$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/B969D2D0BA4A11EC90B53115C4F9AE02.roa File: B969D2D0BA4A11EC90B53115C4F9AE02.roa (raw, json) Hash identifier: ifwPWeDGkfRaTgzorLs2TjxP9qOhrc8+ETtMc3U/oLY= Subject key identifier: D7:7D:2F:84:AA:D0:EB:1C:CF:49:32:23:9C:F5:FC:AC:AD:55:24:6F Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 12A2 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/B969D2D0BA4A11EC90B53115C4F9AE02.roa Signing time: Fri 27 Oct 2023 14:34:24 +0000 ROA not before: Fri 27 Oct 2023 14:34:24 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 58664 IP address blocks: 130.248.113.0/24 maxlen: 24 130.248.115.0/24 maxlen: 24 130.248.126.0/23 maxlen: 23 130.248.126.0/24 maxlen: 24 130.248.127.0/24 maxlen: 24 192.150.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4770 (0x12a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Oct 27 14:34:24 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=653bca70-c1d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7a:84:5a:63:01:17:85:19:24:40:29:a9:7f: d8:0b:f3:59:18:ef:bc:6d:5c:20:39:02:b3:6d:c7: 91:85:f4:18:dd:1f:9d:77:66:c0:05:5b:b7:96:c9: ee:11:8e:12:10:6d:52:d6:4e:8e:eb:e2:e7:5c:42: df:13:61:6f:4c:d4:e9:6b:79:63:b9:c7:cd:d7:33: df:6c:0d:91:12:6c:ff:58:0f:9d:17:4c:58:c6:f5: 39:de:dd:fd:42:28:51:58:c5:9c:9e:56:c7:3d:65: 7e:b2:b1:3d:00:aa:b7:28:7c:2c:dc:3b:56:1c:b2: ca:b9:a0:e4:82:c8:97:b4:de:57:b3:54:cd:27:23: 70:ec:2d:f8:c6:cd:d1:01:b2:b4:36:d6:13:e5:eb: af:a1:52:ab:42:61:be:92:95:56:d9:e7:30:e1:1a: c0:f6:e3:28:6d:43:91:8a:81:13:e9:3f:e3:a3:84: f9:da:79:a2:8e:ee:06:b1:51:c0:ff:a3:eb:0d:5e: 83:6c:fb:e9:0e:43:c8:08:df:d7:4d:1b:af:a6:89: 21:26:e5:ee:e1:30:e4:66:42:1b:67:0a:53:a4:f5: c4:fa:89:94:7a:18:d1:57:8b:c2:b4:7a:07:f7:e0: 81:39:2c:ab:ab:1b:8d:68:5b:bc:cc:68:86:8c:89: ce:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:7D:2F:84:AA:D0:EB:1C:CF:49:32:23:9C:F5:FC:AC:AD:55:24:6F X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/B969D2D0BA4A11EC90B53115C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.248.113.0/24 130.248.115.0/24 130.248.126.0/23 192.150.16.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:22:c1:d2:0a:51:4e:9d:b6:8f:99:48:83:ce:ab:ae:4a:be: 12:6f:2b:f1:b9:83:c2:d8:a5:92:96:d7:26:43:e6:68:32:98: f0:90:27:81:78:0d:11:4e:06:e1:a6:8f:0d:53:92:d3:68:26: 5f:27:3e:ff:02:bd:3b:d0:6d:a3:76:8d:e0:4c:73:f9:2a:85: df:92:9b:f5:f5:08:5b:10:87:60:99:dc:52:fd:fb:6d:d0:e7: 42:4f:38:e6:ec:29:69:a0:47:0a:7f:41:85:59:9f:73:2a:1d: e9:66:85:08:63:bd:c7:7e:1f:a2:c9:b5:0e:bd:dc:07:96:f0: bb:ad:5a:67:b4:cf:49:f4:9c:40:70:80:6e:49:63:4d:28:cc: 50:c5:43:c9:ce:62:b4:e2:f5:c2:ec:30:e2:aa:26:09:c2:e3: f6:b5:9a:c1:64:24:9b:95:fc:44:65:c4:da:2d:56:a1:a7:23: d7:4a:98:5e:69:32:77:6a:36:e6:c8:6f:f2:17:58:0b:a8:89: 80:14:ac:b0:7e:47:7c:e0:c3:83:ff:f1:44:91:96:48:d4:df: 0e:fe:0b:d7:c0:f6:43:b8:29:f5:b7:33:24:76:ce:c4:83:01: fa:5d:02:a6:8b:1b:9e:2b:4a:2f:97:10:2b:ac:be:0a:4e:85: 29:fa:2d:ee -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICEqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjMxMDI3MTQzNDI0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNiY2E3MC1jMWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlnqEWmMBF4UZJEApqX/YC/NZGO+8bVwgOQKzbceRhfQY3R+dd2bABVu3lsnu EY4SEG1S1k6O6+LnXELfE2FvTNTpa3ljucfN1zPfbA2REmz/WA+dF0xYxvU53t39 QihRWMWcnlbHPWV+srE9AKq3KHws3DtWHLLKuaDkgsiXtN5Xs1TNJyNw7C34xs3R AbK0NtYT5euvoVKrQmG+kpVW2ecw4RrA9uMobUORioET6T/jo4T52nmiju4GsVHA /6PrDV6DbPvpDkPICN/XTRuvpokhJuXu4TDkZkIbZwpTpPXE+omUehjRV4vCtHoH 9+CBOSyrqxuNaFu8zGiGjInOkQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFNd9L4Sq 0Oscz0kyI5z1/KytVSRvMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5QkQvMDc0OTU4OTA5MTgyMTFFODkxQzRFQzEwQzRGOUFFMDIvQjk2OUQyRDBC QTRBMTFFQzkwQjUzMTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBACC+HEDBACC+HMDBAGC+H4DBADAlhAwDQYJKoZIhvcNAQEL BQADggEBAA0iwdIKUU6dto+ZSIPOq65KvhJvK/G5g8LYpZKW1yZD5mgymPCQJ4F4 DRFOBuGmjw1TktNoJl8nPv8CvTvQbaN2jeBMc/kqhd+Sm/X1CFsQh2CZ3FL9+23Q 50JPOObsKWmgRwp/QYVZn3MqHelmhQhjvcd+H6LJtQ693AeW8LutWme0z0n0nEBw gG5JY00ozFDFQ8nOYrTi9cLsMOKqJgnC4/a1msFkJJuV/ERlxNotVqGnI9dKmF5p MndqNubIb/IXWAuoiYAUrLB+R3zgw4P/8USRlkjU3w7+C9fA9kO4KfW3MyR2zsSD AfpdAqaLG54rSi+XECusvgpOhSn6Le4= -----END CERTIFICATE-----Generated at Thu May 16 17:51:53 2024 by rpki-client on console-ams.rpki-client.org