$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa File: 8367C13A6CA411ED9DD6425CC4F9AE02.roa (raw, json) Hash identifier: G5aYGJ5hYMaTHp+CkhwntaH/uhVAh40+cD1liOdU1Lc= Subject key identifier: 8D:1D:00:7B:F1:BF:32:55:2F:E0:F9:B6:4A:F8:63:FC:1B:9F:74:D0 Certificate issuer: /CN=A91E6EFE/serialNumber=E871728C3A2C26D0E608004BA7D1E5A35830956C Certificate serial: 5B Authority key identifier: E8:71:72:8C:3A:2C:26:D0:E6:08:00:4B:A7:D1:E5:A3:58:30:95:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa Signing time: Tue 09 May 2023 05:07:51 +0000 ROA not before: Tue 09 May 2023 05:07:51 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 9509 IP address blocks: 203.22.222.0/24 maxlen: 24 221.121.64.0/19 maxlen: 19 2406:4c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.crl rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6EFE/serialNumber=E871728C3A2C26D0E608004BA7D1E5A35830956C Validity Not Before: May 9 05:07:51 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6459d527-0558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f4:68:22:bf:10:92:3f:66:70:00:ba:dc:a0: b6:1b:1d:c9:0a:3a:c4:cc:ba:85:d0:57:5a:33:59: cf:be:1e:cd:2f:47:6c:08:d4:2f:29:a5:0f:ba:27: 45:36:61:33:cb:ec:78:cf:dd:89:40:03:76:98:72: 2d:a1:ea:82:b7:0a:f9:99:19:1a:68:dc:c6:bc:40: f9:f0:c5:6b:a0:de:9e:47:f3:97:4c:12:30:86:fa: 53:76:25:c6:7a:7d:fa:a1:c9:fa:b8:dc:51:96:aa: d1:f9:9f:5b:bf:e2:04:95:70:17:98:4d:94:26:df: 76:c1:49:7f:b5:92:bf:28:f6:fa:bd:02:32:d6:31: 56:72:74:ca:4b:c2:5c:48:57:75:a8:65:d7:9c:c5: 89:12:4e:35:a9:a1:26:e7:03:0e:f1:64:2e:5c:c5: bc:da:6a:8b:52:e3:18:4f:23:f3:15:5d:ea:8f:63: 99:5d:37:4e:5f:8c:48:dd:6d:8a:37:58:75:ce:92: 6f:e0:76:ba:b2:50:ee:95:25:41:27:56:df:da:54: 8c:67:a2:71:2b:6e:f1:b9:55:8c:1a:7d:31:67:17: 10:d8:72:0c:ee:ed:3f:c8:61:35:4d:57:52:ce:46: 71:44:09:95:8d:89:2d:01:b3:bb:ce:8a:79:24:8b: 49:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:1D:00:7B:F1:BF:32:55:2F:E0:F9:B6:4A:F8:63:FC:1B:9F:74:D0 X509v3 Authority Key Identifier: keyid:E8:71:72:8C:3A:2C:26:D0:E6:08:00:4B:A7:D1:E5:A3:58:30:95:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.22.222.0/24 221.121.64.0/19 IPv6: 2406:4c00::/32 Signature Algorithm: sha256WithRSAEncryption 61:0e:d4:6f:5e:23:b1:7d:cd:83:28:e3:18:ed:9a:29:21:7e: c1:84:b9:d5:88:dd:07:bc:fa:53:a2:a9:4c:77:56:8b:1b:5f: 