$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa File: 81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa (raw, json) Hash identifier: bAJcZHdALLdVj0G8hEZ9WP5gBsuWQMocptxTv2oTQ7c= Subject key identifier: 01:CB:08:DF:4A:F7:05:35:A0:5E:DF:63:6B:D9:69:54:DD:C0:20:79 Certificate issuer: /CN=A91EA958/serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Certificate serial: 233E Authority key identifier: 11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa Signing time: Sun 02 Jul 2023 15:20:45 +0000 ROA not before: Sun 02 Jul 2023 15:20:45 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135295 IP address blocks: 136.228.152.0/24 maxlen: 24 136.228.153.0/24 maxlen: 24 136.228.154.0/24 maxlen: 24 136.228.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9022 (0x233e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958/serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Validity Not Before: Jul 2 15:20:45 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a195cd-aa60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9c:38:1e:07:f4:61:f5:6e:11:fe:08:4b:d2: 8d:b5:f9:4b:a7:fa:fc:5b:76:94:d5:a4:96:72:c0: 66:ca:cc:15:51:fa:4d:07:41:20:f5:98:42:ca:81: 65:c1:d0:6e:47:db:3f:2f:80:6e:6b:3d:74:07:64: c4:c6:5f:c4:e2:2f:70:22:f1:b4:45:74:8b:83:a4: ce:7f:59:91:a4:f0:fd:21:5b:39:43:6a:28:95:22: 5c:b1:62:19:4f:19:4e:e9:8e:4b:de:f6:5a:46:e6: 67:4f:bd:0c:ab:43:c3:d4:e7:ac:0c:db:00:c3:e7: db:df:2d:09:ba:62:01:17:7b:8d:1f:c6:3a:e8:16: 3f:a9:5f:46:b0:e3:77:bd:f4:a1:e3:24:46:b8:9d: 8b:bb:05:69:ba:1e:c9:c0:5f:a2:2f:e2:25:0e:9f: 79:a9:37:7c:9d:66:50:c2:f1:22:36:25:4f:0f:8c: 9e:73:d9:fc:bf:c7:a6:ec:7e:62:3d:aa:92:e3:4e: 62:89:b7:53:cc:cf:f9:7c:bc:f8:c1:6c:8e:97:69: bc:9c:e7:3e:c5:b8:f5:cb:17:9e:b3:db:31:15:86: e0:d1:36:bb:1c:d5:06:51:ca:9c:f3:fa:fe:2f:0b: fb:f0:9d:23:e1:a6:57:49:e8:40:23:90:f2:2b:4a: d9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:CB:08:DF:4A:F7:05:35:A0:5E:DF:63:6B:D9:69:54:DD:C0:20:79 X509v3 Authority Key Identifier: keyid:11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.228.152.0/22 Signature Algorithm: sha256WithRSAEncryption 22:56:93:bc:ef:de:f9:ba:4f:95:02:44:aa:54:6d:ad:b0:81: 3b:41:80:7e:ef:5f:1e:cc:89:cf:72:db:9d:bc:4c:da:56:32: b1:0e:09:06:01:7e:84:a4:0b:e2:43:cc:5c:d8:b5:df:49:b2: 48:43:50:ff:2a:dd:f8:3a:e1:b9:55:f9:08:ba:42:3e:4d:f9: 79:8b:e6:23:0f:92:62:25:05:b9:be:fb:00:1b:f1:37:95:aa: 45:31:de:1a:33:47:19:4b:63:9b:61:a4:89:f3:f4:8b:f0:c2: f7:a8:22:88:0a:3b:07:8c:ff:b5:b3:83:74:82:14:a5:50:66: 46:57:c5:34:44:80:f2:52:fe:05:fc:c0:62:ec:0b:d8:15:a8: 93:ff:3c:2d:e3:b6:66:5f:cd:ec:e0:b3:cd:4f:44:52:fe:a2: b3:72:50:3a:c0:14:34:0b:25:d5:6f:73:5f:e9:1b:bc:53:b3: 8c:7d:63:74:3e:a4:64:75:f9:83:e5:0e:c4:4e:0a:aa:a9:5c: 7f:8a:eb:36:19:59:44:82:00:35:10:42:cb:81:5b:91:d1:63: be:5c:3a:d5:88:f4:64:3e:3a:84:26:cb:70:d2:dd:ac:d2:4b: 30:c3:8a:ce:96:0b:ed:9b:9d:15:c6:62:6e:98:fa:f1:fe:e6: e2:83:12:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKDExMTAzMTBFMEY4MDQ2NzcwM0Q4NDc3RkIzRUUyNUYx RDg4ODhFOUUwHhcNMjMwNzAyMTUyMDQ1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGExOTVjZC1hYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZw4Hgf0YfVuEf4IS9KNtflLp/r8W3aU1aSWcsBmyswVUfpNB0Eg9ZhCyoFl wdBuR9s/L4Buaz10B2TExl/E4i9wIvG0RXSLg6TOf1mRpPD9IVs5Q2oolSJcsWIZ TxlO6Y5L3vZaRuZnT70Mq0PD1OesDNsAw+fb3y0JumIBF3uNH8Y66BY/qV9GsON3 vfSh4yRGuJ2LuwVpuh7JwF+iL+IlDp95qTd8nWZQwvEiNiVPD4yec9n8v8em7H5i PaqS405iibdTzM/5fLz4wWyOl2m8nOc+xbj1yxees9sxFYbg0Ta7HNUGUcqc8/r+ Lwv78J0j4aZXSehAI5DyK0rZFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAHLCN9K 9wU1oF7fY2vZaVTdwCB5MB8GA1UdIwQYMBaAFBEQMQ4PgEZ3A9hHf7PuJfHYiI6e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC9GREVGRDczNjRC RDYxMUU1QTdDQTMwMzNDNEY5QUUwMi9FUkF4RGctQVJuY0QyRWRfcy00bDhkaUlq cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VSQXhEZy1BUm5jRDJFZF9zLTRsOGRpSWpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5NTgvRkRFRkQ3MzY0QkQ2MTFFNUE3Q0EzMDMzQzRGOUFFMDIvODFFNkEwMzhC RUJEMTFFQkExQkM4QTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKI5JgwDQYJKoZIhvcNAQELBQADggEBACJWk7zv3vm6T5UC RKpUba2wgTtBgH7vXx7Mic9y2528TNpWMrEOCQYBfoSkC+JDzFzYtd9JskhDUP8q 3fg64blV+Qi6Qj5N+XmL5iMPkmIlBbm++wAb8TeVqkUx3hozRxlLY5thpInz9Ivw wveoIogKOweM/7Wzg3SCFKVQZkZXxTREgPJS/gX8wGLsC9gVqJP/PC3jtmZfzezg s81PRFL+orNyUDrAFDQLJdVvc1/pG7xTs4x9Y3Q+pGR1+YPlDsROCqqpXH+K6zYZ WUSCADUQQsuBW5HRY75cOtWI9GQ+OoQmy3DS3azSSzDDis6WC+2bnRXGYm6Y+vH+ 5uKDElw= -----END CERTIFICATE-----Generated at Fri May 31 17:44:53 2024 by rpki-client on console-fra.rpki-client.org