$ rpki-client -vvf rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/EC065A52C28D11EBBCABCA6CC4F9AE02.roa File: EC065A52C28D11EBBCABCA6CC4F9AE02.roa (raw, json) Hash identifier: JKnsYkOp9VjEacI33Ba4AJhjDKF19c/H5ySudQCEfcg= Subject key identifier: B2:C4:05:1A:60:3B:80:2D:DD:99:9E:AA:D2:05:CD:1D:63:BB:25:39 Certificate issuer: /CN=A916B18B/serialNumber=368F3C938B601412521A3A819009978FCFE91E7E Certificate serial: 15A2 Authority key identifier: 36:8F:3C:93:8B:60:14:12:52:1A:3A:81:90:09:97:8F:CF:E9:1E:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/EC065A52C28D11EBBCABCA6CC4F9AE02.roa Signing time: Thu 30 Nov 2023 17:24:55 +0000 ROA not before: Thu 30 Nov 2023 17:24:55 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 56207 IP address blocks: 139.135.192.0/22 maxlen: 22 139.135.196.0/22 maxlen: 22 139.135.200.0/22 maxlen: 22 139.135.204.0/22 maxlen: 22 139.135.208.0/22 maxlen: 22 139.135.212.0/22 maxlen: 22 139.135.216.0/22 maxlen: 22 139.135.220.0/22 maxlen: 22 139.135.224.0/22 maxlen: 22 139.135.228.0/22 maxlen: 22 139.135.232.0/22 maxlen: 22 139.135.236.0/22 maxlen: 22 139.135.240.0/22 maxlen: 22 139.135.244.0/22 maxlen: 22 139.135.248.0/22 maxlen: 22 139.135.252.0/22 maxlen: 22 139.135.252.0/23 maxlen: 23 139.135.254.0/24 maxlen: 24 139.135.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.crl rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 15:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5538 (0x15a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B18B/serialNumber=368F3C938B601412521A3A819009978FCFE91E7E Validity Not Before: Nov 30 17:24:55 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6568c567-2c2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:de:a8:4e:4a:25:9a:b9:7e:93:c1:f4:7c:82: 4b:03:d8:62:5c:c8:2c:78:02:e2:25:21:b0:36:f0: 4b:19:d3:80:4b:1e:db:65:32:dc:f9:4a:66:6c:22: 8f:cc:e8:cc:03:30:5b:0b:88:e7:03:91:6a:b1:ba: 38:e1:3e:d8:de:a5:b7:a6:08:51:b5:6b:18:63:e3: 40:74:fb:56:ef:74:9f:02:90:8e:a4:e3:01:04:ee: 46:5a:85:5c:4e:78:bb:68:20:b2:67:8e:f1:74:e7: c1:7b:46:1a:19:9e:be:ce:b6:91:a9:ad:10:ad:39: d6:66:58:62:f1:c7:71:c3:9d:50:04:a2:63:9b:eb: 0c:da:1f:7e:34:ad:d6:f7:f3:43:ae:60:69:86:34: c6:b4:d2:76:d7:61:48:88:39:14:4b:d1:99:96:95: 31:68:86:b8:f7:f4:a8:4a:02:46:e8:6a:19:8d:8a: 8c:31:79:8d:a0:10:2e:2c:b5:a6:44:c1:7f:fa:23: 73:be:5a:83:a9:96:c0:bb:a5:9e:0d:b3:af:8c:97: e4:07:49:0b:50:a4:3e:63:3b:fa:63:e3:d1:f8:4c: f0:e9:23:b9:8d:1b:e8:c3:d3:0e:b9:9e:44:94:ed: 0c:f2:3a:40:8d:31:c8:30:6e:be:00:c4:a5:97:d4: 10:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C4:05:1A:60:3B:80:2D:DD:99:9E:AA:D2:05:CD:1D:63:BB:25:39 X509v3 Authority Key Identifier: