$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/87BF5BF6BD3411EB99D25F26C4F9AE02.roa File: 87BF5BF6BD3411EB99D25F26C4F9AE02.roa (raw, json) Hash identifier: TLnHUhVH0KOT73twr+mVRuDev55uxIikMRggDvPlAps= Subject key identifier: 99:F9:4C:3E:DD:CD:47:66:10:20:41:02:0D:06:89:81:64:A8:AB:FB Certificate issuer: /CN=A91BE146/serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Certificate serial: 04B4 Authority key identifier: 43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/87BF5BF6BD3411EB99D25F26C4F9AE02.roa Signing time: Fri 13 Oct 2023 00:32:38 +0000 ROA not before: Fri 13 Oct 2023 00:32:38 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 38304 IP address blocks: 119.31.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1204 (0x4b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE146/serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Validity Not Before: Oct 13 00:32:38 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65289026-b3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5c:bf:f8:5c:9e:f6:ac:f3:ab:e9:e7:83:05: 34:29:26:19:e5:1f:c7:39:90:f4:76:c7:d2:c7:13: 0b:fd:98:c7:ef:d5:31:ca:49:58:cb:7a:ae:f2:d9: e5:5c:12:f8:29:58:e5:dc:b2:d6:10:c8:b0:57:a9: 0b:96:56:b4:46:04:a8:88:54:d5:e6:79:5f:ba:5d: f5:9d:f0:af:53:1a:76:37:9f:9f:60:86:5e:45:21: bc:07:9a:3a:4c:dd:fc:92:ab:8b:d7:de:86:d4:c4: a2:82:b5:00:d5:e4:c8:8e:2d:cf:20:2b:53:45:94: 19:a1:0f:33:28:49:fe:23:47:5c:7f:7c:c0:60:c2: 05:66:ee:44:38:1f:f0:2e:f9:cb:1f:fe:18:53:a5: d5:ef:e0:1c:0f:66:b7:54:48:de:85:e9:a7:df:dd: e4:40:84:4d:d5:cf:7d:68:a4:23:43:f5:6e:69:1f: 9e:7c:9d:39:49:82:48:02:c4:03:59:20:96:1d:57: f5:51:f4:76:5f:09:9a:58:8a:77:2a:2d:d8:15:21: 2c:5a:a4:ae:af:73:c3:8e:da:43:d2:26:de:f7:dd: 3d:f9:14:82:58:78:48:8e:68:c3:a3:55:61:49:8e: ca:95:a6:c6:6b:91:e0:d3:09:05:64:bd:70:b0:a1: 8e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F9:4C:3E:DD:CD:47:66:10:20:41:02:0D:06:89:81:64:A8:AB:FB X509v3 Authority Key Identifier: keyid:43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/87BF5BF6BD3411EB99D25F26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.31.173.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:b5:ba:a9:c4:ca:fa:32:d4:19:d9:fc:2b:60:61:4d:32:09: ea:68:03:c2:75:41:32:b9:1e:81:cb:91:79:cf:b8:23:86:33: f0:f1:48:f8:8f:12:99:52:e1:e5:d7:50:5c:ad:cb:15:14:c1: ef:8b:ad:e2:0a:a5:73:b2:25:7a:a9:11:b5:1e:19:f8:d1:4c: 8e:d9:99:ee:72:4b:7d:aa:7f:5d:b6:ad:b9:bc:d0:02:b5:9b: 69:6a:7a:11:70:73:a1:2f:26:b4:6a:c8:f9:fc:99:11:63:0e: d6:03:6c:68:7b:be:e6:6a:50:14:7d:48:92:04:e7:4d:00:7e: b0:51:29:81:8a:52:3a:eb:f8:af:56:da:09:da:7a:67:42:1d: 2b:bd:44:44:28:19:36:a5:bb:2b:d3:8f:a7:71:a2:7a:4c:a2: e2:43:1e:85:73:27:7b:50:64:41:b8:65:fb:ca:4e:70:46:c3: a2:93:ca:4d:08:b1:33:f7:d5:97:fc:7a:d5:e9:17:d8:77:35: e2:47:a8:e5:00:48:7a:67:58:a2:81:32:e8:f3:12:de:78:fc: 32:ae:0e:d6:fb:95:72:c4:75:91:8e:bc:da:c3:87:f6:fb:b6: bc:09:f9:6c:d1:7f:da:b5:a6:ac:ae:00:30:79:8e:7b:b2:cd: dc:45:ac:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxNDYxMTAvBgNVBAUTKDQzRUEzQTJEQzA4QzVFMUYyQ0Q2ODQxMTY0NEEwNUMw NzZFODhDMDgwHhcNMjMxMDEzMDAzMjM4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4OTAyNi1iM2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFy/+Fye9qzzq+nngwU0KSYZ5R/HOZD0dsfSxxML/ZjH79UxyklYy3qu8tnl XBL4KVjl3LLWEMiwV6kLlla0RgSoiFTV5nlful31nfCvUxp2N5+fYIZeRSG8B5o6 TN38kquL196G1MSigrUA1eTIji3PICtTRZQZoQ8zKEn+I0dcf3zAYMIFZu5EOB/w LvnLH/4YU6XV7+AcD2a3VEjehemn393kQIRN1c99aKQjQ/VuaR+efJ05SYJIAsQD WSCWHVf1UfR2XwmaWIp3Ki3YFSEsWqSur3PDjtpD0ibe9909+RSCWHhIjmjDo1Vh SY7KlabGa5Hg0wkFZL1wsKGOwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJn5TD7d zUdmECBBAg0GiYFkqKv7MB8GA1UdIwQYMBaAFEPqOi3AjF4fLNaEEWRKBcB26IwI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTE0Ni9FNDFBQjQyQUJE MzExMUVCQkZDM0Y5MjFDNEY5QUUwMi9RLW82TGNDTVhoOHMxb1FSWkVvRndIYm9q QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtbzZMY0NNWGg4czFvUVJaRW9Gd0hib2pBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxNDYvRTQxQUI0MkFCRDMxMTFFQkJGQzNGOTIxQzRGOUFFMDIvODdCRjVCRjZC RDM0MTFFQjk5RDI1RjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3H60wDQYJKoZIhvcNAQELBQADggEBAJq1uqnEyvoy1BnZ /CtgYU0yCepoA8J1QTK5HoHLkXnPuCOGM/DxSPiPEplS4eXXUFytyxUUwe+LreIK pXOyJXqpEbUeGfjRTI7Zme5yS32qf122rbm80AK1m2lqehFwc6EvJrRqyPn8mRFj DtYDbGh7vuZqUBR9SJIE500AfrBRKYGKUjrr+K9W2gnaemdCHSu9REQoGTaluyvT j6dxonpMouJDHoVzJ3tQZEG4ZfvKTnBGw6KTyk0IsTP31Zf8etXpF9h3NeJHqOUA SHpnWKKBMujzEt54/DKuDtb7lXLEdZGOvNrDh/b7trwJ+WzRf9q1pqyuADB5jnuy zdxFrNU= -----END CERTIFICATE-----Generated at Fri May 17 01:47:19 2024 by rpki-client on console-fra.rpki-client.org