$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/10F77754D28311EDB1655152C4F9AE02.roa File: 10F77754D28311EDB1655152C4F9AE02.roa (raw, json) Hash identifier: wIUEQO5NPMHqkpPnW+KqLQoOshirDHVVKlc8ye6IXNw= Subject key identifier: E9:82:8F:43:0C:94:C6:3D:F0:66:B0:B7:9B:95:80:DE:F7:1B:BB:16 Certificate issuer: /CN=A91FDD4D/serialNumber=A977932193312DE8F59384F9097F43DD6BC317E1 Certificate serial: BC Authority key identifier: A9:77:93:21:93:31:2D:E8:F5:93:84:F9:09:7F:43:DD:6B:C3:17:E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qXeTIZMxLej1k4T5CX9D3WvDF-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/10F77754D28311EDB1655152C4F9AE02.roa Signing time: Tue 12 Mar 2024 01:03:41 +0000 ROA not before: Tue 12 Mar 2024 01:03:41 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137549 IP address blocks: 67.213.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/qXeTIZMxLej1k4T5CX9D3WvDF-E.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/qXeTIZMxLej1k4T5CX9D3WvDF-E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qXeTIZMxLej1k4T5CX9D3WvDF-E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D/serialNumber=A977932193312DE8F59384F9097F43DD6BC317E1 Validity Not Before: Mar 12 01:03:41 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65efa9ed-841f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0d:71:11:3e:be:91:b1:79:57:73:a2:f7:94: b6:1c:45:cd:73:b2:42:5b:75:45:3f:4f:8d:c2:6a: bb:2d:38:74:9c:2f:63:91:f6:29:e7:bc:9d:7f:a0: fc:d6:5a:a9:8c:91:5c:b0:ca:52:5e:f2:c0:0f:eb: ed:e4:5f:b5:dd:42:d8:ad:bb:1e:33:e0:8a:17:eb: d9:97:9c:28:5d:3a:05:a5:b8:e9:11:8a:48:69:d4: 00:93:92:11:30:18:96:61:77:98:68:fb:34:78:a3: 47:4b:45:f5:b6:30:e1:39:95:ef:d8:4b:0e:e5:ad: 12:1d:f2:da:b7:6f:10:50:72:c1:0e:b7:1b:ee:10: e0:9f:b5:5d:ef:fa:72:4f:c0:eb:ba:1e:fd:8f:25: 29:71:dc:48:b5:b8:72:9a:cf:d3:97:85:cb:0c:b5: 91:12:ac:e6:8b:46:e8:9e:22:3c:fb:69:e8:9f:b2: c4:37:6a:10:0c:6a:6e:ea:1f:e6:b6:32:58:6d:80: ea:01:5c:2d:48:0b:61:4b:19:21:7e:34:d1:9d:62: 88:83:1a:15:2a:00:72:a2:e4:f6:13:d1:b4:07:3a: 6f:25:e5:dd:44:31:72:b7:27:80:75:15:03:b7:d1: 08:29:43:bb:ad:7d:42:14:c7:16:d6:59:9d:82:49: 90:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:82:8F:43:0C:94:C6:3D:F0:66:B0:B7:9B:95:80:DE:F7:1B:BB:16 X509v3 Authority Key Identifier: keyid:A9:77:93:21:93:31:2D:E8:F5:93:84:F9:09:7F:43:DD:6B:C3:17:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/qXeTIZMxLej1k4T5CX9D3WvDF-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qXeTIZMxLej1k4T5CX9D3WvDF-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/10F77754D28311EDB1655152C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 