$ rpki-client -vvf rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/DFB66DA85E9211ED83D40E65C4F9AE02.roa File: DFB66DA85E9211ED83D40E65C4F9AE02.roa (raw, json) Hash identifier: wX4x7oM1mrdnNZS/h1UzVVC+/MIzmiu9MISDolryeIk= Subject key identifier: 88:54:0A:F0:39:E1:B2:05:39:02:77:11:4C:5B:32:9D:6B:AB:90:51 Certificate issuer: /CN=A91684D0/serialNumber=A5E6F5C74BBCEB4009C55EEA68970349971FF63A Certificate serial: AC Authority key identifier: A5:E6:F5:C7:4B:BC:EB:40:09:C5:5E:EA:68:97:03:49:97:1F:F6:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/peb1x0u860AJxV7qaJcDSZcf9jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/DFB66DA85E9211ED83D40E65C4F9AE02.roa Signing time: Thu 05 Oct 2023 03:44:39 +0000 ROA not before: Thu 05 Oct 2023 03:44:39 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138162 IP address blocks: 149.234.186.0/24 maxlen: 24 149.234.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/peb1x0u860AJxV7qaJcDSZcf9jo.crl rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/peb1x0u860AJxV7qaJcDSZcf9jo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/peb1x0u860AJxV7qaJcDSZcf9jo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91684D0/serialNumber=A5E6F5C74BBCEB4009C55EEA68970349971FF63A Validity Not Before: Oct 5 03:44:39 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651e3127-7d3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:88:c4:ac:fc:ea:e2:3c:3a:81:aa:da:e5:2c: a7:d5:85:ff:2a:7e:07:c9:b9:f2:5f:09:9c:76:ce: 06:71:d4:85:e9:71:9d:39:41:33:c9:63:5c:a0:6b: e8:68:d9:7c:80:38:75:78:de:4a:53:ac:c4:e2:15: 56:f6:38:98:ca:9b:13:42:35:a8:03:f9:ee:0a:b7: c9:85:a7:1f:b3:20:a4:81:d6:3d:18:63:e6:16:66: a0:46:b8:22:69:f0:01:63:fd:94:14:2f:3f:41:18: fa:8f:f6:b1:17:76:ef:2f:3d:4d:c4:3e:e8:37:a1: f9:e7:81:69:e4:d6:d1:5b:c8:34:51:c1:89:7c:1d: 73:1e:8c:31:b5:c6:f0:5f:cf:4b:4f:b2:36:e5:13: 1b:04:21:fd:aa:3f:b4:27:9e:ba:79:f5:f7:b2:c2: 38:35:27:de:0a:60:f7:d8:ae:d2:64:6c:75:30:f7: d3:54:13:24:93:4c:ce:20:45:55:b1:92:d5:e1:31: 6d:e5:58:49:3b:11:77:02:66:8d:24:97:db:0f:9b: 57:92:05:89:13:40:23:60:87:4b:77:56:ad:33:43: 6c:5c:32:92:fb:8d:8e:ef:2c:0d:60:e6:1b:83:39: 6f:a1:28:e2:12:f5:f1:3c:7f:8d:6c:0b:43:b0:a6: 93:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:54:0A:F0:39:E1:B2:05:39:02:77:11:4C:5B:32:9D:6B:AB:90:51 X509v3 Authority Key Identifier: keyid:A5:E6:F5:C7:4B:BC:EB:40:09:C5:5E:EA:68:97:03:49:97:1F:F6:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/peb1x0u860AJxV7qaJcDSZcf9jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/peb1x0u860AJxV7qaJcDSZcf9jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/DFB66DA85E9211ED83D40E65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.186.0/24 