$ rpki-client -vvf rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/08FDDCFC407111EFB0944C40C4F9AE02.roa File: 08FDDCFC407111EFB0944C40C4F9AE02.roa (raw, json) Hash identifier: 6Hq0/CdaWwMxF+XrSoXKbCITfc8y24LYxJ+JIDWCQls= Subject key identifier: F1:9C:D2:87:29:2B:13:2E:E8:EB:F4:38:EA:0F:0E:E4:84:6F:44:0B Certificate issuer: /CN=A91F495C/serialNumber=D6C80C5D38AA3F10D1EB0E139B9E494EBF6C6421 Certificate serial: 04 Authority key identifier: D6:C8:0C:5D:38:AA:3F:10:D1:EB:0E:13:9B:9E:49:4E:BF:6C:64:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sgMXTiqPxDR6w4Tm55JTr9sZCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/08FDDCFC407111EFB0944C40C4F9AE02.roa Signing time: Fri 12 Jul 2024 17:06:10 +0000 ROA not before: Fri 12 Jul 2024 17:06:10 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 56067 IP address blocks: 116.89.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/1sgMXTiqPxDR6w4Tm55JTr9sZCE.crl rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/1sgMXTiqPxDR6w4Tm55JTr9sZCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sgMXTiqPxDR6w4Tm55JTr9sZCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F495C/serialNumber=D6C80C5D38AA3F10D1EB0E139B9E494EBF6C6421 Validity Not Before: Jul 12 17:06:10 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66916282-353d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:38:cf:7c:f3:d8:40:ba:c4:b7:5d:06:df:de: 2f:d0:8a:11:72:13:3e:a7:64:cf:f8:e6:b9:51:3c: 4e:aa:ac:0e:5b:d5:a3:e2:fc:41:40:aa:71:1e:13: 5f:af:cc:9a:bf:dd:e0:0d:1a:5b:7e:e0:f1:1f:3e: b3:87:1b:bc:e7:8a:ea:23:0e:55:37:3c:68:d3:8d: 83:12:ec:bb:57:d6:7c:0e:44:50:d7:68:d7:82:d7: a0:ca:05:67:7e:1f:f3:89:73:96:26:ef:98:79:3a: 94:a6:cf:fa:9a:58:80:18:1a:1c:d9:56:53:6d:eb: 9c:1e:7c:7a:09:bb:6e:24:fc:ee:2b:1b:36:49:13: f3:42:29:04:01:08:17:fc:68:f4:8a:2e:c1:6f:aa: 1c:10:8c:81:7b:aa:b1:fb:45:d9:20:b7:1b:bc:a8: e1:27:7f:e3:d7:52:fb:4e:1a:02:d6:10:27:82:8f: 06:4f:6b:e9:9e:78:43:5d:bc:c2:f8:27:a2:2c:05: 55:67:0e:26:d8:46:00:d5:f7:4f:0b:00:a4:b9:d6: 19:9b:13:9d:09:75:5f:71:a1:1c:72:9c:9d:dd:e3: 94:43:5f:e5:92:61:37:41:41:79:ab:cc:d7:4d:86: 76:e9:0e:61:0e:06:fa:b8:c8:00:d5:ce:ab:0d:b7: 8a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:9C:D2:87:29:2B:13:2E:E8:EB:F4:38:EA:0F:0E:E4:84:6F:44:0B X509v3 Authority Key Identifier: keyid:D6:C8:0C:5D:38:AA:3F:10:D1:EB:0E:13:9B:9E:49:4E:BF:6C:64:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/1sgMXTiqPxDR6w4Tm55JTr9sZCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sgMXTiqPxDR6w4Tm55JTr9sZCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/08FDDCFC407111EFB0944C40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.89.252.0/22 