$ rpki-client -vvf rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/715924988D6C11EBAFD23A2EC4F9AE02.roa File: 715924988D6C11EBAFD23A2EC4F9AE02.roa (raw, json) Hash identifier: gh/nb3m3ns3kKq7St1rxuJ1VhTdxd6xsjqs3qEYHHrA= Subject key identifier: 56:B5:E4:97:81:70:C8:6A:DB:7C:E9:A0:29:49:ED:BD:4A:63:FD:59 Certificate issuer: /CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Certificate serial: 054A Authority key identifier: BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/715924988D6C11EBAFD23A2EC4F9AE02.roa Signing time: Thu 14 Dec 2023 23:52:00 +0000 ROA not before: Thu 14 Dec 2023 23:52:00 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4637 IP address blocks: 168.134.3.0/24 maxlen: 24 168.134.3.0/25 maxlen: 25 168.134.3.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1354 (0x54a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Validity Not Before: Dec 14 23:52:00 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657b9520-fa1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e4:d4:aa:ec:94:69:ee:0d:40:7f:0f:49:1e: 78:d4:a0:3c:f2:73:ec:79:8e:89:1c:85:5d:64:2d: b3:cf:3c:29:18:e7:a7:6d:1a:60:44:05:05:37:0f: 4a:bf:b8:95:37:0f:84:a6:b5:2a:2f:88:40:f5:bb: fc:9b:70:1c:78:2c:e0:75:fb:ab:19:28:f9:e6:29: 4f:6c:6c:35:48:4b:92:cc:43:5b:2e:5d:a0:84:1a: 38:b4:d9:ff:d3:c0:9f:ea:a1:77:5d:b2:a1:a6:a6: bc:e6:eb:bd:9d:b7:ee:81:b7:68:27:56:b6:6f:24: b7:bb:88:80:99:de:aa:2a:d0:04:37:a3:29:61:27: ef:c8:af:d7:7c:81:62:58:74:b1:b1:81:ee:17:9c: 09:82:79:fd:77:e7:52:b6:52:1b:6d:10:7a:a5:59: 30:32:fc:59:cd:ff:76:87:38:23:62:26:36:df:8b: a5:96:41:3b:cd:5b:57:9a:65:36:7b:af:d9:c2:a0: 10:d4:65:19:ba:03:ab:f3:f4:77:17:3d:ec:57:06: ff:12:21:1b:6e:af:5e:37:3e:d0:eb:77:5a:48:97: 4e:f6:b5:66:33:80:bd:e9:e1:3e:a7:78:8a:84:0d: 0b:bf:27:a4:58:c3:ce:fa:ea:9a:6f:71:4c:5d:77: cd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B5:E4:97:81:70:C8:6A:DB:7C:E9:A0:29:49:ED:BD:4A:63:FD:59 X509v3 Authority Key Identifier: keyid:BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/715924988D6C11EBAFD23A2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.134.3.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:14:15:85:b7:a0:22:09:d8:a2:1a:4f:9d:22:22:d3:d0:54: 58:ed:7f:d6:cf:bf:a2:88:01:4c:35:94:38:cf:91:d5:74:46: f2:70:bb:5e:8f:1d:ef:6d:42:0e:85:43:b1:22:25:09:19:45: fc:a7:e1:ad:98:d6:0d:53:5b:0c:66:3e:2c:04:38:da:7a:9e: 6f:e0:e4:86:10:9d:0b:3b:b0:24:77:f6:48:64:ff:63:57:96: 1b:08:48:32:44:7d:e6:54:7a:55:67:0b:c9:4e:b7:8a:f6:ce: 9e:2a:96:48:17:ff:30:19:5d:33:ac:21:85:b9:d6:83:0d:83: bb:90:39:07:72:68:81:03:f5:d8:c0:f6:89:82:8e:34:74:44: a1:5a:8f:44:c0:37:9a:e2:a5:64:8d:89:d4:0a:da:13:79:cf: 8e:91:aa:b3:5d:6a:23:93:c7:e7:b0:b9:12:0c:b4:ad:87:78: 66:2e:f1:f7:d9:dd:e3:ad:40:29:99:4b:d5:82:9b:a8:35:67: f6:b1:1a:48:b8:bf:a4:94:97:07:b6:c3:18:8c:a6:65:cc:58: 46:a7:8a:2e:54:df:0d:d1:2c:d1:61:c8:05:d8:b6:bd:1c:b1: d7:7d:8f:6d:01:e2:67:9f:ab:bf:99:59:ce:14:b5:08:3f:92: 36:d4:35:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI3N0QxMTAvBgNVBAUTKEJCQzEwMzU2MUFGRDdBOTMwMzZEMUM3MkRENEMwQTdD MkE0RTI5Q0UwHhcNMjMxMjE0MjM1MjAwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiOTUyMC1mYTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuTUquyUae4NQH8PSR541KA88nPseY6JHIVdZC2zzzwpGOenbRpgRAUFNw9K v7iVNw+EprUqL4hA9bv8m3AceCzgdfurGSj55ilPbGw1SEuSzENbLl2ghBo4tNn/ 08Cf6qF3XbKhpqa85uu9nbfugbdoJ1a2byS3u4iAmd6qKtAEN6MpYSfvyK/XfIFi WHSxsYHuF5wJgnn9d+dStlIbbRB6pVkwMvxZzf92hzgjYiY234ullkE7zVtXmmU2 e6/ZwqAQ1GUZugOr8/R3Fz3sVwb/EiEbbq9eNz7Q63daSJdO9rVmM4C96eE+p3iK hA0LvyekWMPO+uqab3FMXXfN3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFa15JeB cMhq23zpoClJ7b1KY/1ZMB8GA1UdIwQYMBaAFLvBA1Ya/XqTA20cct1MCnwqTinO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjc3RC83OEExRDA4RThE NkIxMUVCOTg0MEUwNUZDNEY5QUUwMi91OEVEVmhyOWVwTURiUnh5M1V3S2ZDcE9L YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U4RURWaHI5ZXBNRGJSeHkzVXdLZkNwT0tjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI3N0QvNzhBMUQwOEU4RDZCMTFFQjk4NDBFMDVGQzRGOUFFMDIvNzE1OTI0OTg4 RDZDMTFFQkFGRDIzQTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACohgMwDQYJKoZIhvcNAQELBQADggEBAH8UFYW3oCIJ2KIa T50iItPQVFjtf9bPv6KIAUw1lDjPkdV0RvJwu16PHe9tQg6FQ7EiJQkZRfyn4a2Y 1g1TWwxmPiwEONp6nm/g5IYQnQs7sCR39khk/2NXlhsISDJEfeZUelVnC8lOt4r2 zp4qlkgX/zAZXTOsIYW51oMNg7uQOQdyaIED9djA9omCjjR0RKFaj0TAN5ripWSN idQK2hN5z46RqrNdaiOTx+ewuRIMtK2HeGYu8ffZ3eOtQCmZS9WCm6g1Z/axGki4 v6SUlwe2wxiMpmXMWEanii5U3w3RLNFhyAXYtr0csdd9j20B4mefq7+ZWc4UtQg/ kjbUNak= -----END CERTIFICATE-----Generated at Tue May 7 00:53:26 2024 by rpki-client on console-ams.rpki-client.org