$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/8D243F849A6D11EA8674310DC4F9AE02.roa File: 8D243F849A6D11EA8674310DC4F9AE02.roa (raw, json) Hash identifier: l2tSQDCSf2XRgRWJUI18n4GUTvN3dXNn8MNTFuFtKko= Subject key identifier: 1D:1C:33:B2:F5:CE:4A:34:59:F2:0F:FE:2C:D0:93:A2:AD:AF:22:AA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0B75 Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/8D243F849A6D11EA8674310DC4F9AE02.roa Signing time: Sat 02 Dec 2023 19:06:44 +0000 ROA not before: Sat 02 Dec 2023 19:06:44 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45474 IP address blocks: 167.179.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2933 (0xb75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: Dec 2 19:06:44 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b8044-6489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ff:6a:13:3e:6e:59:c9:fb:18:08:4f:b7:e5: 29:ee:7f:40:9f:4f:97:67:26:54:4b:2d:b8:80:c9: ab:b3:a1:a5:ae:5c:6c:84:90:cd:46:de:b3:bd:36: 82:9f:6b:43:a8:9d:71:ce:1e:14:de:4f:be:be:b8: c8:18:cc:d4:a4:39:65:1b:d4:85:60:de:40:ce:49: ce:41:fd:99:06:1d:a5:83:6a:ab:f5:64:25:9d:a6: aa:8b:a1:fb:da:a1:37:8b:72:e6:7f:25:43:59:12: c5:b3:9a:94:8d:a1:c1:27:8f:d0:4b:4c:be:de:0f: 88:5c:90:6a:0d:3d:70:8f:c8:58:ad:ce:bf:f3:0f: f4:64:3b:a1:45:df:a9:55:c5:36:e0:29:af:bf:6a: a9:56:88:80:9e:8b:d2:51:34:5d:35:41:47:25:5f: fd:67:7b:77:23:db:b4:11:a9:53:1c:14:6e:af:eb: db:e0:b9:a3:47:23:1a:eb:a4:cc:c4:73:8f:b7:33: 97:5c:01:fb:fe:87:79:a1:b3:fb:c0:d6:29:58:83: 88:0c:4a:9c:eb:53:6d:7a:d2:59:74:3e:36:21:00: e4:c3:5c:6d:95:b1:94:55:04:ec:76:78:b6:05:19: fa:84:54:59:93:eb:de:c3:c3:9c:71:0c:eb:3a:77: 47:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1C:33:B2:F5:CE:4A:34:59:F2:0F:FE:2C:D0:93:A2:AD:AF:22:AA X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/8D243F849A6D11EA8674310DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.200.0/21 Signature Algorithm: sha256WithRSAEncryption 45:02:32:dd:a3:d2:7b:5d:5b:50:05:87:99:65:a2:65:9f:2f: 55:c6:c1:03:9b:9b:8d:fe:b8:94:af:73:65:06:68:c6:7c:e5: b5:10:67:eb:52:64:ca:12:7b:88:46:bd:ee:3d:9c:5b:69:58: 7c:c2:e0:9f:65:7d:7b:3d:12:11:86:7e:0c:0c:b4:c8:eb:e8: 0f:2e:e6:9b:8d:9d:dd:69:ea:5b:ae:65:1b:19:92:f0:7d:e6: 58:c3:d9:2f:0d:85:97:29:64:15:1a:71:a4:39:3b:0f:79:fa: f1:13:10:a0:b1:b0:06:93:f7:a8:25:8c:55:ff:2c:a0:0a:0a: c5:83:ac:64:04:48:83:d2:65:f1:0f:fa:f2:99:53:04:d4:2a: c3:4c:bf:0b:68:84:14:28:50:c9:b9:01:c0:6d:51:13:4e:d2: 0a:a7:3a:c9:f5:4b:0c:bd:50:a9:18:89:eb:db:1c:7a:a3:74: 78:08:b4:14:74:8a:02:ad:81:dc:1b:99:ee:03:8b:ca:37:b9: 47:20:50:87:6a:aa:f4:f0:ad:25:4e:09:58:8e:24:4b:57:a0: b7:e1:f9:d1:22:01:af:32:06:4a:a3:89:9b:aa:57:56:25:60: 2f:aa:f9:2b:9e:90:85:60:7f:85:8b:76:e9:15:08:29:1e:a7: 63:8f:6e:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjMxMjAyMTkwNjQ0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiODA0NC02NDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/9qEz5uWcn7GAhPt+Up7n9An0+XZyZUSy24gMmrs6GlrlxshJDNRt6zvTaC n2tDqJ1xzh4U3k++vrjIGMzUpDllG9SFYN5AzknOQf2ZBh2lg2qr9WQlnaaqi6H7 2qE3i3LmfyVDWRLFs5qUjaHBJ4/QS0y+3g+IXJBqDT1wj8hYrc6/8w/0ZDuhRd+p VcU24Cmvv2qpVoiAnovSUTRdNUFHJV/9Z3t3I9u0EalTHBRur+vb4LmjRyMa66TM xHOPtzOXXAH7/od5obP7wNYpWIOIDEqc61NtetJZdD42IQDkw1xtlbGUVQTsdni2 BRn6hFRZk+vew8OccQzrOndHKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB0cM7L1 zko0WfIP/izQk6KtryKqMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkxRUIvNDk3RjJCRDhGNzA1MTFFOUFEQkE0NTFGQzRGOUFFMDIvOEQyNDNGODQ5 QTZEMTFFQTg2NzQzMTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOns8gwDQYJKoZIhvcNAQELBQADggEBAEUCMt2j0ntdW1AF h5llomWfL1XGwQObm43+uJSvc2UGaMZ85bUQZ+tSZMoSe4hGve49nFtpWHzC4J9l fXs9EhGGfgwMtMjr6A8u5puNnd1p6luuZRsZkvB95ljD2S8NhZcpZBUacaQ5Ow95 +vETEKCxsAaT96gljFX/LKAKCsWDrGQESIPSZfEP+vKZUwTUKsNMvwtohBQoUMm5 AcBtURNO0gqnOsn1Swy9UKkYievbHHqjdHgItBR0igKtgdwbme4Di8o3uUcgUIdq qvTwrSVOCViOJEtXoLfh+dEiAa8yBkqjiZuqV1YlYC+q+SuekIVgf4WLdukVCCke p2OPbgc= -----END CERTIFICATE-----Generated at Thu May 2 20:50:39 2024 by rpki-client on console-fra.rpki-client.org