$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D5CA565EDFFD11EE97B62A3CC4F9AE02.roa File: D5CA565EDFFD11EE97B62A3CC4F9AE02.roa (raw, json) Hash identifier: fVvCznpXW6qnGN8NuPwfsmhlodEIIX2CleOocrP3LSs= Subject key identifier: 35:34:0E:AD:2F:A1:E8:35:FC:7F:FA:A4:0F:E2:4E:1E:C5:87:93:58 Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0B8D Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D5CA565EDFFD11EE97B62A3CC4F9AE02.roa Signing time: Mon 28 Oct 2024 19:17:46 +0000 ROA not before: Mon 28 Oct 2024 19:17:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134552 IP address blocks: 139.5.135.0/24 maxlen: 24 139.5.135.192/26 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2957 (0xb8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Oct 28 19:17:46 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671fe359-51a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1a:53:01:28:be:29:9a:9c:92:5f:82:66:b4: 02:d0:85:8b:fc:72:e0:7e:29:13:e4:5a:63:82:37: 4e:ac:f3:0e:7a:05:44:7a:62:f6:2b:f6:25:80:7f: e7:4a:3b:63:95:38:71:fb:23:78:cc:bd:8f:a6:01: 17:2a:d4:95:cb:40:4d:b7:8b:04:4f:ec:cc:5d:04: af:0b:57:76:92:48:06:21:d0:9c:71:da:c5:ed:37: 75:53:b1:7f:7c:77:fe:da:e8:4a:9e:18:a5:54:4b: fd:e1:a5:aa:98:7d:cc:3e:0a:17:21:21:d4:79:a2: 98:30:19:cb:62:58:4b:73:a1:95:59:0e:e4:a0:c6: 71:95:f8:af:a2:cd:2b:2d:8e:d6:80:4a:8a:c5:18: be:88:b7:45:7e:5d:f7:32:21:bc:e2:b7:dd:4b:f8: 17:4a:25:59:71:1f:22:ce:cd:ff:13:ce:d5:4e:d6: bb:2b:f8:87:d8:a2:be:60:91:17:ce:f5:cb:90:12: cd:a8:f6:24:ca:77:03:90:a9:82:2e:ba:2d:08:71: f7:10:30:dd:b4:88:ca:b4:89:4e:75:57:7f:5f:d1: f1:72:ee:47:78:da:c7:ed:53:60:31:38:8e:18:a9: da:0b:cf:4c:15:b4:02:df:3c:e2:a9:05:67:1d:c9: c4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:34:0E:AD:2F:A1:E8:35:FC:7F:FA:A4:0F:E2:4E:1E:C5:87:93:58 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D5CA565EDFFD11EE97B62A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.5.135.0/24 Signature Algorithm: sha256WithRSAEncryption d3:b9:f2:db:c8:86:d9:be:61:a8:32:47:65:78:90:5c:4c:56: 98:04:5d:56:b5:a4:06:55:e4:95:23:d0:c3:3f:d5:ae:e6:9f: 61:c3:eb:ef:8c:7c:00:dd:08:10:b5:7c:ce:b8:46:c9:c3:66: 84:d0:51:5c:76:58:86:00:ee:73:a1:6c:cf:c7:85:f3:72:5c: 19:f5:9b:c1:b5:88:93:d6:d6:87:c2:be:47:65:37:54:08:6f: 42:91:0b:1a:c0:e3:06:05:0b:35:1b:3e:25:0e:40:2c:8a:f7: 3e:ec:10:16:b9:73:b7:3d:6c:2c:5a:04:5f:21:b3:92:68:0c: 84:21:68:88:7b:34:76:0f:82:6a:b4:1a:a7:d1:fd:32:87:e1: f1:d8:18:1c:1e:6e:5a:a7:85:1f:35:6b:a1:73:50:e8:db:48: 79:3b:a8:04:33:60:67:31:15:27:ce:c7:46:83:37:fe:3c:7d: 82:10:93:11:2d:44:41:71:cb:08:70:8d:24:ed:2f:5f:a6:b2: 8d:01:74:a8:28:b6:d0:f4:43:60:58:1b:51:23:e0:45:3f:01: 9d:bd:1f:27:09:64:01:8e:aa:d8:62:20:5b:38:30:e7:12:35: 93:0c:12:90:1a:42:13:06:9c:1a:8d:f3:dc:f3:59:44:ac:02: 44:c5:4a:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjQxMDI4MTkxNzQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZTM1OS01MWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxpTASi+KZqckl+CZrQC0IWL/HLgfikT5FpjgjdOrPMOegVEemL2K/YlgH/n SjtjlThx+yN4zL2PpgEXKtSVy0BNt4sET+zMXQSvC1d2kkgGIdCccdrF7Td1U7F/ fHf+2uhKnhilVEv94aWqmH3MPgoXISHUeaKYMBnLYlhLc6GVWQ7koMZxlfivos0r LY7WgEqKxRi+iLdFfl33MiG84rfdS/gXSiVZcR8izs3/E87VTta7K/iH2KK+YJEX zvXLkBLNqPYkyncDkKmCLrotCHH3EDDdtIjKtIlOdVd/X9Hxcu5HeNrH7VNgMTiO GKnaC89MFbQC3zziqQVnHcnEaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDU0Dq0v oeg1/H/6pA/iTh7Fh5NYMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JEQzgvNjY5NzYzRjAxOEUwMTFFQUEwQzM4RTdCQzRGOUFFMDIvRDVDQTU2NUVE RkZEMTFFRTk3QjYyQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACLBYcwDQYJKoZIhvcNAQELBQADggEBANO58tvIhtm+Yagy R2V4kFxMVpgEXVa1pAZV5JUj0MM/1a7mn2HD6++MfADdCBC1fM64RsnDZoTQUVx2 WIYA7nOhbM/HhfNyXBn1m8G1iJPW1ofCvkdlN1QIb0KRCxrA4wYFCzUbPiUOQCyK 9z7sEBa5c7c9bCxaBF8hs5JoDIQhaIh7NHYPgmq0GqfR/TKH4fHYGBweblqnhR81 a6FzUOjbSHk7qAQzYGcxFSfOx0aDN/48fYIQkxEtREFxywhwjSTtL1+mso0BdKgo ttD0Q2BYG1Ej4EU/AZ29HycJZAGOqthiIFs4MOcSNZMMEpAaQhMGnBqN89zzWUSs AkTFSqg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org