$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa File: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (raw, json) Hash identifier: FD8mMbLhsLGNWUTDqXS2ge1jhJLxbO0CzgruTSg9Row= Subject key identifier: 5A:C5:F2:44:CB:2A:22:A0:FF:98:68:A5:35:67:59:50:DF:1F:59:C0 Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 0253 Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa Signing time: Wed 27 Mar 2024 03:16:02 +0000 ROA not before: Wed 27 Mar 2024 03:16:02 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 135069 IP address blocks: 192.94.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Mar 27 03:16:02 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66038f72-e842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7c:df:a6:45:fd:ec:34:55:70:e0:38:43:e8: 18:50:06:e5:06:f0:d3:26:9c:b7:53:46:a4:2f:27: 30:d9:09:7e:41:17:a4:c1:3b:9f:55:74:19:33:7b: 91:53:6b:b1:80:7d:93:ca:b6:e6:01:6b:47:44:16: d6:08:b6:ca:59:a2:1f:97:54:2f:40:6a:ac:9d:2c: b1:23:aa:03:85:e3:2f:41:c1:98:e7:db:6b:e4:7b: f9:c1:9e:0e:64:96:ad:3a:c8:1e:4e:74:20:8e:be: 87:23:82:24:3a:77:de:66:09:3c:e2:dd:31:48:a2: ef:d6:1b:cd:5b:57:75:f2:13:77:48:40:3b:70:a7: f1:60:17:ea:11:0d:d5:2f:dc:47:d1:51:94:a9:95: 77:c4:08:08:8f:c1:9c:fd:d3:99:db:08:1b:7a:69: a2:aa:d3:a8:6b:d2:0c:df:45:88:ae:67:45:ca:9a: 7d:37:66:b0:d6:18:30:66:c4:fe:8f:09:df:5d:67: 1f:5e:af:49:1c:2d:50:64:3f:b1:b5:dd:c5:e5:7c: 1a:0f:a1:a4:d5:16:65:d9:e2:c3:b1:43:b8:23:68: 80:6b:93:64:14:a7:9a:6c:b6:32:13:b7:7a:c6:eb: 30:44:9f:ae:21:c6:3b:3e:2f:5b:2b:52:0f:09:a0: 01:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C5:F2:44:CB:2A:22:A0:FF:98:68:A5:35:67:59:50:DF:1F:59:C0 X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.94.236.0/24 Signature Algorithm: sha256WithRSAEncryption 89:e2:6f:24:f6:85:93:39:80:de:fb:2c:33:9f:f8:a1:e8:66: af:25:a9:c0:a5:ef:f6:f8:dc:d3:88:eb:6b:0f:44:d1:85:28: 5b:9f:d2:9d:29:92:e1:0b:95:da:bf:60:8c:b1:db:fb:c2:65: 25:e1:16:e5:a3:71:43:76:be:e3:78:4c:a3:98:0e:3e:01:1f: 55:40:8f:f6:75:76:27:ae:36:2f:d4:24:21:02:d1:d2:cd:77: c2:59:1c:eb:46:04:35:53:b3:21:59:cc:65:31:d1:f0:dc:b3: 56:76:06:e3:9f:3f:04:91:20:1c:02:52:33:49:6a:f9:c7:67: 90:9e:b2:12:f8:ef:f6:ca:e0:bc:7a:d7:4e:ff:43:73:f8:72: 27:00:51:b8:78:61:dc:60:41:45:0f:28:ae:73:95:2b:86:32: af:b2:3c:7c:2d:02:94:24:31:8b:5b:6c:4f:60:5a:f0:03:53: 34:8b:bc:8a:37:56:dc:69:37:6e:00:5f:65:6d:ab:64:74:31: 90:6c:1c:ad:ac:91:fa:aa:7a:ff:b8:35:f0:45:24:1a:0b:8f: b2:a8:8b:69:6b:0b:69:06:9d:72:f0:93:3d:3c:f8:89:be:89: 1e:9e:51:a4:d5:2a:f7:1d:99:92:1c:d9:30:fe:d4:cc:71:70: 44:36:fa:bf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjQwMzI3MDMxNjAyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzOGY3Mi1lODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XzfpkX97DRVcOA4Q+gYUAblBvDTJpy3U0akLycw2Ql+QRekwTufVXQZM3uR U2uxgH2TyrbmAWtHRBbWCLbKWaIfl1QvQGqsnSyxI6oDheMvQcGY59tr5Hv5wZ4O ZJatOsgeTnQgjr6HI4IkOnfeZgk84t0xSKLv1hvNW1d18hN3SEA7cKfxYBfqEQ3V L9xH0VGUqZV3xAgIj8Gc/dOZ2wgbemmiqtOoa9IM30WIrmdFypp9N2aw1hgwZsT+ jwnfXWcfXq9JHC1QZD+xtd3F5XwaD6Gk1RZl2eLDsUO4I2iAa5NkFKeabLYyE7d6 xuswRJ+uIcY7Pi9bK1IPCaABRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFrF8kTL KiKg/5hopTVnWVDfH1nAMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBQjkvMUNENDRGOUVDNzdBMTFFQ0I5NDM0QzJDQzRGOUFFMDIvMzlBMzM1RDZD QjNGMTFFQ0JFQkM5QTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAXuwwDQYJKoZIhvcNAQELBQADggEBAInibyT2hZM5gN77 LDOf+KHoZq8lqcCl7/b43NOI62sPRNGFKFuf0p0pkuELldq/YIyx2/vCZSXhFuWj cUN2vuN4TKOYDj4BH1VAj/Z1dieuNi/UJCEC0dLNd8JZHOtGBDVTsyFZzGUx0fDc s1Z2BuOfPwSRIBwCUjNJavnHZ5CeshL47/bK4Lx6107/Q3P4cicAUbh4YdxgQUUP KK5zlSuGMq+yPHwtApQkMYtbbE9gWvADUzSLvIo3VtxpN24AX2Vtq2R0MZBsHK2s kfqqev+4NfBFJBoLj7Koi2lrC2kGnXLwkz08+Im+iR6eUaTVKvcdmZIc2TD+1Mxx cEQ2+r8= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:05 2024 by rpki-client on console-ams.rpki-client.org