$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/BFE21FE09B0511EDB2F0BD4EC4F9AE02.roa File: BFE21FE09B0511EDB2F0BD4EC4F9AE02.roa (raw, json) Hash identifier: HsUFhnyNSyJhti2UoaZI6KVexsqtQUo3nTuJz6oOW4Q= Subject key identifier: D9:F0:66:1F:08:52:06:DC:D6:91:3E:C8:A0:67:25:4C:99:46:50:1F Certificate issuer: /CN=A91C3B8A/serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5 Certificate serial: 0A75 Authority key identifier: 45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/BFE21FE09B0511EDB2F0BD4EC4F9AE02.roa Signing time: Tue 06 Feb 2024 20:18:41 +0000 ROA not before: Tue 06 Feb 2024 20:18:41 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 15083 IP address blocks: 116.193.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2677 (0xa75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B8A/serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5 Validity Not Before: Feb 6 20:18:41 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c29421-f65f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3a:d3:55:98:63:9a:64:9b:cf:f7:99:60:83: 1d:91:e9:24:51:04:00:57:2e:b5:ee:eb:d9:e2:f4: d8:71:bf:d8:42:0f:a2:c0:e2:55:2e:a0:0b:77:ab: 98:a9:3b:b3:d0:f0:b5:0f:c0:50:bd:fb:42:fd:ae: 5e:c0:91:20:3d:2c:83:dd:e5:7e:7e:69:0f:9f:97: 7a:63:85:aa:3e:a3:a7:8b:6e:30:2e:7e:71:45:22: 85:64:19:fb:a4:3b:5b:4e:a2:11:11:24:bc:17:cc: 95:e9:fe:14:06:5c:22:d5:12:2a:1b:73:f4:f3:a6: 6c:b0:f3:2f:a0:c2:86:27:b3:8f:5a:38:e0:93:35: c2:c9:62:95:a3:cc:5d:c4:1a:ef:17:b6:26:b2:52: 5a:fc:11:8b:39:fc:03:42:37:d1:e7:ce:0e:2e:82: f6:eb:26:9d:65:96:86:27:18:1f:91:05:c3:bc:e9: fa:e2:5a:97:4e:14:06:dd:93:25:df:86:65:05:5f: 93:9a:68:bd:8b:76:78:d1:ec:02:f8:90:c1:96:1d: 1f:7e:59:81:2f:16:25:75:6b:86:91:a3:c1:62:64: c1:ee:c1:7b:ce:df:f2:6e:4b:4a:21:33:8c:38:62: e6:4d:31:c3:e5:2d:d1:79:19:4d:07:8e:ed:29:c1: f8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F0:66:1F:08:52:06:DC:D6:91:3E:C8:A0:67:25:4C:99:46:50:1F X509v3 Authority Key Identifier: keyid:45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/BFE21FE09B0511EDB2F0BD4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.193.156.0/24 Signature Algorithm: sha256WithRSAEncryption c6:2a:c5:d2:38:dd:9f:40:ed:21:13:b1:2e:2d:d7:48:97:b9: e6:d9:a7:ef:f4:ba:c0:74:b8:e1:69:a9:12:cb:55:3d:c8:bc: c6:d4:1c:a0:3b:9a:1b:29:d8:a7:b4:8d:ce:14:4a:e1:77:e2: 9a:d2:9a:8d:bb:01:97:5d:35:c5:a7:5b:b4:af:a1:83:5a:7e: fc:9d:92:1e:12:60:da:05:32:f0:84:7f:9c:df:14:86:60:26: a9:c0:31:c0:af:4f:be:96:97:a5:3f:ca:ee:68:f9:87:0c:a1: 20:aa:fb:a5:d5:74:dc:ae:a1:23:e5:0e:2c:dd:a1:4c:10:bb: f7:52:0f:79:c1:ec:91:ef:76:ff:e5:74:f9:46:92:66:af:bc: fd:1b:0a:8c:33:9e:4d:65:14:48:2b:ff:94:59:c9:1e:61:83: da:f7:7d:2b:5e:dd:39:12:19:9d:40:49:3c:98:1c:19:7b:72: a6:97:6e:c2:f1:83:ea:12:30:b7:1a:21:ac:e2:29:7e:c8:a4: fc:f5:77:d5:aa:89:56:50:64:4c:46:6f:1a:a1:df:eb:b1:36: 93:cd:33:19:39:14:d2:10:0e:c9:13:80:12:40:53:ad:82:c1: 1a:65:c1:9d:48:03:94:40:ad:c0:05:db:80:d1:d5:67:7d:50: 86:b6:f8:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCOEExMTAvBgNVBAUTKDQ1NTBDNjkwNTFCQUExOEFGMTEyREM3NkI1RjVERjlF NkI3OTQwRDUwHhcNMjQwMjA2MjAxODQxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyOTQyMS1mNjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTrTVZhjmmSbz/eZYIMdkekkUQQAVy617uvZ4vTYcb/YQg+iwOJVLqALd6uY qTuz0PC1D8BQvftC/a5ewJEgPSyD3eV+fmkPn5d6Y4WqPqOni24wLn5xRSKFZBn7 pDtbTqIRESS8F8yV6f4UBlwi1RIqG3P086ZssPMvoMKGJ7OPWjjgkzXCyWKVo8xd xBrvF7YmslJa/BGLOfwDQjfR584OLoL26yadZZaGJxgfkQXDvOn64lqXThQG3ZMl 34ZlBV+Tmmi9i3Z40ewC+JDBlh0fflmBLxYldWuGkaPBYmTB7sF7zt/ybktKITOM OGLmTTHD5S3ReRlNB47tKcH4JwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNnwZh8I Ugbc1pE+yKBnJUyZRlAfMB8GA1UdIwQYMBaAFEVQxpBRuqGK8RLcdrX1355reUDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4QS8wOEM0MzkyNDM4 NEQxMUVBQTRGNTVCNzNDNEY5QUUwMi9SVkRHa0ZHNm9ZcnhFdHgydGZYZm5tdDVR TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JWREdrRkc2b1lyeEV0eDJ0Zlhmbm10NVFOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNCOEEvMDhDNDM5MjQzODREMTFFQUE0RjU1QjczQzRGOUFFMDIvQkZFMjFGRTA5 QjA1MTFFREIyRjBCRDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0wZwwDQYJKoZIhvcNAQELBQADggEBAMYqxdI43Z9A7SET sS4t10iXuebZp+/0usB0uOFpqRLLVT3IvMbUHKA7mhsp2Ke0jc4USuF34prSmo27 AZddNcWnW7SvoYNafvydkh4SYNoFMvCEf5zfFIZgJqnAMcCvT76Wl6U/yu5o+YcM oSCq+6XVdNyuoSPlDizdoUwQu/dSD3nB7JHvdv/ldPlGkmavvP0bCowznk1lFEgr /5RZyR5hg9r3fSte3TkSGZ1ASTyYHBl7cqaXbsLxg+oSMLcaIaziKX7IpPz1d9Wq iVZQZExGbxqh3+uxNpPNMxk5FNIQDskTgBJAU62CwRplwZ1IA5RArcAF24DR1Wd9 UIa2+F4= -----END CERTIFICATE-----Generated at Mon May 6 22:41:02 2024 by rpki-client on console-ams.rpki-client.org