$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/A833D0F2E1AE11EC87A73482C4F9AE02.roa File: A833D0F2E1AE11EC87A73482C4F9AE02.roa (raw, json) Hash identifier: 5yvpOkAEyUI+rH4Qj2bjhfkH4l8Iq24fANOGg+K5HRw= Subject key identifier: 24:EA:AB:DD:1C:D9:C5:6D:21:ED:42:95:00:C5:E9:6F:E6:60:39:16 Certificate issuer: /CN=A91AB383/serialNumber=9C2351D45A97D71D03D6BC385B37DD9BFB80CF5E Certificate serial: 041C Authority key identifier: 9C:23:51:D4:5A:97:D7:1D:03:D6:BC:38:5B:37:DD:9B:FB:80:CF:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nCNR1FqX1x0D1rw4Wzfdm_uAz14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/A833D0F2E1AE11EC87A73482C4F9AE02.roa Signing time: Sun 25 Jun 2023 01:58:06 +0000 ROA not before: Sun 25 Jun 2023 01:58:06 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 6134 IP address blocks: 182.255.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/nCNR1FqX1x0D1rw4Wzfdm_uAz14.crl rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/nCNR1FqX1x0D1rw4Wzfdm_uAz14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nCNR1FqX1x0D1rw4Wzfdm_uAz14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1052 (0x41c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB383/serialNumber=9C2351D45A97D71D03D6BC385B37DD9BFB80CF5E Validity Not Before: Jun 25 01:58:06 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64979f2e-637f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:29:74:79:09:a8:17:20:90:67:62:5e:6c:75: f3:be:26:57:bc:68:51:26:76:d7:dd:1e:37:9a:db: 2b:b9:2b:cf:35:78:a5:57:9d:76:32:c5:44:2f:c2: 94:f4:dc:61:15:7b:23:b7:e5:b9:0c:be:32:a1:ac: c5:af:64:fc:1c:fc:28:c3:74:5f:36:53:ec:2b:0f: 37:92:39:14:0e:58:1f:ac:67:bd:d7:5e:63:0d:4b: e9:5a:67:1e:82:f0:04:ef:1a:5c:57:b8:e7:6a:33: 7a:c4:db:56:87:d1:16:ce:2c:f9:a5:a6:a9:a0:24: 8d:9a:ef:fe:0d:32:1c:15:18:20:a8:4c:4c:c7:c3: 16:9d:d2:ba:57:c4:0b:69:a7:67:2f:70:40:c6:77: 9a:7e:03:75:52:f1:2a:ae:c1:ca:d0:94:e5:b9:15: 93:0a:b6:d0:55:30:82:53:95:3c:dd:be:ff:51:86: b7:8e:63:1b:ed:13:c7:59:79:0f:4e:9f:9a:3a:77: d0:92:c7:52:8b:10:42:fd:e6:a0:e8:49:83:0b:97: 9e:c1:2a:b3:f5:71:8c:3d:90:dc:af:ba:d1:19:19: d7:36:7e:54:10:16:21:02:a3:7d:90:12:00:bb:90: 11:88:04:d1:82:fc:0c:ab:e1:ec:f7:ee:f5:4e:c2: 0a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:EA:AB:DD:1C:D9:C5:6D:21:ED:42:95:00:C5:E9:6F:E6:60:39:16 X509v3 Authority Key Identifier: keyid:9C:23:51:D4:5A:97:D7:1D:03:D6:BC:38:5B:37:DD:9B:FB:80:CF:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/nCNR1FqX1x0D1rw4Wzfdm_uAz14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nCNR1FqX1x0D1rw4Wzfdm_uAz14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/A833D0F2E1AE11EC87A73482C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.255.44.