$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AEE9F9E6326011ED9031BC4FC4F9AE02.roa File: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (raw, json) Hash identifier: SqiFzOJRZ9/ptRmFEbei+eAgBX8rWvQzMTY6uO6l7Mw= Subject key identifier: FA:8D:7F:47:4B:4A:CB:DF:85:D8:F1:63:B9:4D:9C:1C:EF:99:7F:99 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 028D Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AEE9F9E6326011ED9031BC4FC4F9AE02.roa Signing time: Tue 05 Dec 2023 03:13:50 +0000 ROA not before: Tue 05 Dec 2023 03:13:50 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 58511 IP address blocks: 58.96.158.0/23 maxlen: 23 125.254.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Dec 5 03:13:50 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656e956e-7d0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:95:6a:2d:df:2b:f3:7e:b9:ac:09:0b:dc: 4c:1a:30:c3:2c:6a:f9:30:96:fe:28:97:b6:40:72: b0:59:a5:79:09:12:6e:ad:03:19:fc:cb:f7:49:4f: d6:dd:66:27:15:72:8f:23:ab:7f:8c:95:59:b5:10: 91:ff:c8:42:85:65:99:5f:aa:21:56:2f:25:12:3a: 16:04:30:e6:77:65:33:41:8a:e5:99:3c:23:e2:a0: aa:de:a7:aa:72:94:cf:99:1c:fc:31:ae:42:dc:7d: 37:b1:de:c4:2d:de:45:73:29:f8:67:f6:c9:d4:8e: 08:cb:4f:f3:5b:6c:27:aa:80:1f:08:69:d1:a3:80: a0:ef:82:9c:e0:78:a4:46:5c:27:1d:29:59:32:1e: 79:68:a4:93:4f:b1:b1:af:e3:36:5e:4c:f2:ca:6d: b0:15:a1:ff:dc:ab:08:08:f7:6d:2b:bb:da:73:7e: af:bc:b2:2a:f6:5e:31:b6:88:a8:50:a1:bb:5d:69: e3:2e:4c:18:cd:1e:47:9d:c3:fd:4a:1d:3e:29:90: 1a:8f:db:a6:b2:9d:2b:61:7e:ca:a5:a3:8a:90:de: 7d:82:d1:99:c7:e7:aa:17:62:e2:4c:0a:84:4c:1c: 36:d0:c6:67:28:81:03:74:ed:f3:0a:26:4c:67:e5: c9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:8D:7F:47:4B:4A:CB:DF:85:D8:F1:63:B9:4D:9C:1C:EF:99:7F:99 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AEE9F9E6326011ED9031BC4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.96.158.0/23 125.254.64.0/18 Signature Algorithm: sha256WithRSAEncryption 03:49:28:20:13:e0:87:e2:83:12:b0:bd:89:6a:22:b9:39:df: e2:a6:7a:3e:04:ac:f5:4a:9c:f8:91:5e:26:5f:b8:14:49:4d: 5f:f7:33:95:58:37:73:8f:ad:b6:dc:2a:db:35:cc:c0:9e:c2: fb:0a:8f:ea:fe:bb:77:c3:18:c5:58:4c:7b:32:14:15:29:a3: dc:7d:53:0f:0a:91:50:6a:57:eb:66:ea:cc:bc:0f:f8:b2:03: b5:cb:ff:26:99:35:8c:06:83:fe:4a:6b:be:0a:d8:2c:da:c2: f5:91:ee:d4:7d:03:46:4b:b4:8c:30:f1:71:84:92:50:ba:01: 76:bd:35:51:67:aa:4d:75:97:49:c6:69:33:e1:d9:cc:76:72: 3e:50:32:64:13:bc:12:62:f3:a2:35:38:5d:de:c3:60:67:14: b6:ae:c3:63:b5:9a:1b:3e:0b:24:98:af:bb:93:4c:41:7a:a6: 1e:a8:4b:14:57:d2:9f:2e:00:ef:3a:87:de:7c:69:d8:10:4b: 63:05:a2:84:4f:be:7c:b3:56:0c:76:70:f4:7d:f4:30:6e:22: 84:56:35:17:af:16:b2:8f:ed:65:2f:62:9e:2d:df:2e:2f:d0: a3:26:a1:a8:fd:b7:24:89:57:ee:5a:17:d8:8d:bc:e3:37:e2: ea:a8:96:60 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjMxMjA1MDMxMzUwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlOTU2ZS03ZDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mSVai3fK/N+uawJC9xMGjDDLGr5MJb+KJe2QHKwWaV5CRJurQMZ/Mv3SU/W 3WYnFXKPI6t/jJVZtRCR/8hChWWZX6ohVi8lEjoWBDDmd2UzQYrlmTwj4qCq3qeq cpTPmRz8Ma5C3H03sd7ELd5Fcyn4Z/bJ1I4Iy0/zW2wnqoAfCGnRo4Cg74Kc4Hik RlwnHSlZMh55aKSTT7Gxr+M2Xkzyym2wFaH/3KsICPdtK7vac36vvLIq9l4xtoio UKG7XWnjLkwYzR5HncP9Sh0+KZAaj9umsp0rYX7KpaOKkN59gtGZx+eqF2LiTAqE TBw20MZnKIEDdO3zCiZMZ+XJRQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPqNf0dL SsvfhdjxY7lNnBzvmX+ZMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyMTYvREM3ODI2OENCOTRCMTFFQzgzMkI3NDE5QzRGOUFFMDIvQUVFOUY5RTYz MjYwMTFFRDkwMzFCQzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAE6YJ4DBAZ9/kAwDQYJKoZIhvcNAQELBQADggEBAANJKCAT 4IfigxKwvYlqIrk53+Kmej4ErPVKnPiRXiZfuBRJTV/3M5VYN3OPrbbcKts1zMCe wvsKj+r+u3fDGMVYTHsyFBUpo9x9Uw8KkVBqV+tm6sy8D/iyA7XL/yaZNYwGg/5K a74K2CzawvWR7tR9A0ZLtIww8XGEklC6AXa9NVFnqk11l0nGaTPh2cx2cj5QMmQT vBJi86I1OF3ew2BnFLauw2O1mhs+CySYr7uTTEF6ph6oSxRX0p8uAO86h958adgQ S2MFooRPvnyzVgx2cPR99DBuIoRWNRevFrKP7WUvYp4t3y4v0KMmoaj9tySJV+5a F9iNvOM34uqolmA= -----END CERTIFICATE-----Generated at Fri May 17 04:26:40 2024 by rpki-client on console-fra.rpki-client.org