$ rpki-client -vvf rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/09B62A48833411ECBB74C786C4F9AE02.roa File: 09B62A48833411ECBB74C786C4F9AE02.roa (raw, json) Hash identifier: mffYPHTSbMXZckc8X+taAxD7anAlSKTECrlhUJg8WFU= Subject key identifier: 25:4E:13:9A:CB:36:30:6B:18:77:58:75:82:46:40:EE:54:A9:8F:E7 Certificate issuer: /CN=A91596C4/serialNumber=3EE26FBA4BE359DEAE500792EBFF78D00ACB760C Certificate serial: 02CC Authority key identifier: 3E:E2:6F:BA:4B:E3:59:DE:AE:50:07:92:EB:FF:78:D0:0A:CB:76:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PuJvukvjWd6uUAeS6_940ArLdgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/09B62A48833411ECBB74C786C4F9AE02.roa Signing time: Mon 27 Nov 2023 02:34:28 +0000 ROA not before: Mon 27 Nov 2023 02:34:28 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 1221 IP address blocks: 149.234.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/PuJvukvjWd6uUAeS6_940ArLdgw.crl rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/PuJvukvjWd6uUAeS6_940ArLdgw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PuJvukvjWd6uUAeS6_940ArLdgw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 716 (0x2cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91596C4/serialNumber=3EE26FBA4BE359DEAE500792EBFF78D00ACB760C Validity Not Before: Nov 27 02:34:28 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65640033-7d09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0b:ec:b3:b8:62:49:27:14:35:79:2b:1c:17: 07:be:b8:d0:c4:e1:52:4d:1d:ff:56:bf:d0:6e:57: 40:c0:80:7d:96:94:ed:97:d8:0b:f1:96:9a:25:8a: 3e:3d:49:f8:37:f1:e1:74:eb:07:a3:7f:53:b2:b8: 3d:63:12:6e:47:9e:6a:66:e3:04:a6:c3:27:55:3b: 7d:a4:d4:89:e4:f6:48:96:d0:94:7c:b6:0b:6d:45: f3:7e:70:c2:49:c0:1f:ff:66:0b:29:5f:cc:fb:58: db:a0:17:45:54:d4:4e:59:36:7a:2a:72:56:5a:1e: 9f:9f:7b:3d:31:13:d2:01:08:d7:ae:aa:75:fc:a4: de:a8:f9:0d:ad:99:85:7e:0b:e9:81:10:30:a5:68: d3:fc:1b:c4:98:dc:3c:1b:10:68:31:82:a9:61:5a: 18:c6:a5:cf:41:2e:a6:be:72:84:59:9a:37:0e:f1: 67:70:41:fb:09:2e:61:6f:f8:99:af:fc:18:a4:21: 23:b0:f0:5d:e4:7d:7a:3f:c8:33:1c:5a:e9:db:50: bf:68:c5:93:04:20:fc:2d:6d:7c:e9:35:81:c6:29: c2:6b:6b:58:51:22:30:01:02:92:ef:d0:9b:fd:90: 39:0a:00:33:38:ac:14:51:16:ce:d1:75:93:60:9a: e2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4E:13:9A:CB:36:30:6B:18:77:58:75:82:46:40:EE:54:A9:8F:E7 X509v3 Authority Key Identifier: keyid:3E:E2:6F:BA:4B:E3:59:DE:AE:50:07:92:EB:FF:78:D0:0A:CB:76:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/PuJvukvjWd6uUAeS6_940ArLdgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PuJvukvjWd6uUAeS6_940ArLdgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/09B62A48833411ECBB74C786C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.189.0/24 