$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/E044F8EA6A7D11EFA472EC50C4F9AE02.roa File: E044F8EA6A7D11EFA472EC50C4F9AE02.roa (raw, json) Hash identifier: o1wNjuG4TpbV9OvZFMpjNOBDtLxry7fuLmL+RNYnRgQ= Subject key identifier: E3:B7:82:11:88:89:9E:75:F4:AA:E1:9B:29:AF:19:54:A1:B4:08:BB Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 0B18 Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/E044F8EA6A7D11EFA472EC50C4F9AE02.roa Signing time: Wed 04 Sep 2024 05:23:54 +0000 ROA not before: Wed 04 Sep 2024 05:23:54 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 5089 IP address blocks: 139.190.224.0/21 maxlen: 24 139.190.232.0/24 maxlen: 24 139.190.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 06:43:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2840 (0xb18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Sep 4 05:23:54 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66d7eeea-fbf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5b:01:f5:4a:c0:54:7e:ac:f0:a3:8f:b3:ae: 41:53:9b:74:7e:f4:27:ca:88:82:29:34:6c:2d:b6: 4e:87:bf:77:a6:9e:ba:b0:59:4f:43:71:35:65:58: ac:01:4a:26:bf:0f:cf:df:63:21:26:57:10:bc:68: 63:04:4a:b9:ae:95:9a:ee:0f:9e:a9:36:ce:60:d5: 3d:47:d9:b2:86:0d:2b:15:11:83:bf:a6:69:6c:5d: 84:b7:9f:6f:79:da:2d:34:e4:fd:84:01:20:26:c2: 2d:5d:fd:e4:79:cd:50:35:84:19:3d:3b:e9:0b:ef: 14:ef:8a:58:6c:f3:76:b2:61:1e:12:28:87:f5:7a: 0d:e6:3e:ab:52:97:f0:1f:36:8d:7e:91:26:bb:f3: 0c:08:16:c3:f2:17:b8:d8:b5:bd:05:80:67:b7:10: 9f:e7:da:95:d6:ef:11:88:d7:4f:8e:4d:f9:dd:5d: d4:4d:11:18:ed:14:77:e5:fc:f8:13:17:2e:5c:8a: 6c:26:2c:30:b1:3f:a8:12:62:90:ba:33:e9:9d:1f: f0:cd:bf:82:89:56:11:54:66:83:12:e7:8f:57:89: 70:b9:5a:9e:c8:dc:04:e3:f0:7e:a4:03:db:94:d1: dc:10:ed:54:7a:ba:af:0d:fe:cc:81:de:8c:72:e6: 29:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B7:82:11:88:89:9E:75:F4:AA:E1:9B:29:AF:19:54:A1:B4:08:BB X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/E044F8EA6A7D11EFA472EC50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.224.0-139.190.233.255 Signature Algorithm: sha256WithRSAEncryption bb:d0:3d:64:77:00:bf:b6:d8:a4:f9:98:3f:14:9b:d4:be:3b: 16:1a:14:c8:d9:b5:79:ab:6c:84:ed:6e:b3:68:0d:62:19:c6: ff:df:06:05:b9:9b:fe:51:3e:97:56:8d:5e:01:cd:61:a1:1b: 35:7b:37:83:92:20:c5:a3:4d:78:1c:7c:15:7d:18:61:1b:8d: c0:83:25:28:77:ec:58:0c:8b:af:07:36:60:99:7d:86:23:cc: 06:d2:77:74:0e:a2:ae:91:2a:b1:66:91:71:81:fc:ea:3c:62: 28:3f:7c:01:4d:64:ba:f3:1b:5b:2f:e6:58:17:07:af:a8:4c: c3:35:c2:7c:3c:2d:72:c7:ed:d5:d7:a8:17:f5:04:af:70:5f: 72:df:13:6c:71:70:2e:c1:f3:f4:30:75:ea:fb:d9:1a:f3:bf: 16:fa:e4:33:8f:05:04:76:44:b5:70:b4:f0:56:45:f1:91:18: 02:bd:82:88:8f:c2:6c:02:57:1e:72:ea:c5:5e:e1:7b:51:96: d4:0e:7d:6f:9b:5a:c8:29:41:93:f1:74:c6:52:74:d2:bf:6d: db:a9:88:4e:08:ef:16:49:a8:26:e7:52:75:62:f3:1a:0b:37: dd:cf:20:50:b6:62:f1:78:da:56:cc:a3:96:a1:95:fb:57:94: 46:2d:c6:53 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjQwOTA0MDUyMzU0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ3ZWVlYS1mYmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplsB9UrAVH6s8KOPs65BU5t0fvQnyoiCKTRsLbZOh793pp66sFlPQ3E1ZVis AUomvw/P32MhJlcQvGhjBEq5rpWa7g+eqTbOYNU9R9myhg0rFRGDv6ZpbF2Et59v edotNOT9hAEgJsItXf3kec1QNYQZPTvpC+8U74pYbPN2smEeEiiH9XoN5j6rUpfw HzaNfpEmu/MMCBbD8he42LW9BYBntxCf59qV1u8RiNdPjk353V3UTREY7RR35fz4 ExcuXIpsJiwwsT+oEmKQujPpnR/wzb+CiVYRVGaDEuePV4lwuVqeyNwE4/B+pAPb lNHcEO1UerqvDf7Mgd6McuYpPQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFOO3ghGI iZ519KrhmymvGVShtAi7MB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRTA0NEY4RUE2 QTdEMTFFRkE0NzJFQzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBYu+4AMEAYu+6DANBgkqhkiG9w0BAQsFAAOCAQEAu9A9 ZHcAv7bYpPmYPxSb1L47FhoUyNm1eatshO1us2gNYhnG/98GBbmb/lE+l1aNXgHN YaEbNXs3g5IgxaNNeBx8FX0YYRuNwIMlKHfsWAyLrwc2YJl9hiPMBtJ3dA6irpEq sWaRcYH86jxiKD98AU1kuvMbWy/mWBcHr6hMwzXCfDwtcsft1deoF/UEr3Bfct8T bHFwLsHz9DB16vvZGvO/FvrkM48FBHZEtXC08FZF8ZEYAr2CiI/CbAJXHnLqxV7h e1GW1A59b5tayClBk/F0xlJ00r9t26mITgjvFkmoJudSdWLzGgs33c8gULZi8Xja VsyjlqGV+1eURi3GUw== -----END CERTIFICATE-----Generated at Mon Nov 25 09:04:28 2024 by rpki-client on console-fra.rpki-client.org