$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CE99A9F2D33811EDAAE97C1BC4F9AE02.roa File: CE99A9F2D33811EDAAE97C1BC4F9AE02.roa (raw, json) Hash identifier: /GCHjWQsmKgjg6MtDkG0VlTVZLNe17HMF1qIkl5WSsU= Subject key identifier: 97:9B:0C:1D:E7:61:00:B6:97:79:98:08:68:30:61:48:A0:43:A4:A7 Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 03FA Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CE99A9F2D33811EDAAE97C1BC4F9AE02.roa Signing time: Wed 22 Nov 2023 20:05:30 +0000 ROA not before: Wed 22 Nov 2023 20:05:30 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 14618 IP address blocks: 213.170.156.0/24 maxlen: 24 213.170.157.0/24 maxlen: 24 213.170.158.0/24 maxlen: 24 213.170.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1018 (0x3fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Nov 22 20:05:30 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=655e5f09-f0bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:18:05:95:24:b3:86:e6:e6:17:13:1f:fd:bf: 99:09:56:6a:f8:41:e1:fd:c8:0c:ea:a7:af:05:ee: 83:5e:3d:ae:4c:ec:27:8b:d7:0e:bc:5d:f5:07:9d: ee:66:b9:3b:a3:28:a7:91:22:b9:69:bb:dc:11:e0: fc:a2:d5:88:22:f0:7a:56:cb:7a:47:84:36:53:af: 94:28:cd:d8:fe:d8:57:4e:e4:94:92:14:a5:fb:ad: 7e:ec:2a:b2:34:d4:e7:cc:34:7f:a3:6d:da:25:6b: b9:82:c0:f5:2c:9a:c5:27:ee:0a:ef:ca:44:b7:d7: 7a:db:18:1e:22:9c:ef:8f:ac:0a:db:d4:38:56:68: 54:5a:fa:ee:80:8e:12:55:c1:bd:e3:22:00:6f:59: 51:57:89:8a:5b:e7:04:63:f3:86:c3:d2:69:50:b6: bb:c4:43:5c:f2:58:ca:41:93:5e:a5:ce:6f:1b:c9: be:f9:1e:9a:0b:4e:37:93:70:19:37:27:78:e1:de: 42:e8:cb:62:8e:11:a3:7e:a0:e4:93:a6:05:43:f2: 57:43:39:cb:0b:56:48:01:57:cf:56:12:e2:2b:c6: e5:ae:c4:30:2d:4b:ff:ae:dd:6c:5b:90:6e:2f:73: 87:44:a1:45:dd:9a:bc:1f:05:af:c3:f8:d0:2a:9f: 34:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:9B:0C:1D:E7:61:00:B6:97:79:98:08:68:30:61:48:A0:43:A4:A7 X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CE99A9F2D33811EDAAE97C1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 213.170.156.0/22 Signature Algorithm: sha256WithRSAEncryption 90:01:be:fe:9c:17:c6:6e:fc:c9:30:00:1a:54:e6:6d:4d:01: 7f:e3:83:15:01:a8:f8:66:b0:1e:b9:30:42:fc:b9:2a:8f:61: a2:d1:13:b6:3d:52:6f:a6:f9:cc:e3:e3:9c:24:13:9c:e2:32: f3:17:b5:89:04:f9:ab:20:9f:cd:3b:7f:e8:75:b1:00:d5:4b: 3e:29:44:62:8e:4b:f3:78:97:44:b0:bc:6e:22:aa:d1:f9:f7: 7f:94:bc:eb:e2:e0:12:70:a4:6b:9c:41:6a:45:28:39:99:28: 85:2c:ca:2c:ff:3c:0d:6f:ae:b3:3b:20:1d:7d:50:31:ab:e8: fc:eb:5f:ff:b6:23:d2:a2:78:c3:39:fb:32:50:f1:ae:29:72: 0f:84:57:60:a0:30:7f:75:71:8d:0f:1f:2d:98:6c:09:d4:fb: c4:c6:7f:b9:e5:e5:16:ef:de:47:bd:f3:93:1c:6d:39:0f:27: 34:7e:b8:b7:44:51:ea:c1:95:aa:b9:a5:c1:a5:3a:3e:e4:a2: 56:6b:c6:d6:d3:46:57:bb:11:01:0f:41:87:99:96:1c:08:d5: 46:39:f0:2a:7e:2a:35:b3:9c:af:68:a1:5a:78:9c:05:3d:30: a5:cc:6b:a9:1b:2c:ff:b2:07:a5:df:25:da:55:6c:e5:c1:e3: e0:66:c9:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjMxMTIyMjAwNTMwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVlNWYwOS1mMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBgFlSSzhubmFxMf/b+ZCVZq+EHh/cgM6qevBe6DXj2uTOwni9cOvF31B53u Zrk7oyinkSK5abvcEeD8otWIIvB6Vst6R4Q2U6+UKM3Y/thXTuSUkhSl+61+7Cqy NNTnzDR/o23aJWu5gsD1LJrFJ+4K78pEt9d62xgeIpzvj6wK29Q4VmhUWvrugI4S VcG94yIAb1lRV4mKW+cEY/OGw9JpULa7xENc8ljKQZNepc5vG8m++R6aC043k3AZ Nyd44d5C6MtijhGjfqDkk6YFQ/JXQznLC1ZIAVfPVhLiK8blrsQwLUv/rt1sW5Bu L3OHRKFF3Zq8HwWvw/jQKp80eQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJebDB3n YQC2l3mYCGgwYUigQ6SnMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvQ0U5OUE5RjJE MzM4MTFFREFBRTk3QzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALVqpwwDQYJKoZIhvcNAQELBQADggEBAJABvv6cF8Zu/Mkw ABpU5m1NAX/jgxUBqPhmsB65MEL8uSqPYaLRE7Y9Um+m+czj45wkE5ziMvMXtYkE +asgn807f+h1sQDVSz4pRGKOS/N4l0SwvG4iqtH593+UvOvi4BJwpGucQWpFKDmZ KIUsyiz/PA1vrrM7IB19UDGr6PzrX/+2I9KieMM5+zJQ8a4pcg+EV2CgMH91cY0P Hy2YbAnU+8TGf7nl5Rbv3ke985McbTkPJzR+uLdEUerBlaq5pcGlOj7kolZrxtbT Rle7EQEPQYeZlhwI1UY58Cp+KjWznK9ooVp4nAU9MKXMa6kbLP+yB6XfJdpVbOXB 4+BmySM= -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:41 2024 by rpki-client on console-fra.rpki-client.org