$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/1229795E652C11EB9B039023C4F9AE02.roa File: 1229795E652C11EB9B039023C4F9AE02.roa (raw, json) Hash identifier: ALAOZUbLcUOYT5vDZ0TWLEC6V+Neh/Ht+ZoghTc1Yn4= Subject key identifier: 67:1C:8B:61:94:71:E9:9A:28:EF:01:26:88:F1:9A:16:A4:58:59:12 Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 06F4 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/1229795E652C11EB9B039023C4F9AE02.roa Signing time: Tue 06 Feb 2024 22:41:13 +0000 ROA not before: Tue 06 Feb 2024 22:41:13 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138423 IP address blocks: 209.150.144.0/23 maxlen: 24 209.150.146.0/23 maxlen: 24 209.150.148.0/22 maxlen: 24 209.150.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1780 (0x6f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Feb 6 22:41:13 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65c2b589-e817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:50:2d:da:b4:f0:fe:74:47:87:85:32:18:e8: c8:a1:1c:e8:e3:cf:0d:9b:ae:cc:0d:33:cd:f4:7f: 26:a9:09:2a:b8:3d:3b:8f:37:45:45:83:d6:df:0d: d6:00:aa:b7:10:00:4e:7b:77:ed:86:ae:c5:96:c8: 23:65:ed:8f:14:d3:86:3a:fe:da:80:1c:bb:dd:97: e4:26:5a:2d:79:ce:cf:44:fb:78:be:cc:8d:73:5e: 5e:e8:40:0d:5e:c2:a8:b7:ad:9e:d2:30:c3:09:6c: f0:f6:e9:24:4c:aa:18:32:85:94:d1:b1:be:fb:42: 51:74:ef:94:d9:a0:80:ef:e1:62:d1:b6:89:7f:40: 95:f3:b1:63:3e:55:50:a7:c3:4e:7d:90:46:85:66: 53:62:c0:35:47:71:e5:c2:96:00:6a:e9:80:52:fd: 62:d0:f3:9a:d9:f4:08:58:e6:e1:43:8e:61:a6:46: 12:e2:88:26:ab:99:65:09:0b:db:a5:12:25:83:d6: 2c:14:05:1f:4f:a2:e1:74:16:2e:13:87:07:ab:a6: e8:13:7e:f5:ad:c7:28:91:ca:a4:56:ec:6e:f4:68: 96:02:cf:93:a8:ee:fb:28:a2:08:40:3d:91:7b:c1: ce:cf:9d:ce:c5:7f:34:89:0c:e9:9b:a7:11:73:cf: c6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1C:8B:61:94:71:E9:9A:28:EF:01:26:88:F1:9A:16:A4:58:59:12 X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/1229795E652C11EB9B039023C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 209.150.144.0/21 209.150.159.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:de:28:8b:78:a9:c9:b8:53:94:ee:4e:04:ee:11:45:bf:a7: aa:e6:6c:11:66:13:f3:9c:d9:39:9a:f5:22:47:08:36:3a:03: 0a:af:5e:74:e0:b6:ff:4e:b1:2f:5b:4e:89:f5:9a:ca:8a:b6: 4b:ee:2d:85:64:81:a2:f7:d7:0a:38:d2:be:1d:2a:09:f3:a7: cd:48:07:1a:65:9c:20:ad:76:79:72:81:82:be:15:f2:94:4d: 0f:41:d1:c4:9d:ed:f7:50:4f:ef:de:4c:bb:9b:2b:70:07:32: 9e:ee:d3:99:2e:89:c1:c1:96:e0:23:81:33:ea:da:25:5e:5d: fc:77:d6:a2:ef:5c:43:9b:1e:80:d0:6d:9b:8a:68:d1:ff:12: 42:f4:f7:28:d5:cf:2f:c5:b1:6e:73:64:8c:1d:42:17:41:b9: 11:93:e7:b9:4c:af:40:54:15:b5:b4:9d:ef:7f:73:de:f2:7a: 03:33:e1:ba:fa:ef:bc:b5:4d:a9:ab:2b:96:5f:d9:4d:c8:de: b1:ee:11:72:82:c8:27:87:5b:fe:f7:7a:47:a1:07:68:c8:89: 89:16:14:05:26:77:6e:89:6a:04:ce:e4:1d:be:72:35:80:1c: 30:9f:85:11:c2:5a:dd:7f:a5:26:4a:4d:20:cc:a7:53:11:70: f2:a0:f6:c8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjQwMjA2MjI0MTEzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyYjU4OS1lODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplAt2rTw/nRHh4UyGOjIoRzo488Nm67MDTPN9H8mqQkquD07jzdFRYPW3w3W AKq3EABOe3fthq7FlsgjZe2PFNOGOv7agBy73ZfkJlotec7PRPt4vsyNc15e6EAN XsKot62e0jDDCWzw9ukkTKoYMoWU0bG++0JRdO+U2aCA7+Fi0baJf0CV87FjPlVQ p8NOfZBGhWZTYsA1R3HlwpYAaumAUv1i0POa2fQIWObhQ45hpkYS4ogmq5llCQvb pRIlg9YsFAUfT6LhdBYuE4cHq6boE371rccokcqkVuxu9GiWAs+TqO77KKIIQD2R e8HOz53OxX80iQzpm6cRc8/GzQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGcci2GU cemaKO8BJojxmhakWFkSMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI5OEQvMkNCMTFGQ0VGMUE2MTFFQUI5NUMwRTJGQzRGOUFFMDIvMTIyOTc5NUU2 NTJDMTFFQjlCMDM5MDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAPRlpADBADRlp8wDQYJKoZIhvcNAQELBQADggEBAG3eKIt4 qcm4U5TuTgTuEUW/p6rmbBFmE/Oc2Tma9SJHCDY6AwqvXnTgtv9OsS9bTon1msqK tkvuLYVkgaL31wo40r4dKgnzp81IBxplnCCtdnlygYK+FfKUTQ9B0cSd7fdQT+/e TLubK3AHMp7u05kuicHBluAjgTPq2iVeXfx31qLvXEObHoDQbZuKaNH/EkL09yjV zy/FsW5zZIwdQhdBuRGT57lMr0BUFbW0ne9/c97yegMz4br677y1TamrK5Zf2U3I 3rHuEXKCyCeHW/73ekehB2jIiYkWFAUmd26JagTO5B2+cjWAHDCfhRHCWt1/pSZK TSDMp1MRcPKg9sg= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:29 2024 by rpki-client on console-ams.rpki-client.org