67.213.140.0/22 Signature Algorithm: sha256WithRSAEncryption 83:80:5c:a8:57:ee:d9:cb:91:68:84:d7:cf:a6:07:58:82:a0: e9:60:5e:99:e1:89:6c:82:84:07:a4:c0:ef:29:57:04:ed:89: ef:f1:26:79:19:23:a9:f4:5d:1b:92:c6:4d:95:0c:c8:3b:96: 91:39:3f:07:94:c3:3a:40:22:c0:0e:4d:92:77:93:d4:a5:cd: c4:3e:9c:89:f3:07:0c:d1:b5:29:4f:71:cd:27:ff:4a:d9:c0: d3:08:67:76:87:84:cd:fa:0c:cc:77:69:67:7a:ed:55:9b:30: d4:fe:a6:1f:92:5c:c3:31:21:dc:0c:8c:8a:d0:e3:79:e0:36: 6e:1d:86:84:38:f8:11:75:08:f1:16:16:9a:8c:e5:7d:62:d7: 18:46:99:15:25:a3:e6:aa:d7:bb:3d:5d:75:09:1b:ec:bd:bf: 8d:74:bb:5d:20:e8:9c:0f:fe:ec:da:4e:41:51:f0:28:36:5a: 5b:02:a9:22:c2:e9:31:f8:93:d4:58:78:18:bc:1f:e4:75:01: bf:85:2f:88:69:60:94:40:68:0b:25:b1:cd:21:89:52:af:ee: 02:7c:e5:30:b1:4d:26:48:11:31:c3:08:69:7f:fe:b1:7b:42: c9:c4:ba:dc:47:d5:97:5e:26:e6:8d:1e:f1:68:1c:6c:f1:51: 43:5d:b3:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKEE5Nzc5MzIxOTMzMTJERThGNTkzODRGOTA5N0Y0M0RE NkJDMzE3RTEwHhcNMjQwMzEyMDEwMzQxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWVmYTllZC04NDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQ1xET6+kbF5V3Oi95S2HEXNc7JCW3VFP0+Nwmq7LTh0nC9jkfYp57ydf6D8 1lqpjJFcsMpSXvLAD+vt5F+13ULYrbseM+CKF+vZl5woXToFpbjpEYpIadQAk5IR MBiWYXeYaPs0eKNHS0X1tjDhOZXv2EsO5a0SHfLat28QUHLBDrcb7hDgn7Vd7/py T8Druh79jyUpcdxItbhyms/Tl4XLDLWREqzmi0boniI8+2non7LEN2oQDGpu6h/m tjJYbYDqAVwtSAthSxkhfjTRnWKIgxoVKgByouT2E9G0BzpvJeXdRDFytyeAdRUD t9EIKUO7rX1CFMcW1lmdgkmQlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOmCj0MM lMY98Gawt5uVgN73G7sWMB8GA1UdIwQYMBaAFKl3kyGTMS3o9ZOE+Ql/Q91rwxfh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC82RTk0QUFGRUQy N0QxMUVEOEU5QTI1ODBDNEY5QUUwMi9xWGVUSVpNeExlajFrNFQ1Q1g5RDNXdkRG LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FYZVRJWk14TGVqMWs0VDVDWDlEM1d2REYtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRENEQvNkU5NEFBRkVEMjdEMTFFRDhFOUEyNTgwQzRGOUFFMDIvMTBGNzc3NTRE MjgzMTFFREIxNjU1MTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJD1YwwDQYJKoZIhvcNAQELBQADggEBAIOAXKhX7tnLkWiE 18+mB1iCoOlgXpnhiWyChAekwO8pVwTtie/xJnkZI6n0XRuSxk2VDMg7lpE5PweU wzpAIsAOTZJ3k9SlzcQ+nInzBwzRtSlPcc0n/0rZwNMIZ3aHhM36DMx3aWd67VWb MNT+ph+SXMMxIdwMjIrQ43ngNm4dhoQ4+BF1CPEWFpqM5X1i1xhGmRUlo+aq17s9 XXUJG+y9v410u10g6JwP/uzaTkFR8Cg2WlsCqSLC6TH4k9RYeBi8H+R1Ab+FL4hp YJRAaAslsc0hiVKv7gJ85TCxTSZIETHDCGl//rF7QsnEutxH1ZdeJuaNHvFoHGzx UUNds9E= -----END CERTIFICATE-----Generated at Sat May 18 16:57:55 2024 by rpki-client on console-fra.rpki-client.org