:e0:4c:1e:38:8f:3a:c8:11:82: ac:4e:41:ee:bd:b6:79:b5:c9:4a:29:c4:2b:3e:ac:51:bf:06: ec:57:b8:01:91:59:3f:d0:8e:f6:2b:98:a0:a1:93:a7:d1:ad: 6e:d3:de:82:eb:bc:1b:c4:8f:2c:46:f6:22:b3:2e:0b:3e:99: 12:c4:ce:e2:db:30:c5:ad:cd:b8:63:80:7a:35:9a:e0:8c:28: 4a:0e:bb:9d:3e:cd:5b:99:1c:e2:23:a5:73:7c:15:e2:cc:6f: 08:b4:22:8b:d2:8a:3b:fd:05:3c:81:72:1a:f3:7e:e2:44:1a: 39:45:2a:4c:50:23:2f:70:44:48:ab:3a:6b:ee:5e:1d:05:f5: a8:54:c8:d1:d8:98:9d:e5:49:72:df:05:be:12:ff:bd:4e:c5: 71:26:f1:8a:7e:23:9c:2a:25:22:5c:e2:8d:9e:16:89:76:01: 78:e7:f3:7f:ad:13:7c:79:5e:e6:7a:01:be:86:30:32:54:01: 29:b3:6b:b7:c0:63:6d:49:c0:ba:42:09:bf:4e:db:34:81:59: 21:87:5d:54:d5:50:3e:14:89:36:c1:69:3d:69:51:55:20:92: a3:c5:86:56:50:91:f0:0b:e8:bd:8d:ca:ce:15:c4:a2:24:a0: 7f:34:4e:ae -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICGRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjMwNDA2MTQ1MDMzWhcNMjQwNTI5MDAwMDAwWjAYMRYwFAYD VQQDEw02NDJlZGMzOS0wYjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOzfuDB7YI9RMWIgr7xAUFeEbtBceJKTZ+dIax0/AaRBRFY/KEODvcyZdTUg CP7Y9+CAwqQEDMtFhoQfki4RWcvZaVSneSp+ic6uslmNeramdC334ZbwKQNplTFW aLP2iB9kZjnPRgGfP3cHQDOuv6IFOOFmRQrBwf9U7mHQ7fSFVR8jflGm5qB7wsKQ gfpDJvO9G+frnXzPDqhhxC9MkYTweuFr9dxcC7ojeiWRWifVaafuY8BRRwcbdV6E J7ckAKYQDqsM9i6VzA53yyE51MQke6YL6pAJKOyoXW52o7FHxPjqa6NQMydAnHZ0 tXSAmS6q6SJnScw304kYL4weOwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFLaWYT6Y QFMepKQhQJFT+Po1vuLFMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZENUQvOURDQjY4RTAxRDg4MTFFMjk0Qjk1NUUxMDhCMDJDRDIvREFDMDJGMEM1 RThFMTFFQUI4MTlFRjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAHQzEwMEAXQzFAMFBXQzF8ADBQV0Mx7AAwQAdDMoMA0G CSqGSIb3DQEBCwUAA4IBAQAx2X/g+VyvS2DgTB44jzrIEYKsTkHuvbZ5tclKKcQr PqxRvwbsV7gBkVk/0I72K5igoZOn0a1u096C67wbxI8sRvYisy4LPpkSxM7i2zDF rc24Y4B6NZrgjChKDrudPs1bmRziI6VzfBXizG8ItCKL0oo7/QU8gXIa837iRBo5 RSpMUCMvcERIqzpr7l4dBfWoVMjR2Jid5Uly3wW+Ev+9TsVxJvGKfiOcKiUiXOKN nhaJdgF45/N/rRN8eV7megG+hjAyVAEps2u3wGNtScC6Qgm/Tts0gVkhh11U1VA+ FIk2wWk9aVFVIJKjxYZWUJHwC+i9jcrOFcSiJKB/NE6u -----END CERTIFICATE-----Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-fra.rpki-client.org