$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F688FE388C5611E792848B4AC4F9AE02.roa File: F688FE388C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: Y9Ld4CCw4oYT33ifiDldbleH1EnVzpLqCdyCEGJA1/c= Subject key identifier: 31:5F:76:0A:E8:2E:32:99:0A:D0:EC:24:4A:C3:5E:6D:3E:4F:36:AB Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 24CE Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F688FE388C5611E792848B4AC4F9AE02.roa Signing time: Thu 06 Apr 2023 16:33:25 +0000 ROA not before: Thu 06 Apr 2023 16:33:25 +0000 ROA not after: Wed 29 May 2024 00:00:00 +0000 asID: 46071 IP address blocks: 58.69.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Apr 2023 16:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9422 (0x24ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 6 16:33:25 2023 GMT Not After : May 29 00:00:00 2024 GMT Subject: CN=642ef455-dcf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bf:c9:ca:82:95:ae:d4:c4:fc:f7:45:cd:cf: 42:3e:a7:e2:89:61:aa:82:b2:d0:e1:60:4a:ff:06: 9f:72:d8:92:2f:5f:d8:e8:98:12:dd:8b:f0:41:2f: aa:16:da:ff:d6:52:97:2f:5f:a0:e4:d5:19:64:2c: f4:96:80:1f:c2:8f:e5:1a:21:cb:9c:40:db:52:2c: d6:93:33:42:6b:57:44:58:cc:62:0c:19:54:29:9b: e7:71:19:65:b7:6d:03:c1:c9:d5:a3:65:bf:a4:32: d1:de:c6:6e:77:31:30:8e:c9:e2:bd:18:2f:5a:5c: 25:3e:e2:be:c1:48:8e:93:c9:89:33:3b:ce:af:15: 18:13:f9:ff:14:aa:a2:60:24:2e:30:9c:7a:f3:7f: b8:e3:54:38:f6:86:1a:68:59:0c:b8:0d:6f:c4:46: 77:36:51:bc:7c:37:43:c1:36:1d:73:5b:5e:a3:0e: a0:e3:65:ca:a6:e5:22:77:ad:88:62:79:ef:a5:e9: 03:53:d4:fb:63:f5:ba:10:d7:f9:36:6a:36:ea:7b: 0b:57:18:74:9d:92:9a:d8:f9:1f:db:40:d2:23:68: 00:5e:28:72:93:2f:f1:b7:ab:5f:92:e3:2e:0c:66: d1:13:f4:73:f8:e8:4b:90:a7:21:95:b7:07:4c:72: 09:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5F:76:0A:E8:2E:32:99:0A:D0:EC:24:4A:C3:5E:6D:3E:4F:36:AB X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F688FE388C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.69.6.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:bb:32:98:5a:91:d6:60:47:e9:c4:48:02:eb:86:e0:b5:3e: ce:f2:c8:31:0a:0d:5f:2e:15:68:95:fc:8a:dd:62:38:87:f0: d4:4f:bc:ba:36:db:0c:49:f9:94:dc:d1:43:12:1a:94:7a:1e: ce:fa:81:11:03:ba:1f:3b:50:48:e9:69:81:fd:ff:65:4d:da: f1:e0:20:31:20:c8:55:12:f7:d3:b8:cd:52:7e:8a:56:27:a2: c8:bf:6e:9c:58:40:5d:59:8a:41:98:4b:ef:3d:38:f3:cc:35: 88:54:43:f2:6e:13:d1:5a:4b:a7:a8:db:0e:bb:22:ed:85:ca: 96:c4:80:01:28:6b:12:33:61:52:e4:70:39:e9:fd:16:f8:89: c9:f5:77:80:69:98:1c:21:60:4e:84:cb:43:db:99:e4:bf:36: fe:bb:51:72:60:61:89:1c:7d:38:39:78:14:07:45:8d:55:2c: 6b:54:5a:ec:ff:5d:0e:44:6f:8c:ec:65:68:36:51:0a:67:07: 8f:a3:70:c8:ea:50:e7:54:a0:6a:ca:f6:be:b6:82:1a:40:83: 5c:2a:db:3b:96:b9:f3:07:4b:32:a8:ed:6c:a2:e0:a6:e0:8f: 8b:a3:ac:23:54:f1:8d:b1:54:f2:c4:35:1d:ce:ce:4b:71:5b: 7f:da:ec:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjMwNDA2MTYzMzI1WhcNMjQwNTI5MDAwMDAwWjAYMRYwFAYD VQQDEw02NDJlZjQ1NS1kY2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqb/JyoKVrtTE/PdFzc9CPqfiiWGqgrLQ4WBK/wafctiSL1/Y6JgS3YvwQS+q Ftr/1lKXL1+g5NUZZCz0loAfwo/lGiHLnEDbUizWkzNCa1dEWMxiDBlUKZvncRll t20DwcnVo2W/pDLR3sZudzEwjsnivRgvWlwlPuK+wUiOk8mJMzvOrxUYE/n/FKqi YCQuMJx683+441Q49oYaaFkMuA1vxEZ3NlG8fDdDwTYdc1teow6g42XKpuUid62I YnnvpekDU9T7Y/W6ENf5Nmo26nsLVxh0nZKa2Pkf20DSI2gAXihyky/xt6tfkuMu DGbRE/Rz+OhLkKchlbcHTHIJmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDFfdgro LjKZCtDsJErDXm0+TzarMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRjY4OEZFMzg4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6RQYwDQYJKoZIhvcNAQELBQADggEBAI67MphakdZgR+nE SALrhuC1Ps7yyDEKDV8uFWiV/IrdYjiH8NRPvLo22wxJ+ZTc0UMSGpR6Hs76gRED uh87UEjpaYH9/2VN2vHgIDEgyFUS99O4zVJ+ilYnosi/bpxYQF1ZikGYS+89OPPM NYhUQ/JuE9FaS6eo2w67Iu2FypbEgAEoaxIzYVLkcDnp/Rb4icn1d4BpmBwhYE6E y0PbmeS/Nv67UXJgYYkcfTg5eBQHRY1VLGtUWuz/XQ5Eb4zsZWg2UQpnB4+jcMjq UOdUoGrK9r62ghpAg1wq2zuWufMHSzKo7Wyi4Kbgj4ujrCNU8Y2xVPLENR3Ozktx W3/a7Io= -----END CERTIFICATE-----Generated at Thu Apr 6 16:54:11 2023 by rpki-client on console-fra.rpki-client.org