$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/8353BEA4F88211EEA770C016C4F9AE02.roa File: 8353BEA4F88211EEA770C016C4F9AE02.roa (raw, json) Hash identifier: 46VM8I2pWnR3hV2SSnJ5PNhoRgQQwmH+XQIgWQ1aJ7U= Subject key identifier: F4:39:E8:BE:BB:DD:FB:CA:3A:8B:5C:E9:52:80:27:6F:BC:2F:E0:FA Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 0629 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/8353BEA4F88211EEA770C016C4F9AE02.roa Signing time: Wed 24 Jul 2024 23:41:41 +0000 ROA not before: Wed 24 Jul 2024 23:41:40 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140899 IP address blocks: 156.59.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Jul 24 23:41:40 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a19134-f692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:61:05:c5:e8:9a:0b:13:a7:08:08:2b:5b:8b: 12:de:80:f5:ce:c4:ad:e7:f2:48:8b:0c:33:c0:48: 63:6d:ce:b0:7a:e5:7d:35:51:14:2e:48:7d:11:d9: c3:a0:e5:eb:33:90:d9:0b:cd:a9:39:0e:ef:00:7a: 0d:c8:5d:eb:e9:de:5a:04:d7:2a:ec:dd:5e:5c:62: 2a:72:b8:43:33:03:3c:70:b5:02:bc:d5:dc:38:7a: 9c:d3:c5:4d:1d:7d:a6:c0:9d:f5:e9:ca:b9:40:ae: 01:0b:ac:b8:1a:6d:ee:2f:f6:91:b8:1c:26:5d:5c: 4d:a7:f1:b1:f8:17:e1:05:9d:1e:fe:6b:52:f9:e5: 5d:e4:d7:54:38:a5:6f:49:75:b0:3f:de:d8:86:34: 27:26:da:c3:ce:03:37:19:1b:f4:93:45:86:70:29: bc:e0:00:44:60:a3:a8:e2:ef:af:20:b1:c3:ed:7f: ba:5f:2c:5e:c3:ae:1a:f8:7c:e7:26:71:3e:3b:12: d0:67:1f:39:7f:9e:06:c7:07:dd:8c:53:e4:55:e2: b7:01:18:21:b0:4d:31:f8:4b:e4:6d:3c:62:89:78: 0f:42:17:7a:cb:b8:0b:c0:47:bf:85:5f:c3:2c:56: 6a:01:2e:08:24:49:db:64:69:fd:4a:dd:ca:5f:64: d4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:39:E8:BE:BB:DD:FB:CA:3A:8B:5C:E9:52:80:27:6F:BC:2F:E0:FA X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/8353BEA4F88211EEA770C016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.59.220.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:39:f9:28:1c:ca:38:3c:3e:fb:75:e3:87:38:cb:19:5b:b4: 89:71:e8:69:91:f7:b0:22:54:04:47:dc:2c:a6:31:57:c6:d5: 88:02:14:84:37:07:81:d6:46:b9:4c:f5:8c:a7:a3:cf:ce:1d: 61:82:61:31:e8:78:b6:9e:d2:27:5a:b4:27:69:a1:56:6b:ce: 95:bf:f3:01:f3:86:f0:e0:8d:fd:b0:c5:bf:a1:bf:e8:46:66: 09:f2:f0:75:09:54:2b:28:c9:d6:94:80:7b:6a:65:59:0d:8c: 3f:9d:94:53:45:f9:25:aa:80:f2:22:55:f3:53:4f:23:1d:a1: ae:05:08:9d:a2:9b:27:ef:86:ed:70:4e:b5:68:49:33:82:a4: 66:32:e1:76:da:00:cf:7f:22:05:c6:1b:de:84:4e:2d:b9:4f: 34:7f:d4:66:97:f0:f8:6b:a7:86:8e:95:83:9b:eb:ae:c2:a7: 44:36:f6:b9:aa:0c:c7:29:2e:e6:69:82:90:d5:77:65:65:8b: bb:0f:85:51:fa:3b:8f:bd:da:2a:6a:7c:c7:0d:3a:2b:fb:ea: 91:5d:95:81:89:5b:bf:44:1f:6d:77:23:49:f5:31:96:36:6c: 19:ef:38:df:62:64:d2:a7:32:8a:06:30:ab:1e:fd:26:04:60: 30:26:91:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjQwNzI0MjM0MTQwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExOTEzNC1mNjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WEFxeiaCxOnCAgrW4sS3oD1zsSt5/JIiwwzwEhjbc6weuV9NVEULkh9EdnD oOXrM5DZC82pOQ7vAHoNyF3r6d5aBNcq7N1eXGIqcrhDMwM8cLUCvNXcOHqc08VN HX2mwJ316cq5QK4BC6y4Gm3uL/aRuBwmXVxNp/Gx+BfhBZ0e/mtS+eVd5NdUOKVv SXWwP97YhjQnJtrDzgM3GRv0k0WGcCm84ABEYKOo4u+vILHD7X+6Xyxew64a+Hzn JnE+OxLQZx85f54GxwfdjFPkVeK3ARghsE0x+EvkbTxiiXgPQhd6y7gLwEe/hV/D LFZqAS4IJEnbZGn9St3KX2TUDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPQ56L67 3fvKOotc6VKAJ2+8L+D6MB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvODM1M0JFQTRG ODgyMTFFRUE3NzBDMDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACcO9wwDQYJKoZIhvcNAQELBQADggEBAFo5+Sgcyjg8Pvt1 44c4yxlbtIlx6GmR97AiVARH3CymMVfG1YgCFIQ3B4HWRrlM9Yyno8/OHWGCYTHo eLae0idatCdpoVZrzpW/8wHzhvDgjf2wxb+hv+hGZgny8HUJVCsoydaUgHtqZVkN jD+dlFNF+SWqgPIiVfNTTyMdoa4FCJ2imyfvhu1wTrVoSTOCpGYy4XbaAM9/IgXG G96ETi25TzR/1GaX8Phrp4aOlYOb667Cp0Q29rmqDMcpLuZpgpDVd2Vli7sPhVH6 O4+92ipqfMcNOiv76pFdlYGJW79EH213I0n1MZY2bBnvON9iZNKnMooGMKse/SYE YDAmkWs= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:50 2024 by rpki-client on console-fra.rpki-client.org