$ rpki-client -vvf rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/BFD96CC4C5CA11EEBFA07341C4F9AE02.roa File: BFD96CC4C5CA11EEBFA07341C4F9AE02.roa (raw, json) Hash identifier: QS2TrHl9taohr57yZSTKCTq9uLIbkOtoAL2fYPZKHWU= Subject key identifier: D8:FE:56:35:29:AC:9C:BC:A4:9B:76:8A:76:90:C6:71:DA:37:6B:0B Certificate issuer: /CN=A919B06C/serialNumber=C83493C0297CCB58D2837946D6063F14A7DEE986 Certificate serial: 0D62 Authority key identifier: C8:34:93:C0:29:7C:CB:58:D2:83:79:46:D6:06:3F:14:A7:DE:E9:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDSTwCl8y1jSg3lG1gY_FKfe6YY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/BFD96CC4C5CA11EEBFA07341C4F9AE02.roa Signing time: Mon 22 Apr 2024 18:26:00 +0000 ROA not before: Mon 22 Apr 2024 18:26:00 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 147032 IP address blocks: 59.152.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/yDSTwCl8y1jSg3lG1gY_FKfe6YY.crl rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/yDSTwCl8y1jSg3lG1gY_FKfe6YY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDSTwCl8y1jSg3lG1gY_FKfe6YY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3426 (0xd62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B06C/serialNumber=C83493C0297CCB58D2837946D6063F14A7DEE986 Validity Not Before: Apr 22 18:26:00 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6626abb8-8ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:77:6b:ff:7c:b8:fa:55:d6:80:58:10:d4:d3: 01:b8:69:e6:04:81:6c:36:c0:e0:bf:eb:50:45:c8: 8d:b0:f5:9d:7d:6c:63:cf:ac:a1:dd:2e:8d:cd:12: 2a:80:32:2e:e9:d6:87:9d:3b:fb:fb:94:9d:78:7d: 79:f4:8f:89:69:25:35:b9:3a:dd:10:0e:66:8a:ec: ea:1b:ae:ae:bb:2c:81:a3:fc:80:d0:db:fd:76:5f: 0e:0c:bc:fd:aa:1b:44:7e:57:d8:79:25:ad:c1:2f: f0:3f:65:c0:94:0c:af:db:ed:50:15:f2:28:cd:b9: 31:c4:fe:cf:26:30:fa:ac:a6:d9:60:47:2b:62:6a: 45:d5:83:c6:85:8b:f9:c2:7b:4e:a7:8a:09:8f:f4: e7:f4:ea:9f:35:0c:fb:9e:d5:b5:60:dc:37:84:46: 9d:70:0a:23:74:c8:02:27:0d:4c:6c:7c:34:76:fd: 2f:7e:e3:6e:b8:fc:5b:3e:74:29:12:38:ca:fc:a7: c0:81:05:51:92:ff:0b:de:bc:93:46:73:b9:95:fe: b2:89:44:22:fb:0d:5b:e5:df:a8:11:fb:da:8e:ed: 25:41:9d:c0:58:67:93:2a:fe:08:9e:f7:03:6c:91: ee:79:6c:43:4a:5b:73:97:38:b6:c0:dd:29:61:52: ba:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FE:56:35:29:AC:9C:BC:A4:9B:76:8A:76:90:C6:71:DA:37:6B:0B X509v3 Authority Key Identifier: keyid:C8:34:93:C0:29:7C:CB:58:D2:83:79:46:D6:06:3F:14:A7:DE:E9:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/yDSTwCl8y1jSg3lG1gY_FKfe6YY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDSTwCl8y1jSg3lG1gY_FKfe6YY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/BFD96CC4C5CA11EEBFA07341C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.15.