$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/30C3D4F81D8A11EA8ECDAA75C4F9AE02.roa File: 30C3D4F81D8A11EA8ECDAA75C4F9AE02.roa (raw, json) Hash identifier: 5ix6TXQdDGiTg3sIxgSP6CSbbOhBSuDftWpLz4sc6TI= Subject key identifier: 87:C3:BB:14:F0:6E:0C:B9:72:44:EB:31:68:44:08:C2:A8:37:2B:1B Certificate issuer: /CN=A9152D08/serialNumber=34DC20129EAD6F41A7CA2D99C9BD3E7E6033CB88 Certificate serial: 0B8D Authority key identifier: 34:DC:20:12:9E:AD:6F:41:A7:CA:2D:99:C9:BD:3E:7E:60:33:CB:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/30C3D4F81D8A11EA8ECDAA75C4F9AE02.roa Signing time: Thu 04 Apr 2024 20:28:53 +0000 ROA not before: Thu 04 Apr 2024 20:28:53 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 206776 IP address blocks: 111.90.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.crl rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2957 (0xb8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D08/serialNumber=34DC20129EAD6F41A7CA2D99C9BD3E7E6033CB88 Validity Not Before: Apr 4 20:28:53 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f0d84-3409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:17:64:61:24:02:9e:3e:f0:1c:cc:75:39:de: 08:bd:f4:65:e6:d6:1d:79:fe:74:ad:24:9e:bc:b2: d7:96:00:a9:8a:ca:30:a9:e6:be:a7:df:4c:6f:fc: 88:6f:a9:19:f2:c2:3c:cc:47:e0:10:0a:57:b3:07: c0:66:66:60:05:13:40:da:f9:26:e4:cb:0e:b0:8a: 13:1e:5b:d9:48:d9:68:33:4e:fd:b1:50:f0:38:10: a6:6b:ea:3d:4c:63:7d:9a:ae:da:f1:6d:4e:f6:31: e3:cf:62:e8:6b:c5:19:7d:e3:bd:85:47:60:c0:20: bd:d9:ca:02:bc:1d:8b:c1:d1:c8:23:75:7c:b8:09: f8:af:80:e8:be:80:71:5e:7d:db:bb:f3:50:44:d5: ef:74:4d:cb:c3:43:61:b3:48:1e:33:cd:f0:b3:cc: 48:f9:9a:23:e4:5e:7d:8c:b1:95:92:71:b7:cb:82: 82:ea:60:4c:bc:61:e9:ec:a2:6a:11:80:b6:7b:9b: 47:cd:e0:bf:9a:f4:e3:c9:f3:75:59:d7:dc:fa:e0: bc:a1:18:cc:33:d8:63:95:3a:83:33:fc:55:9f:30: cc:bc:9d:65:5f:a1:3c:0e:fa:5b:04:61:18:da:a7: 67:f7:b1:b4:8e:e1:04:71:de:c7:42:2b:42:2d:3d: 87:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C3:BB:14:F0:6E:0C:B9:72:44:EB:31:68:44:08:C2:A8:37:2B:1B X509v3 Authority Key Identifier: keyid:34:DC:20:12:9E:AD:6F:41:A7:CA:2D:99:C9:BD:3E:7E:60:33:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/30C3D4F81D8A11EA8ECDAA75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.90.156.0/24 Signature Algorithm: sha256WithRSAEncryption 91:67:b0:6c:93:97:1a:92:7f:b9:e5:bb:1b:34:d1:db:93:55: 