$ rpki-client -vvf rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/EE01A248F2FB11EE9AA9E24CC4F9AE02.roa File: EE01A248F2FB11EE9AA9E24CC4F9AE02.roa (raw, json) Hash identifier: 9JNtqwyGWn4dJi+PVqZF8kLxkmLj0VVNjKHeTz7b1m8= Subject key identifier: 7A:C2:F2:15:D3:D0:C6:FB:E2:17:A1:2C:6E:C8:20:B5:AF:9A:CD:60 Certificate issuer: /CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Certificate serial: 0A Authority key identifier: 41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/EE01A248F2FB11EE9AA9E24CC4F9AE02.roa Signing time: Fri 05 Apr 2024 03:29:12 +0000 ROA not before: Fri 05 Apr 2024 03:29:12 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 7545 IP address blocks: 155.144.58.0/24 maxlen: 24 155.144.59.0/24 maxlen: 24 155.144.60.0/24 maxlen: 24 155.144.61.0/24 maxlen: 24 155.144.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Validity Not Before: Apr 5 03:29:12 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=660f7008-48bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:53:89:ff:83:4a:23:a9:4d:a2:3d:8b:0f:50: 28:d0:79:9a:97:56:65:28:ec:1a:1d:71:9c:76:8a: ef:5a:85:3a:af:64:96:68:ca:bb:af:ff:bc:f1:dd: 16:b1:d3:d2:2f:98:c0:f9:e9:bb:2a:5e:42:1d:81: a0:34:ff:ab:a6:36:ba:71:15:51:fd:48:d8:bb:2d: a9:90:eb:84:7e:45:42:19:77:d6:ff:21:15:96:43: 6c:74:23:11:d3:e4:c9:17:f1:e4:38:23:6d:a4:77: 28:c6:08:62:f8:29:63:5e:c3:2c:02:12:ab:b1:fa: ba:2d:70:05:69:2c:c0:ec:d3:74:ca:7d:f4:78:08: c5:1d:5f:52:80:d3:1f:c4:48:76:6c:87:1d:2b:b7: 42:cb:a5:46:85:77:fc:db:72:3e:71:d7:5f:b7:48: 97:2f:8c:a2:10:5b:cf:13:5e:22:fc:b9:2a:df:9f: 0d:0a:d5:db:cd:b3:29:0f:f4:2e:a5:a6:67:bf:14: 26:03:74:43:75:71:30:c4:9c:7c:da:5c:e2:48:d8: 3d:a4:05:be:99:34:4e:5f:2b:b2:9b:25:7c:ec:b7: 1f:15:44:ef:51:e7:90:3e:cd:64:54:f1:8c:3c:37: b8:10:c4:3c:ca:c0:ac:f6:4b:32:d1:71:c2:0f:1b: 63:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C2:F2:15:D3:D0:C6:FB:E2:17:A1:2C:6E:C8:20:B5:AF:9A:CD:60 X509v3 Authority Key Identifier: keyid:41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/EE01A248F2FB11EE9AA9E24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 155.144.58.0-155.144.62.255 Signature Algorithm: sha256WithRSAEncryption 44:ea:55:7b:a2:ed:4a:7b:2c:30:a0:86:c5:5b:9c:d9:e0:40: fe:b4:a9:d4:ec:50:97:1e:bb:97:c2:a9:ee:5b:77:7d:73:b4: ae:98:4f:8c:fd:4e:c7:ea:7e:1e:07:c0:12:1c:fc:05:61:f1: ac:e1:90:18:f8:e7:f9:2e:c0:40:f8:7f:5b:c4:7b:4d:bf:6c: a7:bb:56:38:e7:5c:bd:f5:d3:d4:05:ee:5d:c1:62:ec:72:60: 9a:ee:2b:20:61:61:ae:9d:1b:09:a0:f6:7a:dd:f8:6a:bd:71: 28:91:98:bc:83:7b:cf:c2:cc:45:76:84:c3:0f:04:36:02:d7: 74:30:5a:92:5a:44:f9:de:22:b1:22:7b:4e:ce:30:47:7e:e5: 04:c4:0b:f9:94:d3:ee:ec:46:c3:ae:00:ae:b4:63:cc:68:0b: 38:3d:8b:55:28:8f:04:4a:f7:ce:9c:12:2d:d7:b4:08:06:d2: 90:6f:8e:b4:d6:c9:31:8b:1f:fe:1b:1e:1d:75:cc:da:8f:2b: b1:e4:e9:23:5a:6d:0a:0a:6d:95:69:84:c8:c7:7f:df:24:be: d0:ba:f0:8c:06:a1:2a:66:cd:e7:7a:35:e6:ba:74:3e:14:f5: 7d:57:fb:23:64:f8:8c:c6:98:7e:a9:31:2d:b4:bb:07:80:8f: 02:c6:f6:9c -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTdDQjExMC8GA1UEBRMoNDEyMTNCMkY1RjI0MjlGQzMyOEVDM0Y0RTk1RDU4ODY0 MDJGRUI2OTAeFw0yNDA0MDUwMzI5MTJaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGY3MDA4LTQ4YmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBU4n/g0ojqU2iPYsPUCjQeZqXVmUo7BodcZx2iu9ahTqvZJZoyruv/7zx3Rax 09IvmMD56bsqXkIdgaA0/6umNrpxFVH9SNi7LamQ64R+RUIZd9b/IRWWQ2x0IxHT 5MkX8eQ4I22kdyjGCGL4KWNewywCEqux+rotcAVpLMDs03TKffR4CMUdX1KA0x/E SHZshx0rt0LLpUaFd/zbcj5x11+3SJcvjKIQW88TXiL8uSrfnw0K1dvNsykP9C6l pme/FCYDdEN1cTDEnHzaXOJI2D2kBb6ZNE5fK7KbJXzstx8VRO9R55A+zWRU8Yw8 N7gQxDzKwKz2SzLRccIPG2MVAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUesLyFdPQ xvviF6Esbsggta+azWAwHwYDVR0jBBgwFoAUQSE7L18kKfwyjsP06V1YhkAv62kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1N0NCLzQ1OUIwQzY0RjJG ODExRUVBMzUwNjczOEM0RjlBRTAyL1FTRTdMMThrS2Z3eWpzUDA2VjFZaGtBdjYy ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUVNFN0wxOGtLZnd5anNQMDZWMVloa0F2NjJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTdDQi80NTlCMEM2NEYyRjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9FRTAxQTI0OEYy RkIxMUVFOUFBOUUyNENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQBm5A6AwQAm5A+MA0GCSqGSIb3DQEBCwUAA4IBAQBE6lV7 ou1KeywwoIbFW5zZ4ED+tKnU7FCXHruXwqnuW3d9c7SumE+M/U7H6n4eB8ASHPwF YfGs4ZAY+Of5LsBA+H9bxHtNv2ynu1Y451y99dPUBe5dwWLscmCa7isgYWGunRsJ oPZ63fhqvXEokZi8g3vPwsxFdoTDDwQ2Atd0MFqSWkT53iKxIntOzjBHfuUExAv5 lNPu7EbDrgCutGPMaAs4PYtVKI8ESvfOnBIt17QIBtKQb4601skxix/+Gx4ddcza jyux5OkjWm0KCm2VaYTIx3/fJL7QuvCMBqEqZs3nejXmunQ+FPV9V/sjZPiMxph+ qTEttLsHgI8Cxvac -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:28 2024 by rpki-client on console-fra.rpki-client.org