$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/ACC1DEB0960A11EC8BB4F586C4F9AE02.roa File: ACC1DEB0960A11EC8BB4F586C4F9AE02.roa (raw, json) Hash identifier: xNZs82YbiSWtesdFwa0juSZOFHkE0/r8CRQCkzzQj3c= Subject key identifier: 22:79:27:81:B4:CA:8C:FD:8F:68:1C:35:E0:73:B3:8E:4C:FA:83:D6 Certificate issuer: /CN=A91E504E/serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Certificate serial: 0257 Authority key identifier: 04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/ACC1DEB0960A11EC8BB4F586C4F9AE02.roa Signing time: Thu 27 Jul 2023 02:04:57 +0000 ROA not before: Thu 27 Jul 2023 02:04:57 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133199 IP address blocks: 217.194.132.0/24 maxlen: 24 217.194.133.0/24 maxlen: 24 217.194.134.0/24 maxlen: 24 217.194.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E/serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Validity Not Before: Jul 27 02:04:57 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1d0c9-6b4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:93:33:c5:11:fc:ea:a4:a6:c5:01:0b:53:97: 45:40:2d:c1:fc:52:c4:f3:a1:a1:16:0e:e0:25:2c: 62:de:61:f4:83:74:5e:bb:28:b7:51:c3:e6:d4:1c: ee:9e:1c:c5:ad:8a:f9:35:2d:8b:bb:c5:d0:6f:22: 19:50:a6:7e:71:48:f7:57:db:41:7d:ef:76:c8:fa: f7:1f:c2:32:d6:c5:b7:71:05:93:ac:15:40:67:99: 73:ca:b9:a6:35:45:aa:e0:4f:f8:2f:38:ce:d4:6e: 22:09:43:67:ef:14:74:5d:63:8f:a8:4d:50:87:e0: 02:a3:12:07:ed:a1:81:11:c4:00:96:39:8b:65:a2: 6f:3d:2f:91:5f:13:ec:04:43:23:fa:8d:89:07:ae: 88:bf:53:81:22:ad:76:02:a6:be:bd:df:02:f0:9c: 9b:81:25:65:f4:26:0f:48:42:39:9c:f5:3b:78:92: 18:0d:9b:82:6a:15:64:83:99:a2:e2:3e:46:03:ab: df:31:13:5c:c9:28:3f:a8:a0:67:f4:dc:7d:e5:4d: b1:b9:5a:f3:69:66:fb:10:5f:6e:86:d2:da:dd:0c: e2:a1:97:d0:60:82:e5:7a:c0:80:6f:d6:60:0e:ed: 5f:be:c7:45:2d:cc:ad:5a:2b:39:7a:51:94:34:37: 8a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:79:27:81:B4:CA:8C:FD:8F:68:1C:35:E0:73:B3:8E:4C:FA:83:D6 X509v3 Authority Key Identifier: keyid:04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/ACC1DEB0960A11EC8BB4F586C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 217.194.132.0/22 Signature Algorithm: sha256WithRSAEncryption 91:9a:e6:04:07:42:82:c0:88:0a:fc:4a:85:be:1c:fa:1e:5b: 28:c1:fa:a7:74:5d:8f:0b:76:ba:cf:2a:8f:c0:00:ff:92:71: 83:b7:c1:b8:e5:4f:90:45:42:d7:f1:fc:36:4c:2f:81:7a:89: 22:8f:89:95:b0:8d:f3:3d:09:f0:c5:cb:78:c9:8b:e5:a1:3a: 13:e0:bc:7a:af:22:c7:d3:43:8b:3e:58:62:7d:ed:31:62:a8: 51:e0:d6:84:af:db:ad:fb:55:e2:0f:ab:47:c9:d4:1e:bf:a7: 0a:f1:92:c8:1c:89:14:72:90:10:cb:57:b8:3c:1c:d5:1e:93: 63:c3:9d:ec:b9:dd:d4:18:12:3b:de:ea:46:c9:f7:88:fc:07: 2d:cd:8b:4b:81:ad:49:69:aa:c7:d6:b9:da:27:74:2b:7c:58: 67:e3:f3:20:37:3d:ac:16:22:00:d4:c7:7e:c7:0b:b4:05:db: 55:06:95:80:88:8e:6b:a2:e3:63:95:62:59:20:d3:6e:35:75: 4e:21:95:38:88:c0:19:02:b6:94:64:d5:96:90:d9:6c:45:42: d0:59:d3:ef:67:3b:68:18:e6:15:6f:cf:45:35:c6:a5:db:e8: 7e:e7:2f:e4:d9:b7:cf:a5:ce:61:be:de:c5:c5:be:5e:1d:19: 88:57:74:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKDA0RUUwNzZBNURGQTk0OEMzOEY4M0M4Q0FDMjBGRTBF OEU4NkQ4MEIwHhcNMjMwNzI3MDIwNDU3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxZDBjOS02YjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJMzxRH86qSmxQELU5dFQC3B/FLE86GhFg7gJSxi3mH0g3Reuyi3UcPm1Bzu nhzFrYr5NS2Lu8XQbyIZUKZ+cUj3V9tBfe92yPr3H8Iy1sW3cQWTrBVAZ5lzyrmm NUWq4E/4LzjO1G4iCUNn7xR0XWOPqE1Qh+ACoxIH7aGBEcQAljmLZaJvPS+RXxPs BEMj+o2JB66Iv1OBIq12Aqa+vd8C8JybgSVl9CYPSEI5nPU7eJIYDZuCahVkg5mi 4j5GA6vfMRNcySg/qKBn9Nx95U2xuVrzaWb7EF9uhtLa3QzioZfQYILlesCAb9Zg Du1fvsdFLcytWis5elGUNDeKuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCJ5J4G0 yoz9j2gcNeBzs45M+oPWMB8GA1UdIwQYMBaAFATuB2pd+pSMOPg8jKwg/g6OhtgL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80NEE1MTk0ODk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi9CTzRIYWwzNmxJdzQtRHlNckNELURvNkcy QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JPNEhhbDM2bEl3NC1EeU1yQ0QtRG82RzJBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNDRBNTE5NDg5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvQUNDMURFQjA5 NjBBMTFFQzhCQjRGNTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALZwoQwDQYJKoZIhvcNAQELBQADggEBAJGa5gQHQoLAiAr8 SoW+HPoeWyjB+qd0XY8LdrrPKo/AAP+ScYO3wbjlT5BFQtfx/DZML4F6iSKPiZWw jfM9CfDFy3jJi+WhOhPgvHqvIsfTQ4s+WGJ97TFiqFHg1oSv2637VeIPq0fJ1B6/ pwrxksgciRRykBDLV7g8HNUek2PDney53dQYEjve6kbJ94j8By3Ni0uBrUlpqsfW udondCt8WGfj8yA3PawWIgDUx37HC7QF21UGlYCIjmui42OVYlkg0241dU4hlTiI wBkCtpRk1ZaQ2WxFQtBZ0+9nO2gY5hVvz0U1xqXb6H7nL+TZt8+lzmG+3sXFvl4d GYhXdFE= -----END CERTIFICATE-----Generated at Thu Apr 25 03:53:12 2024 by rpki-client on console-fra.rpki-client.org