$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CF49BBDAD33811EDAAE97C1BC4F9AE02.roa File: CF49BBDAD33811EDAAE97C1BC4F9AE02.roa (raw, json) Hash identifier: Am1XUUi5vSOrjBjHpYhdT8k0QYlt/LS1rRkBte0fDyw= Subject key identifier: D4:08:FE:50:C9:18:E2:A9:F3:F0:64:54:20:93:87:1A:DB:E5:CB:44 Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 03E0 Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CF49BBDAD33811EDAAE97C1BC4F9AE02.roa Signing time: Fri 06 Oct 2023 16:54:09 +0000 ROA not before: Fri 06 Oct 2023 16:54:09 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 8987 IP address blocks: 213.170.156.0/24 maxlen: 24 213.170.157.0/24 maxlen: 24 213.170.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 992 (0x3e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Oct 6 16:54:09 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65203bb1-5ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0e:b5:9b:99:c0:38:6e:0d:a8:5c:05:3c:90: 3a:17:e7:eb:6e:e1:c9:c4:fa:72:fd:74:11:24:d1: fa:f7:ce:d9:3f:f5:29:30:4e:25:b3:44:c7:ab:17: 35:3f:5e:7c:cc:0f:1b:b3:7b:49:7d:59:8a:d5:f0: 81:cf:cd:e0:8f:aa:07:09:e7:03:a3:a9:fc:df:f1: ac:20:62:2d:b6:e1:5c:bd:b5:fc:4d:e3:fe:e3:6b: ca:99:55:e8:79:df:9c:29:69:c3:6d:1c:54:b6:23: 3c:43:d9:7d:23:c6:d8:68:29:bf:c0:03:be:42:07: 0a:d4:c7:f0:92:d3:74:a0:ea:3e:67:c8:35:f1:78: a2:c9:8a:e3:d1:3d:9b:68:dc:a4:1f:d2:9c:dd:e7: 74:9e:37:fb:ce:90:ff:6c:c5:4f:12:60:62:6d:5e: 54:95:fa:ed:81:59:06:b3:6f:de:b8:76:5e:9c:bc: 97:81:f1:f0:f7:5b:5e:95:18:20:d3:f1:12:85:ff: bf:1b:bd:e5:18:4c:d2:74:94:3d:96:6d:b9:43:02: 3e:b7:4c:51:32:90:73:d5:31:fd:66:a9:6e:0b:8c: 57:d3:c9:5e:89:25:b0:81:5e:45:30:28:fe:ea:cc: 67:2b:37:40:bb:17:67:7d:fd:84:26:f5:1c:07:44: 6a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:08:FE:50:C9:18:E2:A9:F3:F0:64:54:20:93:87:1A:DB:E5:CB:44 X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CF49BBDAD33811EDAAE97C1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 213.170.156.0-213.170.158.255 Signature Algorithm: sha256WithRSAEncryption 72:c8:b0:91:ea:7f:35:2d:98:77:dc:f9:ef:62:bd:88:92:e8: a2:a5:33:77:b9:bf:51:09:88:2e:07:ff:1e:e0:cb:31:fc:71: e7:ee:9a:b0:20:8b:9b:9f:95:3e:46:20:4a:90:7b:7a:4a:c0: 57:92:e2:78:5e:fd:f4:e5:37:31:9e:27:c5:d6:44:41:35:e2: 71:ff:eb:cd:35:65:43:39:ac:14:f6:cf:db:d5:f8:97:0e:ed: db:1a:6a:62:70:6f:18:90:99:b3:7b:3e:44:bc:52:71:21:d8: 18:4e:92:cc:a8:5e:48:4a:ac:3c:62:52:fe:a8:5c:25:55:80: 07:d4:5a:1d:38:75:02:11:7e:b8:bb:25:96:57:ae:fd:05:4a: f7:93:54:f1:5c:6d:08:b2:64:cc:4f:33:43:61:3a:36:90:45: 9d:39:36:82:7d:10:e2:81:cc:1b:65:a1:0a:ac:42:72:ec:eb: 15:65:2d:8f:af:83:65:62:36:bc:3d:92:e1:d6:05:64:6c:46: 9e:63:bd:2e:54:04:3c:a5:11:de:2e:b0:5f:95:e2:28:db:3e: e7:b3:9a:f9:67:85:f3:a5:56:33:72:b1:ef:d3:49:32:19:cd: 95:38:5e:89:7e:b9:0a:e1:c3:49:aa:ba:05:17:58:1e:37:23: e9:9a:bb:6c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICA+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjMxMDA2MTY1NDA5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwM2JiMS01ZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtA61m5nAOG4NqFwFPJA6F+frbuHJxPpy/XQRJNH6987ZP/UpME4ls0THqxc1 P158zA8bs3tJfVmK1fCBz83gj6oHCecDo6n83/GsIGIttuFcvbX8TeP+42vKmVXo ed+cKWnDbRxUtiM8Q9l9I8bYaCm/wAO+QgcK1MfwktN0oOo+Z8g18XiiyYrj0T2b aNykH9Kc3ed0njf7zpD/bMVPEmBibV5UlfrtgVkGs2/euHZenLyXgfHw91telRgg 0/EShf+/G73lGEzSdJQ9lm25QwI+t0xRMpBz1TH9ZqluC4xX08leiSWwgV5FMCj+ 6sxnKzdAuxdnff2EJvUcB0RqAQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFNQI/lDJ GOKp8/BkVCCThxrb5ctEMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvQ0Y0OUJCREFE MzM4MTFFREFBRTk3QzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAtWqnAMEANWqnjANBgkqhkiG9w0BAQsFAAOCAQEAcsiw kep/NS2Yd9z572K9iJLooqUzd7m/UQmILgf/HuDLMfxx5+6asCCLm5+VPkYgSpB7 ekrAV5LieF799OU3MZ4nxdZEQTXicf/rzTVlQzmsFPbP29X4lw7t2xpqYnBvGJCZ s3s+RLxScSHYGE6SzKheSEqsPGJS/qhcJVWAB9RaHTh1AhF+uLsllleu/QVK95NU 8VxtCLJkzE8zQ2E6NpBFnTk2gn0Q4oHMG2WhCqxCcuzrFWUtj6+DZWI2vD2S4dYF ZGxGnmO9LlQEPKUR3i6wX5XiKNs+57Oa+WeF86VWM3Kx79NJMhnNlTheiX65CuHD Saq6BRdYHjcj6Zq7bA== -----END CERTIFICATE-----Generated at Wed May 8 18:14:39 2024 by rpki-client on console-fra.rpki-client.org