$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/8852DDDEBED411ECBA66025BC4F9AE02.roa File: 8852DDDEBED411ECBA66025BC4F9AE02.roa (raw, json) Hash identifier: p0J4iQWOSRUXxYwANu5RD+0254OeMFaT1rF1HZWFpI4= Subject key identifier: 4E:26:6C:8A:AE:24:65:FD:AE:B6:86:7A:FE:E0:D9:1F:33:D2:B5:8D Certificate issuer: /CN=A91F428C/serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Certificate serial: 3335 Authority key identifier: 63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/8852DDDEBED411ECBA66025BC4F9AE02.roa Signing time: Tue 08 Aug 2023 15:30:53 +0000 ROA not before: Tue 08 Aug 2023 15:30:53 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45172 IP address blocks: 143.96.0.0/16 maxlen: 16 143.96.0.0/24 maxlen: 24 143.96.1.0/24 maxlen: 24 143.96.2.0/23 maxlen: 24 143.96.4.0/23 maxlen: 24 143.96.6.0/24 maxlen: 24 143.96.7.0/24 maxlen: 24 143.96.8.0/22 maxlen: 22 143.96.12.0/24 maxlen: 24 143.96.13.0/24 maxlen: 24 143.96.14.0/24 maxlen: 24 143.96.15.0/24 maxlen: 24 143.96.16.0/20 maxlen: 20 143.96.32.0/19 maxlen: 19 143.96.64.0/18 maxlen: 18 143.96.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13109 (0x3335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C/serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Validity Not Before: Aug 8 15:30:53 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d25fad-7582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:00:3f:f4:66:4e:51:29:1a:6f:f2:dd:0a:20: 95:19:d4:21:6b:57:13:ed:3d:fb:a7:c8:ca:36:47: ce:d4:3b:f6:ea:e8:cd:fa:4b:0d:7a:89:74:22:73: 7f:77:fb:b3:7d:86:da:da:bb:e3:02:22:eb:6a:2b: f9:67:c8:3f:02:fe:ff:ac:57:20:05:7c:d6:20:8b: 8f:69:54:00:1c:0c:f0:05:49:d9:5a:73:46:fe:96: f5:1a:86:ab:6a:80:06:b3:c2:28:04:4e:3e:58:f2: ac:84:93:fd:a0:c2:e9:b8:20:1f:b0:68:d2:2d:cf: ed:69:77:4a:bc:e1:77:0e:49:bf:d9:e9:7c:83:e7: a8:ba:86:28:f5:85:3a:21:60:4c:29:c5:b2:51:38: 34:f1:45:fd:f9:7b:d0:fa:b7:37:7e:8c:3a:c4:25: b1:2d:44:5c:0b:1f:e8:dd:4d:db:aa:81:99:54:68: be:ba:c8:0d:db:a8:80:21:be:7d:0a:67:3f:2d:48: f5:ac:5e:79:48:7f:32:de:ee:69:84:c4:43:16:46: 22:0f:88:9e:1f:19:21:60:12:57:c1:3c:66:09:3e: a4:91:ab:e9:0e:88:4c:09:ea:92:11:cf:65:80:18: d6:4d:0f:07:50:7d:23:1a:49:6f:3a:ba:10:bd:dc: b2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:26:6C:8A:AE:24:65:FD:AE:B6:86:7A:FE:E0:D9:1F:33:D2:B5:8D X509v3 Authority Key Identifier: keyid:63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/8852DDDEBED411ECBA66025BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 