$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/8353BEA4F88211EEA770C016C4F9AE02.roa File: 8353BEA4F88211EEA770C016C4F9AE02.roa (raw, json) Hash identifier: bH3YlFjIANwj194r3NSKu+DulLWkzMaPaYjQzkuU4SY= Subject key identifier: 67:79:A7:E2:C4:E4:2C:B8:15:6E:DD:B5:2C:BA:C0:ED:64:64:29:F8 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 05F0 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/8353BEA4F88211EEA770C016C4F9AE02.roa Signing time: Fri 12 Apr 2024 04:09:53 +0000 ROA not before: Fri 12 Apr 2024 04:09:53 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140899 IP address blocks: 156.59.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1520 (0x5f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Apr 12 04:09:53 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6618b411-a2c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1c:0d:e7:42:65:51:5d:5f:71:8b:07:b6:df: 2a:e5:33:37:b3:d1:9e:ed:26:37:9b:82:13:d0:f8: 2c:66:98:0c:11:7c:d7:2f:1d:03:9c:06:72:09:2e: aa:ea:24:00:5e:bd:a3:c1:c6:73:c4:8f:39:d2:9e: 15:bb:31:a4:10:94:1b:cd:5d:87:f4:6f:9f:4c:33: 8b:91:c6:b6:3c:7c:59:ae:66:c9:75:b8:95:60:5a: 0a:b5:89:26:e5:76:d0:42:89:bb:2a:2c:0b:3e:ab: 61:d7:30:cb:32:0c:d2:41:31:8f:30:3b:94:13:67: a7:0c:5b:b1:d6:12:6b:e5:85:3c:04:cd:ee:c9:6f: e1:f9:0a:63:4e:8e:78:2d:0e:16:6a:cc:e3:27:db: 1a:76:64:b6:7a:13:19:f1:a0:7e:98:89:42:05:33: 05:c6:05:1d:3d:83:78:ab:96:e4:3a:2a:2b:23:77: 88:f6:41:b5:3b:a1:fd:1e:86:cb:7d:86:3d:75:6d: 62:2a:c9:44:36:ea:0b:d9:a2:ca:de:58:8f:21:87: 34:f4:69:28:8f:9a:a9:5f:78:00:ba:d7:06:b6:5d: 8f:eb:c0:51:09:37:92:f1:7a:e4:a8:3f:ac:04:dc: 64:0c:d3:65:d8:d0:75:85:fc:be:d0:5f:69:49:36: 84:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:79:A7:E2:C4:E4:2C:B8:15:6E:DD:B5:2C:BA:C0:ED:64:64:29:F8 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/8353BEA4F88211EEA770C016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.59.220.0/24 Signature Algorithm: sha256WithRSAEncryption 05:64:9c:68:13:5b:0b:ba:cd:14:5d:64:51:d0:f9:56:b1:14: 17:21:75:44:ed:c4:41:5c:30:86:75:b1:64:5c:b4:0a:79:83: c0:b1:84:94:cf:4b:a9:74:77:d0:d7:06:3f:8d:05:2b:df:e5: 19:0e:dc:36:31:87:58:54:91:c1:da:61:f7:3c:93:ba:b6:05: aa:61:92:0b:fd:5b:ea:44:e9:44:b5:43:d0:b5:bd:cc:aa:e9: a7:ae:76:9a:9e:47:4e:49:3f:0c:07:e7:fe:57:05:2c:22:7c: cf:38:41:0c:5d:74:a0:c7:47:af:13:82:79:df:b1:06:42:b8: 3b:2a:a0:94:e7:89:fe:c4:d6:38:86:e8:25:d0:df:da:83:cc: 35:25:88:f4:bb:63:eb:46:f5:32:93:73:7d:eb:b6:74:a9:d8: 84:42:67:a6:9c:27:e8:42:90:1e:32:10:82:7f:03:5f:38:ac: 00:23:47:58:af:d8:b0:29:2e:c4:38:01:54:4e:2f:33:b5:85: 6e:bc:d4:e7:51:68:c4:be:b7:25:64:78:94:5e:6c:68:20:4b: ca:2d:b4:78:d6:ba:14:56:63:ed:d3:3b:52:da:1d:13:4b:3f: 17:a1:98:e5:57:2b:b2:d4:f1:2f:a4:1d:e3:14:c4:50:80:34: 22:e4:af:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjQwNDEyMDQwOTUzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE4YjQxMS1hMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6RwN50JlUV1fcYsHtt8q5TM3s9Ge7SY3m4IT0PgsZpgMEXzXLx0DnAZyCS6q 6iQAXr2jwcZzxI850p4VuzGkEJQbzV2H9G+fTDOLkca2PHxZrmbJdbiVYFoKtYkm 5XbQQom7KiwLPqth1zDLMgzSQTGPMDuUE2enDFux1hJr5YU8BM3uyW/h+QpjTo54 LQ4WaszjJ9sadmS2ehMZ8aB+mIlCBTMFxgUdPYN4q5bkOiorI3eI9kG1O6H9HobL fYY9dW1iKslENuoL2aLK3liPIYc09Gkoj5qpX3gAutcGtl2P68BRCTeS8XrkqD+s BNxkDNNl2NB1hfy+0F9pSTaE9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGd5p+LE 5Cy4FW7dtSy6wO1kZCn4MB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvODM1M0JFQTRG ODgyMTFFRUE3NzBDMDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACcO9wwDQYJKoZIhvcNAQELBQADggEBAAVknGgTWwu6zRRd ZFHQ+VaxFBchdUTtxEFcMIZ1sWRctAp5g8CxhJTPS6l0d9DXBj+NBSvf5RkO3DYx h1hUkcHaYfc8k7q2Baphkgv9W+pE6US1Q9C1vcyq6aeudpqeR05JPwwH5/5XBSwi fM84QQxddKDHR68TgnnfsQZCuDsqoJTnif7E1jiG6CXQ39qDzDUliPS7Y+tG9TKT c33rtnSp2IRCZ6acJ+hCkB4yEIJ/A184rAAjR1iv2LApLsQ4AVROLzO1hW681OdR aMS+tyVkeJRebGggS8ottHjWuhRWY+3TO1LaHRNLPxehmOVXK7LU8S+kHeMUxFCA NCLkrwA= -----END CERTIFICATE-----Generated at Fri May 17 01:02:53 2024 by rpki-client on console-ams.rpki-client.org