$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/C44A1D987E0511EDBA2BAF7FC4F9AE02.roa File: C44A1D987E0511EDBA2BAF7FC4F9AE02.roa (raw, json) Hash identifier: QFxZjY9gepscppIE/Uca9rqzFdisePbNZRWKpDghEqA= Subject key identifier: 63:08:2F:10:F1:90:DF:4B:8C:C3:72:E9:85:06:FF:BC:0B:8C:02:B1 Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: CC Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/C44A1D987E0511EDBA2BAF7FC4F9AE02.roa Signing time: Sun 17 Dec 2023 05:16:12 +0000 ROA not before: Sun 17 Dec 2023 05:16:12 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 53766 IP address blocks: 152.65.192.0/18 maxlen: 24 199.247.160.0/20 maxlen: 24 207.66.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Validity Not Before: Dec 17 05:16:12 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657e841b-0624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e2:91:f8:82:49:3e:99:1c:bf:ca:55:ec:eb: 58:4c:2e:92:70:e7:7d:2b:a1:47:76:6c:ae:1b:13: fd:14:ec:20:06:c9:7e:0a:a7:54:6a:2d:24:95:05: 86:b8:31:b3:59:ca:e4:bc:a0:28:de:6d:a8:1b:0b: 8e:5c:2a:f8:84:b1:d7:38:3a:14:72:74:f9:0c:6b: 23:4b:f7:d2:ca:e0:7e:93:31:71:0a:8a:3b:53:ac: f1:61:c0:63:99:1e:d9:31:b0:32:10:e3:d3:c5:f7: 1e:69:96:7b:00:13:8f:8e:55:c1:4c:63:37:a0:51: 2d:d8:d5:c2:9b:3d:b6:fd:b3:2c:84:c8:89:48:e5: 3a:75:d0:f7:3e:03:7c:5e:18:36:18:03:7d:28:0b: cd:82:9f:00:5f:99:bc:d7:1b:ee:65:cd:14:b3:c9: 46:ac:0c:e2:83:d2:a7:9d:de:65:a2:32:c7:02:18: eb:07:49:f0:62:49:99:57:6e:52:3a:99:8a:e2:6e: 8e:42:e3:31:90:81:98:5e:c2:65:2b:39:f7:29:1e: 7a:00:81:77:d3:6a:96:9b:06:19:5c:4a:0a:1f:79: 58:d5:54:4e:af:72:62:e1:03:2d:e0:c3:c0:11:11: a5:15:4c:20:8e:1c:c0:a2:16:3f:11:a9:3c:92:eb: a9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:08:2F:10:F1:90:DF:4B:8C:C3:72:E9:85:06:FF:BC:0B:8C:02:B1 X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/C44A1D987E0511EDBA2BAF7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.65.192.0/18 199.247.160.0/20 207.66.112.0/21 Signature Algorithm: sha256WithRSAEncryption 84:4e:4e:1f:ae:73:fc:07:28:ef:b5:b5:cd:1e:01:ed:ea:6f: a2:01:52:56:3c:e6:ba:dc:ba:50:2c:3a:c1:c9:3b:87:95:4d: 7a:53:99:fe:9a:70:2c:e0:e5:60:de:44:ea:bf:b4:2d:1d:f3: f4:e9:e7:a1:b6:6c:35:b5:c0:74:c3:57:6b:a5:9e:60:95:8b: c7:8a:10:c8:50:95:41:19:0b:de:df:20:89:75:a9:00:bd:79: ab:5c:f7:de:8d:21:52:a6:19:34:b8:1b:92:7c:e2:ba:f7:83: c3:21:ba:8a:5e:a0:17:bd:5e:30:9a:19:ec:4d:97:ae:9b:02: ff:91:4f:ce:1e:0a:3b:95:32:60:15:b3:80:be:9d:78:1c:89: a1:7f:a6:7f:51:94:df:f0:09:5d:cd:49:76:77:36:74:b2:ba: bf:95:60:06:9a:62:96:bc:5c:23:ef:11:34:34:f3:68:db:18: 09:d1:d8:b4:d5:03:6c:80:0c:be:2f:99:bf:05:e2:bd:70:3b: a1:c8:82:cc:3e:7e:2d:b3:1c:39:46:99:c3:dc:2e:1c:5c:f3: a0:54:8d:68:54:94:20:48:6b:ea:fe:c3:e6:f7:16:43:44:09: 7c:43:10:b9:07:09:fe:f9:d2:e2:a1:8e:47:fa:85:c9:c1:75: 23:b7:45:1e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjMxMjE3MDUxNjEyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdlODQxYi0wNjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uKR+IJJPpkcv8pV7OtYTC6ScOd9K6FHdmyuGxP9FOwgBsl+CqdUai0klQWG uDGzWcrkvKAo3m2oGwuOXCr4hLHXODoUcnT5DGsjS/fSyuB+kzFxCoo7U6zxYcBj mR7ZMbAyEOPTxfceaZZ7ABOPjlXBTGM3oFEt2NXCmz22/bMshMiJSOU6ddD3PgN8 Xhg2GAN9KAvNgp8AX5m81xvuZc0Us8lGrAzig9Knnd5lojLHAhjrB0nwYkmZV25S OpmK4m6OQuMxkIGYXsJlKzn3KR56AIF302qWmwYZXEoKH3lY1VROr3Ji4QMt4MPA ERGlFUwgjhzAohY/Eak8kuupkwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGMILxDx kN9LjMNy6YUG/7wLjAKxMB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhFREYvRUE2N0E5OEM3QzU3MTFFREJGMjEzNzY3QzRGOUFFMDIvQzQ0QTFEOTg3 RTA1MTFFREJBMkJBRjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAaYQcADBATH96ADBAPPQnAwDQYJKoZIhvcNAQELBQADggEB AIROTh+uc/wHKO+1tc0eAe3qb6IBUlY85rrculAsOsHJO4eVTXpTmf6acCzg5WDe ROq/tC0d8/Tp56G2bDW1wHTDV2ulnmCVi8eKEMhQlUEZC97fIIl1qQC9eatc996N IVKmGTS4G5J84rr3g8MhuopeoBe9XjCaGexNl66bAv+RT84eCjuVMmAVs4C+nXgc iaF/pn9RlN/wCV3NSXZ3NnSyur+VYAaaYpa8XCPvETQ082jbGAnR2LTVA2yADL4v mb8F4r1wO6HIgsw+fi2zHDlGmcPcLhxc86BUjWhUlCBIa+r+w+b3FkNECXxDELkH Cf750uKhjkf6hcnBdSO3RR4= -----END CERTIFICATE-----Generated at Wed May 15 17:48:21 2024 by rpki-client on console-fra.rpki-client.org