$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/23B68638C5DD11EABC58FD24C4F9AE02.roa File: 23B68638C5DD11EABC58FD24C4F9AE02.roa (raw, json) Hash identifier: n1ulTZnoiZo9WIdYfZ6JIPOA4ruKUDzb0tMA5wN61vU= Subject key identifier: 1F:D1:9C:EC:57:69:F2:35:BF:F7:E5:CE:2E:BF:2E:28:7E:E8:75:A5 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 0F14 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/23B68638C5DD11EABC58FD24C4F9AE02.roa Signing time: Wed 28 Feb 2024 14:50:33 +0000 ROA not before: Wed 28 Feb 2024 14:50:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24560 IP address blocks: 136.185.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3860 (0xf14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Feb 28 14:50:33 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65df4838-3431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:53:02:f7:d9:28:5f:9f:eb:51:40:77:0a:1c: cd:31:73:d9:a5:6a:05:92:bf:6c:d8:41:df:a7:c0: 3e:c0:50:8a:a7:e4:ab:23:cb:b4:1c:77:72:5a:9e: 69:87:b0:f7:36:d4:9d:c2:f4:86:7e:72:bf:30:8e: 4a:3e:ae:93:9f:9f:27:05:54:28:a3:a4:50:b0:3a: d4:d0:34:08:db:21:6b:2b:90:dd:d8:e3:a5:ad:b8: 76:ac:0a:9d:62:b5:89:f4:3e:cc:ef:5f:05:4b:bb: e5:66:6e:00:d4:32:af:ee:79:a0:0f:21:23:0c:a0: 80:1a:45:de:60:4f:5e:27:f0:49:f0:f8:39:5f:14: af:c2:b6:7e:f0:96:92:6c:3d:81:56:80:58:50:a8: ec:52:a6:12:ca:f2:75:2e:24:c9:16:c3:56:f9:d3: 73:1f:0d:40:e0:12:26:fe:5c:9d:35:3a:73:ce:36: 96:41:ef:4a:0d:77:25:65:a0:90:bb:e9:1e:40:dc: 35:fa:cf:84:42:e0:27:55:c1:85:36:9a:d3:fd:8f: 2d:99:1d:df:68:e2:55:35:a0:9b:54:ce:01:1b:88: 76:c3:27:c0:7f:93:16:0f:10:16:29:35:a2:7d:3b: 3e:33:80:19:4b:a4:56:ff:c8:09:4d:c3:3d:0f:f6: 02:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:D1:9C:EC:57:69:F2:35:BF:F7:E5:CE:2E:BF:2E:28:7E:E8:75:A5 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/23B68638C5DD11EABC58FD24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.185.0.0/16 Signature Algorithm: sha256WithRSAEncryption 10:b1:d3:20:88:c1:e5:95:4e:f7:50:1d:68:d0:a2:42:dd:ec: 10:26:5f:1e:b9:bd:b5:2b:b4:8e:4d:73:10:ac:6e:82:6d:86: db:da:6a:2a:e3:b1:c7:db:40:59:22:6b:70:54:23:81:c0:0c: 18:f8:d7:b0:83:df:73:d0:c4:15:2c:a8:df:6e:ae:66:78:aa: e8:e4:0c:56:c6:1f:f7:fb:a5:99:0f:36:9e:f8:65:2f:a5:bc: 1c:c7:52:d1:5e:10:fe:99:f7:5b:41:28:4c:a6:a6:9c:88:46: 40:17:c8:fa:3b:7a:fa:65:ce:35:48:ec:22:b3:54:ec:20:97: ba:97:6f:51:2c:3c:cf:ff:45:7b:4a:64:3a:46:21:96:f6:1e: bb:1b:02:36:42:4f:22:24:5c:f4:03:98:3c:e2:65:4e:e5:42: 29:a1:7c:88:fd:b2:5b:99:7c:e5:33:58:d7:a9:50:4a:3d:28: e5:1c:c0:46:06:ff:2f:fa:ae:5a:e6:cb:f2:6b:30:60:e2:07: dc:e4:77:e0:b1:17:32:15:2c:1c:d1:8c:ec:8d:cb:9b:cf:9d: e2:24:86:3e:f8:7f:2c:1a:60:e8:84:04:95:d9:34:ab:af:bb: d5:3c:8c:73:6f:b8:65:b4:12:4b:95:4e:38:b9:92:7e:5e:aa: bb:14:a2:17 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICDxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjQwMjI4MTQ1MDMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmNDgzOC0zNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVMC99koX5/rUUB3ChzNMXPZpWoFkr9s2EHfp8A+wFCKp+SrI8u0HHdyWp5p h7D3NtSdwvSGfnK/MI5KPq6Tn58nBVQoo6RQsDrU0DQI2yFrK5Dd2OOlrbh2rAqd YrWJ9D7M718FS7vlZm4A1DKv7nmgDyEjDKCAGkXeYE9eJ/BJ8Pg5XxSvwrZ+8JaS bD2BVoBYUKjsUqYSyvJ1LiTJFsNW+dNzHw1A4BIm/lydNTpzzjaWQe9KDXclZaCQ u+keQNw1+s+EQuAnVcGFNprT/Y8tmR3faOJVNaCbVM4BG4h2wyfAf5MWDxAWKTWi fTs+M4AZS6RW/8gJTcM9D/YCJwIDAQABo4IClDCCApAwHQYDVR0OBBYEFB/RnOxX afI1v/flzi6/Lih+6HWlMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvMkE1OTQwRjI0QkIzMTFFOUFCMTUxQzE3QzRGOUFFMDIvMjNCNjg2MzhD NUREMTFFQUJDNThGRDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCIuTANBgkqhkiG9w0BAQsFAAOCAQEAELHTIIjB5ZVO91Ad aNCiQt3sECZfHrm9tSu0jk1zEKxugm2G29pqKuOxx9tAWSJrcFQjgcAMGPjXsIPf c9DEFSyo326uZniq6OQMVsYf9/ulmQ82nvhlL6W8HMdS0V4Q/pn3W0EoTKamnIhG QBfI+jt6+mXONUjsIrNU7CCXupdvUSw8z/9Fe0pkOkYhlvYeuxsCNkJPIiRc9AOY POJlTuVCKaF8iP2yW5l85TNY16lQSj0o5RzARgb/L/quWubL8mswYOIH3OR34LEX MhUsHNGM7I3Lm8+d4iSGPvh/LBpg6IQEldk0q6+71TyMc2+4ZbQSS5VOOLmSfl6q uxSiFw== -----END CERTIFICATE-----Generated at Fri May 31 15:08:32 2024 by rpki-client on console-fra.rpki-client.org