$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/EFA23F360D6F11ED90569286C4F9AE02.roa File: EFA23F360D6F11ED90569286C4F9AE02.roa (raw, json) Hash identifier: XUTAsV+GRURjTwpBgofcjqgbi7XmBgud6SDEpf6CtgY= Subject key identifier: C1:A4:B9:CF:9B:39:C7:C3:A3:5A:DA:C6:63:2F:8D:D7:D1:A4:3C:C7 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 088C Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/EFA23F360D6F11ED90569286C4F9AE02.roa Signing time: Wed 24 May 2023 23:25:02 +0000 ROA not before: Wed 24 May 2023 23:25:02 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 397373 IP address blocks: 139.190.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 May 2023 21:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2188 (0x88c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: May 24 23:25:02 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646e9cce-61cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:31:db:07:1a:d4:af:76:cc:3d:2d:7a:f2:71: f0:03:ee:39:85:15:72:85:5e:0d:f3:7a:55:08:f7: 11:98:9e:39:1d:3b:1b:2a:37:b0:fb:7b:82:e9:49: 31:e3:2e:b0:6c:c1:fd:d0:d7:57:cb:cc:1a:b6:be: 72:ed:b6:13:3a:37:d3:5d:38:b7:cd:a1:8e:de:64: b0:b0:4a:d7:7f:ad:70:e0:6b:9b:a3:8e:79:5a:a2: a8:fd:9c:b6:ac:fd:f1:cf:09:6a:fe:72:a1:78:32: 67:ca:d3:41:98:de:66:3b:20:82:aa:08:2d:87:32: 25:e7:d2:88:bc:7d:cf:ab:9d:90:ac:07:d5:54:d5: 45:5a:f2:57:25:e2:1d:1e:94:b7:f6:86:9f:f9:4e: 0a:04:5b:17:c9:ac:d5:f7:4e:30:0d:c2:f0:42:c7: 6c:03:83:ff:eb:3e:f5:58:48:a0:d7:ff:c1:d9:bd: e8:95:70:8e:41:63:49:be:44:06:d8:70:0f:c4:a4: c8:1d:25:b0:c9:2a:d6:72:d6:04:2f:db:54:64:6e: 31:21:75:f6:2a:a3:cb:09:01:27:47:8d:24:ab:ec: 9c:08:0f:b7:3f:fb:82:3c:41:06:06:44:fc:73:a1: a3:aa:0a:89:38:2e:09:37:49:c2:4e:56:0d:ec:06: f9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A4:B9:CF:9B:39:C7:C3:A3:5A:DA:C6:63:2F:8D:D7:D1:A4:3C:C7 X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/EFA23F360D6F11ED90569286C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.104.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:ad:9b:e2:57:e5:39:80:f0:ea:7a:00:c8:d7:7b:0b:02:c7: c2:ed:0d:0f:ba:fb:9b:9d:12:64:f4:47:9a:49:ba:6b:d6:cb: a4:82:c3:64:9f:71:d5:e9:8d:37:34:5d:df:c0:e3:e6:34:ee: 94:e7:f7:df:1d:b6:84:8b:25:08:d0:ad:73:78:0b:68:3d:a4: 1d:b0:d8:f8:49:46:3c:62:9e:e0:da:03:06:a6:5f:e3:84:33: 80:ec:51:90:8a:0f:36:66:a8:52:4b:a9:c7:3c:9f:66:8e:5d: 23:94:20:46:9b:67:87:3f:d8:ca:c8:fc:d5:f9:03:b8:b8:ba: f5:e4:0b:ac:33:3b:e3:2c:c2:dc:0b:69:d1:05:5a:9a:63:83: 80:0d:1f:3c:bf:ce:16:3a:bb:29:0b:88:31:9e:b4:62:e2:37: 40:5d:84:11:d9:2d:67:0d:44:4e:b9:6e:71:17:09:d6:fb:65: a2:9f:13:82:5b:e0:01:71:cc:b9:0e:3d:10:89:3c:96:7f:f0: c9:b2:d4:4a:0d:e6:11:58:68:72:30:22:b3:95:96:4e:f8:9b: 07:e3:9b:2c:0c:2f:ea:01:b5:4b:ec:bc:b7:61:b1:55:74:3b: 68:45:bd:aa:7f:43:c2:44:52:67:45:3d:b3:26:1c:4d:cd:5d: 8f:d7:32:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjMwNTI0MjMyNTAyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZlOWNjZS02MWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTHbBxrUr3bMPS168nHwA+45hRVyhV4N83pVCPcRmJ45HTsbKjew+3uC6Ukx 4y6wbMH90NdXy8watr5y7bYTOjfTXTi3zaGO3mSwsErXf61w4Gubo455WqKo/Zy2 rP3xzwlq/nKheDJnytNBmN5mOyCCqggthzIl59KIvH3Pq52QrAfVVNVFWvJXJeId HpS39oaf+U4KBFsXyazV904wDcLwQsdsA4P/6z71WEig1//B2b3olXCOQWNJvkQG 2HAPxKTIHSWwySrWctYEL9tUZG4xIXX2KqPLCQEnR40kq+ycCA+3P/uCPEEGBkT8 c6GjqgqJOC4JN0nCTlYN7Ab5pwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMGkuc+b OcfDo1raxmMvjdfRpDzHMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRUZBMjNGMzYw RDZGMTFFRDkwNTY5Mjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKLvmgwDQYJKoZIhvcNAQELBQADggEBAJ+tm+JX5TmA8Op6 AMjXewsCx8LtDQ+6+5udEmT0R5pJumvWy6SCw2SfcdXpjTc0Xd/A4+Y07pTn998d toSLJQjQrXN4C2g9pB2w2PhJRjxinuDaAwamX+OEM4DsUZCKDzZmqFJLqcc8n2aO XSOUIEabZ4c/2MrI/NX5A7i4uvXkC6wzO+MswtwLadEFWppjg4ANHzy/zhY6uykL iDGetGLiN0BdhBHZLWcNRE65bnEXCdb7ZaKfE4Jb4AFxzLkOPRCJPJZ/8Mmy1EoN 5hFYaHIwIrOVlk74mwfjmywML+oBtUvsvLdhsVV0O2hFvap/Q8JEUmdFPbMmHE3N XY/XMkQ= -----END CERTIFICATE-----Generated at Wed May 24 23:57:32 2023 by rpki-client on console-ams.rpki-client.org