$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/7155C8563E5E11EAB043A522C4F9AE02.roa File: 7155C8563E5E11EAB043A522C4F9AE02.roa (raw, json) Hash identifier: k6sGGBqap/sIKFAHLNp8Q2sefwLXnpkMc2C/TD2oq0s= Subject key identifier: 2B:63:81:89:3B:F0:E3:F1:5A:82:32:60:9A:07:4E:7B:BB:87:A0:16 Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0B21 Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/7155C8563E5E11EAB043A522C4F9AE02.roa Signing time: Thu 02 Nov 2023 19:26:52 +0000 ROA not before: Thu 02 Nov 2023 19:26:52 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45638 IP address blocks: 198.244.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 15:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: Nov 2 19:26:52 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6543f7fc-a893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8f:63:21:5c:c2:12:a6:87:af:b4:0f:c7:72: 5b:18:9b:53:a2:87:41:5f:17:20:5b:77:1d:7b:3c: 2b:45:ea:f3:77:2d:0f:8e:6a:4c:78:3e:2d:34:18: 67:cd:a2:e1:f7:c7:76:f1:fe:92:5c:db:be:65:f8: b9:53:07:f9:c5:f8:ea:7d:f2:db:4c:3f:09:39:44: 89:e4:9e:2d:28:04:29:40:0e:0b:a1:2a:f2:d7:af: f3:43:01:13:fa:53:4b:29:ff:87:06:bf:aa:ab:11: 1b:0a:91:ac:27:24:1d:94:fe:67:31:35:32:52:e6: fc:1b:70:06:84:97:d1:5a:37:40:4f:e4:e8:28:20: 8b:8e:e1:e6:03:5a:4f:98:8a:e7:57:62:32:01:96: 53:e6:3d:ca:31:cf:0e:0a:29:3a:b7:65:9d:08:1a: 08:b4:be:c8:8a:9d:fb:ca:72:68:fb:99:f5:7f:c7: 8c:91:63:72:be:a1:4c:83:88:7e:4f:3e:b3:c7:fe: f1:79:53:ec:f5:33:f2:76:5f:01:76:62:1b:21:b7: 5f:a8:42:53:ab:0f:80:4d:b9:22:e0:d4:12:48:c7: d6:e0:29:69:3c:15:db:c1:79:e4:58:a5:97:ff:bd: 1f:c0:40:14:c1:93:cc:ba:35:97:a6:7b:11:c1:78: a9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:63:81:89:3B:F0:E3:F1:5A:82:32:60:9A:07:4E:7B:BB:87:A0:16 X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/7155C8563E5E11EAB043A522C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 198.244.10.0/23 Signature Algorithm: sha256WithRSAEncryption b5:c5:89:d6:db:cc:f0:f4:8c:fe:29:91:ba:98:90:da:84:67: 18:65:c8:ef:9d:27:53:dd:91:0c:85:b6:32:54:21:26:29:da: ac:98:28:f1:b2:61:be:62:cb:4d:59:40:e3:99:09:c8:1a:bd: 5f:41:ef:7a:12:57:42:fc:f5:fd:70:e1:a5:f3:7b:f1:00:89: 07:bc:fb:a4:32:0d:b9:46:ad:b5:6b:64:96:06:b7:18:c2:a1: b6:ed:b0:86:88:76:85:af:6a:cc:c5:57:e0:8d:de:28:80:0e: fa:06:50:c8:47:11:96:45:6b:99:17:68:83:29:66:ab:12:b5: a5:0a:09:02:47:f2:0e:07:56:ff:4e:7a:ff:0a:91:1f:47:33: f0:86:dd:92:ac:5e:02:9e:8c:71:2c:3d:08:7d:91:be:1d:09: 0c:cb:a6:ab:ee:29:af:f0:c9:ce:f7:45:7c:f3:87:da:4c:49: ca:9a:aa:8c:9c:86:0a:56:55:44:91:4b:b0:10:e2:86:92:cb: b4:a9:ef:80:00:91:cd:ad:a7:84:44:8f:9d:f4:23:52:35:13: bd:29:fc:e3:0e:6f:33:6c:15:85:f3:0c:ea:58:ff:46:ae:5c: 97:91:49:14:00:dd:c5:ba:49:49:be:97:f6:08:6a:75:18:fe: c0:78:28:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjMxMTAyMTkyNjUyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQzZjdmYy1hODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAro9jIVzCEqaHr7QPx3JbGJtToodBXxcgW3cdezwrRerzdy0PjmpMeD4tNBhn zaLh98d28f6SXNu+Zfi5Uwf5xfjqffLbTD8JOUSJ5J4tKAQpQA4LoSry16/zQwET +lNLKf+HBr+qqxEbCpGsJyQdlP5nMTUyUub8G3AGhJfRWjdAT+ToKCCLjuHmA1pP mIrnV2IyAZZT5j3KMc8OCik6t2WdCBoItL7Iip37ynJo+5n1f8eMkWNyvqFMg4h+ Tz6zx/7xeVPs9TPydl8BdmIbIbdfqEJTqw+ATbki4NQSSMfW4ClpPBXbwXnkWKWX /70fwEAUwZPMujWXpnsRwXipewIDAQABo4IClTCCApEwHQYDVR0OBBYEFCtjgYk7 8OPxWoIyYJoHTnu7h6AWMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQTMvMTg4MjNDOEMwNTAxMTFFQUJEOUIyMDJDQzRGOUFFMDIvNzE1NUM4NTYz RTVFMTFFQUIwNDNBNTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHG9AowDQYJKoZIhvcNAQELBQADggEBALXFidbbzPD0jP4p kbqYkNqEZxhlyO+dJ1PdkQyFtjJUISYp2qyYKPGyYb5iy01ZQOOZCcgavV9B73oS V0L89f1w4aXze/EAiQe8+6QyDblGrbVrZJYGtxjCobbtsIaIdoWvaszFV+CN3iiA DvoGUMhHEZZFa5kXaIMpZqsStaUKCQJH8g4HVv9Oev8KkR9HM/CG3ZKsXgKejHEs PQh9kb4dCQzLpqvuKa/wyc73RXzzh9pMScqaqoychgpWVUSRS7AQ4oaSy7Sp74AA kc2tp4REj530I1I1E70p/OMObzNsFYXzDOpY/0auXJeRSRQA3cW6SUm+l/YIanUY /sB4KPE= -----END CERTIFICATE-----Generated at Fri May 24 20:48:05 2024 by rpki-client on console-fra.rpki-client.org