$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/CF1B3152CCE111EB90AF2C7AC4F9AE02.roa File: CF1B3152CCE111EB90AF2C7AC4F9AE02.roa (raw, json) Hash identifier: lbajIekU8P5F8AXUVLC1915iadlLk55p/JIdztuOzCo= Subject key identifier: 07:BD:16:17:38:75:37:FD:9A:C7:C1:91:A9:14:70:79:BA:48:69:B9 Certificate issuer: /CN=A91A86D0/serialNumber=16331676211AEE6773485B65233C62C3A4587AFD Certificate serial: 0B14 Authority key identifier: 16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/CF1B3152CCE111EB90AF2C7AC4F9AE02.roa Signing time: Tue 28 Nov 2023 18:26:02 +0000 ROA not before: Tue 28 Nov 2023 18:26:02 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134739 IP address blocks: 185.205.140.0/22 maxlen: 22 185.205.140.0/24 maxlen: 24 185.205.141.0/24 maxlen: 24 185.205.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.crl rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2836 (0xb14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0/serialNumber=16331676211AEE6773485B65233C62C3A4587AFD Validity Not Before: Nov 28 18:26:02 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656630ba-69b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d4:b1:c7:7e:46:2e:bd:d1:74:8a:05:b8:85: 97:d3:b4:5f:46:9d:15:cf:69:bf:f9:e0:43:dc:51: 31:ed:ce:08:86:ab:5f:5e:e1:31:af:1c:e6:6e:e6: 3a:1a:85:16:7e:a3:dc:e9:69:71:6b:82:19:6c:75: 47:63:cd:b9:e6:d3:7a:da:db:94:3c:81:8e:20:b9: 94:97:a8:86:74:2e:f7:e4:3f:0b:ce:81:93:0e:94: 92:cd:5d:94:89:fa:1f:15:f6:95:0a:4b:ea:3a:95: d5:93:24:82:96:8b:1b:6a:a4:58:84:e6:ed:10:52: bd:37:f6:20:9e:a1:4c:15:7f:46:ae:db:79:20:46: 81:e9:fd:1f:67:ef:ef:9b:db:76:fc:71:52:03:ae: f3:ad:2e:96:1f:da:f0:b9:58:6c:b3:dd:3d:96:88: 43:0e:37:f5:87:fc:52:ca:c8:75:93:2a:50:a2:9d: 98:6e:6e:0c:57:e8:7a:03:3b:ce:ed:c0:5c:05:c2: 89:4c:2b:25:da:6f:fa:d7:e6:03:73:e0:c0:20:3b: a4:80:50:31:77:5f:3b:42:22:60:1b:3a:b1:7b:0a: 28:db:b5:8b:ca:37:ab:e8:23:51:26:7d:a2:36:21: ca:40:7a:84:0b:5c:56:ff:8a:1f:b8:0d:00:6d:a9: 3b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BD:16:17:38:75:37:FD:9A:C7:C1:91:A9:14:70:79:BA:48:69:B9 X509v3 Authority Key Identifier: keyid:16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/CF1B3152CCE111EB90AF2C7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.205.140.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:0d:f8:75:dc:77:77:23:a3:de:c7:99:fc:8f:71:8c:54:4d: d9:b6:d7:8d:22:66:a1:6c:b8:ff:3b:7f:59:8e:45:12:db:fc: 3b:5c:40:97:8a:13:d6:6f:be:c7:e8:6d:e0:e3:eb:f5:68:c6: e2:d0:05:0f:bc:e6:f8:06:03:1f:f1:5a:15:27:3e:08:d6:27: fe:7f:8e:91:e3:b5:fc:78:cb:72:bf:e5:90:11:d7:2b:02:ab: 1c:05:2a:e7:39:aa:b1:48:2e:a9:b3:c9:0a:e2:0f:be:38:f4: b7:f2:6c:1e:8f:db:91:4a:c2:94:ee:12:d6:81:7f:da:6c:bf: 51:a0:45:cf:46:38:fb:2f:72:ed:9b:7d:51:de:6e:f2:a5:a9: 34:cc:0f:56:ba:42:bf:9a:9a:9f:70:98:e1:d6:d2:5b:2c:8a: 38:8c:06:9f:93:9a:0c:10:ee:c7:80:39:21:70:dc:54:ef:ee: a0:28:05:fe:23:65:9a:57:e7:58:c4:45:3e:da:a8:ec:3c:2e: 31:f1:a9:5c:9b:3d:24:37:20:c5:71:b0:9c:b7:f7:66:24:9a: 96:ce:12:ee:a3:d2:13:dd:13:e5:00:58:da:e8:9d:7f:a5:25: 4d:9c:14:a5:78:36:e5:38:72:8c:73:6c:b8:6b:da:32:c9:31: 59:e9:d3:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKDE2MzMxNjc2MjExQUVFNjc3MzQ4NUI2NTIzM0M2MkMz QTQ1ODdBRkQwHhcNMjMxMTI4MTgyNjAyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2MzBiYS02OWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdSxx35GLr3RdIoFuIWX07RfRp0Vz2m/+eBD3FEx7c4IhqtfXuExrxzmbuY6 GoUWfqPc6Wlxa4IZbHVHY8255tN62tuUPIGOILmUl6iGdC735D8LzoGTDpSSzV2U ifofFfaVCkvqOpXVkySClosbaqRYhObtEFK9N/YgnqFMFX9Grtt5IEaB6f0fZ+/v m9t2/HFSA67zrS6WH9rwuVhss909lohDDjf1h/xSysh1kypQop2Ybm4MV+h6AzvO 7cBcBcKJTCsl2m/61+YDc+DAIDukgFAxd187QiJgGzqxewoo27WLyjer6CNRJn2i NiHKQHqEC1xW/4ofuA0Abak79wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAe9Fhc4 dTf9msfBkakUcHm6SGm5MB8GA1UdIwQYMBaAFBYzFnYhGu5nc0hbZSM8YsOkWHr9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC84RDhGMEFCRTBC NUExMUVBOTA5MjMwNjZDNEY5QUUwMi9Gak1XZGlFYTdtZHpTRnRsSXp4aXc2Ulll djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZqTVdkaUVhN21kelNGdGxJenhpdzZSWWV2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2RDAvOEQ4RjBBQkUwQjVBMTFFQTkwOTIzMDY2QzRGOUFFMDIvQ0YxQjMxNTJD Q0UxMTFFQjkwQUYyQzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5zYwwDQYJKoZIhvcNAQELBQADggEBAJ4N+HXcd3cjo97H mfyPcYxUTdm2140iZqFsuP87f1mORRLb/DtcQJeKE9ZvvsfobeDj6/VoxuLQBQ+8 5vgGAx/xWhUnPgjWJ/5/jpHjtfx4y3K/5ZAR1ysCqxwFKuc5qrFILqmzyQriD744 9LfybB6P25FKwpTuEtaBf9psv1GgRc9GOPsvcu2bfVHebvKlqTTMD1a6Qr+amp9w mOHW0lssijiMBp+TmgwQ7seAOSFw3FTv7qAoBf4jZZpX51jERT7aqOw8LjHxqVyb PSQ3IMVxsJy392YkmpbOEu6j0hPdE+UAWNronX+lJU2cFKV4NuU4coxzbLhr2jLJ MVnp05s= -----END CERTIFICATE-----Generated at Fri May 31 20:34:13 2024 by rpki-client on console-ams.rpki-client.org