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:ac:7b:f3:05:68:00:71:5f:8c:b0:8b:a3:f6:14:f8:f8:f2: 37:bf:39:3f:b6:b0:c1:bd:61:72:d8:46:8f:13:65:38:34:64: 54:fb:17:ba:32:2d:e6:04:a0:7d:4f:4e:df:12:63:4e:17:cb: eb:a9:2f:f2:82:3c:3d:fc:aa:fc:d7:43:dc:be:92:7a:92:85: e3:cd:50:a5:da:b8:b6:a4:15:a5:f4:32:13:17:ea:30:c3:1c: 4b:35:b9:ac:bf:3f:f9:a1:90:81:6c:f4:c1:6f:73:94:97:01: ab:49:ea:54:17:33:a5:b1:fb:5d:93:26:4a:98:d6:3e:f8:42: 95:e0:5d:54:87:15:0b:a7:d9:6a:ff:ae:19:0c:f4:c5:d7:8a: 6b:5d:20:0a:f5:54:b6:50:da:b9:dc:9c:3a:12:94:77:2d:a9: 70:7a:54:3c:91:d4:90:1f:03:72:ad:ca:10:ae:e4:46:0f:ea: 83:84:01:8e:55:a0:d2:d8:5a:6a:f0:1c:40:ac:38:2a:a0:12: e5:1a:d3:c4:9e:1f:3e:fa:95:fe:23:71:e9:a7:b0:89:c1:16: 5d:eb:d7:6b:f5:6f:da:ee:39:dc:66:52:59:d7:49:72:b5:6e: 13:1a:0a:b6:3e:b9:0b:5c:84:25:98:f4:71:2a:23:4e:81:92: 1b:2e:f3:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIwNkMxMTAvBgNVBAUTKEM4MzQ5M0MwMjk3Q0NCNThEMjgzNzk0NkQ2MDYzRjE0 QTdERUU5ODYwHhcNMjQwNDIyMTgyNjAwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2YWJiOC04ZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3dr/3y4+lXWgFgQ1NMBuGnmBIFsNsDgv+tQRciNsPWdfWxjz6yh3S6NzRIq gDIu6daHnTv7+5SdeH159I+JaSU1uTrdEA5miuzqG66uuyyBo/yA0Nv9dl8ODLz9 qhtEflfYeSWtwS/wP2XAlAyv2+1QFfIozbkxxP7PJjD6rKbZYEcrYmpF1YPGhYv5 wntOp4oJj/Tn9OqfNQz7ntW1YNw3hEadcAojdMgCJw1MbHw0dv0vfuNuuPxbPnQp EjjK/KfAgQVRkv8L3ryTRnO5lf6yiUQi+w1b5d+oEfvaju0lQZ3AWGeTKv4InvcD bJHueWxDSltzlzi2wN0pYVK6JwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNj+VjUp rJy8pJt2inaQxnHaN2sLMB8GA1UdIwQYMBaAFMg0k8ApfMtY0oN5RtYGPxSn3umG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjA2Qy9FOUQ2MkU3NEZF QUUxMUU4OTEwRDRENjZDNEY5QUUwMi95RFNUd0NsOHkxalNnM2xHMWdZX0ZLZmU2 WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lEU1R3Q2w4eTFqU2czbEcxZ1lfRktmZTZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIwNkMvRTlENjJFNzRGRUFFMTFFODkxMEQ0RDY2QzRGOUFFMDIvQkZEOTZDQzRD NUNBMTFFRUJGQTA3MzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA7mA8wDQYJKoZIhvcNAQELBQADggEBAGyse/MFaABxX4yw i6P2FPj48je/OT+2sMG9YXLYRo8TZTg0ZFT7F7oyLeYEoH1PTt8SY04Xy+upL/KC PD38qvzXQ9y+knqShePNUKXauLakFaX0MhMX6jDDHEs1uay/P/mhkIFs9MFvc5SX AatJ6lQXM6Wx+12TJkqY1j74QpXgXVSHFQun2Wr/rhkM9MXXimtdIAr1VLZQ2rnc nDoSlHctqXB6VDyR1JAfA3KtyhCu5EYP6oOEAY5VoNLYWmrwHECsOCqgEuUa08Se Hz76lf4jcemnsInBFl3r12v1b9ruOdxmUlnXSXK1bhMaCrY+uQtchCWY9HEqI06B khsu89w= -----END CERTIFICATE-----Generated at Sun May 26 19:58:55 2024 by rpki-client on console-fra.rpki-client.org