$ rpki-client -vvf rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/9C89E3D2B21A11EBAC1DBF83C4F9AE02.roa File: 9C89E3D2B21A11EBAC1DBF83C4F9AE02.roa (raw, json) Hash identifier: yidf3KKa5ToZonu/nSkFCuiOANgFIFvsO1kt27sLB+w= Subject key identifier: 0F:AB:12:3D:2C:C4:36:27:DA:D3:D4:F0:F0:80:19:26:34:7F:2C:D1 Certificate issuer: /CN=A913BC05/serialNumber=278AAC9FC6223BB037157EB39F96DBBDA8E6D256 Certificate serial: 04BD Authority key identifier: 27:8A:AC:9F:C6:22:3B:B0:37:15:7E:B3:9F:96:DB:BD:A8:E6:D2:56 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/J4qsn8YiO7A3FX6zn5bbvajm0lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/9C89E3D2B21A11EBAC1DBF83C4F9AE02.roa Signing time: Mon 02 Oct 2023 19:37:18 +0000 ROA not before: Mon 02 Oct 2023 19:37:18 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 58427 IP address blocks: 91.109.216.0/24 maxlen: 24 91.109.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/J4qsn8YiO7A3FX6zn5bbvajm0lY.crl rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/J4qsn8YiO7A3FX6zn5bbvajm0lY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/J4qsn8YiO7A3FX6zn5bbvajm0lY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 15:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1213 (0x4bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BC05/serialNumber=278AAC9FC6223BB037157EB39F96DBBDA8E6D256 Validity Not Before: Oct 2 19:37:18 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651b1bee-3926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:13:70:b2:f5:b2:4b:b7:cf:2a:57:1a:db: b2:77:99:18:f2:d6:c0:b5:b9:41:a8:72:57:25:df: 7d:54:03:cd:36:c7:b2:6f:0f:04:84:0e:21:7f:6a: 6c:60:14:f1:ce:da:b4:1a:7c:88:88:ae:85:fa:85: c3:30:5c:1a:ab:51:de:27:d6:57:fd:a4:14:30:83: cf:7f:82:08:98:95:66:4d:8d:be:9b:00:18:bf:88: 92:96:04:7e:ae:62:06:2f:5e:d7:f4:2c:8c:6b:a3: 13:3f:2c:ae:e1:eb:8d:95:e2:a1:57:3d:21:4e:b2: 99:54:fa:ea:83:eb:ce:09:90:94:cd:82:81:72:6e: 2e:17:1e:4d:60:7e:35:78:97:e4:46:d3:a4:ef:84: a3:55:4d:b5:7b:16:17:43:7d:d4:a7:74:c0:64:37: e7:10:00:5e:c6:c0:2f:ff:14:03:9c:07:ec:68:4d: 9e:47:68:68:4b:da:e5:1a:3e:b5:27:6e:36:7f:9f: 57:92:f5:cc:3a:0c:18:c3:88:87:a1:bd:7b:9f:77: 75:bc:c4:fd:9f:b9:87:47:06:ec:21:9b:58:b7:b4: de:1f:51:4a:a5:98:51:54:a2:bb:fa:98:e5:e6:d5: 50:60:ff:3f:ff:b6:ee:d5:59:d1:ef:43:ed:a4:ad: 92:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AB:12:3D:2C:C4:36:27:DA:D3:D4:F0:F0:80:19:26:34:7F:2C:D1 X509v3 Authority Key Identifier: keyid:27:8A:AC:9F:C6:22:3B:B0:37:15:7E:B3:9F:96:DB:BD:A8:E6:D2:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/J4qsn8YiO7A3FX6zn5bbvajm0lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/J4qsn8YiO7A3FX6zn5bbvajm0lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/9C89E3D2B21A11EBAC1DBF83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 91.109.216.0/24 91.109.218.