$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D5CA565EDFFD11EE97B62A3CC4F9AE02.roa File: D5CA565EDFFD11EE97B62A3CC4F9AE02.roa (raw, json) Hash identifier: pi1uhfbf3UNc1f8g1WiIm7gpS/X62rWRXSb5a4XWgQY= Subject key identifier: 56:8A:51:21:2E:54:72:40:27:15:AC:F9:59:93:61:B8:E3:87:8A:04 Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0B12 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D5CA565EDFFD11EE97B62A3CC4F9AE02.roa Signing time: Tue 12 Mar 2024 14:59:01 +0000 ROA not before: Tue 12 Mar 2024 14:59:01 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134552 IP address blocks: 139.5.135.0/24 maxlen: 24 139.5.135.192/26 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2834 (0xb12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Mar 12 14:59:01 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65f06db5-6887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:13:3c:10:3a:d6:5d:ea:29:f7:6a:1c:69:11: 5a:40:27:7d:3f:22:b0:f4:9d:60:14:a0:49:c7:80: de:1d:0a:60:98:dc:78:02:e3:24:4b:69:ab:0c:2b: aa:1d:df:f6:78:ca:9c:68:b1:86:ca:f7:35:2f:7f: 79:ec:63:35:38:6a:92:34:e5:e3:29:b1:21:b5:26: 1d:14:49:22:b0:69:75:5e:03:ac:58:a5:5f:47:d6: d1:e8:7b:8b:a3:07:e8:ab:c9:bf:92:d9:f7:fc:7e: a4:0b:9d:24:a6:6c:6c:5c:85:cd:56:cb:dd:a0:97: 0c:db:4e:7d:7c:e0:df:3c:33:8f:53:40:b3:3e:c4: 7a:ed:1b:0b:9b:3a:97:80:98:f4:5b:1a:cb:45:03: 35:39:d8:e2:a2:ab:78:f4:e7:c5:56:b6:84:7a:19: 26:70:0d:9c:ff:1b:35:83:4b:f4:06:2c:48:76:95: db:df:c0:dd:3b:21:2d:fb:87:09:73:a8:70:17:99: 1a:9e:66:9c:5a:c5:f3:71:1a:3a:b5:05:41:af:98: bf:ab:53:39:b7:e5:a2:02:dc:a9:3d:0e:96:c5:56: 5d:01:1e:2b:9e:95:b3:bd:a7:48:8c:7d:7c:46:50: ef:3f:ad:e1:af:15:2a:6d:7a:90:f1:59:3f:b9:2b: e9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8A:51:21:2E:54:72:40:27:15:AC:F9:59:93:61:B8:E3:87:8A:04 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D5CA565EDFFD11EE97B62A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.5.135.0/24 Signature Algorithm: sha256WithRSAEncryption ce:72:88:74:68:6a:69:0f:f7:eb:e1:d0:77:2c:24:17:cb:4d: a9:a5:33:40:49:31:44:03:2a:0d:af:07:44:25:be:46:1f:1b: 54:86:d9:67:d3:53:6b:00:72:9a:be:c6:1b:d2:93:52:fb:5f: f1:25:cd:fa:bf:18:99:dd:29:b4:54:1c:ae:6f:2c:be:34:90: 3e:5a:eb:82:b7:61:67:60:29:d0:a6:19:b7:5e:ab:72:ad:d2: bb:52:0e:5a:0a:88:5e:24:6f:76:bd:c2:ca:a4:d9:df:f4:b9: 88:3c:b8:2a:6f:c0:9e:63:40:52:34:01:38:e3:10:9c:8b:ed: d3:76:4b:be:64:48:70:ee:f2:16:23:33:5e:ba:e5:52:c7:ed: 20:1a:83:10:2e:bb:b4:26:92:fa:b9:14:5a:16:75:b2:0c:4b: 1f:d0:10:ae:a2:ee:f4:7e:09:f5:f2:8b:c1:ba:de:fa:6f:26: 7e:b2:ec:08:46:8c:ea:2c:82:c5:dd:35:b9:2d:44:d3:41:a5: ee:2f:c4:f4:95:a8:d6:02:3a:55:84:96:d4:12:91:00:36:87: 37:98:fc:4b:b8:fa:ae:c3:16:29:d3:5b:cb:e7:16:e0:c4:01: 05:27:e9:6f:25:c0:eb:a1:af:ad:58:17:65:4b:61:af:f4:69: 24:45:cf:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjQwMzEyMTQ1OTAxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwNmRiNS02ODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBM8EDrWXeop92ocaRFaQCd9PyKw9J1gFKBJx4DeHQpgmNx4AuMkS2mrDCuq Hd/2eMqcaLGGyvc1L3957GM1OGqSNOXjKbEhtSYdFEkisGl1XgOsWKVfR9bR6HuL owfoq8m/ktn3/H6kC50kpmxsXIXNVsvdoJcM2059fODfPDOPU0CzPsR67RsLmzqX gJj0WxrLRQM1Odjioqt49OfFVraEehkmcA2c/xs1g0v0BixIdpXb38DdOyEt+4cJ c6hwF5kanmacWsXzcRo6tQVBr5i/q1M5t+WiAtypPQ6WxVZdAR4rnpWzvadIjH18 RlDvP63hrxUqbXqQ8Vk/uSvp+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFaKUSEu VHJAJxWs+VmTYbjjh4oEMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JEQzgvNjY5NzYzRjAxOEUwMTFFQUEwQzM4RTdCQzRGOUFFMDIvRDVDQTU2NUVE RkZEMTFFRTk3QjYyQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACLBYcwDQYJKoZIhvcNAQELBQADggEBAM5yiHRoamkP9+vh 0HcsJBfLTamlM0BJMUQDKg2vB0QlvkYfG1SG2WfTU2sAcpq+xhvSk1L7X/Elzfq/ GJndKbRUHK5vLL40kD5a64K3YWdgKdCmGbdeq3Kt0rtSDloKiF4kb3a9wsqk2d/0 uYg8uCpvwJ5jQFI0ATjjEJyL7dN2S75kSHDu8hYjM1665VLH7SAagxAuu7Qmkvq5 FFoWdbIMSx/QEK6i7vR+CfXyi8G63vpvJn6y7AhGjOosgsXdNbktRNNBpe4vxPSV qNYCOlWEltQSkQA2hzeY/Eu4+q7DFinTW8vnFuDEAQUn6W8lwOuhr61YF2VLYa/0 aSRFzyM= -----END CERTIFICATE-----Generated at Tue May 14 20:52:16 2024 by rpki-client on console-fra.rpki-client.org