$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/A95180F2D7DA11ECB3D1AF67C4F9AE02.roa File: A95180F2D7DA11ECB3D1AF67C4F9AE02.roa (raw, json) Hash identifier: DQtfy60ZZ8nBxDzePya3v9U3HOgxKlQtSX/pFU6xpAM= Subject key identifier: E4:C8:48:3E:A7:A1:F7:93:85:02:0D:1E:4F:1D:6D:C4:DF:48:C5:7E Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 0557 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/A95180F2D7DA11ECB3D1AF67C4F9AE02.roa Signing time: Tue 04 Jul 2023 23:29:59 +0000 ROA not before: Tue 04 Jul 2023 23:29:59 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 63593 IP address blocks: 129.227.17.0/24 maxlen: 24 129.227.18.0/24 maxlen: 24 129.227.19.0/24 maxlen: 24 129.227.29.0/24 maxlen: 24 129.227.30.0/24 maxlen: 24 129.227.31.0/24 maxlen: 24 129.227.192.0/24 maxlen: 24 129.227.193.0/24 maxlen: 24 129.227.194.0/23 maxlen: 24 156.59.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1367 (0x557) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Jul 4 23:29:59 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a4ab76-c7e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a9:65:8b:8c:05:7d:d4:e6:d1:83:ba:18:09: a2:c4:0e:22:57:31:d0:78:8f:71:1e:2c:35:1c:d4: 1b:22:71:95:2e:34:02:74:2c:d3:1c:8f:16:7d:21: 8e:06:26:5c:35:6d:95:ed:1e:b0:c0:92:33:94:6b: 97:e6:86:69:58:52:12:66:de:07:2d:27:4b:4d:69: 38:92:51:32:0b:ab:96:91:b8:56:19:7e:a0:29:a1: 7c:09:b6:3c:c7:fb:f7:78:68:d8:33:17:f8:8e:b6: ef:96:f3:14:79:d8:e0:6d:59:03:72:a6:05:b1:28: 08:b6:a0:9c:55:d0:5c:c4:52:c5:3d:4f:f1:da:c6: 9a:03:ed:b7:7c:7f:25:9b:97:57:4b:f5:38:5e:79: 90:d4:da:b7:32:18:90:4d:3c:4e:76:49:ff:b4:0e: 77:0e:d6:b2:f4:55:10:01:41:59:14:a6:b7:da:63: 58:ec:bf:3b:0d:e0:04:2e:ae:79:4e:80:d1:c6:b4: fc:79:3f:4e:34:9a:c1:39:3d:31:d3:6a:8d:79:dd: af:a5:d8:bb:ec:97:60:9f:f1:24:f2:00:86:7c:e2: ab:f0:bc:c9:48:a5:19:43:e8:5d:82:46:fb:1b:b3: b1:df:4a:24:c7:fc:7c:ae:96:44:9d:29:ca:a0:b2: b7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C8:48:3E:A7:A1:F7:93:85:02:0D:1E:4F:1D:6D:C4:DF:48:C5:7E X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/A95180F2D7DA11ECB3D1AF67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.227.17.0-129.227.19.255 129.227.29.0-129.227.31.255 129.227.192.0/22 156.59.216.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:f7:cc:39:7f:5f:33:6e:c1:cd:d6:73:39:61:06:eb:58:44: 8c:de:fb:4e:59:0f:f8:e8:26:87:65:d1:27:8b:fa:49:b5:ed: 53:42:91:5b:52:19:d0:f4:66:fc:25:ec:5a:99:31:28:4d:cf: 96:43:aa:f4:4b:2b:7c:22:02:02:1a:83:0c:73:4f:80:17:7e: 2c:e6:61:71:b8:13:88:94:95:da:c4:7b:de:c6:10:d1:c3:fc: 2a:2a:ac:19:05:f3:78:56:bb:2d:a4:99:f5:53:a1:a1:0b:34: df:d2:05:e9:34:49:f8:68:fe:23:2a:4a:07:09:d7:18:bd:0f: a4:98:c6:56:eb:0e:76:ec:0b:ca:02:bc:51:65:c0:7a:64:27: 30:53:8b:07:3a:62:9e:da:3b:b0:b9:76:3d:01:38:9b:f6:99: 87:10:41:d8:b3:e4:57:76:fb:77:c2:83:6b:da:3c:f1:24:4b: 04:58:9f:bb:60:94:ae:c2:35:81:a8:75:16:a6:be:02:9f:e5: 96:36:09:e5:00:fc:10:a3:b8:0c:54:62:a1:84:04:f2:df:d4: 9c:b9:62:76:b1:80:76:b1:54:f1:b8:d2:02:22:2d:86:8f:a7: e2:03:ea:de:85:50:40:34:20:1f:3d:00:a8:ec:fd:66:db:62: aa:ac:ba:4c -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICBVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjMwNzA0MjMyOTU5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0YWI3Ni1jN2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKlli4wFfdTm0YO6GAmixA4iVzHQeI9xHiw1HNQbInGVLjQCdCzTHI8WfSGO BiZcNW2V7R6wwJIzlGuX5oZpWFISZt4HLSdLTWk4klEyC6uWkbhWGX6gKaF8CbY8 x/v3eGjYMxf4jrbvlvMUedjgbVkDcqYFsSgItqCcVdBcxFLFPU/x2saaA+23fH8l m5dXS/U4XnmQ1Nq3MhiQTTxOdkn/tA53Dtay9FUQAUFZFKa32mNY7L87DeAELq55 ToDRxrT8eT9ONJrBOT0x02qNed2vpdi77Jdgn/Ek8gCGfOKr8LzJSKUZQ+hdgkb7 G7Ox30okx/x8rpZEnSnKoLK3ewIDAQABo4ICtzCCArMwHQYDVR0OBBYEFOTISD6n ofeThQINHk8dbcTfSMV+MB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvQTk1MTgwRjJE N0RBMTFFQ0IzRDFBRjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgwDAMEAIHjEQMEAoHjEDAMAwQAgeMdAwQFgeMAAwQCgePAAwQA nDvYMA0GCSqGSIb3DQEBCwUAA4IBAQCf98w5f18zbsHN1nM5YQbrWESM3vtOWQ/4 6CaHZdEni/pJte1TQpFbUhnQ9Gb8JexamTEoTc+WQ6r0Syt8IgICGoMMc0+AF34s 5mFxuBOIlJXaxHvexhDRw/wqKqwZBfN4VrstpJn1U6GhCzTf0gXpNEn4aP4jKkoH CdcYvQ+kmMZW6w527AvKArxRZcB6ZCcwU4sHOmKe2juwuXY9ATib9pmHEEHYs+RX dvt3woNr2jzxJEsEWJ+7YJSuwjWBqHUWpr4Cn+WWNgnlAPwQo7gMVGKhhATy39Sc uWJ2sYB2sVTxuNICIi2Gj6fiA+rehVBANCAfPQCo7P1m22KqrLpM -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:47 2024 by rpki-client on console-fra.rpki-client.org