$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/6549AD3EAC1011ED8592693FC4F9AE02.roa File: 6549AD3EAC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: U8ZBte2uNWwIrX6bSKbypyVGCqOFeRohsjTofPcbVp0= Subject key identifier: EF:0B:61:0D:C3:B2:D5:42:85:E7:2E:B3:D5:BA:74:F9:F1:A6:E5:E4 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 80 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/6549AD3EAC1011ED8592693FC4F9AE02.roa Signing time: Thu 31 Aug 2023 04:54:12 +0000 ROA not before: Thu 31 Aug 2023 04:54:12 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 24324 IP address blocks: 202.160.48.0/21 maxlen: 21 202.160.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 05:48:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Aug 31 04:54:12 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f01cf3-669d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:24:60:8d:00:6a:c6:2e:4e:e9:0e:47:9d:96: 52:01:fd:12:b2:15:79:f7:8c:98:3e:d0:80:52:4b: 9e:e2:4e:1e:f3:06:b3:5d:10:c7:6a:8d:63:64:75: 6b:2b:45:b6:41:69:65:37:bb:3f:86:b3:8f:19:d4: 05:f1:65:e7:3b:1e:4f:e2:95:d6:6d:5d:43:75:ec: 78:a0:b9:79:d6:27:e2:f8:28:08:fe:90:ee:81:9f: ac:a1:66:cc:55:0d:2a:21:32:fe:73:cf:60:10:ba: 80:24:06:ac:1c:26:b6:dd:c2:f5:9e:4d:9e:9c:dc: 5f:a7:ab:1d:4d:ba:32:67:98:cd:98:f6:1a:8f:15: 18:ed:a0:79:5d:bc:d9:4f:46:b4:c7:b8:0e:b5:b2: 6b:b4:e2:6a:49:de:5f:d1:f1:c3:05:1b:a0:d4:66: 0d:4f:4f:2f:1c:b5:67:65:c0:a3:33:c6:08:41:ff: 78:e8:cf:23:c3:10:f6:48:86:23:58:18:b6:a2:b8: 05:53:ba:6f:73:7c:eb:d7:4b:ea:e4:1b:c8:c7:94: 07:c5:e2:9d:14:94:1d:54:49:ba:c3:93:3f:94:f7: cf:b7:b7:ea:07:73:af:d9:28:43:67:6f:25:f9:6d: e5:a8:88:ac:5d:d4:f7:8f:95:9c:f0:e4:f3:9c:8b: 3d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0B:61:0D:C3:B2:D5:42:85:E7:2E:B3:D5:BA:74:F9:F1:A6:E5:E4 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/6549AD3EAC1011ED8592693FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.48.0/20 Signature Algorithm: sha256WithRSAEncryption a9:82:4b:d4:95:de:a7:c7:67:53:42:0e:ae:21:80:f4:b9:2a: 14:36:fe:a3:2f:d1:84:c4:de:d6:ff:11:a8:50:a4:a2:d9:6c: 4f:25:2a:17:34:e5:aa:96:92:91:dc:9d:77:ab:a8:aa:5f:aa: 98:50:0f:88:e7:55:5e:80:9a:dc:cb:a1:f8:bf:6b:21:6b:36: 0e:0e:4c:00:9a:70:cc:35:83:33:37:66:de:25:a3:6b:e6:21: e7:5d:b1:8c:95:f0:6f:3c:2a:e1:67:de:a6:20:5a:53:11:9a: c2:d8:a2:61:ea:2c:72:82:2e:2d:67:21:66:2d:7d:85:df:02: 37:c4:f3:66:ed:b4:91:2a:2b:54:14:2e:11:e5:84:13:51:0d: ae:41:85:5d:9b:c5:78:a5:b7:50:6b:8f:75:65:f0:54:e9:9c: 7a:bc:d6:aa:d8:5b:dc:33:1c:d5:22:91:3b:5d:b6:76:de:cd: 25:99:2e:46:bb:58:be:0b:98:37:ea:69:36:95:4d:69:2b:ee: f3:74:3e:f5:42:23:ff:e1:e4:f5:f7:5e:44:f0:fd:ad:b9:1a: 4c:1c:da:3b:b8:e6:19:ec:a4:37:cd:db:f3:e2:7d:f1:08:1c: 81:3f:27:97:08:d9:47:9a:26:1b:f7:14:62:f8:81:27:af:ff: 4a:86:9f:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjMwODMxMDQ1NDEyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwMWNmMy02NjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSRgjQBqxi5O6Q5HnZZSAf0SshV594yYPtCAUkue4k4e8wazXRDHao1jZHVr K0W2QWllN7s/hrOPGdQF8WXnOx5P4pXWbV1Ddex4oLl51ifi+CgI/pDugZ+soWbM VQ0qITL+c89gELqAJAasHCa23cL1nk2enNxfp6sdTboyZ5jNmPYajxUY7aB5XbzZ T0a0x7gOtbJrtOJqSd5f0fHDBRug1GYNT08vHLVnZcCjM8YIQf946M8jwxD2SIYj WBi2orgFU7pvc3zr10vq5BvIx5QHxeKdFJQdVEm6w5M/lPfPt7fqB3Ov2ShDZ28l +W3lqIisXdT3j5Wc8OTznIs9NQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO8LYQ3D stVChecus9W6dPnxpuXkMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFOUIvNjlFQjQyQzA5NjBFMTFFRDlBNENFQTY1QzRGOUFFMDIvNjU0OUFEM0VB QzEwMTFFRDg1OTI2OTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKoDAwDQYJKoZIhvcNAQELBQADggEBAKmCS9SV3qfHZ1NC Dq4hgPS5KhQ2/qMv0YTE3tb/EahQpKLZbE8lKhc05aqWkpHcnXerqKpfqphQD4jn VV6AmtzLofi/ayFrNg4OTACacMw1gzM3Zt4lo2vmIeddsYyV8G88KuFn3qYgWlMR msLYomHqLHKCLi1nIWYtfYXfAjfE82bttJEqK1QULhHlhBNRDa5BhV2bxXilt1Br j3Vl8FTpnHq81qrYW9wzHNUikTtdtnbezSWZLka7WL4LmDfqaTaVTWkr7vN0PvVC I//h5PX3XkTw/a25Gkwc2ju45hnspDfN2/PiffEIHIE/J5cI2UeaJhv3FGL4gSev /0qGn1w= -----END CERTIFICATE-----Generated at Mon May 27 08:08:55 2024 by rpki-client on console-ams.rpki-client.org