$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/64EF221EC29D11EBBAF29939C4F9AE02.roa File: 64EF221EC29D11EBBAF29939C4F9AE02.roa (raw, json) Hash identifier: 1baMKjJbh5wM2FKHYUidKcK5chshZiM45wf6m9WlCA0= Subject key identifier: 23:6A:15:A0:A3:94:22:B8:C6:BB:54:32:4B:75:87:17:C5:08:1C:D2 Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 09B0 Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/64EF221EC29D11EBBAF29939C4F9AE02.roa Signing time: Thu 02 Nov 2023 20:48:03 +0000 ROA not before: Thu 02 Nov 2023 20:48:03 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132389 IP address blocks: 223.119.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2480 (0x9b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Nov 2 20:48:03 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65440b03-728f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:49:15:cb:ce:70:70:d3:8e:da:0f:05:63:b9: 94:58:39:a2:db:8f:e8:48:97:9e:43:9e:5d:d6:08: 9f:c5:e0:22:78:bb:56:a5:21:b3:d8:e7:64:c9:b1: 91:fe:77:6a:98:09:fb:56:bc:57:87:71:53:6d:ec: 0c:38:ec:72:4d:5b:b5:a6:3e:f9:ea:c6:d4:8d:c2: 3f:b4:3d:24:38:cc:43:bb:ee:65:ba:2c:45:e9:c6: 2d:17:62:6f:d9:f5:01:fa:a1:54:86:89:36:1b:ff: 41:2d:30:f7:9a:e7:46:2b:dc:34:22:80:3b:48:17: fa:8f:9b:fe:f8:0d:01:10:a7:d3:4a:53:a7:17:40: ec:27:c5:f7:f5:be:00:d2:4a:5c:87:18:d5:af:40: d0:73:c7:a3:a6:ed:b5:82:2f:99:e6:5f:f1:0d:b8: 3e:79:cb:46:d6:dc:d4:9a:63:fc:79:3e:c1:06:aa: 04:98:69:16:a4:62:ac:be:66:3a:39:37:d9:2e:3a: 28:9b:db:51:b6:b0:e8:6f:e8:d6:a0:66:19:32:ef: 99:b4:f2:ab:94:df:ed:69:63:9a:60:8d:5f:3b:77: 88:dd:1a:92:bf:18:67:ce:bf:dd:33:52:d7:fe:02: 67:e7:dc:bb:86:b9:e5:07:11:d6:23:49:8f:d8:cf: 63:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:6A:15:A0:A3:94:22:B8:C6:BB:54:32:4B:75:87:17:C5:08:1C:D2 X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/64EF221EC29D11EBBAF29939C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.119.254.0/24 Signature Algorithm: sha256WithRSAEncryption 38:71:e8:73:d6:c9:cc:6b:18:22:2a:f0:40:41:d2:75:09:3d: 2a:2b:5f:a0:2b:6c:87:9f:d8:5f:f2:91:94:63:4e:f1:d6:40: fc:bb:bb:5f:b8:1d:26:99:f8:98:cc:3c:dd:99:74:de:10:dd: c2:15:b7:79:e6:93:b3:1d:8c:a8:d6:99:05:54:08:44:75:02: 22:88:81:77:92:0a:14:55:b3:71:89:ff:94:1d:37:b7:b4:7e: 8c:32:f9:28:6e:e7:35:81:4a:8b:2c:65:a2:6f:ed:da:37:21: 22:6c:01:06:0e:99:1f:c4:5a:9d:d9:d9:db:bf:79:c6:11:d6: 0a:fa:2b:46:06:1e:b2:4b:11:58:90:0f:e0:fd:9c:44:e5:f5: f9:06:3b:f3:92:59:9c:2a:b4:f9:b7:2f:56:01:36:fa:90:b9: e7:81:1e:63:4a:3c:bd:25:8b:51:e6:46:81:f6:6f:9a:04:6b: ad:13:d7:ad:b3:aa:98:8c:85:0d:5f:38:72:f5:c1:a5:95:59: fa:88:23:e2:1e:bb:db:8a:91:f7:a3:5d:4a:93:1b:14:58:66: 15:3b:ba:ec:2e:74:51:43:6a:2c:b8:4c:fd:ff:ec:ab:ea:07: 4a:42:13:9d:28:4b:6b:1f:4d:4c:ca:a8:bf:57:0f:7b:fc:10: 7e:16:e2:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjMxMTAyMjA0ODAzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MGIwMy03MjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUkVy85wcNOO2g8FY7mUWDmi24/oSJeeQ55d1gifxeAieLtWpSGz2OdkybGR /ndqmAn7VrxXh3FTbewMOOxyTVu1pj756sbUjcI/tD0kOMxDu+5luixF6cYtF2Jv 2fUB+qFUhok2G/9BLTD3mudGK9w0IoA7SBf6j5v++A0BEKfTSlOnF0DsJ8X39b4A 0kpchxjVr0DQc8ejpu21gi+Z5l/xDbg+ectG1tzUmmP8eT7BBqoEmGkWpGKsvmY6 OTfZLjoom9tRtrDob+jWoGYZMu+ZtPKrlN/taWOaYI1fO3eI3RqSvxhnzr/dM1LX /gJn59y7hrnlBxHWI0mP2M9jJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCNqFaCj lCK4xrtUMkt1hxfFCBzSMB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvNjRFRjIyMUVD MjlEMTFFQkJBRjI5OTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADfd/4wDQYJKoZIhvcNAQELBQADggEBADhx6HPWycxrGCIq 8EBB0nUJPSorX6ArbIef2F/ykZRjTvHWQPy7u1+4HSaZ+JjMPN2ZdN4Q3cIVt3nm k7MdjKjWmQVUCER1AiKIgXeSChRVs3GJ/5QdN7e0fowy+Shu5zWBSossZaJv7do3 ISJsAQYOmR/EWp3Z2du/ecYR1gr6K0YGHrJLEViQD+D9nETl9fkGO/OSWZwqtPm3 L1YBNvqQueeBHmNKPL0li1HmRoH2b5oEa60T162zqpiMhQ1fOHL1waWVWfqII+Ie u9uKkfejXUqTGxRYZhU7uuwudFFDaiy4TP3/7KvqB0pCE50oS2sfTUzKqL9XD3v8 EH4W4pk= -----END CERTIFICATE-----Generated at Fri May 31 22:13:12 2024 by rpki-client on console-fra.rpki-client.org