$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa File: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (raw, json) Hash identifier: 1uChfw6a7c78Tsk47WiN/3OWObxxNLMM+Pvz7qduz8c= Subject key identifier: F0:34:1C:A4:83:F0:75:60:42:D0:74:7F:BE:82:76:EF:A9:76:B7:1D Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 35E4 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa Signing time: Thu 04 Apr 2024 15:21:07 +0000 ROA not before: Thu 04 Apr 2024 15:21:06 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141361 IP address blocks: 119.157.80.0/24 maxlen: 24 119.157.81.0/24 maxlen: 24 119.157.82.0/24 maxlen: 24 119.157.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13796 (0x35e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 4 15:21:06 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660ec562-a8ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:42:b7:45:ab:ed:75:06:40:ff:07:18:c8:48: 22:95:82:31:c4:81:f0:df:22:23:8d:b0:1d:ea:3a: 8a:0a:62:cf:7b:f6:5a:62:ba:be:16:ba:9b:a3:81: 16:49:5a:94:ae:65:a0:d6:e7:c6:97:6c:12:2e:b7: d8:1b:ef:91:b6:b0:17:ba:37:aa:23:41:2b:1d:28: c6:b8:ca:a5:ce:01:39:3f:bb:44:a4:22:ea:64:52: c4:d8:a1:19:3a:e7:94:f5:3b:33:07:60:15:5e:df: d1:16:fc:57:d5:b4:60:b8:41:9c:1c:dd:53:56:04: 97:69:38:63:a8:91:25:5c:51:bc:3b:dc:7d:5f:65: f8:59:ee:cc:64:08:58:d0:0d:c2:7b:2f:b4:c6:0d: 64:72:a5:14:ac:19:40:e5:25:1f:68:5b:94:74:22: 72:66:0d:ac:58:c6:91:2d:50:77:4d:d9:e8:b9:5b: b8:9e:c9:d1:6b:bc:23:bd:26:2f:08:00:c4:56:69: cb:22:f2:6d:44:81:32:7e:1a:26:3e:75:57:e9:e5: f3:61:0e:65:d6:73:64:f3:5c:48:59:3e:ff:65:4b: 39:fa:ab:1d:f9:0e:53:3c:29:ed:44:da:01:38:32: d3:11:ac:1d:3a:82:5d:89:11:56:99:d8:ff:76:b7: a3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:34:1C:A4:83:F0:75:60:42:D0:74:7F:BE:82:76:EF:A9:76:B7:1D X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.157.80.0/22 Signature Algorithm: sha256WithRSAEncryption 06:83:11:05:8c:6b:fe:8c:29:d8:64:b1:3a:3a:38:ce:0e:58: 22:bf:89:56:b4:5f:c8:aa:a8:60:f7:88:b8:2b:09:8c:c2:f7: 73:40:28:6a:dd:fb:e1:7d:0d:1f:80:0b:3d:82:36:9e:5a:54: 94:44:85:c5:01:d8:9c:d6:b9:33:d2:54:13:8a:92:fb:82:76: 98:37:56:2f:f6:c0:bc:85:6f:3d:09:b5:4d:b9:04:d7:99:19: 1c:01:a2:7c:11:61:9d:08:61:cf:89:44:3b:d9:3b:bc:5a:88: 9f:8a:95:45:91:64:6c:de:04:a6:78:36:ec:6b:ea:88:39:88: 9b:3f:10:4a:d7:a5:2c:2d:7b:3e:40:ed:93:2b:45:85:3e:52: 75:14:35:7f:5d:8b:7f:9a:60:15:63:e7:ef:37:00:f4:ed:2c: 06:b0:11:e3:27:ae:61:0c:0f:7a:ae:69:7c:18:3d:7b:b6:2d: 6f:8c:a6:1d:82:9d:d7:67:6c:1b:55:66:41:e5:83:4c:de:18: 46:50:97:a1:3c:9a:2a:1d:34:27:2b:c2:18:73:a9:da:50:01: 86:4d:00:6c:ac:9e:64:f4:18:06:e2:7a:fd:66:2e:f0:5d:7b: 76:21:2c:98:24:99:ac:d1:77:d1:51:a3:66:10:e6:51:74:c7: 96:24:ac:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQwNDA0MTUyMTA2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlYzU2Mi1hOGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEK3RavtdQZA/wcYyEgilYIxxIHw3yIjjbAd6jqKCmLPe/ZaYrq+Frqbo4EW SVqUrmWg1ufGl2wSLrfYG++RtrAXujeqI0ErHSjGuMqlzgE5P7tEpCLqZFLE2KEZ OueU9TszB2AVXt/RFvxX1bRguEGcHN1TVgSXaThjqJElXFG8O9x9X2X4We7MZAhY 0A3Cey+0xg1kcqUUrBlA5SUfaFuUdCJyZg2sWMaRLVB3TdnouVu4nsnRa7wjvSYv CADEVmnLIvJtRIEyfhomPnVX6eXzYQ5l1nNk81xIWT7/ZUs5+qsd+Q5TPCntRNoB ODLTEawdOoJdiRFWmdj/drejJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPA0HKSD 8HVgQtB0f76Cdu+pdrcdMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvQjg5QkE3MjA5 N0Q3MTFFQkE4QjhCQTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ3nVAwDQYJKoZIhvcNAQELBQADggEBAAaDEQWMa/6MKdhk sTo6OM4OWCK/iVa0X8iqqGD3iLgrCYzC93NAKGrd++F9DR+ACz2CNp5aVJREhcUB 2JzWuTPSVBOKkvuCdpg3Vi/2wLyFbz0JtU25BNeZGRwBonwRYZ0IYc+JRDvZO7xa iJ+KlUWRZGzeBKZ4Nuxr6og5iJs/EErXpSwtez5A7ZMrRYU+UnUUNX9di3+aYBVj 5+83APTtLAawEeMnrmEMD3quaXwYPXu2LW+Mph2CnddnbBtVZkHlg0zeGEZQl6E8 miodNCcrwhhzqdpQAYZNAGysnmT0GAbiev1mLvBde3YhLJgkmazRd9FRo2YQ5lF0 x5YkrEI= -----END CERTIFICATE-----Generated at Sat May 4 15:55:02 2024 by rpki-client on console-ams.rpki-client.org