$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/F91F0C028A2E11EC98A2702CC4F9AE02.roa File: F91F0C028A2E11EC98A2702CC4F9AE02.roa (raw, json) Hash identifier: yVqJXkyhmawyWOzSapKy8QYIEjCOWt6iWvrokohhmLc= Subject key identifier: 9C:B6:D1:EE:EE:C5:53:F9:A3:37:68:9D:C7:DF:FC:A4:93:A8:81:17 Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0340 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/F91F0C028A2E11EC98A2702CC4F9AE02.roa Signing time: Fri 08 Dec 2023 17:45:02 +0000 ROA not before: Fri 08 Dec 2023 17:45:02 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135134 IP address blocks: 45.129.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 832 (0x340) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Dec 8 17:45:02 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6573561e-2b97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3e:7f:bf:a1:3a:42:70:3a:85:c3:dd:e7:02: 94:2e:9c:ca:30:e7:8e:78:71:b7:58:30:af:e1:49: 2c:87:c6:5d:65:56:ef:51:b6:04:fd:86:6f:ea:eb: 62:88:80:13:6f:d1:35:de:73:38:b5:cc:ae:51:cc: 66:fa:64:17:f8:0c:00:17:2f:25:c6:40:00:dc:cc: 3e:bf:16:bb:20:9d:0e:34:32:e0:18:51:02:d4:85: 31:8f:ac:7b:d6:d4:4d:fa:5a:fe:0c:e8:ef:a2:c5: 07:98:74:70:94:fc:c5:bf:03:80:71:33:4b:5a:20: 36:86:83:79:1b:f7:65:f6:54:2f:cb:5b:0b:ff:9a: cf:a0:b8:7a:4f:14:6d:3c:03:a2:da:d3:ca:14:ab: 56:2e:f7:9d:74:64:27:e8:38:a4:29:02:c4:0c:90: e1:9c:24:40:d9:74:1a:2c:77:eb:5f:24:05:ce:95: 8d:de:28:5b:6f:18:aa:20:6b:16:84:b2:1b:ca:e6: 34:35:76:06:2e:9c:1f:79:a8:8e:fb:05:c3:05:ab: 97:5e:ef:d4:33:04:94:d0:1a:5c:5b:79:9c:a4:04: 57:67:f0:97:df:6c:e5:84:87:0e:4a:76:1f:6f:7e: 23:07:d2:40:0e:04:a0:05:ab:e7:6d:c5:18:3e:d0: 98:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B6:D1:EE:EE:C5:53:F9:A3:37:68:9D:C7:DF:FC:A4:93:A8:81:17 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/F91F0C028A2E11EC98A2702CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.129.228.0/24 Signature Algorithm: sha256WithRSAEncryption 02:eb:42:8c:79:06:13:06:23:4d:eb:8f:87:f5:b6:6b:1c:99: 9b:91:55:be:64:2d:4c:ef:06:aa:c6:4f:6a:43:b5:11:cf:cd: 93:26:77:bb:85:07:f1:cc:23:a3:54:96:cf:a8:84:aa:53:79: e4:f7:af:62:6e:be:20:43:67:bc:63:07:21:8e:b0:a9:8d:a3: 6d:6d:b0:42:30:f4:a4:da:92:d3:ca:c9:4a:15:3f:73:a1:92: db:dc:81:6c:6e:bf:8f:ca:c1:ea:42:e2:2d:c4:81:ff:4d:20: ff:13:89:c4:93:8f:50:9b:f6:19:5f:61:9d:2b:5d:2c:7a:a1: 87:e9:3a:c2:a5:b9:bf:4a:83:6c:88:db:8d:29:23:13:37:ed: 0a:22:32:87:a0:76:a1:66:f4:10:58:c3:41:5b:d1:06:44:d9: 32:60:f0:93:be:49:56:34:17:84:16:13:e2:5a:2e:84:c1:89: 87:b3:7f:70:8d:98:86:59:e9:5d:fb:fa:fd:ba:9f:44:56:72: b2:ef:4e:b1:d3:80:24:9b:d8:c7:cb:76:23:fb:87:4a:51:a1: be:b3:16:c4:b6:ac:95:30:9a:65:55:73:f9:90:72:4c:2a:fa: 91:17:c0:fd:a1:2b:48:81:2f:fe:9a:d9:f6:c2:6e:f7:fd:fe: 31:26:e0:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjMxMjA4MTc0NTAyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczNTYxZS0yYjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoT5/v6E6QnA6hcPd5wKULpzKMOeOeHG3WDCv4Uksh8ZdZVbvUbYE/YZv6uti iIATb9E13nM4tcyuUcxm+mQX+AwAFy8lxkAA3Mw+vxa7IJ0ONDLgGFEC1IUxj6x7 1tRN+lr+DOjvosUHmHRwlPzFvwOAcTNLWiA2hoN5G/dl9lQvy1sL/5rPoLh6TxRt PAOi2tPKFKtWLveddGQn6DikKQLEDJDhnCRA2XQaLHfrXyQFzpWN3ihbbxiqIGsW hLIbyuY0NXYGLpwfeaiO+wXDBauXXu/UMwSU0BpcW3mcpARXZ/CX32zlhIcOSnYf b34jB9JADgSgBavnbcUYPtCY+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJy20e7u xVP5ozdoncff/KSTqIEXMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNUI0QzRFMzY1OTY5MTFFQzk0QTNFNzcwQzRGOUFFMDIvRjkxRjBDMDI4 QTJFMTFFQzk4QTI3MDJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtgeQwDQYJKoZIhvcNAQELBQADggEBAALrQox5BhMGI03r j4f1tmscmZuRVb5kLUzvBqrGT2pDtRHPzZMmd7uFB/HMI6NUls+ohKpTeeT3r2Ju viBDZ7xjByGOsKmNo21tsEIw9KTaktPKyUoVP3OhktvcgWxuv4/KwepC4i3Egf9N IP8TicSTj1Cb9hlfYZ0rXSx6oYfpOsKlub9Kg2yI240pIxM37QoiMoegdqFm9BBY w0Fb0QZE2TJg8JO+SVY0F4QWE+JaLoTBiYezf3CNmIZZ6V37+v26n0RWcrLvTrHT gCSb2MfLdiP7h0pRob6zFsS2rJUwmmVVc/mQckwq+pEXwP2hK0iBL/6a2fbCbvf9 /jEm4BI= -----END CERTIFICATE-----Generated at Fri May 31 19:47:48 2024 by rpki-client on console-fra.rpki-client.org