$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/29D2F7BE0CA711ED98CF681AC4F9AE02.roa File: 29D2F7BE0CA711ED98CF681AC4F9AE02.roa (raw, json) Hash identifier: AAppOMe+tdP+Khv5soae2JDmGoAmJgdnM4KtVNbYRbU= Subject key identifier: E1:03:0A:B6:15:97:02:85:52:56:6A:E9:9C:3E:C8:4F:CD:96:00:8A Certificate issuer: /CN=A91E504E/serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Certificate serial: 0258 Authority key identifier: 04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/29D2F7BE0CA711ED98CF681AC4F9AE02.roa Signing time: Thu 27 Jul 2023 02:04:58 +0000 ROA not before: Thu 27 Jul 2023 02:04:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133861 IP address blocks: 217.194.132.0/24 maxlen: 24 217.194.133.0/24 maxlen: 24 217.194.134.0/24 maxlen: 24 217.194.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 02:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E/serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Validity Not Before: Jul 27 02:04:58 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1d0ca-55ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d2:de:18:4e:fb:f3:89:30:10:1d:7c:e2:7f: b7:36:1f:19:51:fb:4e:a5:85:36:20:09:e9:0e:22: 8f:c9:c9:35:58:5c:2b:8e:5c:55:bc:fc:9f:b3:60: f8:c6:2c:34:3a:4f:2d:43:c1:58:63:cd:26:21:c3: 87:61:b8:2b:af:53:85:c2:ff:b7:5d:81:31:21:86: 3d:fc:e5:4b:d3:45:ce:0b:de:65:59:67:b6:87:d0: 00:5e:5f:24:3b:82:0d:14:d9:1c:c1:44:68:38:64: d0:61:4e:96:48:5a:53:77:fb:d7:37:5c:5f:83:84: 54:bb:49:18:37:8e:94:f8:88:24:1b:db:b2:63:9a: 15:f4:28:81:81:80:cc:00:b6:b9:29:c2:aa:50:d3: 0e:c5:e8:8a:da:66:63:0d:80:14:66:bf:87:00:d5: bd:42:f1:21:c3:02:03:82:02:00:af:60:0a:c2:b1: d4:e1:c2:71:cc:ba:50:a7:0c:31:7c:b9:f7:1b:f2: 90:4a:31:90:8e:65:99:c1:cc:a0:88:27:52:01:30: c2:96:d1:3a:64:31:15:e4:76:8c:04:de:f4:4a:1f: 77:8f:e7:16:eb:4c:af:37:0c:cd:2f:e3:e4:63:57: 77:4e:f7:cd:0a:27:47:b9:45:6e:4a:3e:8d:f0:71: 7a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:03:0A:B6:15:97:02:85:52:56:6A:E9:9C:3E:C8:4F:CD:96:00:8A X509v3 Authority Key Identifier: keyid:04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/29D2F7BE0CA711ED98CF681AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 217.194.132.0/22 Signature Algorithm: sha256WithRSAEncryption cb:8b:09:82:73:d3:60:bf:f6:4d:79:e0:eb:c8:af:ac:cb:1e: 51:20:e6:28:7c:ed:f3:cb:17:68:a7:21:d3:82:a2:02:4c:67: 8f:75:7c:da:40:89:10:7e:57:53:c9:f0:cf:bf:d5:f7:a2:38: 81:c9:6d:a6:2e:8c:3d:d6:80:2e:17:3c:18:eb:e9:77:56:46: 3c:67:8d:36:e6:d4:a2:d1:34:27:ef:1f:9c:2c:3d:d2:4a:75: 31:f7:c1:fb:8e:33:c6:cc:04:f5:c1:3f:10:ae:f3:0c:03:90: 53:37:7e:3c:ca:1e:51:0a:90:aa:bb:c4:02:04:3b:d0:4c:fd: 8f:ba:a6:da:f2:aa:ac:b9:7a:0c:de:81:7f:1b:c6:8a:81:9c: ef:c2:10:e8:bb:37:ef:c2:d2:77:f2:f8:15:9f:c2:8a:b7:e5: 2d:92:31:64:51:93:a8:13:b2:4e:a8:3c:e4:13:6b:63:81:97: dd:ee:af:2d:61:4a:42:f3:f1:a3:71:7e:3a:09:69:15:41:94: b8:23:cd:99:c0:8a:65:a8:f4:be:6f:16:3a:4e:36:50:75:87: ba:e8:90:31:de:fd:81:17:91:51:f9:a9:3d:cb:c6:92:f8:64: f9:f0:9a:38:36:86:66:cd:12:50:32:d5:62:e4:d4:d1:83:40: 3d:ef:dd:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKDA0RUUwNzZBNURGQTk0OEMzOEY4M0M4Q0FDMjBGRTBF OEU4NkQ4MEIwHhcNMjMwNzI3MDIwNDU4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxZDBjYS01NWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NLeGE7784kwEB184n+3Nh8ZUftOpYU2IAnpDiKPyck1WFwrjlxVvPyfs2D4 xiw0Ok8tQ8FYY80mIcOHYbgrr1OFwv+3XYExIYY9/OVL00XOC95lWWe2h9AAXl8k O4INFNkcwURoOGTQYU6WSFpTd/vXN1xfg4RUu0kYN46U+IgkG9uyY5oV9CiBgYDM ALa5KcKqUNMOxeiK2mZjDYAUZr+HANW9QvEhwwIDggIAr2AKwrHU4cJxzLpQpwwx fLn3G/KQSjGQjmWZwcygiCdSATDCltE6ZDEV5HaMBN70Sh93j+cW60yvNwzNL+Pk Y1d3TvfNCidHuUVuSj6N8HF67wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOEDCrYV lwKFUlZq6Zw+yE/NlgCKMB8GA1UdIwQYMBaAFATuB2pd+pSMOPg8jKwg/g6OhtgL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80NEE1MTk0ODk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi9CTzRIYWwzNmxJdzQtRHlNckNELURvNkcy QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JPNEhhbDM2bEl3NC1EeU1yQ0QtRG82RzJBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNDRBNTE5NDg5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvMjlEMkY3QkUw Q0E3MTFFRDk4Q0Y2ODFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALZwoQwDQYJKoZIhvcNAQELBQADggEBAMuLCYJz02C/9k15 4OvIr6zLHlEg5ih87fPLF2inIdOCogJMZ491fNpAiRB+V1PJ8M+/1feiOIHJbaYu jD3WgC4XPBjr6XdWRjxnjTbm1KLRNCfvH5wsPdJKdTH3wfuOM8bMBPXBPxCu8wwD kFM3fjzKHlEKkKq7xAIEO9BM/Y+6ptryqqy5egzegX8bxoqBnO/CEOi7N+/C0nfy +BWfwoq35S2SMWRRk6gTsk6oPOQTa2OBl93ury1hSkLz8aNxfjoJaRVBlLgjzZnA imWo9L5vFjpONlB1h7rokDHe/YEXkVH5qT3LxpL4ZPnwmjg2hmbNElAy1WLk1NGD QD3v3cE= -----END CERTIFICATE-----Generated at Mon May 13 04:21:03 2024 by rpki-client on console-ams.rpki-client.org