$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/B9B89A10FB8911EDBF95D70FC4F9AE02.roa File: B9B89A10FB8911EDBF95D70FC4F9AE02.roa (raw, json) Hash identifier: lRoYypbAmsJgYJlB5XMojg3ocpM7AoHA8Yth0HJ+218= Subject key identifier: 7A:F8:BF:DD:A6:75:BB:CB:7F:0C:23:A3:88:52:EA:92:CB:31:5B:6C Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 028F Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/B9B89A10FB8911EDBF95D70FC4F9AE02.roa Signing time: Sat 11 May 2024 04:10:44 +0000 ROA not before: Sat 11 May 2024 04:10:44 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135386 IP address blocks: 157.119.21.0/24 maxlen: 24 157.119.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Validity Not Before: May 11 04:10:44 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663eefc4-9faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5b:52:50:0a:36:0d:41:10:e2:3c:fc:9b:3a: 64:fb:39:5f:0e:45:92:2a:97:99:23:10:50:b6:f3: a4:eb:82:5e:a8:a7:6a:eb:ab:6a:bc:53:00:6b:5b: f8:a4:49:40:80:28:5c:06:72:0e:f9:19:1a:e8:29: bd:7e:bc:08:0a:f5:c5:bc:dd:a5:9f:f5:a1:e7:a5: d1:90:ea:da:24:b9:67:e7:c7:1c:14:c8:13:ce:79: 0e:e7:5c:8f:7a:d9:b3:51:70:a4:65:db:b0:81:41: dc:74:d2:c8:35:4c:e8:b7:19:3f:55:e6:73:61:57: e8:3c:29:82:f3:ba:dc:50:83:55:82:8a:99:e6:a6: 78:c9:ba:e7:0d:96:89:6f:e2:91:59:6f:3e:4c:88: cf:92:80:67:ca:fc:c7:02:45:56:d7:53:96:4a:64: 78:b4:63:87:02:b2:68:1e:15:29:53:10:a5:24:d4: bf:a3:bb:7b:cd:cc:22:20:11:35:7a:43:fc:12:d4: a3:20:be:6c:50:4e:f0:d8:55:eb:27:3c:39:41:93: 72:ec:c0:8e:4a:11:69:2f:d9:c3:b1:24:68:6e:e0: 0f:8c:a6:8e:9a:52:20:f4:ea:d4:ea:9e:29:b7:6d: 68:aa:ce:eb:ae:83:f5:1f:33:62:2f:49:7d:3c:e5: ab:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F8:BF:DD:A6:75:BB:CB:7F:0C:23:A3:88:52:EA:92:CB:31:5B:6C X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/B9B89A10FB8911EDBF95D70FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.21.0-157.119.22.255 Signature Algorithm: sha256WithRSAEncryption 20:79:69:30:39:ba:9f:92:2d:98:1b:78:1b:d3:6f:40:bb:f5: df:29:e3:bb:b4:48:82:f1:3a:c5:18:e1:cf:7e:dc:b9:ca:a7: c2:1d:0e:84:f7:c6:0d:b3:67:eb:52:24:a3:94:00:2a:c9:e3: 15:63:3b:fd:e4:9b:02:3e:6d:a6:5a:6d:03:3a:70:77:7c:65: 70:45:e0:ba:d7:6e:64:32:f6:86:85:7e:c7:da:91:9f:1d:67: c3:bd:49:c4:8f:31:99:ff:0d:e2:f3:2c:0a:84:d3:3d:eb:3a: 64:26:eb:48:18:d6:eb:89:7d:5e:9d:70:aa:5e:2c:41:36:97: c6:18:34:dc:80:f0:c7:dd:39:c0:06:a6:f4:90:0d:fb:cd:2f: cb:7c:5e:9f:f5:56:c8:c7:49:c8:71:9a:07:ad:7b:e4:82:10: f3:de:04:2a:ff:36:0d:73:fe:be:8a:b9:3a:0e:b9:bc:57:99: b5:31:27:40:9b:d0:41:c1:10:5b:31:7a:44:8a:92:a6:be:99: 52:0f:8f:d0:fd:7b:19:39:00:b7:21:b8:79:0c:bb:e3:36:46: 73:35:85:ef:80:3e:0e:ea:59:87:27:f0:da:aa:2b:17:95:dd: 50:bc:00:5c:4e:5a:a9:e0:f0:1c:f8:de:c6:1f:1d:5a:37:39: b0:c0:92:d7 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjQwNTExMDQxMDQ0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlZWZjNC05ZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArltSUAo2DUEQ4jz8mzpk+zlfDkWSKpeZIxBQtvOk64JeqKdq66tqvFMAa1v4 pElAgChcBnIO+Rka6Cm9frwICvXFvN2ln/Wh56XRkOraJLln58ccFMgTznkO51yP etmzUXCkZduwgUHcdNLINUzotxk/VeZzYVfoPCmC87rcUINVgoqZ5qZ4ybrnDZaJ b+KRWW8+TIjPkoBnyvzHAkVW11OWSmR4tGOHArJoHhUpUxClJNS/o7t7zcwiIBE1 ekP8EtSjIL5sUE7w2FXrJzw5QZNy7MCOShFpL9nDsSRobuAPjKaOmlIg9OrU6p4p t21oqs7rroP1HzNiL0l9POWrCwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFHr4v92m dbvLfwwjo4hS6pLLMVtsMB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvQjlCODlBMTBG Qjg5MTFFREJGOTVENzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAJ13FQMEAJ13FjANBgkqhkiG9w0BAQsFAAOCAQEAIHlp MDm6n5ItmBt4G9NvQLv13ynju7RIgvE6xRjhz37cucqnwh0OhPfGDbNn61Iko5QA KsnjFWM7/eSbAj5tplptAzpwd3xlcEXgutduZDL2hoV+x9qRnx1nw71JxI8xmf8N 4vMsCoTTPes6ZCbrSBjW64l9Xp1wql4sQTaXxhg03IDwx905wAam9JAN+80vy3xe n/VWyMdJyHGaB6175IIQ894EKv82DXP+voq5Og65vFeZtTEnQJvQQcEQWzF6RIqS pr6ZUg+P0P17GTkAtyG4eQy74zZGczWF74A+DupZhyfw2qorF5XdULwAXE5aqeDw HPjexh8dWjc5sMCS1w== -----END CERTIFICATE-----Generated at Sun May 19 04:22:04 2024 by rpki-client on console-fra.rpki-client.org