$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/19B0BAAE1CE611EBB543881CC4F9AE02.roa File: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (raw, json) Hash identifier: 8XbL0HPru2wM23ZZCoVoS9QMZNPokbBL/zQZk5BXNh8= Subject key identifier: 89:9D:69:12:BF:16:AB:FF:66:8F:01:EA:3F:4B:63:8C:21:80:7A:98 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 0762 Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/19B0BAAE1CE611EBB543881CC4F9AE02.roa Signing time: Fri 22 Dec 2023 19:07:01 +0000 ROA not before: Fri 22 Dec 2023 19:07:01 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 14630 IP address blocks: 206.209.76.0/24 maxlen: 24 206.209.77.0/24 maxlen: 24 206.209.78.0/24 maxlen: 24 206.209.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Dec 22 19:07:01 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6585de55-8c3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:7f:78:5f:a3:fe:08:52:07:c4:c8:a8:04: 98:81:03:ad:c3:78:3c:f1:4c:ed:60:86:ea:07:9a: b8:8e:93:bc:d6:62:18:d5:59:81:5d:63:b3:d4:64: 51:14:23:d5:39:9b:fe:52:1a:72:ac:04:ac:f0:1c: 8d:41:9a:da:9d:21:88:e1:aa:c2:37:f7:0f:f3:cc: 43:8e:c1:a7:6d:0d:01:59:69:c3:43:14:92:c0:ec: 6a:af:76:5b:6d:e0:e7:2d:ea:1d:37:16:c5:92:f4: 1a:fa:7d:df:c2:60:d7:24:c7:d8:11:bd:62:3c:ee: 86:e4:86:a6:94:5b:a3:eb:3c:03:89:73:fb:30:08: 45:be:9f:ed:af:e3:20:7f:96:5e:60:e1:a6:5b:74: ca:b1:3b:47:0b:f6:e7:06:cf:5f:05:da:d2:df:c6: 9a:fe:e8:e2:af:59:34:a8:53:02:ae:d1:7b:95:0b: db:63:bc:9a:55:d8:21:e7:f0:c2:00:43:c1:11:62: 23:70:a0:ce:f8:ea:c2:f2:d8:8f:4e:9e:fc:9b:18: 9b:40:1c:64:5d:8e:cb:be:a7:5e:f6:6a:d5:ec:f6: ed:b5:fd:ce:d8:4e:8f:df:e6:bf:5a:88:d9:f0:d1: c6:d6:be:d4:25:6a:65:a4:c7:a1:73:9d:b5:d4:c5: 92:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:9D:69:12:BF:16:AB:FF:66:8F:01:EA:3F:4B:63:8C:21:80:7A:98 X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/19B0BAAE1CE611EBB543881CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 206.209.76.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:64:b1:17:d9:6e:45:4e:12:32:f2:35:0a:be:d1:a5:5c:14: 41:cf:f3:b8:f7:40:40:58:51:25:f8:22:e2:6f:cd:19:68:86: d0:0d:54:76:a6:fa:7c:f4:44:1c:82:de:7f:26:7d:f6:7f:ca: a1:25:ea:c1:bb:ed:a3:70:d2:05:3d:0c:27:6e:10:28:64:4b: 21:67:87:ac:30:bd:50:93:a1:7f:e6:f5:16:20:4a:9d:5b:15: d5:b6:1e:3f:b8:76:ab:0a:18:e1:52:20:36:ce:06:a6:cb:54: 19:7b:37:a6:47:ca:de:63:4f:05:c3:ae:60:2e:3a:7b:a4:39: 6e:ea:87:e3:df:f4:a5:86:29:f5:e7:14:48:9a:6f:93:26:29: 5f:4b:01:99:54:b0:77:1c:6d:47:90:4d:37:bd:e9:d6:a9:e2: 00:b1:1b:15:de:02:24:e9:17:c2:00:73:f5:40:97:e2:97:8f: c1:2f:7b:d1:f9:ac:1c:a0:78:6d:34:62:c2:90:35:78:1a:d8: f2:68:c2:43:67:4b:9d:f6:83:5b:91:bd:4b:e3:34:c6:3f:20: 1a:83:47:b8:87:18:3b:5e:a0:2e:ef:b4:06:1a:88:35:ac:46: 1f:26:05:98:84:51:9d:11:a6:a7:bf:c0:7b:fc:f8:fe:ad:96: 66:18:1c:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjMxMjIyMTkwNzAxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg1ZGU1NS04YzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvR/eF+j/ghSB8TIqASYgQOtw3g88UztYIbqB5q4jpO81mIY1VmBXWOz1GRR FCPVOZv+UhpyrASs8ByNQZranSGI4arCN/cP88xDjsGnbQ0BWWnDQxSSwOxqr3Zb beDnLeodNxbFkvQa+n3fwmDXJMfYEb1iPO6G5IamlFuj6zwDiXP7MAhFvp/tr+Mg f5ZeYOGmW3TKsTtHC/bnBs9fBdrS38aa/ujir1k0qFMCrtF7lQvbY7yaVdgh5/DC AEPBEWIjcKDO+OrC8tiPTp78mxibQBxkXY7Lvqde9mrV7Pbttf3O2E6P3+a/WojZ 8NHG1r7UJWplpMehc5211MWS8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFImdaRK/ Fqv/Zo8B6j9LY4whgHqYMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU5QTYvRTRFREFDMThDQjFBMTFFQTg3Q0Q1NTQ0QzRGOUFFMDIvMTlCMEJBQUUx Q0U2MTFFQkI1NDM4ODFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALO0UwwDQYJKoZIhvcNAQELBQADggEBADtksRfZbkVOEjLy NQq+0aVcFEHP87j3QEBYUSX4IuJvzRlohtANVHam+nz0RByC3n8mffZ/yqEl6sG7 7aNw0gU9DCduEChkSyFnh6wwvVCToX/m9RYgSp1bFdW2Hj+4dqsKGOFSIDbOBqbL VBl7N6ZHyt5jTwXDrmAuOnukOW7qh+Pf9KWGKfXnFEiab5MmKV9LAZlUsHccbUeQ TTe96dap4gCxGxXeAiTpF8IAc/VAl+KXj8Eve9H5rBygeG00YsKQNXga2PJowkNn S532g1uRvUvjNMY/IBqDR7iHGDteoC7vtAYaiDWsRh8mBZiEUZ0Rpqe/wHv8+P6t lmYYHG8= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:11 2024 by rpki-client on console-ams.rpki-client.org