$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/BAEB4B28FBDF11EA8B73595BC4F9AE02.roa File: BAEB4B28FBDF11EA8B73595BC4F9AE02.roa (raw, json) Hash identifier: 8fs3YaYWIcjJ2lhMZaBhEZMi33VUKYw0lZXOUjkrASM= Subject key identifier: 75:CA:50:19:A2:BC:5A:D9:CB:D5:96:07:3E:0E:0A:94:A2:5D:17:D9 Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 0714 Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/BAEB4B28FBDF11EA8B73595BC4F9AE02.roa Signing time: Mon 16 Oct 2023 22:10:01 +0000 ROA not before: Mon 16 Oct 2023 22:10:00 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 9387 IP address blocks: 116.0.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1812 (0x714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: Oct 16 22:10:00 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652db4b8-260e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dc:38:99:d0:74:91:6c:08:a8:c4:62:94:55: 7a:fb:d1:11:c9:8e:28:48:4a:52:69:f1:10:b8:54: ce:95:5a:af:ea:88:d0:41:e9:82:f1:7a:f7:35:b7: cf:b4:80:39:51:c5:1b:4b:27:2a:58:29:b7:05:09: 50:e1:0e:f2:28:54:08:9d:61:f5:11:ad:61:94:82: 15:3b:c8:9d:f2:75:3f:3d:30:f9:14:cc:8f:f1:37: cc:5f:90:bc:80:73:da:b1:e2:96:40:b0:9b:ea:d8: ad:f3:d3:49:82:44:0a:aa:1f:36:96:b5:82:ea:8e: 6a:50:c3:b6:4a:b7:c8:d8:24:8f:33:47:b4:36:52: da:85:e1:cc:61:fc:06:8e:3a:a1:2c:26:f9:83:e0: df:51:f3:33:e5:b4:40:7b:5d:a1:5f:9c:1d:ad:02: cb:41:d2:7a:c4:cd:35:c0:4c:d8:10:64:fe:60:27: 43:9e:a5:1a:2a:88:62:8b:3c:40:9d:e8:18:69:f0: 0a:54:ef:1b:b6:68:b0:a0:e2:16:eb:88:32:be:c8: 83:d6:e9:9c:fa:89:1f:4f:de:89:c5:81:47:fa:94: 93:b9:25:92:fd:2b:c2:5f:ff:84:a0:a7:5e:85:8d: c4:90:49:25:ee:7d:3e:5a:cf:93:92:7d:89:d5:5e: 52:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:CA:50:19:A2:BC:5A:D9:CB:D5:96:07:3E:0E:0A:94:A2:5D:17:D9 X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/BAEB4B28FBDF11EA8B73595BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.0.60.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:4e:9d:51:80:03:7f:db:51:eb:56:05:0e:60:84:74:45:be: a2:da:50:86:d4:dd:1b:69:1e:39:39:2a:32:5a:e4:2a:57:5f: c3:a9:8a:47:95:00:97:4c:9b:61:10:15:c1:bc:4f:15:c7:2b: f3:42:a6:3a:f2:21:37:68:6e:78:7f:c3:cf:c7:e4:77:2a:68: f3:4d:5c:17:ea:95:66:4a:bf:5b:42:75:e8:be:df:8c:35:84: d2:ea:fd:8d:6d:31:7d:33:d1:6f:b7:43:7c:e6:20:9f:51:03: 89:3e:73:13:68:6c:59:c7:cf:e5:47:68:e9:df:a7:a8:e6:df: 53:5b:50:f4:7b:47:11:cb:84:65:52:53:dc:ee:0d:cf:b9:e9: d8:70:68:e2:67:38:50:1e:ca:fd:83:ee:90:70:e5:f5:5c:5a: d2:3c:50:ad:ad:2c:05:e5:2f:14:0b:3f:42:1b:7f:22:ca:e8: d8:3a:f5:e7:e9:62:3c:32:15:33:2c:65:08:c5:e7:99:e2:c9: 24:27:e2:d8:ce:3e:a8:a7:ae:59:08:94:0c:cf:67:a0:15:27: 96:8f:e6:a9:e4:5d:34:15:d4:31:b9:74:cb:42:f9:47:de:ae: a1:7c:19:14:87:c1:d0:0b:54:18:72:5d:4b:ac:49:38:c3:bd: 44:12:aa:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjMxMDE2MjIxMDAwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkYjRiOC0yNjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNw4mdB0kWwIqMRilFV6+9ERyY4oSEpSafEQuFTOlVqv6ojQQemC8Xr3NbfP tIA5UcUbSycqWCm3BQlQ4Q7yKFQInWH1Ea1hlIIVO8id8nU/PTD5FMyP8TfMX5C8 gHPaseKWQLCb6tit89NJgkQKqh82lrWC6o5qUMO2SrfI2CSPM0e0NlLaheHMYfwG jjqhLCb5g+DfUfMz5bRAe12hX5wdrQLLQdJ6xM01wEzYEGT+YCdDnqUaKohiizxA negYafAKVO8btmiwoOIW64gyvsiD1umc+okfT96JxYFH+pSTuSWS/SvCX/+EoKde hY3EkEkl7n0+Ws+Tkn2J1V5SFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHXKUBmi vFrZy9WWBz4OCpSiXRfZMB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk2RDkvODBERkRFQzBFNUREMTFFQUIyNDY4RDY1QzRGOUFFMDIvQkFFQjRCMjhG QkRGMTFFQThCNzM1OTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0ADwwDQYJKoZIhvcNAQELBQADggEBAB1OnVGAA3/bUetW BQ5ghHRFvqLaUIbU3RtpHjk5KjJa5CpXX8OpikeVAJdMm2EQFcG8TxXHK/NCpjry ITdobnh/w8/H5HcqaPNNXBfqlWZKv1tCdei+34w1hNLq/Y1tMX0z0W+3Q3zmIJ9R A4k+cxNobFnHz+VHaOnfp6jm31NbUPR7RxHLhGVSU9zuDc+56dhwaOJnOFAeyv2D 7pBw5fVcWtI8UK2tLAXlLxQLP0IbfyLK6Ng69efpYjwyFTMsZQjF55niySQn4tjO PqinrlkIlAzPZ6AVJ5aP5qnkXTQV1DG5dMtC+UferqF8GRSHwdALVBhyXUusSTjD vUQSqtw= -----END CERTIFICATE-----Generated at Thu May 16 22:58:19 2024 by rpki-client on console-fra.rpki-client.org