$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/5B0ADC308D3A11EC94DEEC7BC4F9AE02.roa File: 5B0ADC308D3A11EC94DEEC7BC4F9AE02.roa (raw, json) Hash identifier: yR/rS2v+MnuPsp4IAeWDDgPbPiNnjwU9wDh4QYZV4SU= Subject key identifier: F9:DA:37:D9:9B:AE:42:C6:FF:B4:EC:BA:95:32:71:C3:26:6B:81:D7 Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 04A0 Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/5B0ADC308D3A11EC94DEEC7BC4F9AE02.roa Signing time: Tue 24 Sep 2024 16:54:20 +0000 ROA not before: Tue 24 Sep 2024 16:54:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 19905 IP address blocks: 213.170.156.0/24 maxlen: 24 213.170.157.0/24 maxlen: 24 213.170.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Sep 24 16:54:20 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2eebc-3b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:72:99:cd:aa:2a:80:f5:ec:5e:d2:1c:c4:1e: 73:af:c2:17:3a:49:46:fd:25:ff:75:75:b9:92:79: 3f:9e:c6:92:b5:fa:4a:f9:e9:53:50:bb:9d:ad:7d: 5a:f6:8b:f5:ac:12:97:5a:8d:52:da:6f:48:c6:83: 55:ad:e3:28:a1:3c:af:52:bd:03:d6:12:8a:06:e1: b1:85:c6:af:37:99:79:5a:15:fe:72:9a:37:75:69: 05:b0:0c:f3:0b:7c:0a:eb:67:2b:5b:b0:f5:4d:0f: 01:1a:4b:b3:93:cc:98:2e:0d:14:cb:17:e3:fd:46: 61:97:5b:97:0c:6c:30:03:62:18:4e:a1:e6:b6:f3: e0:a2:13:05:85:54:cb:71:cb:a2:af:ef:fa:6c:da: 02:bc:8b:09:4d:83:82:59:b2:47:e3:34:a7:03:d3: 21:1d:44:e0:57:2f:d9:92:8d:56:05:1b:e4:4d:64: 02:ed:4e:88:b7:ac:0f:e9:8b:d5:3e:05:d4:e9:e4: a9:81:a5:c6:3c:d0:65:d4:a0:f2:19:ae:eb:88:fb: db:82:49:f7:aa:88:c0:2e:fa:a4:c9:5f:6e:e6:96: 9e:f5:da:e9:66:ee:b8:85:e7:2c:f3:04:f9:81:5c: 4c:6c:99:65:bb:bf:9e:38:89:c4:e5:27:de:7d:de: fc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:DA:37:D9:9B:AE:42:C6:FF:B4:EC:BA:95:32:71:C3:26:6B:81:D7 X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/5B0ADC308D3A11EC94DEEC7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 213.170.156.0-213.170.158.255 Signature Algorithm: sha256WithRSAEncryption 01:c9:0e:72:9d:fa:13:db:97:1a:e0:df:d8:75:e7:f1:19:88: 98:f8:9d:77:a0:40:ba:bd:ea:9e:fe:7e:cc:ce:21:73:cd:39: f7:fd:55:97:c9:f2:99:28:63:28:79:23:d1:b6:71:d2:50:cf: 0e:f0:5f:8e:32:c1:73:e1:85:44:b5:8f:9f:6e:f3:ff:f0:9d: cb:0e:d2:98:0e:46:27:53:05:2e:1e:f8:1b:16:6d:27:68:f7: de:17:43:bf:30:b9:62:8c:3e:59:2f:63:10:1a:20:ae:07:09: af:c6:53:f3:83:49:b6:8e:d9:ea:4b:2b:86:35:f4:99:f4:d5: 30:52:66:99:95:1a:2b:64:18:a8:87:00:0b:7a:c7:60:98:1e: 52:df:b0:1f:f4:04:d0:64:5f:48:29:9e:b5:d6:70:c2:6b:f6: 47:4f:7d:89:fd:e9:84:f9:2d:09:84:a9:05:67:34:0b:cf:f2: ef:c3:92:a5:df:41:4e:34:75:d7:8e:50:3e:1e:f2:c8:04:e1: 1b:13:f6:f9:5a:02:9b:19:d2:79:6b:e4:3c:9c:b8:73:2c:ad: 3f:b6:7c:ee:dc:e2:20:09:e3:1b:c1:e1:c0:3f:fa:8f:8d:a2: cc:0b:b4:de:88:37:ab:94:46:92:15:8d:79:79:e0:fc:a5:08: 57:29:a8:5b -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjQwOTI0MTY1NDIwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZWViYy0zYjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XKZzaoqgPXsXtIcxB5zr8IXOklG/SX/dXW5knk/nsaStfpK+elTULudrX1a 9ov1rBKXWo1S2m9IxoNVreMooTyvUr0D1hKKBuGxhcavN5l5WhX+cpo3dWkFsAzz C3wK62crW7D1TQ8BGkuzk8yYLg0Uyxfj/UZhl1uXDGwwA2IYTqHmtvPgohMFhVTL ccuir+/6bNoCvIsJTYOCWbJH4zSnA9MhHUTgVy/Zko1WBRvkTWQC7U6It6wP6YvV PgXU6eSpgaXGPNBl1KDyGa7riPvbgkn3qojALvqkyV9u5pae9drpZu64hecs8wT5 gVxMbJllu7+eOInE5Sfefd78WQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFPnaN9mb rkLG/7TsupUyccMma4HXMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvNUIwQURDMzA4 RDNBMTFFQzk0REVFQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAtWqnAMEANWqnjANBgkqhkiG9w0BAQsFAAOCAQEAAckO cp36E9uXGuDf2HXn8RmImPidd6BAur3qnv5+zM4hc8059/1Vl8nymShjKHkj0bZx 0lDPDvBfjjLBc+GFRLWPn27z//Cdyw7SmA5GJ1MFLh74GxZtJ2j33hdDvzC5Yow+ WS9jEBogrgcJr8ZT84NJto7Z6ksrhjX0mfTVMFJmmZUaK2QYqIcAC3rHYJgeUt+w H/QE0GRfSCmetdZwwmv2R099if3phPktCYSpBWc0C8/y78OSpd9BTjR1145QPh7y yAThGxP2+VoCmxnSeWvkPJy4cyytP7Z87tziIAnjG8HhwD/6j42izAu03og3q5RG khWNeXng/KUIVymoWw== -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:06 2024 by rpki-client on console-fra.rpki-client.org