$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7A58C8D6BBEA11EA8DF46778C4F9AE02.roa File: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (raw, json) Hash identifier: l6UBTddYJHs1/LWO/G11IXkxeJJ3Aag62DZxhCm7A54= Subject key identifier: 5A:F9:88:59:00:E2:CD:EA:2A:A8:71:6C:C7:53:19:1A:65:3E:C7:CD Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 35D9 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7A58C8D6BBEA11EA8DF46778C4F9AE02.roa Signing time: Thu 04 Apr 2024 15:20:55 +0000 ROA not before: Thu 04 Apr 2024 15:20:55 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132165 IP address blocks: 39.34.128.0/18 maxlen: 24 59.103.138.0/23 maxlen: 24 59.103.140.0/22 maxlen: 24 59.103.192.0/19 maxlen: 24 119.152.224.0/20 maxlen: 24 119.157.64.0/20 maxlen: 24 119.157.80.0/20 maxlen: 24 119.158.64.0/24 maxlen: 24 182.189.0.0/17 maxlen: 24 182.189.192.0/18 maxlen: 24 182.190.96.0/20 maxlen: 24 182.190.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13785 (0x35d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 4 15:20:55 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660ec557-7bd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:f9:91:b2:b4:d4:a9:98:7f:77:6a:46:9a:62: 57:87:9e:6c:37:03:28:71:fb:fe:e2:ad:90:dc:a2: 54:2d:a7:a8:b6:05:ad:58:1c:5b:c0:b3:78:ed:c8: 11:0e:42:19:9c:f6:f9:f7:cc:22:ad:ec:6d:36:f3: 11:23:17:63:f4:ee:d6:71:c4:de:0d:7e:4f:8b:c4: da:32:0a:1e:64:14:e6:0a:91:51:a5:18:15:c6:2a: 8a:f8:5e:51:61:a6:7c:e3:3c:21:0c:a2:5b:cc:07: a0:84:85:77:1f:c4:23:0b:97:f5:6d:26:65:2c:e6: 97:0e:12:fe:9f:83:6b:f7:ff:c8:22:09:e9:3f:76: 73:c3:77:bc:33:a2:31:be:f2:fa:5d:5f:aa:d5:d3: eb:40:1d:56:ea:e7:4c:d1:63:12:42:57:80:27:07: b7:f0:90:14:9d:94:7e:7f:b5:b7:45:95:ff:79:e0: 70:0c:4a:cf:68:6b:49:88:0a:38:f3:eb:74:7d:e4: f1:49:c8:8f:48:6a:7d:1b:80:8a:c8:4b:28:67:87: 79:8e:65:0e:9b:e9:8c:5f:53:ce:b6:39:87:17:21: d1:04:b1:7d:a8:7b:7a:be:82:c3:14:94:81:08:44: 5d:60:68:2b:7b:74:31:6f:f1:58:3f:1a:59:aa:e8: a9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F9:88:59:00:E2:CD:EA:2A:A8:71:6C:C7:53:19:1A:65:3E:C7:CD X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7A58C8D6BBEA11EA8DF46778C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.34.128.0/18 59.103.138.0-59.103.143.255 59.103.192.0/19 119.152.224.0/20 119.157.64.0/19 119.158.64.0/24 182.189.0.0/17 182.189.192.0/18 182.190.96.0/20 182.190.192.0/19 Signature Algorithm: sha256WithRSAEncryption 79:c2:2f:b5:c4:a7:ff:eb:f7:be:7d:9c:13:ca:a7:f1:58:86: 44:04:e7:95:41:a6:76:66:5c:60:dd:0c:51:b3:7c:eb:f1:54: 14:46:ba:09:29:5e:37:e4:9b:25:9c:4b:2b:e7:ce:37:04:b8: 6e:22:4a:14:a6:50:53:d7:70:af:c3:39:94:44:5a:4c:4d:cc: 63:25:b1:f4:41:c2:a2:f1:fd:51:7c:d4:b9:09:a9:ad:f2:b4: 08:1e:e9:d4:32:40:ff:f2:f2:e6:b9:c4:34:ba:bb:67:ad:d7: 09:85:bb:45:93:20:5b:e0:55:b7:de:ec:9a:e7:07:6b:dd:26: 80:ef:8f:92:14:34:95:12:f9:6d:ad:31:d6:05:a5:2e:1e:90: 57:53:e7:d3:0f:9a:dc:82:bc:f7:a8:e6:fc:36:d2:fa:c5:34: 48:4b:d1:39:e4:56:d3:84:57:e6:e2:3c:22:1b:a1:4a:fb:7d: c6:db:d0:fb:53:11:23:b5:3e:99:4e:6f:5d:ea:09:e3:b9:e2: cc:12:07:e4:56:ab:e7:2b:9d:72:20:0c:58:1b:ad:3c:e4:04: a5:d6:37:2c:58:10:b6:87:3f:b5:7f:7a:a6:60:03:1e:6a:80: d7:a1:0b:37:93:36:4e:f5:83:5a:13:19:dc:b1:41:48:bd:9d: ad:95:eb:39 -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgICNdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQwNDA0MTUyMDU1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlYzU1Ny03YmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+PmRsrTUqZh/d2pGmmJXh55sNwMocfv+4q2Q3KJULaeotgWtWBxbwLN47cgR DkIZnPb598wirextNvMRIxdj9O7WccTeDX5Pi8TaMgoeZBTmCpFRpRgVxiqK+F5R YaZ84zwhDKJbzAeghIV3H8QjC5f1bSZlLOaXDhL+n4Nr9//IIgnpP3Zzw3e8M6Ix vvL6XV+q1dPrQB1W6udM0WMSQleAJwe38JAUnZR+f7W3RZX/eeBwDErPaGtJiAo4 8+t0feTxSciPSGp9G4CKyEsoZ4d5jmUOm+mMX1POtjmHFyHRBLF9qHt6voLDFJSB CERdYGgre3Qxb/FYPxpZquipSQIDAQABo4IC0zCCAs8wHQYDVR0OBBYEFFr5iFkA 4s3qKqhxbMdTGRplPsfNMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvN0E1OEM4RDZC QkVBMTFFQThERjQ2Nzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXQYIKwYBBQUHAQcBAf8E TjBMMEoEAgABMEQDBAYnIoAwDAMEATtnigMEBDtngAMEBTtnwAMEBHeY4AMEBXed QAMEAHeeQAMEB7a9AAMEBra9wAMEBLa+YAMEBba+wDANBgkqhkiG9w0BAQsFAAOC AQEAecIvtcSn/+v3vn2cE8qn8ViGRATnlUGmdmZcYN0MUbN86/FUFEa6CSleN+Sb JZxLK+fONwS4biJKFKZQU9dwr8M5lERaTE3MYyWx9EHCovH9UXzUuQmprfK0CB7p 1DJA//Ly5rnENLq7Z63XCYW7RZMgW+BVt97smucHa90mgO+PkhQ0lRL5ba0x1gWl Lh6QV1Pn0w+a3IK896jm/DbS+sU0SEvROeRW04RX5uI8IhuhSvt9xtvQ+1MRI7U+ mU5vXeoJ47nizBIH5Far5yudciAMWButPOQEpdY3LFgQtoc/tX96pmADHmqA16EL N5M2TvWDWhMZ3LFBSL2drZXrOQ== -----END CERTIFICATE-----Generated at Sat May 4 15:55:02 2024 by rpki-client on console-ams.rpki-client.org