$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/13D21C6EFEBA11ED9D83553FC4F9AE02.roa File: 13D21C6EFEBA11ED9D83553FC4F9AE02.roa (raw, json) Hash identifier: r+D93hp7rhoCWl0RjXcOFWA7GJmeyzAs1dX6WsQydZM= Subject key identifier: 6B:05:A7:A8:94:29:C3:0F:AA:EF:E9:0F:9E:E6:9E:F4:3F:B3:C0:A2 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1018 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/13D21C6EFEBA11ED9D83553FC4F9AE02.roa Signing time: Tue 02 Apr 2024 18:26:21 +0000 ROA not before: Tue 02 Apr 2024 18:26:20 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 58945 IP address blocks: 220.152.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4120 (0x1018) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Apr 2 18:26:20 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c4dcc-02b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:04:c1:80:e2:ea:63:1c:2c:bc:2a:04:63:8d: 83:73:e4:fd:11:e8:c0:60:1d:e6:93:67:5f:b7:23: 9d:f4:9f:e2:01:6b:f5:d6:1a:a7:ba:fa:f2:72:34: 2d:e4:bb:40:8a:a1:48:fb:0c:a9:9b:ad:b1:0b:99: 07:55:c9:32:71:61:56:d4:43:31:38:d1:a9:16:4e: 2b:43:d7:01:7e:fa:f5:f8:4f:5a:91:ea:25:e3:c3: e9:65:5f:d8:a1:34:1e:f2:6a:d3:52:75:35:c6:6f: b6:1d:bd:8e:11:7b:b2:e7:2c:f0:d4:cd:bc:86:84: 78:c4:4d:c1:30:6b:bb:d3:a7:b8:d9:ac:97:1d:7e: b4:d9:c1:2e:e7:c6:85:a8:30:d3:45:ff:17:83:c2: 81:17:31:be:75:66:d9:35:d2:27:de:80:8b:30:ee: 74:f4:fc:e2:3b:6e:c6:28:ba:f1:2c:87:f9:b3:70: 56:32:6d:23:d3:11:ae:64:63:68:87:82:34:46:30: 3d:6c:ec:8d:88:82:b9:85:27:bb:4b:d5:32:38:5e: c8:a4:39:68:67:37:cf:c1:39:ad:40:83:14:21:42: 10:d4:31:95:db:1a:6b:dc:dc:ab:ca:28:31:aa:50: 28:d4:c1:61:ac:ae:20:4e:d4:ab:87:f8:a6:c8:f5: d4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:05:A7:A8:94:29:C3:0F:AA:EF:E9:0F:9E:E6:9E:F4:3F:B3:C0:A2 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/13D21C6EFEBA11ED9D83553FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.152.115.0/24 Signature Algorithm: sha256WithRSAEncryption 13:9b:6b:21:e7:a4:7d:15:ae:20:fb:5b:7e:26:46:36:23:5c: 73:b7:5a:43:d3:87:9e:d6:40:c4:74:9d:cd:70:09:bb:ed:17: c1:ad:63:90:8e:74:04:41:d9:2e:cc:4b:82:86:95:51:7d:87: 63:21:5b:26:35:87:f0:25:0f:2f:d6:aa:86:10:80:ba:d4:d4: 65:d0:88:ae:89:61:d4:26:bb:15:ab:ae:df:42:5a:9c:9f:2d: a0:b5:f8:6d:6f:a5:e5:3a:36:a3:48:9b:d0:30:57:37:bc:51: 92:d2:67:9f:d6:6e:64:dd:74:60:93:99:36:14:53:7b:64:b8: fb:60:e0:6f:a3:4f:8d:95:e1:10:63:40:1d:8a:6e:ad:25:8f: 7f:38:81:19:f5:d9:16:14:04:8f:96:e8:e3:00:6e:f3:2d:63: a2:fc:00:22:2a:91:c6:81:c6:ca:de:dc:67:96:4f:0d:26:64: 30:90:bf:5d:6f:d7:9f:dc:72:8e:75:b1:05:45:e3:a1:0e:7d: 01:ed:26:50:28:76:c7:3a:4b:ef:20:4f:98:82:57:de:e4:b1: 74:5b:f0:e4:aa:fd:56:4a:dc:0c:2a:5b:d4:30:03:65:19:1d: ac:d7:48:37:6d:cd:04:5f:7f:58:30:17:e7:da:8f:e7:da:c2: 9c:60:0b:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjQwNDAyMTgyNjIwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjNGRjYy0wMmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQTBgOLqYxwsvCoEY42Dc+T9EejAYB3mk2dftyOd9J/iAWv11hqnuvrycjQt 5LtAiqFI+wypm62xC5kHVckycWFW1EMxONGpFk4rQ9cBfvr1+E9akeol48PpZV/Y oTQe8mrTUnU1xm+2Hb2OEXuy5yzw1M28hoR4xE3BMGu706e42ayXHX602cEu58aF qDDTRf8Xg8KBFzG+dWbZNdIn3oCLMO509PziO27GKLrxLIf5s3BWMm0j0xGuZGNo h4I0RjA9bOyNiIK5hSe7S9UyOF7IpDloZzfPwTmtQIMUIUIQ1DGV2xpr3Nyryigx qlAo1MFhrK4gTtSrh/imyPXUawIDAQABo4IClTCCApEwHQYDVR0OBBYEFGsFp6iU KcMPqu/pD57mnvQ/s8CiMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvMTNEMjFDNkVG RUJBMTFFRDlEODM1NTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcmHMwDQYJKoZIhvcNAQELBQADggEBABObayHnpH0VriD7 W34mRjYjXHO3WkPTh57WQMR0nc1wCbvtF8GtY5COdARB2S7MS4KGlVF9h2MhWyY1 h/AlDy/WqoYQgLrU1GXQiK6JYdQmuxWrrt9CWpyfLaC1+G1vpeU6NqNIm9AwVze8 UZLSZ5/WbmTddGCTmTYUU3tkuPtg4G+jT42V4RBjQB2Kbq0lj384gRn12RYUBI+W 6OMAbvMtY6L8ACIqkcaBxsre3GeWTw0mZDCQv11v15/cco51sQVF46EOfQHtJlAo dsc6S+8gT5iCV97ksXRb8OSq/VZK3AwqW9QwA2UZHazXSDdtzQRff1gwF+faj+fa wpxgC3A= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:07 2024 by rpki-client on console-fra.rpki-client.org