Signature Algorithm: sha256WithRSAEncryption c3:a1:ba:27:ae:66:e3:ce:89:c7:c7:82:88:da:11:01:8d:43: b1:db:5f:96:01:9f:ce:df:b1:ba:40:08:3b:da:6a:86:cc:f7: 50:b4:42:24:9f:70:cd:73:c4:1f:3b:53:24:18:61:5f:a1:2f: 03:c0:a6:9c:34:76:f8:9b:ac:3b:48:5b:35:46:a6:a3:e9:72: fd:e6:16:27:80:8f:86:86:ad:6c:bc:d2:10:94:ac:79:2d:8c: 16:02:7a:92:1d:7e:70:15:74:10:55:c7:49:a4:af:46:8d:58: 63:21:c3:47:70:9f:08:6b:1c:be:52:c3:39:84:7e:8c:a8:ed: 6c:5f:33:34:43:ba:7d:3d:86:3d:a8:24:9c:b2:9a:99:b3:a9: 66:9e:b8:1e:9a:2d:40:df:5f:73:db:4d:fd:43:ee:b7:49:b3: 72:20:ea:a3:2e:55:e6:e9:86:90:27:6f:1a:87:39:27:e1:e8: 08:d7:00:74:72:bd:fb:73:87:00:4e:5e:26:ef:29:d1:d2:bb: 2c:29:09:36:9a:ab:4f:20:7e:bb:97:a3:7c:62:a1:05:01:3d: 30:92:31:1d:f2:e9:a9:60:5c:f5:2d:c5:e0:d0:24:58:50:76: b3:1c:48:17:bf:16:97:11:39:06:d3:ec:cc:01:55:8e:7f:20: 96:0e:56:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk2QzQxMTAvBgNVBAUTKDNFRTI2RkJBNEJFMzU5REVBRTUwMDc5MkVCRkY3OEQw MEFDQjc2MEMwHhcNMjMxMTI3MDIzNDI4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY0MDAzMy03ZDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAvss7hiSScUNXkrHBcHvrjQxOFSTR3/Vr/QbldAwIB9lpTtl9gL8ZaaJYo+ PUn4N/HhdOsHo39Tsrg9YxJuR55qZuMEpsMnVTt9pNSJ5PZIltCUfLYLbUXzfnDC ScAf/2YLKV/M+1jboBdFVNROWTZ6KnJWWh6fn3s9MRPSAQjXrqp1/KTeqPkNrZmF fgvpgRAwpWjT/BvEmNw8GxBoMYKpYVoYxqXPQS6mvnKEWZo3DvFncEH7CS5hb/iZ r/wYpCEjsPBd5H16P8gzHFrp21C/aMWTBCD8LW186TWBxinCa2tYUSIwAQKS79Cb /ZA5CgAzOKwUURbO0XWTYJriCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCVOE5rL NjBrGHdYdYJGQO5UqY/nMB8GA1UdIwQYMBaAFD7ib7pL41nerlAHkuv/eNAKy3YM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTZDNC9GM0RERUVERTgz MzAxMUVDOEZGMzkzODNDNEY5QUUwMi9QdUp2dWt2aldkNnVVQWVTNl85NDBBckxk Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1B1SnZ1a3ZqV2Q2dVVBZVM2Xzk0MEFyTGRndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTk2QzQvRjNEREVFREU4MzMwMTFFQzhGRjM5MzgzQzRGOUFFMDIvMDlCNjJBNDg4 MzM0MTFFQ0JCNzRDNzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACV6r0wDQYJKoZIhvcNAQELBQADggEBAMOhuieuZuPOicfH gojaEQGNQ7HbX5YBn87fsbpACDvaaobM91C0QiSfcM1zxB87UyQYYV+hLwPAppw0 dvibrDtIWzVGpqPpcv3mFieAj4aGrWy80hCUrHktjBYCepIdfnAVdBBVx0mkr0aN WGMhw0dwnwhrHL5SwzmEfoyo7WxfMzRDun09hj2oJJyympmzqWaeuB6aLUDfX3Pb Tf1D7rdJs3Ig6qMuVebphpAnbxqHOSfh6AjXAHRyvftzhwBOXibvKdHSuywpCTaa q08gfruXo3xioQUBPTCSMR3y6algXPUtxeDQJFhQdrMcSBe/FpcROQbT7MwBVY5/ IJYOVlE= -----END CERTIFICATE-----Generated at Sat May 11 03:57:07 2024 by rpki-client on console-fra.rpki-client.org