$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9E40D11CC9EC11EE9644540FC4F9AE02.roa File: 9E40D11CC9EC11EE9644540FC4F9AE02.roa (raw, json) Hash identifier: pDNT90FCM+cZ/wTmkGN2qw6fYi9CK445g/weGQTkxo8= Subject key identifier: 91:3A:5F:CA:99:CA:3B:8B:D8:1D:36:11:8E:DC:B4:F8:03:2F:77:39 Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: 10 Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9E40D11CC9EC11EE9644540FC4F9AE02.roa Signing time: Fri 01 Mar 2024 08:39:34 +0000 ROA not before: Fri 01 Mar 2024 08:39:34 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 59383 IP address blocks: 143.119.96.0/20 maxlen: 20 143.119.112.0/24 maxlen: 24 143.119.208.0/20 maxlen: 20 143.119.210.0/24 maxlen: 24 143.119.211.0/24 maxlen: 24 143.119.223.0/24 maxlen: 24 143.119.224.0/20 maxlen: 20 143.119.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Validity Not Before: Mar 1 08:39:34 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e19446-efbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:e4:f3:eb:d1:92:e4:9d:c7:bd:3a:4b:f9: 20:9a:e5:81:5e:89:a4:e3:97:ce:71:2c:01:df:8d: 08:df:2c:01:0b:52:c1:46:de:5c:2d:17:e7:31:73: 00:39:87:c4:d8:cd:ac:c9:f0:95:0b:8a:c8:db:f4: 8d:8e:2c:b0:c1:74:51:75:67:32:00:58:b4:32:d4: 07:46:3d:61:15:a9:f8:fe:25:eb:32:4a:15:da:18: aa:08:4b:f3:de:2f:88:54:66:08:fd:be:d1:72:eb: bb:0b:ab:26:17:d6:0e:93:bb:cc:e4:ca:58:a3:9d: 00:08:2f:9d:dc:6e:79:9a:61:ac:66:53:1d:f4:0d: de:a7:41:4e:54:e8:77:f1:22:8d:4e:22:21:df:0c: 4d:76:a9:d0:11:a6:99:e4:d0:a4:43:a9:ee:6e:72: dd:59:df:d1:01:b9:14:4a:d0:88:43:a7:12:6d:4d: 9a:96:ec:1b:5c:89:08:f2:7f:31:3c:f6:f8:6c:9b: ed:26:6d:5c:a2:6f:ac:f7:99:35:63:00:a0:7d:0d: 75:a5:7b:a9:bf:37:38:a6:48:6b:03:7e:50:ae:e4: bf:60:b7:0c:5a:0b:ef:63:18:99:23:7e:b2:85:0a: 9f:9c:44:34:f2:35:58:66:bc:49:7c:f1:73:13:53: 91:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3A:5F:CA:99:CA:3B:8B:D8:1D:36:11:8E:DC:B4:F8:03:2F:77:39 X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9E40D11CC9EC11EE9644540FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.119.96.0-143.119.112.255 143.119.208.0-143.119.239.255 Signature Algorithm: sha256WithRSAEncryption 48:f3:e6:f4:8a:53:8d:e8:91:36:2b:12:ff:28:fb:9b:bb:22: 8e:91:ca:8b:77:6e:da:3e:69:f7:85:9c:cf:09:49:a0:29:30: 06:fd:72:77:f2:4d:1a:62:52:34:ef:5c:09:b5:90:aa:2e:5a: