$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/0E3F36D8C43D11EBAB31777FC4F9AE02.roa File: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (raw, json) Hash identifier: QsGXNJhyly1Cy0cu8F4jtfSmyRJHgjGfwS+cLqakTAo= Subject key identifier: F0:DF:E8:4F:83:B1:DA:19:63:93:EB:6D:64:A0:02:03:A3:FF:11:D8 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0C40 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/0E3F36D8C43D11EBAB31777FC4F9AE02.roa Signing time: Thu 28 Dec 2023 18:56:34 +0000 ROA not before: Thu 28 Dec 2023 18:56:34 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 19551 IP address blocks: 134.159.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3136 (0xc40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Dec 28 18:56:34 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658dc4e1-b23b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e0:01:91:e7:68:7e:96:96:e2:60:cf:33:4c: 4b:d4:0c:de:e7:3f:b7:34:af:5d:f0:ef:0d:de:79: 9f:c7:ef:02:50:71:2e:34:ee:3b:46:59:94:b0:51: d0:9a:b7:d7:52:40:7e:f7:e4:59:33:0b:f7:3a:75: e2:c7:54:df:0d:ab:12:cc:66:05:fc:fe:ef:0e:48: fb:3a:ac:98:11:32:b6:20:82:bf:38:9c:d2:7a:19: 99:cc:a2:85:b1:13:e3:ff:ff:2f:98:e5:61:ab:b4: a3:c7:af:73:f9:93:36:b1:70:8e:0c:27:a7:ea:a7: ee:b4:98:de:3f:dc:d1:40:9a:73:f4:2f:12:54:b8: fe:e3:47:bd:d8:6a:5e:fd:19:0f:79:38:4e:e6:94: e3:ad:00:92:3f:d7:e7:92:de:74:31:c8:bc:e5:8a: 54:03:e4:df:88:12:2f:f5:55:4e:32:0f:2a:9c:cd: 3a:bd:24:8b:14:fc:b8:37:04:85:7f:53:ea:a3:f9: fa:55:d0:cd:5f:16:f1:21:dc:74:5e:4e:ba:bf:37: 60:53:3d:33:36:c3:2f:c4:8b:9f:15:aa:c9:98:19: af:73:28:65:91:aa:f9:ff:08:9a:9d:ba:cb:4d:f1: 3e:c3:77:06:c8:cf:b0:05:88:40:0a:f8:9a:12:d5: bd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DF:E8:4F:83:B1:DA:19:63:93:EB:6D:64:A0:02:03:A3:FF:11:D8 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/0E3F36D8C43D11EBAB31777FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.159.88.0/24 Signature Algorithm: sha256WithRSAEncryption 35:4e:ae:b7:71:b1:66:10:5a:06:50:b6:8e:d2:8c:cc:d2:90: 0e:07:28:8f:98:21:e6:bc:6d:a4:36:c4:c2:a6:f1:b8:f6:70: 4f:49:5c:95:7c:e1:72:71:72:18:4e:f1:3f:a5:cb:f6:64:53: 54:84:f0:51:e5:9e:1a:a8:4c:24:db:f4:23:73:2c:14:22:80: 88:92:9d:c4:9c:06:8b:91:7b:d9:3d:08:0e:ce:7b:56:08:c1: 4a:93:d3:9f:a4:7a:3f:f7:b7:8a:84:23:a2:00:c8:91:e4:e3: c7:14:f3:33:6a:c0:bd:aa:47:e2:ce:20:0e:fe:89:d0:21:88: bb:de:bd:2a:95:73:43:b5:46:4c:78:21:29:9c:3a:da:9a:d8: 2d:27:8b:f9:98:92:5e:c9:2b:81:5f:76:cf:2e:4f:dc:cf:7f: 81:9a:9a:e3:9d:00:a3:88:16:c1:0f:89:f4:89:6f:73:49:7d: 69:6b:a8:ef:d0:7d:3e:88:c4:42:93:84:86:8a:2f:93:0d:3b: 0f:7c:44:d0:fa:df:73:76:d0:34:f1:5d:ad:ee:9a:4e:7e:1c: d1:01:02:3b:5c:14:94:ec:9d:44:1f:f4:ec:a3:8a:96:3f:d5: 10:bd:cf:48:0a:e7:c7:85:1a:02:d2:fa:8e:43:61:6a:6c:60: f1:e2:8f:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjMxMjI4MTg1NjM0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzRlMS1iMjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOABkedofpaW4mDPM0xL1Aze5z+3NK9d8O8N3nmfx+8CUHEuNO47RlmUsFHQ mrfXUkB+9+RZMwv3OnXix1TfDasSzGYF/P7vDkj7OqyYETK2IIK/OJzSehmZzKKF sRPj//8vmOVhq7Sjx69z+ZM2sXCODCen6qfutJjeP9zRQJpz9C8SVLj+40e92Gpe /RkPeThO5pTjrQCSP9fnkt50Mci85YpUA+TfiBIv9VVOMg8qnM06vSSLFPy4NwSF f1Pqo/n6VdDNXxbxIdx0Xk66vzdgUz0zNsMvxIufFarJmBmvcyhlkar5/wianbrL TfE+w3cGyM+wBYhACviaEtW9xQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPDf6E+D sdoZY5PrbWSgAgOj/xHYMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMTUwQkY2OTBEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvMEUzRjM2RDhD NDNEMTFFQkFCMzE3NzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACGn1gwDQYJKoZIhvcNAQELBQADggEBADVOrrdxsWYQWgZQ to7SjMzSkA4HKI+YIea8baQ2xMKm8bj2cE9JXJV84XJxchhO8T+ly/ZkU1SE8FHl nhqoTCTb9CNzLBQigIiSncScBouRe9k9CA7Oe1YIwUqT05+kej/3t4qEI6IAyJHk 48cU8zNqwL2qR+LOIA7+idAhiLvevSqVc0O1Rkx4ISmcOtqa2C0ni/mYkl7JK4Ff ds8uT9zPf4GamuOdAKOIFsEPifSJb3NJfWlrqO/QfT6IxEKThIaKL5MNOw98RND6 33N20DTxXa3umk5+HNEBAjtcFJTsnUQf9OyjipY/1RC9z0gK58eFGgLS+o5DYWps YPHijxk= -----END CERTIFICATE-----Generated at Thu May 16 19:50:00 2024 by rpki-client on console-fra.rpki-client.org