$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/CDA9BB546E0C11ED8BF41547C4F9AE02.roa File: CDA9BB546E0C11ED8BF41547C4F9AE02.roa (raw, json) Hash identifier: zVPRl8aSlwcxV68OyN0H+R3+MRPBkO3MLKHRfVZXzvw= Subject key identifier: D5:4A:92:ED:E2:97:9C:9F:58:85:13:37:35:DB:02:7E:13:FA:48:0E Certificate issuer: /CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Certificate serial: 010C Authority key identifier: A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/CDA9BB546E0C11ED8BF41547C4F9AE02.roa Signing time: Thu 11 Apr 2024 05:07:57 +0000 ROA not before: Thu 11 Apr 2024 05:07:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55491 IP address blocks: 146.196.0.0/19 maxlen: 19 146.196.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Validity Not Before: Apr 11 05:07:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6617702c-a82e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:10:e3:7a:fc:2b:97:78:96:9a:ac:45:23:08: d8:1b:d7:37:7e:18:75:71:b2:a8:e3:c6:75:fc:c6: 0b:d8:8b:c5:d0:8c:70:8d:65:55:27:92:e6:e8:07: 42:d3:59:4f:dd:1e:eb:37:7c:3a:6d:52:be:e5:68: 20:8c:12:fd:b3:f0:93:24:6d:c1:cd:be:f7:36:8a: 93:59:43:1f:bf:27:ef:ae:cd:5a:60:1b:7d:a2:41: dc:b1:a5:7b:a9:8b:fe:65:3e:e8:28:50:33:81:16: 08:5d:d1:e0:1f:7b:7a:a9:ea:51:bf:1f:59:24:85: 95:cd:30:27:20:25:70:41:63:1e:f4:15:ca:fa:42: 4a:2f:43:e2:31:51:9e:0d:5f:87:c2:13:ef:f1:98: 7d:75:aa:32:16:4e:26:f8:fd:c2:19:17:88:31:60: fc:3a:76:b2:e4:78:21:8e:96:63:8f:f8:84:39:a8: 10:3a:9e:3a:c6:a2:be:c5:f5:0a:12:f2:ea:4d:65: cd:a2:f3:6b:6c:ad:b8:2d:2f:9f:b5:93:21:59:63: 2f:b4:38:68:c5:23:8b:8a:bf:13:1d:2b:d8:7c:6f: f4:62:b1:e0:e2:c0:ab:be:f9:bc:08:ba:d5:dd:97: 19:cd:4a:d0:85:3a:b7:65:7e:e2:0d:87:02:d1:28: 05:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:4A:92:ED:E2:97:9C:9F:58:85:13:37:35:DB:02:7E:13:FA:48:0E X509v3 Authority Key Identifier: keyid:A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/CDA9BB546E0C11ED8BF41547C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.196.0.0/19 Signature Algorithm: sha256WithRSAEncryption a9:90:93:7d:2a:2d:93:ce:66:2a:b0:26:c4:85:83:ee:c4:86: e7:e8:b3:23:51:c4:13:3b:35:de:fb:eb:cc:58:e7:9d:54:e6: 57:03:3d:e0:51:92:41:f4:df:30:5e:a0:8e:1d:72:44:3c:b9: fc:fa:77:af:ff:8a:a3:dd:bd:85:fd:30:02:14:8e:5c:be:d2: a1:61:79:9e:c2:29:27:a9:68:5c:83:24:31:ae:5a:71:be:91: bd:c2:bf:56:40:f4:e5:30:9a:cd:39:96:4d:ac:68:93:2f:28: be:93:40:ca:ee:6e:47:85:7c:3b:37:8e:5a:4b:18:17:47:46: 59:57:e6:a8:8d:fa:81:68:1e:cc:48:fd:18:9a:b4:f2:22:9c: 9d:07:ac:89:b5:4e:cd:48:56:4a:15:ae:e1:3e:da:95:40:9d: 99:6a:32:93:fd:bf:4a:2e:b5:22:f5:3e:c0:e5:6f:cd:5c:71: 76:52:1b:18:b4:eb:78:e3:50:65:d1:f8:9b:4e:09:53:a0:a3: 59:98:18:ba:1b:44:5b:f7:f6:19:2a:ff:9a:a7:9c:4c:5c:2d: 9f:be:42:b5:f8:4d:09:64:e6:ff:34:c7:40:8e:33:e6:15:43: 11:56:42:25:24:fe:67:5d:15:b7:ed:67:28:4f:ef:eb:72:af: bf:81:9a:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyMTYxMTAvBgNVBAUTKEE4NDFCREM1QUZBOUU5QTBBOTVCODg1NDYxMTNDQTc0 NUVFOTYzQjUwHhcNMjQwNDExMDUwNzU3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3NzAyYy1hODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xDjevwrl3iWmqxFIwjYG9c3fhh1cbKo48Z1/MYL2IvF0IxwjWVVJ5Lm6AdC 01lP3R7rN3w6bVK+5WggjBL9s/CTJG3Bzb73NoqTWUMfvyfvrs1aYBt9okHcsaV7 qYv+ZT7oKFAzgRYIXdHgH3t6qepRvx9ZJIWVzTAnICVwQWMe9BXK+kJKL0PiMVGe DV+HwhPv8Zh9daoyFk4m+P3CGReIMWD8Onay5HghjpZjj/iEOagQOp46xqK+xfUK EvLqTWXNovNrbK24LS+ftZMhWWMvtDhoxSOLir8THSvYfG/0YrHg4sCrvvm8CLrV 3ZcZzUrQhTq3ZX7iDYcC0SgFSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNVKku3i l5yfWIUTNzXbAn4T+kgOMB8GA1UdIwQYMBaAFKhBvcWvqemgqVuIVGETynRe6WO1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIxNi81Q0Q1RTczMDZF MDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZhQ3BXNGhVWVJQS2RGN3BZ N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FFRzl4YS1wNmFDcFc0aFVZUlBLZEY3cFk3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUyMTYvNUNENUU3MzA2RTA4MTFFREJFRUQ2Mjg0QzRGOUFFMDIvQ0RBOUJCNTQ2 RTBDMTFFRDhCRjQxNTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWSxAAwDQYJKoZIhvcNAQELBQADggEBAKmQk30qLZPOZiqw JsSFg+7EhufosyNRxBM7Nd7768xY551U5lcDPeBRkkH03zBeoI4dckQ8ufz6d6// iqPdvYX9MAIUjly+0qFheZ7CKSepaFyDJDGuWnG+kb3Cv1ZA9OUwms05lk2saJMv KL6TQMrubkeFfDs3jlpLGBdHRllX5qiN+oFoHsxI/RiatPIinJ0HrIm1Ts1IVkoV ruE+2pVAnZlqMpP9v0outSL1PsDlb81ccXZSGxi063jjUGXR+JtOCVOgo1mYGLob RFv39hkq/5qnnExcLZ++QrX4TQlk5v80x0COM+YVQxFWQiUk/mddFbftZyhP7+ty r7+Bms0= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:08 2024 by rpki-client on console-fra.rpki-client.org