149.234.191.0/24 Signature Algorithm: sha256WithRSAEncryption 40:91:8f:d2:9a:f8:c6:3d:7b:78:68:28:51:49:c1:08:3d:6c: f2:fb:e6:71:ef:dc:ee:97:c5:89:7c:bb:d2:02:33:36:1d:89: b6:ed:18:3a:3d:84:01:2a:f8:14:c2:44:06:60:a3:b9:32:3b: 3c:0c:e4:54:d8:0a:25:92:1d:73:04:83:2a:4c:7b:75:6a:a5: 4b:8b:99:e7:05:e3:0f:c4:2d:1b:88:c0:7c:fc:aa:48:7d:5f: 1b:ba:a3:98:b7:65:67:26:08:d2:31:ae:3e:04:54:67:ce:2c: 0d:bc:c8:b9:51:80:1f:2a:64:6d:33:88:30:a7:78:29:b4:f4: 78:9a:8c:96:f7:67:f3:b0:35:70:e9:37:5c:8d:6a:ca:bf:f6: 85:aa:b0:64:ab:b7:23:1a:ad:6a:b3:c9:30:1b:89:d8:6d:0e: 58:a6:f5:96:69:b6:6c:b1:ec:40:ee:79:35:6c:d7:c4:2a:1f: b2:91:09:8a:3a:20:9a:e4:89:67:30:d6:12:00:ee:a2:b9:97: 4a:43:13:59:77:4d:6c:23:00:c0:3b:cc:a6:db:2d:2b:30:ef: b1:b9:88:27:da:e2:52:98:1b:74:eb:97:df:32:1e:63:94:c6: 8e:83:95:36:bc:94:dd:e5:3b:43:1b:f3:c8:93:b0:60:b8:f0: 15:6c:ec:0d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg0RDAxMTAvBgNVBAUTKEE1RTZGNUM3NEJCQ0VCNDAwOUM1NUVFQTY4OTcwMzQ5 OTcxRkY2M0EwHhcNMjMxMDA1MDM0NDM5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFlMzEyNy03ZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYjErPzq4jw6gara5Syn1YX/Kn4HybnyXwmcds4GcdSF6XGdOUEzyWNcoGvo aNl8gDh1eN5KU6zE4hVW9jiYypsTQjWoA/nuCrfJhacfsyCkgdY9GGPmFmagRrgi afABY/2UFC8/QRj6j/axF3bvLz1NxD7oN6H554Fp5NbRW8g0UcGJfB1zHowxtcbw X89LT7I25RMbBCH9qj+0J566efX3ssI4NSfeCmD32K7SZGx1MPfTVBMkk0zOIEVV sZLV4TFt5VhJOxF3AmaNJJfbD5tXkgWJE0AjYIdLd1atM0NsXDKS+42O7ywNYOYb gzlvoSjiEvXxPH+NbAtDsKaTvwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIhUCvA5 4bIFOQJ3EUxbMp1rq5BRMB8GA1UdIwQYMBaAFKXm9cdLvOtACcVe6miXA0mXH/Y6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODREMC9EMzE0MkRCODVF OEYxMUVEOEM5OTY5NjNDNEY5QUUwMi9wZWIxeDB1ODYwQUp4VjdxYUpjRFNaY2Y5 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BlYjF4MHU4NjBBSnhWN3FhSmNEU1pjZjlqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg0RDAvRDMxNDJEQjg1RThGMTFFRDhDOTk2OTYzQzRGOUFFMDIvREZCNjZEQTg1 RTkyMTFFRDgzRDQwRTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACV6roDBACV6r8wDQYJKoZIhvcNAQELBQADggEBAECRj9Ka +MY9e3hoKFFJwQg9bPL75nHv3O6XxYl8u9ICMzYdibbtGDo9hAEq+BTCRAZgo7ky OzwM5FTYCiWSHXMEgypMe3VqpUuLmecF4w/ELRuIwHz8qkh9Xxu6o5i3ZWcmCNIx rj4EVGfOLA28yLlRgB8qZG0ziDCneCm09HiajJb3Z/OwNXDpN1yNasq/9oWqsGSr tyMarWqzyTAbidhtDlim9ZZptmyx7EDueTVs18QqH7KRCYo6IJrkiWcw1hIA7qK5 l0pDE1l3TWwjAMA7zKbbLSsw77G5iCfa4lKYG3Trl98yHmOUxo6DlTa8lN3lO0Mb 88iTsGC48BVs7A0= -----END CERTIFICATE-----Generated at Mon May 27 06:19:22 2024 by rpki-client on console-fra.rpki-client.org