$ rpki-client -vvf rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/8B91EDB420CD11EC97292B78C4F9AE02.roa File: 8B91EDB420CD11EC97292B78C4F9AE02.roa (raw, json) Hash identifier: mmPt4wQLultM2OvVI1CN32676LjiZTsieo822V9xFE4= Subject key identifier: 91:26:BA:57:F1:EB:5F:0C:A6:54:5E:43:F9:1D:E4:0D:63:34:CB:57 Certificate issuer: /CN=A9171845/serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Certificate serial: 0398 Authority key identifier: BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/8B91EDB420CD11EC97292B78C4F9AE02.roa Signing time: Sun 03 Sep 2023 00:52:08 +0000 ROA not before: Sun 03 Sep 2023 00:52:08 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 24324 IP address blocks: 155.32.0.0/18 maxlen: 18 155.32.0.0/24 maxlen: 24 155.32.17.0/24 maxlen: 24 155.32.18.0/24 maxlen: 24 155.32.23.0/24 maxlen: 24 155.32.24.0/24 maxlen: 24 155.32.27.0/24 maxlen: 24 155.32.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171845/serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Validity Not Before: Sep 3 00:52:08 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f3d8b8-373f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9c:5c:e5:ac:bc:7c:50:e0:7a:60:61:bc:d7: 1a:09:39:37:5d:9d:16:b1:2f:60:65:31:3e:88:7a: 96:23:5f:e0:5c:9c:a8:ff:05:21:6b:aa:68:9a:41: 60:9c:ef:f8:4d:91:d0:cf:6e:e8:b5:79:76:f8:e9: 73:05:38:1c:13:ae:f1:64:af:8a:11:26:bf:41:dd: d2:65:73:87:7d:68:58:95:a1:15:fb:2a:7b:b1:0b: 45:25:ad:d4:53:69:0e:f6:2d:d4:54:1b:cb:23:c0: ea:74:1b:d1:84:25:14:d4:26:1f:5e:bb:d2:12:76: ef:e8:08:1c:4d:81:ca:5f:df:9d:71:b7:f8:1b:62: d2:a7:56:cd:0e:08:80:a8:85:de:ab:ca:a5:3e:c9: c7:3d:f6:94:f8:ae:f1:01:05:e4:16:87:60:03:30: 8f:78:9f:df:ea:76:4e:1a:44:fb:c2:fd:58:75:a7: cb:19:38:f4:53:b5:bd:9f:be:34:f4:b1:ff:b8:f3: 2b:cd:05:d3:4e:4b:36:fa:dc:f3:f9:50:ef:c0:8a: ab:d3:10:32:b4:24:27:ec:eb:98:cc:a6:37:c6:89: 2b:a1:82:09:de:f2:31:a4:0b:57:c2:3b:99:fe:cb: b1:1e:bf:07:a2:ce:3f:40:1f:67:e8:2c:b9:25:0a: 9e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:26:BA:57:F1:EB:5F:0C:A6:54:5E:43:F9:1D:E4:0D:63:34:CB:57 X509v3 Authority Key Identifier: keyid:BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/8B91EDB420CD11EC97292B78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 155.32.0.0/18 155.32.190.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:fc:a4:06:d6:d3:fa:b4:a4:5a:5a:26:b3:dc:14:14:32:98: 42:d3:7f:57:15:7a:b3:12:40:f9:40:91:b5:46:bc:ff:4e:e2: ac:6d:58:fc:02:0d:c3:fe:99:34:43:d3:96:9b:55:9f:1f:55: f1:67:b8:90:4d:29:aa:73:fd:7d:c4:b9:fe:f2:ee:50:97:63: 2b:21:74:4f:a8:31:da:67:01:3d:54:00:c0:4b:4f:9d:0c:4a: 37:9c:82:9e:2d:a9:d1:8e:89:7e:a6:cb:cc:a8:37:e1:94:d8: d8:24:0f:c9:65:25:78:9c:5c:0c:8f:22:cd:ea:cf:14:f9:08: 22:8e:cd:d2:97:ba:6e:c4:35:b2:e5:b3:db:76:21:5d:86:2f: 58:fa:6e:2a:40:ef:d9:ff:00:7c:40:07:c1:ec:b9:18:08:6c: c7:50:88:79:6d:24:fc:d5:22:16:52:b4:f4:fd:d8:98:89:09: 94:3f:a5:1c:21:ee:1a:e9:55:c8:57:8d:2a:3a:80:50:5e:59: 9c:96:88:bd:e0:a5:34:a7:ed:34:54:a7:e1:e8:2f:18:52:35: c0:bd:06:0b:c8:26:ee:c6:40:b5:22:79:c7:2d:24:0e:e0:31: 4e:29:94:8c:6f:55:51:38:7b:cf:cf:58:b7:da:d6:73:4c:49: 35:5b:05:1f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4NDUxMTAvBgNVBAUTKEJDOTdGMjZGQjI3ODk2N0REM0NBMzlDNTlERDA4QzZB MkMyMzA2RjkwHhcNMjMwOTAzMDA1MjA4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzZDhiOC0zNzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJxc5ay8fFDgemBhvNcaCTk3XZ0WsS9gZTE+iHqWI1/gXJyo/wUha6pomkFg nO/4TZHQz27otXl2+OlzBTgcE67xZK+KESa/Qd3SZXOHfWhYlaEV+yp7sQtFJa3U U2kO9i3UVBvLI8DqdBvRhCUU1CYfXrvSEnbv6AgcTYHKX9+dcbf4G2LSp1bNDgiA qIXeq8qlPsnHPfaU+K7xAQXkFodgAzCPeJ/f6nZOGkT7wv1YdafLGTj0U7W9n740 9LH/uPMrzQXTTks2+tzz+VDvwIqr0xAytCQn7OuYzKY3xokroYIJ3vIxpAtXwjuZ /suxHr8Hos4/QB9n6Cy5JQqeawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJEmulfx 618MplReQ/kd5A1jNMtXMB8GA1UdIwQYMBaAFLyX8m+yeJZ908o5xZ3QjGosIwb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg0NS83QjYyQzgwODIw Q0ExMUVDQjY2QzE0NTJDNEY5QUUwMi92SmZ5YjdKNGxuM1R5am5GbmRDTWFpd2pC dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZKZnliN0o0bG4zVHlqbkZuZENNYWl3akJ2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4NDUvN0I2MkM4MDgyMENBMTFFQ0I2NkMxNDUyQzRGOUFFMDIvOEI5MUVEQjQy MENEMTFFQzk3MjkyQjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAabIAADBACbIL4wDQYJKoZIhvcNAQELBQADggEBAI78pAbW 0/q0pFpaJrPcFBQymELTf1cVerMSQPlAkbVGvP9O4qxtWPwCDcP+mTRD05abVZ8f VfFnuJBNKapz/X3Euf7y7lCXYyshdE+oMdpnAT1UAMBLT50MSjecgp4tqdGOiX6m y8yoN+GU2NgkD8llJXicXAyPIs3qzxT5CCKOzdKXum7ENbLls9t2IV2GL1j6bipA 79n/AHxAB8HsuRgIbMdQiHltJPzVIhZStPT92JiJCZQ/pRwh7hrpVchXjSo6gFBe WZyWiL3gpTSn7TRUp+HoLxhSNcC9BgvIJu7GQLUiecctJA7gMU4plIxvVVE4e8/P WLfa1nNMSTVbBR8= -----END CERTIFICATE-----Generated at Fri May 17 03:06:31 2024 by rpki-client on console-ams.rpki-client.org