33:df:03:78:0b:5b:12:cb:f6:3a:78:f5:b2:6c:1e:66:9b:f0: 3b:93:6c:b8:a9:9a:01:1b:46:64:83:4b:04:a5:72:41:1b:b4: 08:0d:75:97:cd:08:8a:47:5d:b3:9c:01:a4:3d:c6:0e:71:fb: ce:11:2e:44:06:04:bc:18:64:0b:c9:52:26:72:81:30:f2:5e: 7d:75:06:b8:43:35:b8:7e:da:b0:e4:d1:12:9b:bf:46:b6:4b: d9:9e:09:cf:4e:8e:55:f0:3b:bd:d6:ff:5c:f1:a2:92:ea:1c: b0:1e:ed:6c:6f:4a:19:32:d9:f9:16:16:30:4d:f8:74:3e:e3: 75:66:ce:e4:15:eb:2c:b5:d6:44:e9:9a:ae:27:4b:b5:09:7c: 2c:3e:b7:03:63:68:a4:34:c6:d2:b5:12:9e:8e:f2:4d:c8:11: bc:32:6f:3a:5e:9d:23:9f:b5:9d:02:3c:9f:25:57:96:9b:19: c7:21:72:12:32:5b:b6:85:c1:95:69:a4:41:66:81:02:5a:b4: 00:b5:79:29:23:7c:2b:3a:f1:07:c9:8f:ce:e5:15:8a:14:08: 05:75:50:d7 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkVGRTExMC8GA1UEBRMoRTg3MTcyOEMzQTJDMjZEMEU2MDgwMDRCQTdEMUU1QTM1 ODMwOTU2QzAeFw0yMzA1MDkwNTA3NTFaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NTlkNTI3LTA1NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDX9GgivxCSP2ZwALrcoLYbHckKOsTMuoXQV1ozWc++Hs0vR2wI1C8ppQ+6J0U2 YTPL7HjP3YlAA3aYci2h6oK3CvmZGRpo3Ma8QPnwxWug3p5H85dMEjCG+lN2JcZ6 ffqhyfq43FGWqtH5n1u/4gSVcBeYTZQm33bBSX+1kr8o9vq9AjLWMVZydMpLwlxI V3WoZdecxYkSTjWpoSbnAw7xZC5cxbzaaotS4xhPI/MVXeqPY5ldN05fjEjdbYo3 WHXOkm/gdrqyUO6VJUEnVt/aVIxnonErbvG5VYwafTFnFxDYcgzu7T/IYTVNV1LO RnFECZWNiS0Bs7vOinkki0mHAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUjR0Ae/G/ MlUv4Pm2Svhj/BufdNAwHwYDVR0jBBgwFoAU6HFyjDosJtDmCABLp9Hlo1gwlWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2RUZFL0U0QzAwRDNDNkNB MTExRURCNDRFNzY1QkM0RjlBRTAyLzZIRnlqRG9zSnREbUNBQkxwOUhsbzFnd2xX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNkhGeWpEb3NKdERtQ0FCTHA5SGxvMWd3bFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkVGRS9FNEMwMEQzQzZDQTExMUVEQjQ0RTc2NUJDNEY5QUUwMi84MzY3QzEzQTZD QTQxMUVEOURENjQyNUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAMsW3gMEBd15QDANBAIAAjAHAwUAJAZMADANBgkqhkiG9w0B AQsFAAOCAQEAYQ7Ub14jsX3NgyjjGO2aKSF+wYS51YjdB7z6U6KpTHdWixtfM98D eAtbEsv2Onj1smweZpvwO5NsuKmaARtGZINLBKVyQRu0CA11l80Iikdds5wBpD3G DnH7zhEuRAYEvBhkC8lSJnKBMPJefXUGuEM1uH7asOTREpu/RrZL2Z4Jz06OVfA7 vdb/XPGikuocsB7tbG9KGTLZ+RYWME34dD7jdWbO5BXrLLXWROmaridLtQl8LD63 A2NopDTG0rUSno7yTcgRvDJvOl6dI5+1nQI8nyVXlpsZxyFyEjJbtoXBlWmkQWaB Alq0ALV5KSN8KzrxB8mPzuUVihQIBXVQ1w== -----END CERTIFICATE-----Generated at Fri May 17 06:18:11 2024 by rpki-client on console-fra.rpki-client.org