$ rpki-client -vvf rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/7B40808086A411EE90BD604AC4F9AE02.roa File: 7B40808086A411EE90BD604AC4F9AE02.roa (raw, json) Hash identifier: kPB+7Y3RTie/Oq7MRgPUTEuPgMZheJwSjNt8QuYQwFA= Subject key identifier: 88:7D:5A:F1:36:B7:84:86:D6:9A:09:29:38:94:4D:F4:8D:DD:EB:AE Certificate issuer: /CN=A91619D8/serialNumber=BCF2C8ADBC33E27E5C7674A66DA865BF5AA66BE5 Certificate serial: 04CC Authority key identifier: BC:F2:C8:AD:BC:33:E2:7E:5C:76:74:A6:6D:A8:65:BF:5A:A6:6B:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPLIrbwz4n5cdnSmbahlv1qma-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/7B40808086A411EE90BD604AC4F9AE02.roa Signing time: Tue 23 Apr 2024 02:04:11 +0000 ROA not before: Tue 23 Apr 2024 02:04:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55330 IP address blocks: 58.147.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/vPLIrbwz4n5cdnSmbahlv1qma-U.crl rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/vPLIrbwz4n5cdnSmbahlv1qma-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPLIrbwz4n5cdnSmbahlv1qma-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1228 (0x4cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91619D8/serialNumber=BCF2C8ADBC33E27E5C7674A66DA865BF5AA66BE5 Validity Not Before: Apr 23 02:04:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6627171a-8a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3d:64:2e:8d:21:1d:ed:d7:a5:95:5a:71:ae: 59:bc:be:d3:6b:3b:32:29:46:04:bc:6e:06:f3:ef: 3a:e6:a9:98:d2:3a:60:5f:bb:4f:f4:b1:eb:ea:73: 2a:7f:34:61:48:07:ad:90:87:0f:11:7f:3d:8b:94: 35:b9:8f:65:8c:e5:90:1b:c1:1b:fd:6a:e5:bd:13: c1:e0:07:af:48:5a:1f:58:05:72:b8:37:46:d8:e6: 53:20:d7:6d:a1:52:eb:2a:ae:fc:b1:35:fe:a9:21: fe:01:12:35:55:9f:23:71:bd:66:87:b1:30:b1:c0: 8e:d3:b3:05:c4:77:f6:a1:43:f6:b8:9e:cb:4d:61: 86:13:df:e2:13:11:30:b2:67:53:c6:4b:09:81:c1: 73:43:73:f4:86:68:52:ea:d3:36:57:cb:ce:52:e3: d3:f2:c1:5d:3c:4e:b1:cf:27:e7:70:9c:fb:86:f9: 04:95:5c:f3:83:87:d8:b0:69:0e:fc:50:06:b7:71: 37:f0:b2:dd:43:0b:62:71:97:70:13:0c:e2:d6:be: d2:3b:ab:b4:79:0a:89:d9:d7:a1:15:d9:5a:a3:8c: 6c:18:4a:96:1b:11:f2:9f:6f:cc:70:fa:1b:64:35: c3:15:5c:9b:d0:b5:44:71:fb:66:b2:61:b7:31:02: 6f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:7D:5A:F1:36:B7:84:86:D6:9A:09:29:38:94:4D:F4:8D:DD:EB:AE X509v3 Authority Key Identifier: keyid:BC:F2:C8:AD:BC:33:E2:7E:5C:76:74:A6:6D:A8:65:BF:5A:A6:6B:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/vPLIrbwz4n5cdnSmbahlv1qma-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPLIrbwz4n5cdnSmbahlv1qma-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/7B40808086A411EE90BD604AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.147.156.