$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/F9722F8255C411E9A0FEF781C4F9AE02.roa File: F9722F8255C411E9A0FEF781C4F9AE02.roa (raw, json) Hash identifier: 1Cfdy1pxa+dsaSYkDY6rlZlIF9Xum+DTbSMYUwIZIIM= Subject key identifier: 70:68:AC:72:E5:6C:84:4D:C3:8E:AF:1B:39:30:B3:9C:E4:91:9C:7F Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 288B Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/F9722F8255C411E9A0FEF781C4F9AE02.roa Signing time: Mon 26 Jun 2023 14:40:15 +0000 ROA not before: Mon 26 Jun 2023 14:40:15 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 7575 IP address blocks: 138.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10379 (0x288b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Jun 26 14:40:15 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6499a34f-f4bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4d:a2:c4:b5:11:52:a8:5b:8e:54:44:68:fe: ab:67:78:8e:06:2e:f8:d4:d9:73:c0:43:65:92:93: 8d:44:95:4a:c9:01:98:d4:58:8f:6c:7a:3d:a3:3c: f5:01:49:6a:64:a8:7d:9c:2f:52:81:a2:db:c4:be: 80:5f:c2:ca:bc:e9:1f:87:37:a3:04:66:0e:cc:bd: d3:46:d3:52:04:f4:a8:ba:10:b4:a2:79:60:21:10: 20:6c:71:9f:7b:c2:02:cd:39:ab:76:97:42:c1:70: 96:73:69:60:5f:f2:82:ae:49:16:9b:e1:e6:cd:b2: 00:78:5b:73:14:a3:1f:80:c4:7e:15:50:af:f8:6a: 63:a6:3e:74:45:20:f2:3a:f1:44:7e:5c:7a:04:89: 9c:0d:39:f9:66:58:a3:02:4c:ea:23:cf:b4:ce:fe: f7:18:eb:23:f9:1c:a5:85:32:7a:d3:4e:4c:f7:85: 97:8b:99:42:d5:b9:e3:e0:80:9b:94:cc:e2:73:a7: ee:83:8f:94:23:a5:97:56:15:17:1b:2f:7e:16:84: b3:23:7d:f0:b1:05:98:1a:c6:cf:52:0d:d8:50:cf: 1a:fc:bb:aa:a1:0b:32:6c:ef:f0:0d:f7:65:3f:bb: 6a:aa:69:3f:30:56:9d:81:27:ea:08:2d:a0:74:88: 1f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:68:AC:72:E5:6C:84:4D:C3:8E:AF:1B:39:30:B3:9C:E4:91:9C:7F X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/F9722F8255C411E9A0FEF781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:55:b6:34:13:b4:e6:27:8f:7d:e9:ce:e9:b5:d7:f0:04:e8: 3d:90:03:a1:78:67:29:b6:5a:d1:f8:2b:db:5b:2b:bd:41:ce: 7d:2c:5b:e6:55:1a:82:cb:e7:75:1f:e4:74:f0:91:51:00:48: 81:04:af:a2:18:ab:6a:e2:19:c1:dd:91:05:84:e6:09:c4:19: 06:9b:a0:a1:c9:62:ed:56:06:2d:c6:50:cd:b9:49:9e:f8:a3: de:72:a4:62:b8:3c:90:5c:99:6c:ed:a8:70:16:3c:80:9f:fc: 3f:6d:8b:ba:5c:e9:f4:45:d0:6c:27:5b:d1:e1:9a:06:9e:f1: cf:66:a4:fc:99:f3:be:bd:bc:0c:9c:87:aa:35:32:67:11:83: e4:4c:45:9d:33:cf:c7:18:0d:1e:e3:36:b7:6b:2d:83:6a:f7: 16:3e:35:34:c0:4f:53:82:f1:52:cf:67:ee:66:b6:3b:7d:fd: 10:e1:42:94:ce:99:0f:db:8f:e7:33:2f:41:ab:14:1f:a2:55: 3b:56:2f:6e:3e:b3:23:19:cd:48:8b:89:17:6f:6f:e4:b6:11: 97:ca:8d:38:d3:a1:79:cd:4e:6d:71:ff:09:62:d3:e2:f6:fd: 91:65:90:31:c1:ed:98:98:e8:4f:a7:5a:e3:fc:c6:8d:90:db: 88:1a:5d:fe -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICKIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjMwNjI2MTQ0MDE1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk5YTM0Zi1mNGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0E2ixLURUqhbjlREaP6rZ3iOBi741NlzwENlkpONRJVKyQGY1FiPbHo9ozz1 AUlqZKh9nC9SgaLbxL6AX8LKvOkfhzejBGYOzL3TRtNSBPSouhC0onlgIRAgbHGf e8ICzTmrdpdCwXCWc2lgX/KCrkkWm+HmzbIAeFtzFKMfgMR+FVCv+Gpjpj50RSDy OvFEflx6BImcDTn5ZlijAkzqI8+0zv73GOsj+RylhTJ6005M94WXi5lC1bnj4ICb lMzic6fug4+UI6WXVhUXGy9+FoSzI33wsQWYGsbPUg3YUM8a/LuqoQsybO/wDfdl P7tqqmk/MFadgSfqCC2gdIgfwQIDAQABo4IClDCCApAwHQYDVR0OBBYEFHBorHLl bIRNw46vGzkws5zkkZx/MB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYxOUUvQTkzRTk5M0UzNDBEMTFFNDlFQzk4MTYzQzRGOUFFMDIvRjk3MjJGODI1 NUM0MTFFOUEwRkVGNzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCKLDANBgkqhkiG9w0BAQsFAAOCAQEAPVW2NBO05iePfenO 6bXX8AToPZADoXhnKbZa0fgr21srvUHOfSxb5lUagsvndR/kdPCRUQBIgQSvohir auIZwd2RBYTmCcQZBpugocli7VYGLcZQzblJnvij3nKkYrg8kFyZbO2ocBY8gJ/8 P22Lulzp9EXQbCdb0eGaBp7xz2ak/Jnzvr28DJyHqjUyZxGD5ExFnTPPxxgNHuM2 t2stg2r3Fj41NMBPU4LxUs9n7ma2O339EOFClM6ZD9uP5zMvQasUH6JVO1Yvbj6z IxnNSIuJF29v5LYRl8qNONOhec1ObXH/CWLT4vb9kWWQMcHtmJjoT6da4/zGjZDb iBpd/g== -----END CERTIFICATE-----Generated at Sat May 18 15:26:08 2024 by rpki-client on console-fra.rpki-client.org