$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/190B6470D03E11ECAE983D56C4F9AE02.roa File: 190B6470D03E11ECAE983D56C4F9AE02.roa (raw, json) Hash identifier: UUh2th6F776umy2ch9csxV9P3QQNk87d9aXEjoTH56w= Subject key identifier: 1E:8D:B1:6B:C5:19:9A:D6:2B:20:7E:8D:E6:AB:F1:C4:EC:68:F2:5A Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 088D Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/190B6470D03E11ECAE983D56C4F9AE02.roa Signing time: Wed 24 May 2023 23:25:03 +0000 ROA not before: Wed 24 May 2023 23:25:03 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 5089 IP address blocks: 139.190.224.0/21 maxlen: 24 139.190.232.0/24 maxlen: 24 139.190.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 19:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: May 24 23:25:03 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646e9ccf-9bca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:14:6f:25:56:50:3a:ea:31:e4:f5:41:c9:df: 94:85:2f:20:1c:2b:18:9d:26:c1:14:e0:12:0d:e6: b2:fe:38:48:7d:7b:05:15:9f:9c:9a:b6:e9:6d:b4: f9:07:12:cd:5a:ab:6c:2d:30:9e:df:a2:70:ca:89: 14:56:9a:bf:02:49:14:56:d2:d6:07:46:17:32:39: ca:16:11:f8:87:17:4c:f3:45:14:dd:6a:7b:49:c8: ba:22:70:3d:13:cc:f7:97:b3:d4:3b:e4:5a:23:c1: 79:e7:ef:e8:4c:7c:b4:c6:86:35:36:ef:b2:71:28: 72:fb:9b:b9:c2:1a:43:f0:b9:4b:c5:40:b9:9c:cd: 76:67:95:db:0a:28:4b:0e:2c:2b:18:b9:40:09:ef: ec:9b:b5:22:62:c4:51:44:90:f9:33:40:47:12:2a: 51:12:62:82:61:55:52:71:29:cc:62:73:74:b7:41: 4f:7f:2a:79:33:91:3d:36:30:36:c3:f9:15:ec:09: a2:56:b8:ba:e9:52:ca:b9:50:d2:60:b5:22:54:62: fc:65:50:43:cc:d5:6d:63:59:77:ba:9b:81:1b:72: 7b:54:d4:18:bc:88:3d:a8:b7:62:e3:ef:3f:a5:e8: 10:0a:d2:97:43:23:07:4c:5a:1d:30:6c:19:96:3e: ac:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:8D:B1:6B:C5:19:9A:D6:2B:20:7E:8D:E6:AB:F1:C4:EC:68:F2:5A X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/190B6470D03E11ECAE983D56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.224.0-139.190.233.255 Signature Algorithm: sha256WithRSAEncryption 2c:1d:6d:fe:97:22:4c:e2:4d:74:ad:9f:35:21:d9:98:5b:65: 8f:e9:24:f4:f3:02:ff:4f:3f:6d:f4:54:3d:a4:6d:aa:dc:09: 42:f0:ad:3d:f2:8e:71:4a:2e:27:1a:1d:86:79:50:ed:26:92: 59:70:4e:ea:e1:13:9a:b1:31:d8:1e:4e:d5:2a:9f:45:b7:39: 4b:9b:31:b7:c9:cf:7a:3e:ca:08:8c:0f:79:8d:b4:12:a4:1c: 85:2b:96:b8:5d:f6:a0:78:66:f8:43:80:c5:50:c8:04:7f:03: 3f:81:9a:29:36:38:69:0f:5a:d8:a7:79:b1:36:7e:ac:fb:40: ba:5e:41:b2:4b:41:a2:94:c9:17:8d:3f:50:2e:45:05:6e:36: ed:84:77:ad:55:03:c2:4e:cb:2d:15:ca:c9:15:15:13:49:4a: 7f:a0:79:51:66:9b:f7:f1:be:1e:fe:88:14:c4:32:49:66:fe: 4a:63:66:81:3d:89:87:c7:05:b8:f5:60:a4:86:2b:e1:6b:7c: b1:70:b1:f3:3f:b6:08:2c:90:91:7c:aa:35:66:04:f9:96:d7: db:5c:3c:f9:55:be:47:d6:a0:11:22:cc:4b:10:e0:e9:a9:e3: 21:bc:2e:77:05:15:48:d6:24:7f:24:6f:39:cb:47:56:5b:ce: a3:7b:fc:de -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjMwNTI0MjMyNTAzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZlOWNjZi05YmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hRvJVZQOuox5PVByd+UhS8gHCsYnSbBFOASDeay/jhIfXsFFZ+cmrbpbbT5 BxLNWqtsLTCe36JwyokUVpq/AkkUVtLWB0YXMjnKFhH4hxdM80UU3Wp7Sci6InA9 E8z3l7PUO+RaI8F55+/oTHy0xoY1Nu+ycShy+5u5whpD8LlLxUC5nM12Z5XbCihL DiwrGLlACe/sm7UiYsRRRJD5M0BHEipREmKCYVVScSnMYnN0t0FPfyp5M5E9NjA2 w/kV7AmiVri66VLKuVDSYLUiVGL8ZVBDzNVtY1l3upuBG3J7VNQYvIg9qLdi4+8/ pegQCtKXQyMHTFodMGwZlj6sVwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFB6NsWvF GZrWKyB+jear8cTsaPJaMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvMTkwQjY0NzBE MDNFMTFFQ0FFOTgzRDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBYu+4AMEAYu+6DANBgkqhkiG9w0BAQsFAAOCAQEALB1t /pciTOJNdK2fNSHZmFtlj+kk9PMC/08/bfRUPaRtqtwJQvCtPfKOcUouJxodhnlQ 7SaSWXBO6uETmrEx2B5O1SqfRbc5S5sxt8nPej7KCIwPeY20EqQchSuWuF32oHhm +EOAxVDIBH8DP4GaKTY4aQ9a2Kd5sTZ+rPtAul5BsktBopTJF40/UC5FBW427YR3 rVUDwk7LLRXKyRUVE0lKf6B5UWab9/G+Hv6IFMQySWb+SmNmgT2Jh8cFuPVgpIYr 4Wt8sXCx8z+2CCyQkXyqNWYE+ZbX21w8+VW+R9agESLMSxDg6anjIbwudwUVSNYk fyRvOctHVlvOo3v83g== -----END CERTIFICATE-----Generated at Mon May 20 22:38:27 2024 by rpki-client on console-fra.rpki-client.org