$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/9781D91CB36B11EEA3394737C4F9AE02.roa File: 9781D91CB36B11EEA3394737C4F9AE02.roa (raw, json) Hash identifier: CfHqKlW+R8kpib5zrGh4TQkG/9G5lyrH2fI7fx5R+8w= Subject key identifier: 7D:27:85:58:A2:D8:FA:E3:B5:C8:21:73:5D:27:67:38:3E:08:0A:03 Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: A1 Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/9781D91CB36B11EEA3394737C4F9AE02.roa Signing time: Sun 26 May 2024 02:42:29 +0000 ROA not before: Sun 26 May 2024 02:42:29 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 34985 IP address blocks: 185.254.240.0/24 maxlen: 24 185.254.241.0/24 maxlen: 24 213.139.233.0/24 maxlen: 24 213.139.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Validity Not Before: May 26 02:42:29 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6652a195-74e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2a:72:c7:ba:2b:18:d3:52:d2:6a:0b:b3:d8: 69:f5:c5:80:a9:03:04:7d:3f:de:57:97:5f:d6:e3: 7a:86:c7:cf:5f:af:a3:cd:b8:74:c4:f6:e5:60:49: d5:96:84:02:66:1f:05:d1:97:76:e4:95:cd:f8:1b: fc:a1:2f:cc:71:dd:71:bd:c6:68:bd:ed:b8:4c:78: bf:11:dc:cb:38:83:ac:89:ff:7b:61:f3:88:d5:e1: f7:1c:7a:d7:3d:4e:28:f0:0f:18:62:bb:b8:5e:69: e6:a2:09:7d:13:f0:2d:e0:bc:bb:38:c1:41:bb:48: 08:4d:a3:21:86:62:19:e3:c2:9e:b7:3f:56:a2:77: 07:6a:98:3c:04:7e:55:27:fd:79:eb:1b:70:ae:72: f7:0f:62:f3:ad:e8:bb:31:56:f8:f8:48:88:50:34: 8b:6f:b5:d0:ce:28:08:ec:aa:06:08:70:37:51:97: 28:a3:41:1b:78:94:9a:90:94:85:27:fa:52:99:f2: 76:9e:34:9e:32:43:cb:a3:8c:4f:52:c7:51:50:40: 3f:ea:0a:03:a7:e7:cb:69:ac:f4:4a:eb:5f:03:07: ae:03:61:1f:dd:56:c9:a0:c4:99:84:a8:21:aa:c9: b0:d1:e2:b9:21:fd:b1:1d:4b:dd:24:3f:80:4f:3e: 80:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:27:85:58:A2:D8:FA:E3:B5:C8:21:73:5D:27:67:38:3E:08:0A:03 X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/9781D91CB36B11EEA3394737C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.254.240.0/23 213.139.233.0-213.139.234.255 Signature Algorithm: sha256WithRSAEncryption 04:40:52:02:5a:c3:0c:41:69:a0:77:4e:67:2a:eb:81:2a:a4: 7c:3f:40:30:ec:1a:ed:28:c7:36:5f:d3:79:8d:a5:62:51:ae: 78:de:d1:09:96:5f:af:57:86:81:45:70:a9:d8:5a:87:a6:9b: f8:9b:36:de:bc:ac:ff:af:be:12:83:62:21:1d:da:bc:7a:c4: 46:c4:a1:e8:2b:fc:0a:50:8e:90:00:36:06:d4:09:04:f5:72: 48:ab:be:0b:3f:6a:41:1a:6c:4c:fb:2a:d0:56:42:d3:c4:24: 56:e8:d2:9d:1d:34:9d:3b:4d:9b:dc:47:b2:ea:87:f7:eb:6a: 58:75:28:35:bb:40:5b:16:16:5b:89:91:3c:10:16:f5:ca:10: 88:eb:f7:ba:bc:9a:92:a3:75:a7:d8:15:35:c3:87:7c:7e:73: a1:3e:37:f3:db:a2:18:2d:a4:d1:43:5f:18:27:2e:b0:69:2e: c8:67:c1:99:9c:60:19:24:45:1b:bc:01:ab:4c:c7:40:b8:5f: 33:07:cb:14:03:c1:dc:b2:44:1d:4c:51:7d:29:b0:7f:1b:22: 3e:9c:5c:ff:57:70:5a:8b:88:11:40:79:a5:25:b6:37:51:44: b9:e5:94:e3:8d:72:64:15:c7:07:2b:a3:c2:61:ee:13:cc:cc: 88:6b:08:bb -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjQwNTI2MDI0MjI5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUyYTE5NS03NGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ipyx7orGNNS0moLs9hp9cWAqQMEfT/eV5df1uN6hsfPX6+jzbh0xPblYEnV loQCZh8F0Zd25JXN+Bv8oS/Mcd1xvcZove24THi/EdzLOIOsif97YfOI1eH3HHrX PU4o8A8YYru4Xmnmogl9E/At4Ly7OMFBu0gITaMhhmIZ48Ketz9WoncHapg8BH5V J/156xtwrnL3D2Lzrei7MVb4+EiIUDSLb7XQzigI7KoGCHA3UZcoo0EbeJSakJSF J/pSmfJ2njSeMkPLo4xPUsdRUEA/6goDp+fLaaz0SutfAweuA2Ef3VbJoMSZhKgh qsmw0eK5If2xHUvdJD+ATz6A7QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFH0nhVii 2Prjtcghc10nZzg+CAoDMB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNjI5RThCMjAzQjIzMTFFRUE0M0IwMjE5QzRGOUFFMDIvOTc4MUQ5MUNC MzZCMTFFRUEzMzk0NzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAG5/vAwDAMEANWL6QMEANWL6jANBgkqhkiG9w0BAQsFAAOC AQEABEBSAlrDDEFpoHdOZyrrgSqkfD9AMOwa7SjHNl/TeY2lYlGueN7RCZZfr1eG gUVwqdhah6ab+Js23rys/6++EoNiIR3avHrERsSh6Cv8ClCOkAA2BtQJBPVySKu+ Cz9qQRpsTPsq0FZC08QkVujSnR00nTtNm9xHsuqH9+tqWHUoNbtAWxYWW4mRPBAW 9coQiOv3uryakqN1p9gVNcOHfH5zoT4389uiGC2k0UNfGCcusGkuyGfBmZxgGSRF G7wBq0zHQLhfMwfLFAPB3LJEHUxRfSmwfxsiPpxc/1dwWouIEUB5pSW2N1FEueWU 441yZBXHByujwmHuE8zMiGsIuw== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:35 2024 by rpki-client on console-fra.rpki-client.org