Signature Algorithm: sha256WithRSAEncryption 80:6c:62:48:ed:38:10:4b:2b:74:a4:d0:3e:8e:46:a0:cb:0c: 5e:d0:7a:c1:4e:32:11:d5:d4:ce:a4:68:56:b8:42:5d:b5:24: 63:4a:f3:ab:a0:1c:49:0c:c9:f2:ce:2a:71:d2:52:d6:2d:06: fa:f8:24:b6:50:c9:68:f7:7d:41:09:ff:48:77:2d:5a:1a:a6: f5:ae:3d:a4:57:08:86:cf:17:2b:71:f6:07:07:1a:e6:2a:14: 17:8b:18:06:42:9c:3a:f5:c0:ed:fa:b9:04:62:42:ce:ea:a5: d9:85:64:7a:43:ac:23:63:12:9e:a8:8b:94:46:43:0e:89:cc: db:52:f1:c1:ed:39:24:b0:bf:a0:72:7d:04:4d:74:b1:30:f1: 83:59:cd:d6:c1:58:10:21:f5:8b:6c:c2:6d:b7:96:5a:6b:25: e7:d4:a5:61:52:38:b7:13:51:ba:e2:16:58:7f:73:64:76:59: 44:d9:bf:a2:9a:93:06:f1:7d:97:59:b5:e0:2d:c1:19:da:7e: b5:9f:0d:6b:86:49:ac:e4:8b:fa:5b:3c:99:a8:85:b9:45:19: cd:57:3a:5b:cc:36:c4:c4:05:4a:56:e5:e5:13:c9:59:a1:2f: db:1a:9b:1a:58:e3:b6:83:93:d7:2d:2e:62:55:bc:d1:dd:cd: 6e:c6:f9:0c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDk1QzExMC8GA1UEBRMoRDZDODBDNUQzOEFBM0YxMEQxRUIwRTEzOUI5RTQ5NEVC RjZDNjQyMTAeFw0yNDA3MTIxNzA2MTBaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTE2MjgyLTM1M2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDROM9889hAusS3XQbf3i/QihFyEz6nZM/45rlRPE6qrA5b1aPi/EFAqnEeE1+v zJq/3eANGlt+4PEfPrOHG7zniuojDlU3PGjTjYMS7LtX1nwORFDXaNeC16DKBWd+ H/OJc5Ym75h5OpSmz/qaWIAYGhzZVlNt65wefHoJu24k/O4rGzZJE/NCKQQBCBf8 aPSKLsFvqhwQjIF7qrH7Rdkgtxu8qOEnf+PXUvtOGgLWECeCjwZPa+meeENdvML4 J6IsBVVnDibYRgDV908LAKS51hmbE50JdV9xoRxynJ3d45RDX+WSYTdBQXmrzNdN hnbpDmEOBvq4yADVzqsNt4oDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8ZzShykr Ey7o6/Q46g8O5IRvRAswHwYDVR0jBBgwFoAU1sgMXTiqPxDR6w4Tm55JTr9sZCEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0OTVDLzVCQzYzRUY0NDA2 NTExRUY4NTZDOUUyOUM0RjlBRTAyLzFzZ01YVGlxUHhEUjZ3NFRtNTVKVHI5c1pD RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXNnTVhUaXFQeERSNnc0VG01NUpUcjlzWkNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDk1Qy81QkM2M0VGNDQwNjUxMUVGODU2QzlFMjlDNEY5QUUwMi8wOEZERENGQzQw NzExMUVGQjA5NDRDNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAnRZ/DANBgkqhkiG9w0BAQsFAAOCAQEAgGxiSO04EEsrdKTQ Po5GoMsMXtB6wU4yEdXUzqRoVrhCXbUkY0rzq6AcSQzJ8s4qcdJS1i0G+vgktlDJ aPd9QQn/SHctWhqm9a49pFcIhs8XK3H2Bwca5ioUF4sYBkKcOvXA7fq5BGJCzuql 2YVkekOsI2MSnqiLlEZDDonM21Lxwe05JLC/oHJ9BE10sTDxg1nN1sFYECH1i2zC bbeWWmsl59SlYVI4txNRuuIWWH9zZHZZRNm/opqTBvF9l1m14C3BGdp+tZ8Na4ZJ rOSL+ls8maiFuUUZzVc6W8w2xMQFSlbl5RPJWaEv2xqbGljjtoOT1y0uYlW80d3N bsb5DA== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:30 2024 by rpki-client on console-ams.rpki-client.org