$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa File: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (raw, json) Hash identifier: yjky08AQY+dPwyP69s9GLdixTPFDsx3cxvRcWPlEUr4= Subject key identifier: 7F:50:CD:11:10:F7:49:9B:CF:B9:20:6C:7A:D5:0E:C1:8C:EF:31:13 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 15AD Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa Signing time: Sat 02 Dec 2023 17:24:39 +0000 ROA not before: Sat 02 Dec 2023 17:24:39 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 18190 IP address blocks: 155.137.88.0/24 maxlen: 24 155.137.89.0/24 maxlen: 24 155.137.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 17:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5549 (0x15ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: Dec 2 17:24:39 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b6856-e6d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fd:e5:68:c4:b2:0a:cd:76:16:aa:81:e9:08: ee:18:12:99:71:36:bd:cb:4d:ec:f8:1c:53:65:a1: 2e:46:45:7e:b7:af:76:90:02:83:fb:27:b6:7b:e5: 21:98:86:1e:76:ac:dc:e0:63:bc:9d:82:e0:8f:46: 62:4c:d9:5a:8a:2b:f8:cc:d6:32:04:f2:50:98:8a: 84:86:38:59:7e:11:5d:ff:b3:36:8d:e6:62:74:76: fb:ff:3b:d5:8f:2e:84:cc:e5:bb:55:77:6f:e1:93: 58:5b:ed:f9:be:a0:ee:b5:3d:96:c3:26:a0:fb:ec: d5:02:4b:9c:73:8e:6f:9d:93:ce:34:e2:03:1f:15: 56:b9:ae:86:34:3c:13:d9:8c:4f:46:64:f2:df:ae: 28:f9:34:55:c2:5b:b9:e9:a4:62:7e:43:f0:d9:c1: 95:f7:ac:75:ce:0a:88:21:49:61:9a:13:f7:0c:01: 04:ea:9f:ca:42:8b:aa:49:20:e7:73:aa:bf:33:a2: c0:23:0e:0c:1d:7b:01:66:2b:4a:bf:94:05:bb:90: 10:c8:9a:93:c2:7f:66:ba:07:92:4c:28:b1:dd:39: 10:f7:72:61:04:a3:32:62:47:48:00:d8:d3:ce:50: 0a:dc:41:85:f7:83:9d:25:7a:47:83:54:6d:f9:88: bc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:50:CD:11:10:F7:49:9B:CF:B9:20:6C:7A:D5:0E:C1:8C:EF:31:13 X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 155.137.88.0-155.137.90.255 Signature Algorithm: sha256WithRSAEncryption 13:1f:49:32:72:76:27:22:1a:08:f4:99:e3:62:6a:14:64:ca: 65:3f:02:91:ab:eb:08:e2:a5:49:44:8f:9b:3c:3f:34:60:a9: 48:ee:0a:45:4d:69:86:49:17:40:3d:d2:a6:f2:e5:ae:72:86: 2c:30:d8:de:34:fa:da:d4:73:d8:5b:74:cf:b1:05:df:4a:52: 34:b6:06:fd:99:90:99:bd:ea:a9:f4:60:8b:0a:5f:28:6c:16: 97:a2:e6:33:8a:c2:25:02:1c:27:8f:60:e7:be:37:a7:f2:95: c0:f3:a8:7f:2c:a5:05:76:83:94:8e:f6:0d:09:de:3f:84:05: 83:5a:15:4b:c9:09:c6:65:bf:49:91:ac:cb:21:cc:97:04:7e: 0b:8d:df:74:d9:28:6e:f5:8c:83:8e:4a:84:a1:ec:e1:ce:ee: 15:e3:9d:dd:78:80:5e:9d:02:06:bd:47:42:eb:64:58:ee:bc: 91:5a:f1:3c:bf:50:b9:e8:8d:1b:9c:96:0d:0f:e8:7f:c5:1b: 8c:71:6c:6f:79:11:f4:0f:54:be:28:d6:32:90:8b:27:87:d5: 2a:95:ed:b2:93:7d:7a:1b:42:17:05:bd:9d:fe:52:47:7d:c9: c7:e9:49:81:40:f1:6d:f9:0b:ce:27:5a:74:33:89:43:0e:2c: 92:a8:f9:6c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICFa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjMxMjAyMTcyNDM5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNjg1Ni1lNmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2P3laMSyCs12FqqB6QjuGBKZcTa9y03s+BxTZaEuRkV+t692kAKD+ye2e+Uh mIYedqzc4GO8nYLgj0ZiTNlaiiv4zNYyBPJQmIqEhjhZfhFd/7M2jeZidHb7/zvV jy6EzOW7VXdv4ZNYW+35vqDutT2Wwyag++zVAkucc45vnZPONOIDHxVWua6GNDwT 2YxPRmTy364o+TRVwlu56aRifkPw2cGV96x1zgqIIUlhmhP3DAEE6p/KQouqSSDn c6q/M6LAIw4MHXsBZitKv5QFu5AQyJqTwn9mugeSTCix3TkQ93JhBKMyYkdIANjT zlAK3EGF94OdJXpHg1Rt+Yi8MwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFH9QzREQ 90mbz7kgbHrVDsGM7zETMB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRGNTkvNDRBNkZGNjQwMENCMTFFOEJFQjFFRjEwQzRGOUFFMDIvQUZCNTBEN0Ey QUFEMTFFRUE1RDk3MDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA5uJWAMEAJuJWjANBgkqhkiG9w0BAQsFAAOCAQEAEx9J MnJ2JyIaCPSZ42JqFGTKZT8CkavrCOKlSUSPmzw/NGCpSO4KRU1phkkXQD3SpvLl rnKGLDDY3jT62tRz2Ft0z7EF30pSNLYG/ZmQmb3qqfRgiwpfKGwWl6LmM4rCJQIc J49g5743p/KVwPOofyylBXaDlI72DQneP4QFg1oVS8kJxmW/SZGsyyHMlwR+C43f dNkobvWMg45KhKHs4c7uFeOd3XiAXp0CBr1HQutkWO68kVrxPL9QueiNG5yWDQ/o f8UbjHFsb3kR9A9UvijWMpCLJ4fVKpXtspN9ehtCFwW9nf5SR33Jx+lJgUDxbfkL zidadDOJQw4skqj5bA== -----END CERTIFICATE-----Generated at Mon May 20 19:20:05 2024 by rpki-client on console-fra.rpki-client.org