18:96:b9:74:ce:b7:89:cb:82:ac:49:dc:5e:c2:02:80:10:08: 66:e7:4f:8c:99:75:21:73:73:e8:0f:62:2c:1a:87:e9:58:8f: 9b:ef:f1:9c:5a:ca:e8:4a:ba:cc:9a:97:c8:43:01:0a:67:e0: cc:88:d2:6c:cb:98:f1:03:fe:03:8c:43:92:d3:c4:2c:73:2a: c0:c9:13:64:ad:ca:02:4b:79:06:be:09:68:e8:d2:71:c0:52: 51:56:3e:12:91:a0:3f:c1:a8:eb:37:df:57:6a:26:34:dd:85: b2:e3:6a:a2:53:d9:35:18:46:00:d3:c4:3e:87:41:4d:99:06: 48:d2:68:2c:c1:5f:c1:37:e3:10:8e:60:42:ec:b0:b8:1b:62: 1b:a1:4d:2b:18:84:4b:1c:cf:a2:bc:19:c5:f8:83:f8:de:67: ff:8e:9f:b6:f5:2c:09:bb:20:f6:71:a4:73:96:7e:83:06:cd: 21:00:df:85:ff:99:b4:8b:e4:61:f2:81:21:20:6e:a1:7a:b7: db:37:76:85:50:c6:a0:f1:28:7d:bc:d6:c1:31:10:55:99:69: 00:b3:16:0d:3f:82:0c:8f:d5:f1:08:b8:84:5f:b6:f3:da:31: 95:a5:be:2d:39:b1:a9:b9:f8:47:b3:e6:54:64:da:27:ab:68: 2c:13:23:dd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICMzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKDYzMkM4REUwMjIwQjhDMTBCNDFGRjQ5QkZGOEI0MzJD RjhGRkQyNTQwHhcNMjMwODA4MTUzMDUzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQyNWZhZC03NTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwA/9GZOUSkab/LdCiCVGdQha1cT7T37p8jKNkfO1Dv26ujN+ksNeol0InN/ d/uzfYba2rvjAiLraiv5Z8g/Av7/rFcgBXzWIIuPaVQAHAzwBUnZWnNG/pb1Goar aoAGs8IoBE4+WPKshJP9oMLpuCAfsGjSLc/taXdKvOF3Dkm/2el8g+eouoYo9YU6 IWBMKcWyUTg08UX9+XvQ+rc3fow6xCWxLURcCx/o3U3bqoGZVGi+usgN26iAIb59 Cmc/LUj1rF55SH8y3u5phMRDFkYiD4ieHxkhYBJXwTxmCT6kkavpDohMCeqSEc9l gBjWTQ8HUH0jGklvOroQvdyyWwIDAQABo4IClDCCApAwHQYDVR0OBBYEFE4mbIqu JGX9rraGev7g2R8z0rWNMB8GA1UdIwQYMBaAFGMsjeAiC4wQtB/0m/+LQyz4/9JU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy80NDlCQTUwNjFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi9ZeXlONENJTGpCQzBIX1NiXzR0RExQal8w bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l5eU40Q0lMakJDMEhfU2JfNHRETFBqXzBsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyOEMvNDQ5QkE1MDYxREEwMTFFMkI2RDg3MDkxMDhCMDJDRDIvODg1MkREREVC RUQ0MTFFQ0JBNjYwMjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCPYDANBgkqhkiG9w0BAQsFAAOCAQEAGJa5dM63icuCrEnc XsICgBAIZudPjJl1IXNz6A9iLBqH6ViPm+/xnFrK6Eq6zJqXyEMBCmfgzIjSbMuY 8QP+A4xDktPELHMqwMkTZK3KAkt5Br4JaOjSccBSUVY+EpGgP8Go6zffV2omNN2F suNqolPZNRhGANPEPodBTZkGSNJoLMFfwTfjEI5gQuywuBtiG6FNKxiESxzPorwZ xfiD+N5n/46ftvUsCbsg9nGkc5Z+gwbNIQDfhf+ZtIvkYfKBISBuoXq32zd2hVDG oPEofbzWwTEQVZlpALMWDT+CDI/V8Qi4hF+289oxlaW+LTmxqbn4R7PmVGTaJ6to LBMj3Q== -----END CERTIFICATE-----Generated at Sat May 18 15:58:27 2024 by rpki-client on console-ams.rpki-client.org