$ rpki-client -vvf rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/151EB0A05F1111EBB1A05A17C4F9AE02.roa File: 151EB0A05F1111EBB1A05A17C4F9AE02.roa (raw, json) Hash identifier: xfBqxLA15fYESsuzsbLGD2onRg5CJTJtQesJbXGOPl8= Subject key identifier: 2F:D2:3B:FE:82:F2:FC:A6:40:41:3A:05:04:B4:30:3D:13:67:91:99 Certificate issuer: /CN=A9189099/serialNumber=6200B157ADBA2569FA7B88B7DA2FB5AE3FF6A3B6 Certificate serial: 058B Authority key identifier: 62:00:B1:57:AD:BA:25:69:FA:7B:88:B7:DA:2F:B5:AE:3F:F6:A3:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YgCxV626JWn6e4i32i-1rj_2o7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/151EB0A05F1111EBB1A05A17C4F9AE02.roa Signing time: Thu 31 Aug 2023 23:30:36 +0000 ROA not before: Thu 31 Aug 2023 23:30:36 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132209 IP address blocks: 116.93.14.0/24 maxlen: 24 116.93.94.0/24 maxlen: 24 116.93.98.0/24 maxlen: 24 116.93.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/YgCxV626JWn6e4i32i-1rj_2o7Y.crl rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/YgCxV626JWn6e4i32i-1rj_2o7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YgCxV626JWn6e4i32i-1rj_2o7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 22:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1419 (0x58b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189099/serialNumber=6200B157ADBA2569FA7B88B7DA2FB5AE3FF6A3B6 Validity Not Before: Aug 31 23:30:36 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f1229c-0935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:74:89:af:a7:1c:47:ef:9b:c1:97:ea:78:ad: 50:14:e2:ce:3c:49:4d:c7:f3:18:e5:2f:8c:5b:a8: 8a:d6:47:a8:8b:16:c8:7a:37:ce:f9:cf:2d:0b:51: 29:0f:4f:99:18:23:94:63:d9:d5:23:cf:0d:9b:8a: f5:c0:bb:5d:38:ec:b5:fd:da:91:9d:ce:0d:4f:c5: 5a:85:76:ba:26:40:fc:22:a4:ff:33:c4:16:ab:39: b5:11:1f:f2:4a:55:86:23:ae:08:c7:07:e9:70:7c: 61:9d:ca:7d:3d:59:da:2f:2a:25:9b:01:ed:f3:46: 63:75:7e:7c:5f:da:52:10:72:67:75:2e:3b:2c:00: 3e:63:d9:22:cc:90:8d:00:76:40:c3:bc:33:a4:44: 4f:a1:df:fb:ba:92:05:5a:fe:94:a5:4d:d3:b8:f1: 67:53:1c:d2:df:76:de:0e:a5:5d:ec:e8:2b:d4:79: ff:73:9d:07:fa:a0:ea:5f:f5:21:f6:21:16:3b:c0: f4:52:a3:3f:a2:5f:e5:e7:70:a4:1f:e2:4b:47:d5: 6c:e4:8a:fe:1f:5a:88:b1:c2:87:a4:68:bf:53:7b: 9e:e6:7a:70:76:28:24:4c:93:05:0e:99:b1:c0:6a: a7:09:d2:6f:4c:ca:22:a7:fd:7f:fc:66:46:e3:f7: 1e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:D2:3B:FE:82:F2:FC:A6:40:41:3A:05:04:B4:30:3D:13:67:91:99 X509v3 Authority Key Identifier: keyid:62:00:B1:57:AD:BA:25:69:FA:7B:88:B7:DA:2F:B5:AE:3F:F6:A3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/YgCxV626JWn6e4i32i-1rj_2o7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YgCxV626JWn6e4i32i-1rj_2o7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/151EB0A05F1111EBB1A05A17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.93.14.0/24 