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:90:62:dd:9f:9b:57:5c:29:32:a4:fd:46:4a:56:f5:47:89: 74:ca:80:a6:2a:ea:df:9c:98:1e:83:2a:0e:a3:3f:1c:ce:d6: 5c:51:15:6d:89:4e:5b:de:e1:a9:33:92:78:46:dd:c4:a3:28: 68:51:87:ce:14:48:f6:25:1b:e9:59:87:ff:f2:1e:77:8a:08: 79:4a:bc:2a:f8:13:92:1c:02:bf:3a:d9:4e:e1:c4:2a:cf:0b: 16:9a:19:f2:f4:02:12:e6:e5:56:37:39:63:b2:ac:56:65:27: 00:60:34:62:bc:e1:9d:4a:81:31:bb:74:11:d8:a2:fb:88:77: 8c:4f:5f:44:5f:e6:18:d5:7d:47:fc:3c:bb:ec:41:11:ca:33: 33:06:42:52:f7:76:35:b2:46:1f:72:5d:f7:37:3f:16:92:12: 1a:2d:88:ee:c1:61:fb:06:09:12:4c:81:78:70:aa:cf:30:83: 5f:6b:0f:d4:6b:1b:93:f0:30:21:f0:5a:2a:99:7b:76:25:8f: d1:5e:f9:b5:49:90:53:eb:31:85:df:9f:ca:31:7c:8c:89:2e: 05:93:e3:e6:4c:19:90:a3:43:0a:c4:d1:9a:d0:0f:08:84:26: 75:2c:72:9b:ab:d3:f4:1c:a8:8c:d7:fc:c0:bf:37:2a:8c:9d: 9b:30:46:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzODMxMTAvBgNVBAUTKDlDMjM1MUQ0NUE5N0Q3MUQwM0Q2QkMzODVCMzdERDlC RkI4MENGNUUwHhcNMjMwNjI1MDE1ODA2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk3OWYyZS02MzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCl0eQmoFyCQZ2JebHXzviZXvGhRJnbX3R43mtsruSvPNXilV512MsVEL8KU 9NxhFXsjt+W5DL4yoazFr2T8HPwow3RfNlPsKw83kjkUDlgfrGe9115jDUvpWmce gvAE7xpcV7jnajN6xNtWh9EWziz5paapoCSNmu/+DTIcFRggqExMx8MWndK6V8QL aadnL3BAxneafgN1UvEqrsHK0JTluRWTCrbQVTCCU5U83b7/UYa3jmMb7RPHWXkP Tp+aOnfQksdSixBC/eag6EmDC5eewSqz9XGMPZDcr7rRGRnXNn5UEBYhAqN9kBIA u5ARiATRgvwMq+Hs9+71TsIKNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCTqq90c 2cVtIe1ClQDF6W/mYDkWMB8GA1UdIwQYMBaAFJwjUdRal9cdA9a8OFs33Zv7gM9e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjM4My84Q0MyQTlBQURF NzcxMUVCODczOUVDMTFDNEY5QUUwMi9uQ05SMUZxWDF4MEQxcnc0V3pmZG1fdUF6 MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25DTlIxRnFYMXgwRDFydzRXemZkbV91QXoxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIzODMvOENDMkE5QUFERTc3MTFFQjg3MzlFQzExQzRGOUFFMDIvQTgzM0QwRjJF MUFFMTFFQzg3QTczNDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK2/ywwDQYJKoZIhvcNAQELBQADggEBAD2QYt2fm1dcKTKk /UZKVvVHiXTKgKYq6t+cmB6DKg6jPxzO1lxRFW2JTlve4akzknhG3cSjKGhRh84U SPYlG+lZh//yHneKCHlKvCr4E5IcAr862U7hxCrPCxaaGfL0AhLm5VY3OWOyrFZl JwBgNGK84Z1KgTG7dBHYovuId4xPX0Rf5hjVfUf8PLvsQRHKMzMGQlL3djWyRh9y Xfc3PxaSEhotiO7BYfsGCRJMgXhwqs8wg19rD9RrG5PwMCHwWiqZe3Ylj9Fe+bVJ kFPrMYXfn8oxfIyJLgWT4+ZMGZCjQwrE0ZrQDwiEJnUscpur0/QcqIzX/MC/NyqM nZswRsY= -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:17 2024 by rpki-client on console-fra.rpki-client.org