$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/C163B1881A4711EDA547FE24C4F9AE02.roa File: C163B1881A4711EDA547FE24C4F9AE02.roa (raw, json) Hash identifier: YNZrHGd8UkVm/DTmJOLPzWf76BUdR5xOiCV0HPKmn3c= Subject key identifier: 3B:13:9A:C6:77:BC:55:EA:25:30:8F:D7:5F:57:15:BB:6C:FE:4D:23 Certificate issuer: /CN=A91E2AE5/serialNumber=7C63B283D9B8A06EEAD0621B823ED0F4E699DDF4 Certificate serial: 13EA Authority key identifier: 7C:63:B2:83:D9:B8:A0:6E:EA:D0:62:1B:82:3E:D0:F4:E6:99:DD:F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/C163B1881A4711EDA547FE24C4F9AE02.roa Signing time: Thu 14 Mar 2024 16:02:37 +0000 ROA not before: Thu 14 Mar 2024 16:02:37 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9988 IP address blocks: 136.228.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 15:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5098 (0x13ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5/serialNumber=7C63B283D9B8A06EEAD0621B823ED0F4E699DDF4 Validity Not Before: Mar 14 16:02:37 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f31f9d-8da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1b:6c:91:2e:7d:46:fa:d4:66:b6:38:b3:09: 76:fb:1e:32:db:8f:7b:3c:89:8b:34:a1:fc:ef:94: 90:8c:e0:da:82:a1:3b:17:de:04:ba:cf:cb:09:38: 11:50:e0:f7:05:8f:6b:f6:dd:59:13:59:c0:6d:a1: 29:82:1f:21:a2:bf:af:89:3f:ce:8f:40:28:d2:01: 7d:01:0d:95:d0:dc:c2:36:18:1c:7b:9e:2f:5c:8b: de:06:85:47:c0:90:4e:44:2e:4f:7e:05:e7:83:91: db:10:71:87:45:13:41:49:bc:22:e8:4a:27:01:27: e3:a6:10:a7:da:0f:00:fe:a9:e0:2f:78:30:2d:52: 28:e9:19:be:03:06:62:76:4a:4e:54:50:aa:fd:7a: bb:4d:12:39:ea:a3:cc:23:8c:fa:94:63:1d:bb:95: 37:05:06:97:a5:fa:85:ec:10:be:6f:25:f1:99:f0: 1c:e7:e6:58:2d:05:46:b5:3c:af:40:00:e2:9b:42: 96:b7:3a:17:a4:5f:22:89:dc:a7:0c:b5:cf:57:b2: 2b:45:7a:8c:ab:e9:95:ab:e7:5a:bf:f2:44:d7:76: 9e:f9:48:8e:9b:9a:0b:29:fb:26:92:1d:a1:8b:2d: c9:7c:23:ef:42:77:26:96:f6:d7:8d:d5:93:bc:e0: 49:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:13:9A:C6:77:BC:55:EA:25:30:8F:D7:5F:57:15:BB:6C:FE:4D:23 X509v3 Authority Key Identifier: keyid:7C:63:B2:83:D9:B8:A0:6E:EA:D0:62:1B:82:3E:D0:F4:E6:99:DD:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/C163B1881A4711EDA547FE24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.228.160.0/20 Signature Algorithm: sha256WithRSAEncryption 9c:04:40:f8:01:aa:30:06:67:2d:64:04:33:a4:49:ec:db:a6: 55:d5:b5:13:44:ac:23:14:70:7d:ae:e3:e8:44:e6:81:47:5c: 5d:06:8b:f1:b0:e9:e4:bd:3b:8d:ef:90:5b:c1:5c:5b:c5:85: 28:7e:3e:28:7d:1c:ce:a5:97:8d:66:ea:be:f5:59:e2:80:9f: f9:2c:92:93:09:48:30:1b:7e:a8:ad:be:85:ab:5f:66:b3:34: e9:c5:d8:2a:8e:e0:70:fd:36:d8:03:69:58:0f:0a:6c:00:e0: 17:01:3a:cc:b5:75:11:3b:ff:f2:b2:29:ad:27:53:a0:9c:3f: c4:07:d6:ed:5d:bf:70:d2:1f:9e:03:71:a5:a8:59:d3:63:22: 8c:32:33:26:45:16:1c:62:3a:2a:5a:b4:c9:b7:ad:4e:45:75: bf:7e:b0:ca:48:b9:47:44:ab:7c:ec:18:73:db:0c:4d:ba:48: 39:00:45:24:f3:ae:ae:39:58:1c:68:ed:90:c4:05:68:c0:47: cf:97:34:81:36:87:c6:dc:54:6f:a3:00:5d:7d:46:dc:54:f1: 55:36:1a:0e:e2:ba:97:06:7d:16:70:c7:a6:10:b1:d3:e9:98: 25:c4:fe:30:8c:13:01:4d:71:1e:d7:12:e5:f4:7c:02:71:6b: 64:c5:0d:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICE+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKDdDNjNCMjgzRDlCOEEwNkVFQUQwNjIxQjgyM0VEMEY0 RTY5OURERjQwHhcNMjQwMzE0MTYwMjM3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzMWY5ZC04ZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhtskS59RvrUZrY4swl2+x4y2497PImLNKH875SQjODagqE7F94Eus/LCTgR UOD3BY9r9t1ZE1nAbaEpgh8hor+viT/Oj0Ao0gF9AQ2V0NzCNhgce54vXIveBoVH wJBORC5PfgXng5HbEHGHRRNBSbwi6EonASfjphCn2g8A/qngL3gwLVIo6Rm+AwZi dkpOVFCq/Xq7TRI56qPMI4z6lGMdu5U3BQaXpfqF7BC+byXxmfAc5+ZYLQVGtTyv QADim0KWtzoXpF8iidynDLXPV7IrRXqMq+mVq+dav/JE13ae+UiOm5oLKfsmkh2h iy3JfCPvQncmlvbXjdWTvOBJLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDsTmsZ3 vFXqJTCP119XFbts/k0jMB8GA1UdIwQYMBaAFHxjsoPZuKBu6tBiG4I+0PTmmd30 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS85RDcyNzZCNjVD QTkxMUU4QUE0MkEzNDZDNEY5QUUwMi9mR095ZzltNG9HN3EwR0liZ2o3UTlPYVoz ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZHT3lnOW00b0c3cTBHSWJnajdROU9hWjNmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJBRTUvOUQ3Mjc2QjY1Q0E5MTFFOEFBNDJBMzQ2QzRGOUFFMDIvQzE2M0IxODgx QTQ3MTFFREE1NDdGRTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBASI5KAwDQYJKoZIhvcNAQELBQADggEBAJwEQPgBqjAGZy1k BDOkSezbplXVtRNErCMUcH2u4+hE5oFHXF0Gi/Gw6eS9O43vkFvBXFvFhSh+Pih9 HM6ll41m6r71WeKAn/kskpMJSDAbfqitvoWrX2azNOnF2CqO4HD9NtgDaVgPCmwA 4BcBOsy1dRE7//KyKa0nU6CcP8QH1u1dv3DSH54DcaWoWdNjIowyMyZFFhxiOipa tMm3rU5Fdb9+sMpIuUdEq3zsGHPbDE26SDkARSTzrq45WBxo7ZDEBWjAR8+XNIE2 h8bcVG+jAF19RtxU8VU2Gg7iupcGfRZwx6YQsdPpmCXE/jCMEwFNcR7XEuX0fAJx a2TFDf8= -----END CERTIFICATE-----Generated at Fri May 24 18:24:01 2024 by rpki-client on console-ams.rpki-client.org