$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/3CE5C23A550611ED96C8F350C4F9AE02.roa File: 3CE5C23A550611ED96C8F350C4F9AE02.roa (raw, json) Hash identifier: Q5kNro7uuimVHfF2ckERPDPugxu/7fP30LXUjNeFgk8= Subject key identifier: C0:AF:EB:1D:3B:32:45:15:EA:42:1A:C5:F7:F2:15:A4:78:8B:D6:E3 Certificate issuer: /CN=A91FFEDB/serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Certificate serial: C9 Authority key identifier: 59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/3CE5C23A550611ED96C8F350C4F9AE02.roa Signing time: Wed 01 Nov 2023 05:15:46 +0000 ROA not before: Wed 01 Nov 2023 05:15:46 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38327 IP address blocks: 158.89.0.0/16 maxlen: 16 158.89.0.0/17 maxlen: 17 158.89.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFEDB/serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Validity Not Before: Nov 1 05:15:46 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6541df01-4670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:49:c9:0a:e3:b4:6d:d4:4d:6c:b8:6d:25:39: d8:8f:fb:9d:c5:4d:dd:80:56:dd:1d:d9:c2:f0:47: de:c3:cd:c9:5a:7b:d8:6b:8d:18:64:f1:e8:a8:28: 45:cd:02:0c:6f:c8:2b:80:4c:59:36:75:0b:aa:d5: b1:12:85:e2:b4:e1:8d:da:1d:2a:63:ee:d1:df:8e: 12:bc:97:73:73:63:63:58:af:71:6e:8c:b1:e7:ee: c4:4a:22:d0:a3:8e:68:40:1e:04:ba:bd:eb:2d:d8: 9f:36:5c:8e:7b:a4:bd:72:c7:04:cd:52:af:33:34: 23:8b:6b:5a:2f:da:51:37:6a:d4:ec:96:0f:11:bd: 4e:10:e4:10:91:fe:c4:99:9c:76:e4:4f:fa:a4:4a: c6:c3:e7:0d:26:ce:1d:23:c1:1a:67:46:09:53:04: ea:82:3e:15:ff:6f:9a:bc:bc:8f:a3:45:e3:fe:60: 05:56:4e:91:1b:f5:0b:cb:4b:f5:7f:5b:fa:ca:a0: 0f:d0:59:c2:81:71:db:9e:8f:ac:26:5a:87:09:3d: 08:04:32:1d:5f:be:cf:71:24:56:59:5a:7e:0b:9d: 4b:d8:70:7b:39:9e:cf:84:0e:50:da:c3:f6:21:7f: 2d:21:c3:e5:e4:91:0e:17:a3:a2:54:7d:62:51:f6: f4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:AF:EB:1D:3B:32:45:15:EA:42:1A:C5:F7:F2:15:A4:78:8B:D6:E3 X509v3 Authority Key Identifier: keyid:59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/3CE5C23A550611ED96C8F350C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:c6:ed:fe:fe:4d:15:98:2d:59:0f:ae:e5:66:42:98:0e:f6: a2:4f:07:3d:c3:97:bb:8e:c3:ea:c0:a6:f9:26:6b:18:36:e0: 95:fb:c9:0d:77:da:23:16:d1:e0:4d:ec:d9:c4:52:0d:53:e1: 68:79:5c:d5:3c:1d:bb:74:b1:ce:68:99:49:d0:4a:51:b5:68: 4b:e2:ec:11:f8:8c:a8:93:c2:1f:cf:33:82:e4:d5:c6:1c:86: a9:b5:7f:61:4f:2a:54:19:43:10:8a:c3:2c:ff:6a:81:cf:f8: 28:14:7a:52:99:1e:a6:65:7a:a5:42:91:5c:9a:59:d2:7b:c8: 85:99:73:b9:01:18:c5:6b:17:b0:8e:38:ab:a9:94:91:dc:f3: 4f:76:6c:20:17:38:30:c1:15:7d:38:6a:cc:dd:a4:a7:41:4c: ee:1e:b1:cb:dc:ca:06:ab:a0:a9:8e:e6:fb:70:cb:41:af:d8: a0:f8:9f:e3:32:8e:28:b3:a2:5b:95:66:69:e0:f2:ab:1f:7c: d2:79:c8:57:c1:1f:04:d7:50:ec:25:c1:ef:85:8f:d2:2d:7a: 29:5f:f6:fa:15:dc:1d:73:81:90:56:a4:35:db:f0:83:5b:06: fa:f3:28:a5:35:71:f1:e5:d6:ad:5a:1c:12:b9:3f:e7:35:c7: 4b:30:5f:6b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFREIxMTAvBgNVBAUTKDU5NEY3QTBCQTlCRDFDMTM4Njg0N0NFODk2Mzk2M0ZF NEU3MTYzNkMwHhcNMjMxMTAxMDUxNTQ2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxZGYwMS00NjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0nJCuO0bdRNbLhtJTnYj/udxU3dgFbdHdnC8Efew83JWnvYa40YZPHoqChF zQIMb8grgExZNnULqtWxEoXitOGN2h0qY+7R344SvJdzc2NjWK9xboyx5+7ESiLQ o45oQB4Eur3rLdifNlyOe6S9cscEzVKvMzQji2taL9pRN2rU7JYPEb1OEOQQkf7E mZx25E/6pErGw+cNJs4dI8EaZ0YJUwTqgj4V/2+avLyPo0Xj/mAFVk6RG/ULy0v1 f1v6yqAP0FnCgXHbno+sJlqHCT0IBDIdX77PcSRWWVp+C51L2HB7OZ7PhA5Q2sP2 IX8tIcPl5JEOF6OiVH1iUfb0AwIDAQABo4IClDCCApAwHQYDVR0OBBYEFMCv6x07 MkUV6kIaxffyFaR4i9bjMB8GA1UdIwQYMBaAFFlPegupvRwThoR86JY5Y/5OcWNs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkVEQi8zNEQ1RDdFNjU1 MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhCT0doSHpvbGpsal9rNXhZ MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dVOTZDNm05SEJPR2hIem9samxqX2s1eFkydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZFREIvMzRENUQ3RTY1NTAyMTFFRDk2NEI3QTRBQzRGOUFFMDIvM0NFNUMyM0E1 NTA2MTFFRDk2QzhGMzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCeWTANBgkqhkiG9w0BAQsFAAOCAQEAPcbt/v5NFZgtWQ+u 5WZCmA72ok8HPcOXu47D6sCm+SZrGDbglfvJDXfaIxbR4E3s2cRSDVPhaHlc1Twd u3SxzmiZSdBKUbVoS+LsEfiMqJPCH88zguTVxhyGqbV/YU8qVBlDEIrDLP9qgc/4 KBR6UpkepmV6pUKRXJpZ0nvIhZlzuQEYxWsXsI44q6mUkdzzT3ZsIBc4MMEVfThq zN2kp0FM7h6xy9zKBqugqY7m+3DLQa/YoPif4zKOKLOiW5VmaeDyqx980nnIV8Ef BNdQ7CXB74WP0i16KV/2+hXcHXOBkFakNdvwg1sG+vMopTVx8eXWrVocErk/5zXH SzBfaw== -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:22 2024 by rpki-client on console-fra.rpki-client.org