$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa File: D8EA255C2FBC11EB8E017F5CC4F9AE02.roa (raw, json) Hash identifier: QQbK1ymZl9+2n4X4VHRwrL4hpj7Q/MR4kGWFkjStDqg= Subject key identifier: 67:05:F2:52:EC:56:22:7F:4D:83:75:3C:48:34:31:97:08:16:6A:91 Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 05BB Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa Signing time: Wed 03 May 2023 01:01:39 +0000 ROA not before: Wed 03 May 2023 01:01:39 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 14618 IP address blocks: 202.128.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 20:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1467 (0x5bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Validity Not Before: May 3 01:01:39 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6451b273-1230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:13:f5:1c:7e:a3:c8:22:a3:2e:06:0b:cd:e1: 63:15:e2:8e:8a:31:24:00:dc:16:53:38:42:4b:d2: ad:00:5c:ff:2b:58:7e:ec:0d:d1:6b:c7:ac:66:3b: 77:db:25:8b:9f:4f:83:fc:cb:2c:a6:fb:c2:fe:60: 4c:76:67:44:a6:09:1a:06:6e:2b:94:96:02:9a:e5: 74:a4:99:1d:6e:ad:20:94:8a:30:0e:9b:03:ec:58: d6:53:5a:cc:10:c0:17:87:0a:be:a7:14:5f:1c:af: 0f:87:d7:b6:bc:8e:c2:bf:9d:18:d4:90:85:c7:56: 2f:24:bd:e0:f5:00:08:f7:4c:42:f6:4d:c7:f9:85: 47:a5:5a:4c:98:23:e6:97:5d:42:90:f0:1c:6d:3a: 55:76:65:d1:17:bd:37:bc:9e:4f:18:40:46:e0:66: 74:27:89:09:8a:ad:9e:d3:3a:ae:7c:3a:18:12:4e: 61:26:d9:50:f8:53:0e:74:18:aa:1e:ff:9a:23:1c: 48:8a:df:56:e5:98:10:80:63:b2:7a:96:4e:d1:e4: 34:00:83:4e:ee:8c:0d:ec:42:60:64:2d:4b:b4:db: 52:90:28:da:6c:22:07:0e:95:1d:39:dc:e1:b1:62: d4:9c:d9:4c:84:ae:1d:c3:8d:e5:51:30:55:b0:cc: 57:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:05:F2:52:EC:56:22:7F:4D:83:75:3C:48:34:31:97:08:16:6A:91 X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.128.99.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:58:7f:c4:71:02:e3:b2:8e:42:20:fc:da:19:be:e4:d9:b5: bf:95:88:ea:7d:6c:46:4c:ae:95:21:6b:4a:0a:d8:e0:5d:af: 7d:c3:cb:2a:d7:5b:74:32:50:fd:28:f2:18:5a:ce:06:e9:5b: 37:c2:76:ba:95:c4:34:6b:39:e2:2e:9e:92:a8:d2:3a:21:05: 6f:56:b4:e4:e1:15:0e:02:f5:be:ec:ab:20:aa:c6:9c:0f:de: 55:ef:56:57:fa:90:bc:88:81:9b:f9:ef:66:f4:55:06:5d:af: 6d:13:02:c4:b4:07:21:66:f8:09:67:2e:d1:f4:b4:5b:93:6e: bc:59:a5:99:57:8e:29:ff:24:07:03:8f:68:4d:74:1f:05:82: e4:fa:23:5f:e4:7a:c3:30:de:2b:76:78:5b:3a:81:0c:28:17: fd:5a:78:e5:47:01:60:7f:c6:ec:ef:dd:1d:32:9d:63:2a:e0: 7f:e0:e1:26:b5:5a:9e:6f:c4:07:c8:37:e9:6d:3c:fd:e0:95: a5:11:99:78:e3:84:b2:50:17:29:fb:d0:d6:fa:b9:81:11:88: be:94:39:e2:42:96:a3:90:92:ae:d3:1f:3d:ec:db:b6:da:69: 28:51:c0:6e:51:b5:fb:26:ad:bc:c3:1b:e3:2e:2c:cb:60:76: 90:b9:42:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjMwNTAzMDEwMTM5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxYjI3My0xMjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRP1HH6jyCKjLgYLzeFjFeKOijEkANwWUzhCS9KtAFz/K1h+7A3Ra8esZjt3 2yWLn0+D/MsspvvC/mBMdmdEpgkaBm4rlJYCmuV0pJkdbq0glIowDpsD7FjWU1rM EMAXhwq+pxRfHK8Ph9e2vI7Cv50Y1JCFx1YvJL3g9QAI90xC9k3H+YVHpVpMmCPm l11CkPAcbTpVdmXRF703vJ5PGEBG4GZ0J4kJiq2e0zqufDoYEk5hJtlQ+FMOdBiq Hv+aIxxIit9W5ZgQgGOyepZO0eQ0AINO7owN7EJgZC1LtNtSkCjabCIHDpUdOdzh sWLUnNlMhK4dw43lUTBVsMxXGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGcF8lLs ViJ/TYN1PEg0MZcIFmqRMB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUxQzQvRkM2NzJCNzIyRkFGMTFFQjk0MTU1RjMzQzRGOUFFMDIvRDhFQTI1NUMy RkJDMTFFQjhFMDE3RjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKgGMwDQYJKoZIhvcNAQELBQADggEBAB1Yf8RxAuOyjkIg /NoZvuTZtb+ViOp9bEZMrpUha0oK2OBdr33DyyrXW3QyUP0o8hhazgbpWzfCdrqV xDRrOeIunpKo0johBW9WtOThFQ4C9b7sqyCqxpwP3lXvVlf6kLyIgZv572b0VQZd r20TAsS0ByFm+AlnLtH0tFuTbrxZpZlXjin/JAcDj2hNdB8FguT6I1/kesMw3it2 eFs6gQwoF/1aeOVHAWB/xuzv3R0ynWMq4H/g4Sa1Wp5vxAfIN+ltPP3glaURmXjj hLJQFyn70Nb6uYERiL6UOeJClqOQkq7THz3s27baaShRwG5RtfsmrbzDG+MuLMtg dpC5Qv4= -----END CERTIFICATE-----Generated at Mon Apr 15 00:17:53 2024 by rpki-client on console-ams.rpki-client.org