$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa File: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (raw, json) Hash identifier: ei7I36a/n68cmPMmbMaIHsQLIaODPqloNYHBMw6AioQ= Subject key identifier: 41:F5:8C:A8:8D:AE:32:65:25:6F:F4:8F:03:93:73:0A:6B:3B:F3:EA Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 04B5 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa Signing time: Wed 17 Jan 2024 01:03:20 +0000 ROA not before: Wed 17 Jan 2024 01:03:20 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138627 IP address blocks: 150.195.215.0/24 maxlen: 24 150.195.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1205 (0x4b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Jan 17 01:03:20 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a72757-1e63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2e:4c:8c:e4:0e:ab:f6:92:01:41:4a:83:9e: 9b:04:57:1f:0e:17:86:52:05:ad:0e:f1:13:c2:10: d4:80:39:88:18:aa:30:9a:74:bc:34:ce:b4:85:30: 2f:33:9d:e2:4a:d9:79:47:ec:f6:57:e5:f0:02:79: 65:58:3a:84:7e:97:b2:10:f4:c9:b7:17:d2:c8:b6: f6:a5:5b:a0:49:3a:9f:34:66:8f:d6:91:b2:ba:4a: a0:1d:e7:ae:cd:97:a2:45:68:c9:3e:4a:d0:6d:cf: ae:b0:ce:38:ba:24:ec:da:83:40:50:7d:ce:cd:2a: d0:45:38:5f:03:d4:ee:7c:2b:0a:a5:16:ec:1e:63: 8c:44:09:cf:b7:14:d2:38:97:47:2a:4f:7d:45:67: 79:63:bc:e8:25:65:11:99:53:02:cb:c8:d3:2c:d0: ac:a0:eb:c6:fd:82:d0:ae:0d:7b:e7:7c:19:71:fd: 90:39:a1:85:2b:9d:a1:cf:0f:3b:f8:3a:3a:7b:b3: fd:d3:ed:1c:9e:0f:77:e5:30:b8:7a:03:ac:e0:39: 65:3a:b0:1e:d2:fd:77:b2:2f:8c:62:1b:1c:ec:8c: e2:7c:32:e3:09:89:eb:c7:0b:24:69:78:60:bf:d7: 6f:00:3d:11:92:4f:a1:1b:2b:0f:09:f5:c2:f6:f7: ef:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F5:8C:A8:8D:AE:32:65:25:6F:F4:8F:03:93:73:0A:6B:3B:F3:EA X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.195.215.0-150.195.216.255 Signature Algorithm: sha256WithRSAEncryption 26:c0:64:c4:77:0e:2c:40:fc:dd:be:49:af:91:22:5c:0b:9c: eb:54:88:dc:9b:10:a5:04:3f:f3:ba:30:0d:9a:38:47:50:35: 87:b2:dc:98:be:e7:28:82:a0:2d:08:ab:35:44:81:be:44:58: 06:d1:f9:8c:ea:93:bf:87:7a:d9:7c:8a:e3:d6:c8:76:6e:15: b1:13:35:f4:0c:1e:e9:22:9e:02:94:95:15:7c:32:41:b2:cf: df:64:da:43:5a:4d:9f:9c:ab:20:95:8b:8d:6c:fd:f2:3f:94: ee:36:5c:8f:30:72:4c:77:61:4d:df:76:75:3a:65:7d:0b:cb: 7e:fa:9e:4b:94:a1:bb:46:81:e4:c3:8a:5c:35:80:cc:6d:e8: 51:56:35:95:3d:36:5a:76:9c:e1:f1:a9:b6:2c:cd:b6:c8:0d: 5f:38:21:59:b5:ec:cb:13:7b:34:8e:be:33:c6:7e:ca:76:78: 2c:9d:29:08:08:e2:02:b7:19:44:f9:78:71:86:6d:d6:57:65: 31:44:7a:3d:e3:0a:90:b9:e2:7a:e3:aa:df:ee:46:81:bb:5f: 34:80:95:4a:db:84:f7:43:e8:ac:58:cd:cc:ce:85:2d:d8:a2: 8d:a1:71:37:49:04:44:c3:81:08:2d:c7:00:6b:bc:3d:78:69: 29:92:b5:f8 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjQwMTE3MDEwMzIwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3Mjc1Ny0xZTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApS5MjOQOq/aSAUFKg56bBFcfDheGUgWtDvETwhDUgDmIGKowmnS8NM60hTAv M53iStl5R+z2V+XwAnllWDqEfpeyEPTJtxfSyLb2pVugSTqfNGaP1pGyukqgHeeu zZeiRWjJPkrQbc+usM44uiTs2oNAUH3OzSrQRThfA9TufCsKpRbsHmOMRAnPtxTS OJdHKk99RWd5Y7zoJWURmVMCy8jTLNCsoOvG/YLQrg1753wZcf2QOaGFK52hzw87 +Do6e7P90+0cng935TC4egOs4DllOrAe0v13si+MYhsc7IzifDLjCYnrxwskaXhg v9dvAD0Rkk+hGysPCfXC9vfvAQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFEH1jKiN rjJlJW/0jwOTcwprO/PqMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTREM0QvQjAyMDJEMzJEOEI5MTFFQkFCQzFGNDg1QzRGOUFFMDIvNUZBMUJGODgw MkREMTFFRTg2ODY1QTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAJbD1wMEAJbD2DANBgkqhkiG9w0BAQsFAAOCAQEAJsBk xHcOLED83b5Jr5EiXAuc61SI3JsQpQQ/87owDZo4R1A1h7LcmL7nKIKgLQirNUSB vkRYBtH5jOqTv4d62XyK49bIdm4VsRM19Awe6SKeApSVFXwyQbLP32TaQ1pNn5yr IJWLjWz98j+U7jZcjzByTHdhTd92dTplfQvLfvqeS5Shu0aB5MOKXDWAzG3oUVY1 lT02Wnac4fGptizNtsgNXzghWbXsyxN7NI6+M8Z+ynZ4LJ0pCAjiArcZRPl4cYZt 1ldlMUR6PeMKkLnieuOq3+5GgbtfNICVStuE90PorFjNzM6FLdiijaFxN0kERMOB CC3HAGu8PXhpKZK1+A== -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:25 2024 by rpki-client on console-fra.rpki-client.org