$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/CF1B3152CCE111EB90AF2C7AC4F9AE02.roa File: CF1B3152CCE111EB90AF2C7AC4F9AE02.roa (raw, json) Hash identifier: ZahlDvvl4xqyMO4InfL5NLuVKGcItekitU1WQ9tGmBk= Subject key identifier: 2A:DA:6B:93:52:E4:23:67:B5:4C:E3:BB:85:53:E1:A4:CE:B2:DC:89 Certificate issuer: /CN=A91A86D0/serialNumber=16331676211AEE6773485B65233C62C3A4587AFD Certificate serial: 0BC6 Authority key identifier: 16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/CF1B3152CCE111EB90AF2C7AC4F9AE02.roa Signing time: Sat 02 Nov 2024 17:56:01 +0000 ROA not before: Sat 02 Nov 2024 17:56:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134739 IP address blocks: 185.205.140.0/22 maxlen: 22 185.205.140.0/24 maxlen: 24 185.205.141.0/24 maxlen: 24 185.205.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.crl rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3014 (0xbc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0/serialNumber=16331676211AEE6773485B65233C62C3A4587AFD Validity Not Before: Nov 2 17:56:01 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672667b0-3997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a2:02:c3:4a:23:7e:08:df:d8:1b:68:63:d5: 17:52:9d:b6:af:7a:7e:9d:ca:2b:13:19:6b:33:6a: 30:2c:38:95:e8:57:dd:ee:3a:3f:cd:fa:da:b1:d0: a8:8c:4b:4d:a1:f8:10:2d:10:dc:57:b2:1b:bb:8a: f3:ac:bb:6a:60:84:ec:c5:ec:4a:3d:44:9d:72:e3: c6:06:0b:f5:81:c3:63:f3:39:98:e5:bc:35:89:66: ce:c9:39:e1:f8:26:60:17:4b:06:32:f0:a6:3e:9c: 36:3d:00:42:e6:7b:a0:1b:1f:a7:97:c6:44:78:d5: 3c:1b:21:bb:e3:3f:0c:0f:f0:b7:2e:bd:78:fe:9e: 76:e1:1c:4c:58:11:c6:ee:d5:bf:73:a5:ab:ae:bc: e1:1f:b8:6a:68:c9:00:c4:f3:29:cc:49:bd:8f:52: 44:52:53:e9:e6:ec:f1:96:15:9b:ce:ec:76:f2:03: b5:68:94:4a:f5:cf:11:a4:91:34:ce:69:cb:27:35: a8:1e:b8:43:ec:4b:b6:e6:ea:6e:86:6b:93:4d:dc: 5f:c3:33:42:36:fe:cb:db:e3:19:91:82:50:d2:8b: 53:4e:29:de:3d:fa:9c:d9:ed:cd:5e:39:05:9b:2f: 3f:d9:48:11:51:e1:c3:9c:d7:24:3b:62:62:08:7b: 4c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:DA:6B:93:52:E4:23:67:B5:4C:E3:BB:85:53:E1:A4:CE:B2:DC:89 X509v3 Authority Key Identifier: keyid:16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/CF1B3152CCE111EB90AF2C7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.205.140.0/22 Signature Algorithm: sha256WithRSAEncryption bf:26:8f:87:fb:a1:b8:2d:b3:e5:5a:6e:d7:0e:fd:16:bf:70: 06:9e:49:55:43:e5:86:00:2a:fe:ba:80:b7:aa:a9:6e:5f:d7: 5e:15:c5:6c:53:e8:cf:d6:16:9f:f3:65:b8:b9:e2:01:07:a4: 4d:a4:17:84:9c:a3:d7:cd:89:69:58:23:f3:55:61:d7:5b:9f: 1f:1a:f4:0c:e9:62:a5:a7:63:b1:c7:0a:21:71:74:4b:a5:f3: f8:38:f1:77:99:fc:9c:d7:e6:bc:13:ca:cd:44:27:d0:4a:a7: d7:84:95:04:8f:a5:5d:71:3a:e6:7e:0b:90:db:f8:bc:36:32: 53:2e:1d:f3:8d:54:c7:8b:3d:8b:15:b6:b7:f5:2f:2d:96:cf: 04:a4:af:e3:f2:19:df:3e:9c:52:7b:91:e3:63:1d:5a:cc:f3: 40:9b:c8:bf:af:60:ca:f3:b3:89:1d:38:77:2a:59:37:92:80: 8f:d6:62:a4:75:bf:a0:87:c6:80:fc:d8:73:d5:e5:97:0a:6b: fd:63:41:49:92:2e:01:70:cc:58:29:17:c2:74:98:1f:42:bf: 22:05:66:20:9f:0e:16:8d:de:a2:03:4f:e1:83:cb:05:12:9c: 58:ab:72:23:f4:48:88:c8:b6:af:e5:cd:43:c7:90:38:05:7b: 49:a6:72:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKDE2MzMxNjc2MjExQUVFNjc3MzQ4NUI2NTIzM0M2MkMz QTQ1ODdBRkQwHhcNMjQxMTAyMTc1NjAxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NjdiMC0zOTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6ICw0ojfgjf2BtoY9UXUp22r3p+ncorExlrM2owLDiV6Ffd7jo/zfrasdCo jEtNofgQLRDcV7Ibu4rzrLtqYITsxexKPUSdcuPGBgv1gcNj8zmY5bw1iWbOyTnh +CZgF0sGMvCmPpw2PQBC5nugGx+nl8ZEeNU8GyG74z8MD/C3Lr14/p524RxMWBHG 7tW/c6WrrrzhH7hqaMkAxPMpzEm9j1JEUlPp5uzxlhWbzux28gO1aJRK9c8RpJE0 zmnLJzWoHrhD7Eu25upuhmuTTdxfwzNCNv7L2+MZkYJQ0otTTinePfqc2e3NXjkF my8/2UgRUeHDnNckO2JiCHtMywIDAQABo4IClTCCApEwHQYDVR0OBBYEFCraa5NS 5CNntUzju4VT4aTOstyJMB8GA1UdIwQYMBaAFBYzFnYhGu5nc0hbZSM8YsOkWHr9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC84RDhGMEFCRTBC NUExMUVBOTA5MjMwNjZDNEY5QUUwMi9Gak1XZGlFYTdtZHpTRnRsSXp4aXc2Ulll djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZqTVdkaUVhN21kelNGdGxJenhpdzZSWWV2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2RDAvOEQ4RjBBQkUwQjVBMTFFQTkwOTIzMDY2QzRGOUFFMDIvQ0YxQjMxNTJD Q0UxMTFFQjkwQUYyQzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5zYwwDQYJKoZIhvcNAQELBQADggEBAL8mj4f7obgts+Va btcO/Ra/cAaeSVVD5YYAKv66gLeqqW5f114VxWxT6M/WFp/zZbi54gEHpE2kF4Sc o9fNiWlYI/NVYddbnx8a9AzpYqWnY7HHCiFxdEul8/g48XeZ/JzX5rwTys1EJ9BK p9eElQSPpV1xOuZ+C5Db+Lw2MlMuHfONVMeLPYsVtrf1Ly2WzwSkr+PyGd8+nFJ7 keNjHVrM80CbyL+vYMrzs4kdOHcqWTeSgI/WYqR1v6CHxoD82HPV5ZcKa/1jQUmS LgFwzFgpF8J0mB9CvyIFZiCfDhaN3qIDT+GDywUSnFirciP0SIjItq/lzUPHkDgF e0mmcj0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org