keyid:36:8F:3C:93:8B:60:14:12:52:1A:3A:81:90:09:97:8F:CF:E9:1E:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/EC065A52C28D11EBBCABCA6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.135.192.0/18 Signature Algorithm: sha256WithRSAEncryption 1c:4b:f1:6e:f3:e1:a7:80:51:32:64:fb:c9:8c:59:e2:cd:d4: 77:28:48:63:c2:f9:72:77:7c:62:77:0d:07:7a:a5:4f:0f:ea: 23:65:5d:91:02:10:9f:ad:8f:7c:fd:53:91:20:60:43:86:22: 0c:f2:6c:73:e4:83:95:af:03:4f:3e:02:b3:9d:c7:4f:f1:35: 6b:36:11:a2:56:39:d2:0b:61:b7:e6:f0:09:d0:2b:8f:3a:8c: 99:8a:35:86:68:3d:86:0e:17:87:ba:7b:10:8d:9d:ae:ad:32: 50:16:f5:db:85:11:95:aa:df:1b:56:80:64:fa:0f:39:c7:80: 51:52:a7:ad:5b:46:c3:d5:6f:67:3c:c0:30:30:bd:4b:a3:ec: 42:92:3f:49:99:b0:b8:bf:f1:cd:da:f8:4b:ce:8e:d5:25:fc: 19:bd:69:89:98:33:4b:7e:92:ef:1c:02:41:82:5a:da:ad:ef: 2f:ce:b3:fd:9c:ac:34:04:c6:a0:17:69:ea:49:69:42:bb:14: e5:26:e9:34:a6:2a:97:69:ec:ae:0d:63:cc:a1:09:14:d3:fd: 16:d8:06:fe:33:c7:54:74:0c:2c:88:ef:d9:57:bf:f8:41:6c: ea:2d:2d:ee:2e:ef:d9:46:3f:fa:80:3c:1a:a1:f6:50:89:a1: 61:01:56:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOEIxMTAvBgNVBAUTKDM2OEYzQzkzOEI2MDE0MTI1MjFBM0E4MTkwMDk5NzhG Q0ZFOTFFN0UwHhcNMjMxMTMwMTcyNDU1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY4YzU2Ny0yYzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1N6oTkolmrl+k8H0fIJLA9hiXMgseALiJSGwNvBLGdOASx7bZTLc+UpmbCKP zOjMAzBbC4jnA5Fqsbo44T7Y3qW3pghRtWsYY+NAdPtW73SfApCOpOMBBO5GWoVc Tni7aCCyZ47xdOfBe0YaGZ6+zraRqa0QrTnWZlhi8cdxw51QBKJjm+sM2h9+NK3W 9/NDrmBphjTGtNJ212FIiDkUS9GZlpUxaIa49/SoSgJG6GoZjYqMMXmNoBAuLLWm RMF/+iNzvlqDqZbAu6WeDbOvjJfkB0kLUKQ+Yzv6Y+PR+Ezw6SO5jRvow9MOuZ5E lO0M8jpAjTHIMG6+AMSll9QQRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLLEBRpg O4At3ZmeqtIFzR1juyU5MB8GA1UdIwQYMBaAFDaPPJOLYBQSUho6gZAJl4/P6R5+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE4Qi9GOThCNUYwQzIx RjkxMUU4OTZDMUREMjNDNEY5QUUwMi9Obzg4azR0Z0ZCSlNHanFCa0FtWGo4X3BI bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05vODhrNHRnRkJKU0dqcUJrQW1YajhfcEhuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIxOEIvRjk4QjVGMEMyMUY5MTFFODk2QzFERDIzQzRGOUFFMDIvRUMwNjVBNTJD MjhEMTFFQkJDQUJDQTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAaLh8AwDQYJKoZIhvcNAQELBQADggEBABxL8W7z4aeAUTJk +8mMWeLN1HcoSGPC+XJ3fGJ3DQd6pU8P6iNlXZECEJ+tj3z9U5EgYEOGIgzybHPk g5WvA08+ArOdx0/xNWs2EaJWOdILYbfm8AnQK486jJmKNYZoPYYOF4e6exCNna6t MlAW9duFEZWq3xtWgGT6DznHgFFSp61bRsPVb2c8wDAwvUuj7EKSP0mZsLi/8c3a +EvOjtUl/Bm9aYmYM0t+ku8cAkGCWtqt7y/Os/2crDQExqAXaepJaUK7FOUm6TSm Kpdp7K4NY8yhCRTT/RbYBv4zx1R0DCyI79lXv/hBbOotLe4u79lGP/qAPBqh9lCJ oWEBVhk= -----END CERTIFICATE-----Generated at Fri May 24 17:56:34 2024 by rpki-client on console-fra.rpki-client.org