$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/AC8695B8A60611EE8FEB2160C4F9AE02.roa File: AC8695B8A60611EE8FEB2160C4F9AE02.roa (raw, json) Hash identifier: 02Gzx78skBC3A5z4FgwAljuDa/r2bhVIgxNZ9hamRSk= Subject key identifier: B0:0D:BE:5A:A2:D4:AF:8C:05:A5:33:83:77:89:89:16:E8:1F:D6:55 Certificate issuer: /CN=A91E1155/serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Certificate serial: 0DF5 Authority key identifier: 0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/AC8695B8A60611EE8FEB2160C4F9AE02.roa Signing time: Fri 29 Dec 2023 04:56:49 +0000 ROA not before: Fri 29 Dec 2023 04:56:49 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 146994 IP address blocks: 43.241.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3573 (0xdf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1155/serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Validity Not Before: Dec 29 04:56:49 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=658e5191-66a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2c:71:15:7a:8b:e3:21:9f:03:12:36:dd:d3: 64:24:e3:b1:6d:f5:ca:29:79:dc:fb:26:b2:aa:56: b7:4b:07:8a:e0:df:20:43:a9:46:c1:6f:8a:72:ca: a1:2f:b3:d6:99:13:8b:38:23:e9:d0:ed:d7:3e:18: af:09:2f:42:40:cd:71:5d:f1:e4:7e:ea:bb:73:95: 1d:a8:c4:e8:07:70:9b:24:0d:20:dc:6e:38:37:21: ec:59:a5:7d:9d:e9:57:89:91:5d:5d:18:04:62:fa: 47:2b:cb:aa:63:aa:ba:b9:a3:36:a3:ff:dd:6d:0b: 03:7a:82:36:64:36:b5:99:2a:5b:53:c9:0c:3f:c9: 7c:a9:cf:82:1d:ea:3d:df:f7:41:4f:04:4d:6c:b6: 30:d3:7c:1e:07:cb:d6:f0:73:d9:7b:55:71:be:98: 7a:ab:46:38:58:94:e4:7e:ba:bf:17:1a:72:11:1e: 1e:a2:99:c8:6e:05:c3:45:06:48:0f:01:55:f1:eb: c2:2b:d8:4a:a9:e5:bb:70:dd:b1:a8:28:f7:94:27: 80:65:4b:ce:bd:0b:59:20:90:63:72:86:ac:e5:e0: e7:90:b2:20:c4:fe:49:7a:ea:da:4c:7c:73:45:15: 5b:91:a5:ae:97:f1:89:ca:31:99:e2:d6:96:cf:c3: 93:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:0D:BE:5A:A2:D4:AF:8C:05:A5:33:83:77:89:89:16:E8:1F:D6:55 X509v3 Authority Key Identifier: keyid:0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/AC8695B8A60611EE8FEB2160C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.245.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:8c:cc:d6:2b:d1:4c:6e:69:bf:51:6b:36:32:cf:d6:9b:57: 02:f6:d7:7a:dd:a0:1b:96:39:91:32:ec:04:33:f0:f2:15:21: 96:05:5e:04:86:1f:c9:f7:bb:a2:03:b7:08:4f:bb:8a:4a:f0: ba:22:79:64:81:dc:0f:7f:4e:29:05:06:f9:a3:d2:e8:cf:ab: 86:49:a6:8f:b9:90:43:4b:b6:5c:6c:14:67:ed:e1:42:91:9b: 64:c5:37:f2:4f:63:20:98:be:f2:61:5a:73:36:89:f5:e1:b6: 7a:59:84:bb:09:3f:0c:aa:03:52:28:bb:2c:db:c3:cf:10:84: 64:17:b2:92:0f:7e:de:5f:b7:b0:3a:71:c1:de:36:a2:0d:6b: 03:a3:50:57:f6:81:f9:29:72:33:54:b0:90:ae:ba:8a:0c:c5: ed:97:68:77:6a:2e:dd:25:2f:d5:b1:d7:61:e6:6f:06:29:73: fe:66:64:92:8a:e5:5e:85:b2:8c:fc:5f:5b:2d:98:7f:7a:9a: 5d:e4:25:75:57:ef:2a:89:a5:90:30:43:ed:74:a7:7f:55:ec: 03:6e:67:11:9c:28:5d:77:12:f8:c8:ef:70:d9:eb:37:d9:e3: 58:42:fd:1d:d3:a7:aa:27:58:3b:f1:d7:16:c2:cc:b8:0b:fe: 2f:06:13:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNTUxMTAvBgNVBAUTKDBCMjU2MUM0QjU3REE4MUQ3MEYzOTcyNEIwREUyQzcx MDE3NDlGNUQwHhcNMjMxMjI5MDQ1NjQ5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NThlNTE5MS02NmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CxxFXqL4yGfAxI23dNkJOOxbfXKKXnc+yayqla3SweK4N8gQ6lGwW+Kcsqh L7PWmROLOCPp0O3XPhivCS9CQM1xXfHkfuq7c5UdqMToB3CbJA0g3G44NyHsWaV9 nelXiZFdXRgEYvpHK8uqY6q6uaM2o//dbQsDeoI2ZDa1mSpbU8kMP8l8qc+CHeo9 3/dBTwRNbLYw03weB8vW8HPZe1Vxvph6q0Y4WJTkfrq/FxpyER4eopnIbgXDRQZI DwFV8evCK9hKqeW7cN2xqCj3lCeAZUvOvQtZIJBjcoas5eDnkLIgxP5JeuraTHxz RRVbkaWul/GJyjGZ4taWz8OTywIDAQABo4IClTCCApEwHQYDVR0OBBYEFLANvlqi 1K+MBaUzg3eJiRboH9ZVMB8GA1UdIwQYMBaAFAslYcS1fagdcPOXJLDeLHEBdJ9d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE1NS81Mzk5OEEzNDdF QjMxMUU5QUI5QzdCMjRDNEY5QUUwMi9DeVZoeExWOXFCMXc4NWNrc040c2NRRjBu MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N5Vmh4TFY5cUIxdzg1Y2tzTjRzY1FGMG4xMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTExNTUvNTM5OThBMzQ3RUIzMTFFOUFCOUM3QjI0QzRGOUFFMDIvQUM4Njk1QjhB NjA2MTFFRThGRUIyMTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr8fUwDQYJKoZIhvcNAQELBQADggEBABuMzNYr0Uxuab9R azYyz9abVwL213rdoBuWOZEy7AQz8PIVIZYFXgSGH8n3u6IDtwhPu4pK8LoieWSB 3A9/TikFBvmj0ujPq4ZJpo+5kENLtlxsFGft4UKRm2TFN/JPYyCYvvJhWnM2ifXh tnpZhLsJPwyqA1Iouyzbw88QhGQXspIPft5ft7A6ccHeNqINawOjUFf2gfkpcjNU sJCuuooMxe2XaHdqLt0lL9Wx12HmbwYpc/5mZJKK5V6Fsoz8X1stmH96ml3kJXVX 7yqJpZAwQ+10p39V7ANuZxGcKF13EvjI73DZ6zfZ41hC/R3Tp6onWDvx1xbCzLgL /i8GE3Q= -----END CERTIFICATE-----Generated at Thu May 16 19:10:56 2024 by rpki-client on console-fra.rpki-client.org