116.93.94.0/24 116.93.98.0/24 116.93.116.0/24 Signature Algorithm: sha256WithRSAEncryption d8:c5:f5:db:40:63:0f:e1:19:4e:f0:e3:e0:5f:0e:e4:e1:f5: 88:ac:26:e0:96:48:ba:a8:30:ac:91:73:cc:2a:67:56:91:17: c2:bf:75:49:96:8d:b5:e9:8b:90:73:20:14:62:ab:e4:fe:a6: 20:4c:c6:9a:4c:3e:aa:65:f1:5a:2f:a5:98:15:11:45:66:18: 00:94:c0:5e:fc:d8:80:a2:a1:95:bd:4e:3e:bc:a6:e4:ee:0c: dd:24:6f:62:53:d9:96:27:14:ef:0b:43:ff:ef:a8:d4:88:b3: 20:0c:67:d6:04:3c:80:b4:60:51:fd:65:b9:e7:76:b7:47:09: 40:1f:70:c9:28:32:85:ff:48:e2:1e:5e:93:e9:9e:02:c4:36: d1:c1:c7:db:23:17:9b:39:13:30:17:25:45:b5:d6:d2:03:7d: 18:10:44:b1:70:3f:60:90:60:8d:c9:75:91:5b:24:d7:b7:0d: 60:ef:f8:bf:b4:bf:b5:f8:29:20:c7:16:c0:2a:7d:02:5f:88: 6a:22:2a:c6:bf:5d:4a:4e:48:2a:6a:fd:b5:91:af:ca:31:1f: 1c:d9:24:57:34:79:c6:1c:e5:a9:8f:1d:ee:90:77:9b:3f:03: 1a:12:e9:b4:4f:1a:dd:27:82:5f:f9:67:ef:07:12:cc:11:d8: 76:a4:84:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkwOTkxMTAvBgNVBAUTKDYyMDBCMTU3QURCQTI1NjlGQTdCODhCN0RBMkZCNUFF M0ZGNkEzQjYwHhcNMjMwODMxMjMzMDM2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYxMjI5Yy0wOTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3SJr6ccR++bwZfqeK1QFOLOPElNx/MY5S+MW6iK1keoixbIejfO+c8tC1Ep D0+ZGCOUY9nVI88Nm4r1wLtdOOy1/dqRnc4NT8VahXa6JkD8IqT/M8QWqzm1ER/y SlWGI64IxwfpcHxhncp9PVnaLyolmwHt80ZjdX58X9pSEHJndS47LAA+Y9kizJCN AHZAw7wzpERPod/7upIFWv6UpU3TuPFnUxzS33beDqVd7Ogr1Hn/c50H+qDqX/Uh 9iEWO8D0UqM/ol/l53CkH+JLR9Vs5Ir+H1qIscKHpGi/U3ue5npwdigkTJMFDpmx wGqnCdJvTMoip/1//GZG4/cekwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFC/SO/6C 8vymQEE6BQS0MD0TZ5GZMB8GA1UdIwQYMBaAFGIAsVetuiVp+nuIt9ovta4/9qO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTA5OS84QUVGQjFEMjVG MEYxMUVCOEQ4QjI2MTZDNEY5QUUwMi9ZZ0N4VjYyNkpXbjZlNGkzMmktMXJqXzJv N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnQ3hWNjI2SlduNmU0aTMyaS0xcmpfMm83WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkwOTkvOEFFRkIxRDI1RjBGMTFFQjhEOEIyNjE2QzRGOUFFMDIvMTUxRUIwQTA1 RjExMTFFQkIxQTA1QTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAB0XQ4DBAB0XV4DBAB0XWIDBAB0XXQwDQYJKoZIhvcNAQEL BQADggEBANjF9dtAYw/hGU7w4+BfDuTh9YisJuCWSLqoMKyRc8wqZ1aRF8K/dUmW jbXpi5BzIBRiq+T+piBMxppMPqpl8VovpZgVEUVmGACUwF782ICioZW9Tj68puTu DN0kb2JT2ZYnFO8LQ//vqNSIsyAMZ9YEPIC0YFH9ZbnndrdHCUAfcMkoMoX/SOIe XpPpngLENtHBx9sjF5s5EzAXJUW11tIDfRgQRLFwP2CQYI3JdZFbJNe3DWDv+L+0 v7X4KSDHFsAqfQJfiGoiKsa/XUpOSCpq/bWRr8oxHxzZJFc0ecYc5amPHe6Qd5s/ AxoS6bRPGt0ngl/5Z+8HEswR2HakhI0= -----END CERTIFICATE-----Generated at Thu Jun 13 00:18:47 2024 by rpki-client on console-fra.rpki-client.org