9f:a4:78:66:f0:4e:60:3c:0c:da:65:a1:ff:5b:8e:d2:b8:ac: 13:f8:6a:8a:7e:43:c5:09:07:98:92:e4:68:48:64:2c:dc:49: b0:4b:a6:9a:bc:13:46:78:24:12:3f:87:f3:aa:04:0b:c5:bd: 71:5e:f0:27:6b:64:30:34:28:53:11:11:46:e4:a7:26:cc:6c: e0:ae:f5:3e:da:0b:90:c1:e2:21:a8:8c:cc:39:33:17:4a:2e: ca:1c:54:ac:3c:95:64:86:60:dc:aa:52:20:c7:95:4a:79:65: b4:98:6b:85:b8:0c:9f:81:31:d4:76:b5:d7:a3:70:23:6a:fa: 91:ba:bd:b1:4e:a6:73:95:54:7a:d7:e4:d6:ef:9e:4a:ed:84: 7b:5a:6a:9c:7f:97:40:fe:22:2e:bb:12:c1:6f:a0:79:2c:a8: bc:04:25:57:45:10:6d:61:86:a4:ab:8c:cc:4f:48:dd:ba:73: 36:9b:69:bd:7b:08:73:4b:ed:b9:07:67:da:d6:26:b2:6f:82: 7f:73:ed:79:77:4d:12:60:c7:7e:2a:8b:4b:98:1a:93:e9:6f: 8f:d7:99:54:2c:e6:f9:c1:01:f6:37:44:1e:72:dd:48:c1:60: 0f:c8:56:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMDgxMTAvBgNVBAUTKDM0REMyMDEyOUVBRDZGNDFBN0NBMkQ5OUM5QkQzRTdF NjAzM0NCODgwHhcNMjQwNDA0MjAyODUzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmMGQ4NC0zNDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBdkYSQCnj7wHMx1Od4IvfRl5tYdef50rSSevLLXlgCpisowqea+p99Mb/yI b6kZ8sI8zEfgEApXswfAZmZgBRNA2vkm5MsOsIoTHlvZSNloM079sVDwOBCma+o9 TGN9mq7a8W1O9jHjz2Loa8UZfeO9hUdgwCC92coCvB2LwdHII3V8uAn4r4DovoBx Xn3bu/NQRNXvdE3Lw0Nhs0geM83ws8xI+Zoj5F59jLGVknG3y4KC6mBMvGHp7KJq EYC2e5tHzeC/mvTjyfN1Wdfc+uC8oRjMM9hjlTqDM/xVnzDMvJ1lX6E8DvpbBGEY 2qdn97G0juEEcd7HQitCLT2HvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIfDuxTw bgy5ckTrMWhECMKoNysbMB8GA1UdIwQYMBaAFDTcIBKerW9Bp8otmcm9Pn5gM8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQwOC9GOUMzMzM5MjFE ODcxMUVBQTlDNUIxNzBDNEY5QUUwMi9OTndnRXA2dGIwR255aTJaeWIwLWZtQXp5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Od2dFcDZ0YjBHbnlpMlp5YjAtZm1Benk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJEMDgvRjlDMzMzOTIxRDg3MTFFQUE5QzVCMTcwQzRGOUFFMDIvMzBDM0Q0Rjgx RDhBMTFFQThFQ0RBQTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABvWpwwDQYJKoZIhvcNAQELBQADggEBAJFnsGyTlxqSf7nl uxs00duTVZ+keGbwTmA8DNplof9bjtK4rBP4aop+Q8UJB5iS5GhIZCzcSbBLppq8 E0Z4JBI/h/OqBAvFvXFe8CdrZDA0KFMREUbkpybMbOCu9T7aC5DB4iGojMw5MxdK LsocVKw8lWSGYNyqUiDHlUp5ZbSYa4W4DJ+BMdR2tdejcCNq+pG6vbFOpnOVVHrX 5NbvnkrthHtaapx/l0D+Ii67EsFvoHksqLwEJVdFEG1hhqSrjMxPSN26czabab17 CHNL7bkHZ9rWJrJvgn9z7Xl3TRJgx34qi0uYGpPpb4/XmVQs5vnBAfY3RB5y3UjB YA/IVr4= -----END CERTIFICATE-----Generated at Thu May 16 21:45:27 2024 by rpki-client on console-fra.rpki-client.org