$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/8987F942335911E8A1642A7FC4F9AE02.roa File: 8987F942335911E8A1642A7FC4F9AE02.roa (raw, json) Hash identifier: yYmmjqUinhs6foAw0rVw0E3zo7BVr3wB2iaS6mqbIxY= Subject key identifier: 17:D8:D6:F5:13:11:B7:A1:D2:07:60:15:EA:95:F3:C0:D9:0E:64:DD Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3424 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/8987F942335911E8A1642A7FC4F9AE02.roa Signing time: Mon 02 Oct 2023 15:11:01 +0000 ROA not before: Mon 02 Oct 2023 15:11:01 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 59432 IP address blocks: 182.54.233.0/24 maxlen: 24 182.54.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13348 (0x3424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Oct 2 15:11:01 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651add85-5178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ca:22:79:f9:03:20:a1:ec:20:7d:0e:37:1d: 3c:42:18:cb:ea:97:8f:20:2d:6c:60:31:6c:07:4a: b1:66:1c:c8:bb:ec:7b:ab:32:d4:a1:dd:c1:4e:11: 58:6c:dd:2a:4e:bc:8d:7f:61:71:04:64:ff:c7:0d: a5:cd:90:01:11:eb:8e:0f:44:79:41:fc:10:e6:67: 37:0b:37:50:1f:85:63:93:68:ec:1b:97:33:7a:c1: 79:80:48:2f:f6:7d:71:f9:98:cd:0d:11:17:53:fc: 4f:c6:27:60:b9:e3:a6:46:d3:4c:e8:e6:3c:ee:d6: 80:d9:00:b3:5c:7a:6d:5b:66:d3:cd:5c:0f:5e:65: 8a:88:a7:03:59:3c:72:47:7f:bb:41:92:5b:9b:e4: bd:90:be:00:a7:19:22:2c:a5:ca:11:07:f6:7d:0e: 73:4f:e3:6b:44:81:35:bb:64:f9:b5:e0:a0:ff:d2: 7a:5b:e7:47:ce:b3:6d:8b:01:fa:c7:2f:14:48:da: 60:44:62:2f:1a:f9:85:62:da:9a:cb:49:cc:ce:19: 74:34:02:07:18:dd:8d:65:bf:4b:cb:8d:ae:b4:a0: 4c:ae:66:3b:98:32:10:be:b3:1f:e9:51:85:ca:c4: a9:43:ca:8a:ed:72:45:09:ba:aa:57:90:4b:a3:43: 7d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D8:D6:F5:13:11:B7:A1:D2:07:60:15:EA:95:F3:C0:D9:0E:64:DD X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/8987F942335911E8A1642A7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.54.233.0/24 182.54.235.0/24 Signature Algorithm: sha256WithRSAEncryption 12:21:f6:cf:ff:e4:e8:22:e5:99:69:39:36:42:82:84:a4:1e: 0e:24:69:98:4b:0e:2d:62:ce:8b:3d:e4:d0:db:6d:7d:a1:c7: b4:ee:56:65:5f:a5:9a:7a:a7:42:37:60:ab:26:ce:a2:d7:51: c2:ea:88:53:5b:11:2a:78:61:c9:6d:03:25:f8:35:2d:a6:df: b0:e7:7b:dd:59:63:c1:53:98:97:33:4b:16:bd:f8:de:55:67: 54:f7:58:33:3b:55:81:a6:29:39:17:cd:3f:c7:ce:47:82:bb: b4:36:0c:d8:a8:b6:32:2f:10:10:84:96:b6:a8:45:c8:ad:6a: e8:6c:ed:85:3a:71:b9:56:2e:a2:fd:0a:14:5e:f5:52:9c:ef: 5d:81:47:ec:35:8d:0e:ee:68:71:c4:5e:ab:35:22:a8:13:fb: 8c:a7:8e:7f:bb:1f:24:e7:cd:e4:c6:a3:63:2d:87:d3:a8:9e: 6c:32:16:c2:b6:87:76:56:bf:15:79:f0:36:24:ee:77:be:8c: 1c:5b:0f:a1:10:83:0c:1f:e4:36:8f:8b:c8:1e:8c:f5:e1:e5: 5a:58:e5:b6:a2:ec:29:66:e4:ca:f9:3e:0e:80:a5:3e:e2:b3: 8c:90:13:24:cb:84:cc:92:b3:46:44:d8:2a:2c:d1:34:a1:9e: 01:aa:2b:63 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjMxMDAyMTUxMTAxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZGQ4NS01MTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcoiefkDIKHsIH0ONx08QhjL6pePIC1sYDFsB0qxZhzIu+x7qzLUod3BThFY bN0qTryNf2FxBGT/xw2lzZABEeuOD0R5QfwQ5mc3CzdQH4Vjk2jsG5czesF5gEgv 9n1x+ZjNDREXU/xPxidgueOmRtNM6OY87taA2QCzXHptW2bTzVwPXmWKiKcDWTxy R3+7QZJbm+S9kL4ApxkiLKXKEQf2fQ5zT+NrRIE1u2T5teCg/9J6W+dHzrNtiwH6 xy8USNpgRGIvGvmFYtqay0nMzhl0NAIHGN2NZb9Ly42utKBMrmY7mDIQvrMf6VGF ysSpQ8qK7XJFCbqqV5BLo0N9owIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBfY1vUT Ebeh0gdgFeqV88DZDmTdMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvODk4N0Y5NDIz MzU5MTFFOEExNjQyQTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAC2NukDBAC2NuswDQYJKoZIhvcNAQELBQADggEBABIh9s// 5Ogi5ZlpOTZCgoSkHg4kaZhLDi1izos95NDbbX2hx7TuVmVfpZp6p0I3YKsmzqLX UcLqiFNbESp4YcltAyX4NS2m37Dne91ZY8FTmJczSxa9+N5VZ1T3WDM7VYGmKTkX zT/HzkeCu7Q2DNiotjIvEBCElraoRcitauhs7YU6cblWLqL9ChRe9VKc712BR+w1 jQ7uaHHEXqs1IqgT+4ynjn+7HyTnzeTGo2Mth9OonmwyFsK2h3ZWvxV58DYk7ne+ jBxbD6EQgwwf5DaPi8gejPXh5VpY5bai7Clm5Mr5Pg6ApT7is4yQEyTLhMySs0ZE 2Cos0TShngGqK2M= -----END CERTIFICATE-----Generated at Thu May 16 17:51:53 2024 by rpki-client on console-ams.rpki-client.org