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:d3:33:27:ce:cb:ed:d7:bb:41:86:4e:9a:7b:2a:8d:b9:8a: d7:68:9b:fd:be:3c:bb:b2:57:b9:e5:ce:62:4d:50:e3:c6:30: a0:42:f2:c6:f3:19:c6:45:c8:08:de:ba:6c:60:4e:75:1c:bc: c7:2d:92:8f:4a:7e:1e:34:26:42:6d:09:cd:e4:67:38:99:c3: 42:e2:a8:03:fb:17:d2:0a:28:e9:b8:95:ac:09:e2:14:d8:fb: e1:f5:64:3d:03:bd:6b:89:bb:83:f0:4d:06:45:82:79:0a:40: 90:25:7b:02:47:be:29:50:5d:5f:2b:8a:1c:82:72:6e:d3:9f: 22:94:48:58:0d:20:cd:e8:ca:b8:dc:99:1d:85:5e:9c:7e:08: fe:6a:a0:28:bf:55:2c:28:c2:83:7b:04:0a:9e:8f:33:14:d2: aa:91:93:a2:15:38:9c:35:53:27:e2:d6:2c:a1:25:12:fa:29: bb:f5:87:5c:5e:44:9b:91:3c:ff:77:17:bb:97:ea:0a:11:9d: a6:ef:cd:ae:50:7a:f6:d8:65:31:f7:5a:c1:6d:e5:1d:28:fa: b4:75:4b:7f:87:67:8e:6c:30:e4:5c:af:48:f3:17:12:05:30: b6:d5:53:20:49:a9:2e:e0:03:db:f4:3f:a6:f6:00:c4:5d:56: 47:63:65:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE5RDgxMTAvBgNVBAUTKEJDRjJDOEFEQkMzM0UyN0U1Qzc2NzRBNjZEQTg2NUJG NUFBNjZCRTUwHhcNMjQwNDIzMDIwNDExWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI3MTcxYS04YTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT1kLo0hHe3XpZVaca5ZvL7TazsyKUYEvG4G8+865qmY0jpgX7tP9LHr6nMq fzRhSAetkIcPEX89i5Q1uY9ljOWQG8Eb/WrlvRPB4AevSFofWAVyuDdG2OZTINdt oVLrKq78sTX+qSH+ARI1VZ8jcb1mh7EwscCO07MFxHf2oUP2uJ7LTWGGE9/iExEw smdTxksJgcFzQ3P0hmhS6tM2V8vOUuPT8sFdPE6xzyfncJz7hvkElVzzg4fYsGkO /FAGt3E38LLdQwticZdwEwzi1r7SO6u0eQqJ2dehFdlao4xsGEqWGxHyn2/McPob ZDXDFVyb0LVEcftmsmG3MQJvKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIh9WvE2 t4SG1poJKTiUTfSN3euuMB8GA1UdIwQYMBaAFLzyyK28M+J+XHZ0pm2oZb9apmvl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTlEOC8zNTU4RDFDNkU0 M0ExMUVCQUM4RDUwMUFDNEY5QUUwMi92UExJcmJ3ejRuNWNkblNtYmFobHYxcW1h LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQTElyYnd6NG41Y2RuU21iYWhsdjFxbWEtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE5RDgvMzU1OEQxQzZFNDNBMTFFQkFDOEQ1MDFBQzRGOUFFMDIvN0I0MDgwODA4 NkE0MTFFRTkwQkQ2MDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6k5wwDQYJKoZIhvcNAQELBQADggEBAHvTMyfOy+3Xu0GG Tpp7Ko25itdom/2+PLuyV7nlzmJNUOPGMKBC8sbzGcZFyAjeumxgTnUcvMctko9K fh40JkJtCc3kZziZw0LiqAP7F9IKKOm4lawJ4hTY++H1ZD0DvWuJu4PwTQZFgnkK QJAlewJHvilQXV8rihyCcm7TnyKUSFgNIM3oyrjcmR2FXpx+CP5qoCi/VSwowoN7 BAqejzMU0qqRk6IVOJw1Uyfi1iyhJRL6Kbv1h1xeRJuRPP93F7uX6goRnabvza5Q evbYZTH3WsFt5R0o+rR1S3+HZ45sMORcr0jzFxIFMLbVUyBJqS7gA9v0P6b2AMRd VkdjZUg= -----END CERTIFICATE-----Generated at Tue May 7 03:10:19 2024 by rpki-client on console-ams.rpki-client.org