$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/53BDA2F60F1A11E9B3F2A713C4F9AE02.roa File: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (raw, json) Hash identifier: MeknSXi6oQaKYDd3WwvfqyiM9CHRmo26fLY2uU/axvE= Subject key identifier: 61:6A:0D:2E:55:CA:16:FB:A8:0E:4B:95:9E:20:71:B1:11:8C:A1:D0 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 1029 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/53BDA2F60F1A11E9B3F2A713C4F9AE02.roa Signing time: Tue 28 Nov 2023 18:05:39 +0000 ROA not before: Tue 28 Nov 2023 18:05:39 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 133058 IP address blocks: 158.140.152.0/24 maxlen: 24 158.140.153.0/24 maxlen: 24 158.140.154.0/24 maxlen: 24 158.140.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4137 (0x1029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Nov 28 18:05:39 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65662bf3-3609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:16:45:5f:dc:4f:8f:fd:db:b2:49:a2:bc:75: af:7f:b9:d7:5e:00:43:60:40:65:d5:0a:0f:ca:67: ee:63:9e:7a:d9:1d:f6:c5:1e:c6:7b:19:45:20:22: 1b:49:46:db:96:8e:2a:65:8d:ad:85:70:74:a1:ee: 91:ee:e0:c3:3b:c0:75:33:f9:5d:1c:db:53:c2:0c: 5a:bc:84:98:45:31:b6:3a:34:fd:d1:b7:b6:ac:7a: 5c:2f:92:8b:b8:8f:69:12:86:65:92:57:bb:11:2f: 20:a3:f1:8b:9c:55:0f:70:e3:db:8f:10:de:5f:09: 62:f0:8a:93:48:8b:3c:bd:23:e4:a3:0f:9b:d2:15: 43:80:b5:8f:38:f2:47:6b:4b:03:a8:de:47:6c:61: 0b:c1:18:25:3c:de:07:fe:5f:a4:3a:fd:5f:fb:5b: da:f6:6c:b7:57:ff:9e:00:0e:f1:2d:ba:de:3b:51: 1e:94:40:7f:53:ac:29:20:77:f4:38:c6:65:46:23: cd:e9:23:3e:9e:6a:08:75:8d:2d:7b:3b:1b:f8:25: 09:45:7e:2c:1a:54:5a:12:60:84:8c:05:60:e2:d1: 7d:6b:53:84:6c:ec:70:fa:0a:0a:8d:88:f2:e3:c1: 1c:62:36:75:0c:11:ff:c6:38:1f:f5:43:84:78:4d: 0c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6A:0D:2E:55:CA:16:FB:A8:0E:4B:95:9E:20:71:B1:11:8C:A1:D0 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/53BDA2F60F1A11E9B3F2A713C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.140.152.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:12:9b:b2:59:4c:8d:c4:2f:d8:64:52:0c:9e:90:cc:4d:25: 51:f5:27:1a:9f:37:bc:b7:e5:9e:59:7f:f8:bf:ba:35:e1:07: 12:0d:f8:80:4c:08:89:bb:45:76:21:31:7e:72:bb:f4:eb:f3: 43:a5:e2:b8:f3:22:24:5c:3e:d2:8c:e0:fc:c2:cf:f8:f6:6c: 33:d9:2e:ec:21:8b:2d:48:2d:0f:93:11:66:f0:88:07:6a:26: 31:a6:1b:66:1f:c3:d0:4f:8a:aa:71:66:37:45:90:9d:08:e8: 4a:c3:43:67:28:de:54:3f:e3:47:9b:b7:06:cc:9e:a2:59:57: 81:cc:8d:d3:d5:97:84:8d:b1:f8:62:15:d7:62:09:a7:5f:b8: 52:6a:7b:a7:d3:0f:0c:a4:20:57:9d:d1:f2:ce:be:5c:52:6f: de:f5:60:e6:41:57:83:63:0f:cf:56:81:26:3b:8a:ea:5d:92: 55:40:cb:71:0c:80:da:2d:65:7d:84:7b:3e:ce:7c:d4:35:dc: 2b:27:17:01:f0:91:e8:ed:39:f4:a8:b3:fa:15:d6:17:a9:28: ef:e6:f9:39:01:e8:e6:98:3d:e8:4e:bb:5c:e5:7f:5f:c4:07: 84:5c:5d:a3:6c:3e:c8:32:ed:f6:a1:ff:02:b5:ee:74:aa:88: e6:85:c9:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICECkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjMxMTI4MTgwNTM5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2MmJmMy0zNjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhZFX9xPj/3bskmivHWvf7nXXgBDYEBl1QoPymfuY5562R32xR7GexlFICIb SUbblo4qZY2thXB0oe6R7uDDO8B1M/ldHNtTwgxavISYRTG2OjT90be2rHpcL5KL uI9pEoZlkle7ES8go/GLnFUPcOPbjxDeXwli8IqTSIs8vSPkow+b0hVDgLWPOPJH a0sDqN5HbGELwRglPN4H/l+kOv1f+1va9my3V/+eAA7xLbreO1EelEB/U6wpIHf0 OMZlRiPN6SM+nmoIdY0tezsb+CUJRX4sGlRaEmCEjAVg4tF9a1OEbOxw+goKjYjy 48EcYjZ1DBH/xjgf9UOEeE0MzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGFqDS5V yhb7qA5LlZ4gcbERjKHQMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQkRGQkYxODYwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvNTNCREEyRjYw RjFBMTFFOUIzRjJBNzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKejJgwDQYJKoZIhvcNAQELBQADggEBAD0Sm7JZTI3EL9hk UgyekMxNJVH1JxqfN7y35Z5Zf/i/ujXhBxIN+IBMCIm7RXYhMX5yu/Tr80Ol4rjz IiRcPtKM4PzCz/j2bDPZLuwhiy1ILQ+TEWbwiAdqJjGmG2Yfw9BPiqpxZjdFkJ0I 6ErDQ2co3lQ/40ebtwbMnqJZV4HMjdPVl4SNsfhiFddiCadfuFJqe6fTDwykIFed 0fLOvlxSb971YOZBV4NjD89WgSY7iupdklVAy3EMgNotZX2Eez7OfNQ13CsnFwHw kejtOfSos/oV1hepKO/m+TkB6OaYPehOu1zlf1/EB4RcXaNsPsgy7fah/wK17nSq iOaFydk= -----END CERTIFICATE-----Generated at Thu Jun 6 18:48:22 2024 by rpki-client on console-fra.rpki-client.org