b0:62:cc:d1:d5:f6:33:ac:d5:95:cc:22:c3:cd:cb:5b:e7:e6: 37:8c:87:17:66:bb:ac:4e:de:d7:81:c1:8b:16:1a:86:96:a6: 0a:64:30:da:9e:23:eb:55:7e:4b:26:22:93:be:db:2b:1b:a9: 9a:80:c1:08:3c:ed:e1:1e:07:e4:d2:c9:fc:31:99:0e:6e:10: 4c:15:53:42:3a:98:2a:62:1d:6e:20:c2:6b:72:2b:95:64:0e: 84:3c:62:60:86:9f:ee:83:86:4d:a5:5a:23:c9:97:4f:e0:f2: 2a:59:c1:99:e1:7d:1a:b9:d4:95:98:78:61:d4:b4:b3:9a:62: bb:eb:95:04:2b:d1:11:60:d0:61:5c:0f:8b:f9:bf:ff:38:24: 46:d2:1f:ef:c8:9a:54:44:1a:2e:a3:26:61:2a:df:fb:10:65: c5:99:05:36:d9:6d:ac:0c:a7:6a:06:b2:1a:6c:1f:68:ea:9e: 2f:40:ab:a2:b3:da:f0:cf:37:61:b4:13:a1:1d:0d:b3:d8:a4: 4a:1b:05:ee -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTVDOTExMC8GA1UEBRMoRUM2NzhERTBEN0JDRjgzOUQ5OThBMEZDRTVDOUVCNzVG RkM4NjczRDAeFw0yNDAzMDEwODM5MzRaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTE5NDQ2LWVmYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZiuTz69GS5J3HvTpL+SCa5YFeiaTjl85xLAHfjQjfLAELUsFG3lwtF+cxcwA5 h8TYzazJ8JULisjb9I2OLLDBdFF1ZzIAWLQy1AdGPWEVqfj+JesyShXaGKoIS/Pe L4hUZgj9vtFy67sLqyYX1g6Tu8zkylijnQAIL53cbnmaYaxmUx30Dd6nQU5U6Hfx Io1OIiHfDE12qdARppnk0KRDqe5uct1Z39EBuRRK0IhDpxJtTZqW7BtciQjyfzE8 9vhsm+0mbVyib6z3mTVjAKB9DXWle6m/NzimSGsDflCu5L9gtwxaC+9jGJkjfrKF Cp+cRDTyNVhmvEl88XMTU5HNAgMBAAGjggKrMIICpzAdBgNVHQ4EFgQUkTpfypnK O4vYHTYRjty0+AMvdzkwHwYDVR0jBBgwFoAU7GeN4Ne8+DnZmKD85cnrdf/IZz0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1NUM5LzdFMkYxMjY4QzlF QjExRUU4Qjg1N0IwQ0M0RjlBRTAyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvN0dlTjROZTgtRG5abUtEODVjbnJkZl9JWnowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTVDOS83RTJGMTI2OEM5RUIxMUVFOEI4NTdCMENDNEY5QUUwMi85RTQwRDExQ0M5 RUMxMUVFOTY0NDU0MEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA1BggrBgEFBQcBBwEB/wQm MCQwIgQCAAEwHDAMAwQFj3dgAwQAj3dwMAwDBASPd9ADBASPd+AwDQYJKoZIhvcN AQELBQADggEBAEjz5vSKU43okTYrEv8o+5u7Io6Ryot3bto+afeFnM8JSaApMAb9 cnfyTRpiUjTvXAm1kKouWrBizNHV9jOs1ZXMIsPNy1vn5jeMhxdmu6xO3teBwYsW GoaWpgpkMNqeI+tVfksmIpO+2ysbqZqAwQg87eEeB+TSyfwxmQ5uEEwVU0I6mCpi HW4gwmtyK5VkDoQ8YmCGn+6Dhk2lWiPJl0/g8ipZwZnhfRq51JWYeGHUtLOaYrvr lQQr0RFg0GFcD4v5v/84JEbSH+/ImlREGi6jJmEq3/sQZcWZBTbZbawMp2oGshps H2jqni9Aq6Kz2vDPN2G0E6EdDbPYpEobBe4= -----END CERTIFICATE-----Generated at Fri May 31 10:02:40 2024 by rpki-client on console-ams.rpki-client.org