$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/F00A66308A9C11EB9B2E044BC4F9AE02.roa File: F00A66308A9C11EB9B2E044BC4F9AE02.roa (raw, json) Hash identifier: 6WUJgqskzShx2CRmJsEzW4Lp5E25NIFa3cIFrPQTpQE= Subject key identifier: EE:35:1D:22:4D:FE:CD:0C:97:E8:77:9F:1A:C6:FB:7E:F3:C1:CC:2C Certificate issuer: /CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Certificate serial: 05D5 Authority key identifier: D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/F00A66308A9C11EB9B2E044BC4F9AE02.roa Signing time: Tue 16 Jul 2024 23:41:06 +0000 ROA not before: Tue 16 Jul 2024 23:41:06 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 7575 IP address blocks: 155.205.200.0/24 maxlen: 24 155.205.208.0/24 maxlen: 24 155.205.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1493 (0x5d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Validity Not Before: Jul 16 23:41:06 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66970511-f933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7d:7b:e2:90:3b:25:9c:ca:5f:7b:53:90:dc: da:0d:d3:ab:24:fc:1f:78:b6:32:c9:18:eb:46:ed: aa:49:4c:5d:84:3a:6f:16:4d:00:c9:00:15:c4:ba: 1b:ff:9b:00:34:9c:b5:3f:e3:42:6b:08:c6:7b:f2: ba:ac:0b:42:b3:a2:c1:22:ca:8d:31:15:9b:32:c2: 79:37:70:af:18:0b:55:7a:5f:a5:fd:4e:cf:c8:57: 8b:01:e6:87:dc:ac:ad:9f:67:8f:18:b7:7e:21:0d: ed:33:48:6f:e0:9f:6f:47:be:05:94:35:50:e1:57: 73:95:86:5a:9a:ce:76:53:89:20:eb:c4:29:5a:c6: 28:c8:5b:65:46:21:3f:e0:c0:00:ba:53:2f:b4:60: de:79:51:8a:9b:9c:b9:3b:bf:24:bf:85:60:30:5f: e6:bc:35:06:e4:f4:94:7d:d6:c4:ef:a1:56:40:1c: 96:f9:a3:9d:2e:02:69:35:28:80:a0:1b:b9:4d:56: de:1c:0b:eb:80:13:38:c7:0f:e5:09:77:0f:5a:a0: 9a:5f:ab:59:6b:22:d4:b7:41:33:7d:3d:dd:3c:41: 93:1e:5c:82:9b:73:0c:c9:2a:91:83:0e:96:a8:d2: ea:0d:62:54:e3:77:d3:a3:e7:8f:be:2c:bc:e1:6a: 54:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:35:1D:22:4D:FE:CD:0C:97:E8:77:9F:1A:C6:FB:7E:F3:C1:CC:2C X509v3 Authority Key Identifier: keyid:D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/F00A66308A9C11EB9B2E044BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 155.205.200.0/24 155.205.208.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:3e:1e:69:8d:bf:5e:32:31:f8:b4:dc:1e:05:c3:04:97:c8: fd:ae:e3:2e:b4:0e:c9:9f:74:a3:d8:1b:c9:a7:af:c5:19:84: 69:87:87:0c:9e:7c:c9:59:90:01:51:cb:f3:2a:8a:38:1c:33: 73:19:82:51:36:0b:36:7e:15:d2:4c:23:f4:ff:80:de:cc:ae: 0c:15:8f:d1:33:88:f6:79:65:b1:a6:a0:0c:ba:0c:e6:19:f3: 54:6b:cf:22:cc:ad:5c:ec:c8:3d:95:7f:00:ce:eb:32:90:ef: e8:e2:7b:79:5b:f6:bb:59:e3:b2:fc:0f:7f:d3:77:9a:78:fd: 48:ca:e1:a0:82:df:30:45:af:e7:49:6a:55:9b:48:9d:56:4c: 0e:01:d3:1a:2f:a6:f7:23:dd:22:7a:0d:ec:88:db:1c:8f:14: 71:c0:a3:86:f3:b2:72:38:e7:c9:5e:f4:e9:bd:c2:b4:8c:fb: 8f:24:1e:bf:a1:f3:21:72:72:ec:59:cc:2f:ae:70:2c:ba:1c: f3:4a:b0:b4:d3:7f:d4:22:ef:b8:8a:32:1f:51:51:35:8f:36: f7:9e:c5:42:f0:6e:96:90:45:e2:ef:ce:93:26:71:de:f1:27: be:34:30:ad:31:bc:fe:12:51:c8:7b:a6:33:e8:8a:23:67:ed: 46:e9:81:de -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKEQ4QzFDQzhBNDYzQTMxNTBDQkVDMDg2NTRFNjE3ODAw RDY2RTUzRTkwHhcNMjQwNzE2MjM0MTA2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3MDUxMS1mOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3174pA7JZzKX3tTkNzaDdOrJPwfeLYyyRjrRu2qSUxdhDpvFk0AyQAVxLob /5sANJy1P+NCawjGe/K6rAtCs6LBIsqNMRWbMsJ5N3CvGAtVel+l/U7PyFeLAeaH 3Kytn2ePGLd+IQ3tM0hv4J9vR74FlDVQ4VdzlYZams52U4kg68QpWsYoyFtlRiE/ 4MAAulMvtGDeeVGKm5y5O78kv4VgMF/mvDUG5PSUfdbE76FWQByW+aOdLgJpNSiA oBu5TVbeHAvrgBM4xw/lCXcPWqCaX6tZayLUt0EzfT3dPEGTHlyCm3MMySqRgw6W qNLqDWJU43fTo+ePviy84WpUdwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO41HSJN /s0Ml+h3nxrG+37zwcwsMB8GA1UdIwQYMBaAFNjBzIpGOjFQy+wIZU5heADWblPp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8wQTNGMjY5Qzgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1WREw3QWhsVG1GNEFOWnVV LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJNSE1pa1k2TVZETDdBaGxUbUY0QU5adVUtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjg5QzEvMEEzRjI2OUM4MDg2MTFFQkI0QzZEMTE2QzRGOUFFMDIvRjAwQTY2MzA4 QTlDMTFFQjlCMkUwNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACbzcgDBAGbzdAwDQYJKoZIhvcNAQELBQADggEBAH8+HmmN v14yMfi03B4FwwSXyP2u4y60DsmfdKPYG8mnr8UZhGmHhwyefMlZkAFRy/Mqijgc M3MZglE2CzZ+FdJMI/T/gN7MrgwVj9EziPZ5ZbGmoAy6DOYZ81RrzyLMrVzsyD2V fwDO6zKQ7+jie3lb9rtZ47L8D3/Td5p4/UjK4aCC3zBFr+dJalWbSJ1WTA4B0xov pvcj3SJ6DeyI2xyPFHHAo4bzsnI458le9Om9wrSM+48kHr+h8yFycuxZzC+ucCy6 HPNKsLTTf9Qi77iKMh9RUTWPNveexULwbpaQReLvzpMmcd7xJ740MK0xvP4SUch7 pjPoiiNn7Ubpgd4= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:50 2024 by rpki-client on console-fra.rpki-client.org