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:8e:bb:2f:d1:74:30:04:e1:24:71:61:b8:8c:76:eb:94:bf: a0:d9:02:5a:c3:48:c0:2b:f8:ed:55:53:d5:78:f4:5f:7c:7f: d3:a6:a3:d4:a6:9c:4b:cb:7f:32:6a:3e:4a:72:d0:c0:f3:b9: d5:79:01:a8:be:a6:be:f9:cf:22:43:0a:3e:78:1a:8c:a2:6e: 17:b7:f5:84:d3:b5:4f:04:62:51:ee:42:18:9d:22:49:45:ea: 62:c7:cb:3e:37:8e:88:7b:90:9f:69:51:14:ec:7c:22:53:fb: ff:cf:5d:ea:5f:e7:06:a4:0d:5e:77:9c:8e:36:87:da:d9:6f: 8a:8d:0a:06:b9:7d:d0:d0:47:3e:e7:34:d3:c2:d6:4d:de:93: 90:b6:31:94:0e:e2:b4:96:43:4d:a1:a6:8e:a2:0d:7b:aa:c3: 07:7b:43:5c:80:ea:15:8c:8d:0a:72:b7:25:d5:23:66:fe:ca: 19:63:91:fb:63:3b:12:e9:9e:fe:70:a4:e5:18:ff:9c:b3:41: ac:31:7c:6c:bb:2f:fa:fd:d8:18:35:92:aa:1a:60:3b:64:c5: 18:f6:ca:b4:9a:e1:70:f0:7c:25:0f:65:9a:34:44:cb:b9:c7: 82:e4:7b:ef:6b:9d:e9:81:b8:d8:77:e4:b5:a8:2b:1b:bc:01: 3d:6f:47:2d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JDMDUxMTAvBgNVBAUTKDI3OEFBQzlGQzYyMjNCQjAzNzE1N0VCMzlGOTZEQkJE QThFNkQyNTYwHhcNMjMxMDAyMTkzNzE4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiMWJlZS0zOTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEMTcLL1sku3zypXGtuyd5kY8tbAtblBqHJXJd99VAPNNseybw8EhA4hf2ps YBTxztq0GnyIiK6F+oXDMFwaq1HeJ9ZX/aQUMIPPf4IImJVmTY2+mwAYv4iSlgR+ rmIGL17X9CyMa6MTPyyu4euNleKhVz0hTrKZVPrqg+vOCZCUzYKBcm4uFx5NYH41 eJfkRtOk74SjVU21exYXQ33Up3TAZDfnEABexsAv/xQDnAfsaE2eR2hoS9rlGj61 J242f59XkvXMOgwYw4iHob17n3d1vMT9n7mHRwbsIZtYt7TeH1FKpZhRVKK7+pjl 5tVQYP8//7bu1VnR70PtpK2ScQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFA+rEj0s xDYn2tPU8PCAGSY0fyzRMB8GA1UdIwQYMBaAFCeKrJ/GIjuwNxV+s5+W272o5tJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkMwNS84MzU1OUM3Q0Iy MTkxMUVCODIwMzE0ODJDNEY5QUUwMi9KNHFzbjhZaU83QTNGWDZ6bjViYnZham0w bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0o0cXNuOFlpTzdBM0ZYNnpuNWJidmFqbTBsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0JDMDUvODM1NTlDN0NCMjE5MTFFQjgyMDMxNDgyQzRGOUFFMDIvOUM4OUUzRDJC MjFBMTFFQkFDMURCRjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABbbdgDBABbbdowDQYJKoZIhvcNAQELBQADggEBAH6Ouy/R dDAE4SRxYbiMduuUv6DZAlrDSMAr+O1VU9V49F98f9Omo9SmnEvLfzJqPkpy0MDz udV5Aai+pr75zyJDCj54Goyibhe39YTTtU8EYlHuQhidIklF6mLHyz43joh7kJ9p URTsfCJT+//PXepf5wakDV53nI42h9rZb4qNCga5fdDQRz7nNNPC1k3ek5C2MZQO 4rSWQ02hpo6iDXuqwwd7Q1yA6hWMjQpytyXVI2b+yhljkftjOxLpnv5wpOUY/5yz QawxfGy7L/r92Bg1kqoaYDtkxRj2yrSa4XDwfCUPZZo0RMu5x4Lke+9rnemBuNh3 5LWoKxu8AT1vRy0= -----END CERTIFICATE-----Generated at Wed Apr 24 21:18:12 2024 by rpki-client on console-ams.rpki-client.org