$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/89283C80809211EB938F4016C4F9AE02.roa File: 89283C80809211EB938F4016C4F9AE02.roa (raw, json) Hash identifier: macE2NFUWcDcrdQSGzCQPdT+j1HMD3PGg+S93KaJKT8= Subject key identifier: EF:E9:B9:3B:4C:9E:18:71:E0:B3:0A:36:A1:DE:38:91:C6:38:5E:37 Certificate issuer: /CN=A91F89C1/serialNumber=CA32D511462AB42618A88DBA05869AFEBEA0E51A Certificate serial: 05CB Authority key identifier: CA:32:D5:11:46:2A:B4:26:18:A8:8D:BA:05:86:9A:FE:BE:A0:E5:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/89283C80809211EB938F4016C4F9AE02.roa Signing time: Tue 16 Jul 2024 23:41:07 +0000 ROA not before: Tue 16 Jul 2024 23:41:07 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132321 IP address blocks: 150.191.0.0/16 maxlen: 16 150.191.0.0/17 maxlen: 17 150.191.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.crl rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1483 (0x5cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1/serialNumber=CA32D511462AB42618A88DBA05869AFEBEA0E51A Validity Not Before: Jul 16 23:41:07 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66970513-73b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2c:7c:fc:97:97:77:92:71:93:9f:68:e6:fe: 66:e1:01:ee:09:dd:a8:11:26:42:09:46:28:ed:91: 58:2c:23:3f:10:d6:41:ae:3b:be:f7:41:9b:e2:bd: 8e:b3:57:79:89:a0:a9:7e:be:00:4d:15:4a:74:27: 50:2d:be:93:e3:04:30:ad:95:78:51:da:e4:d6:8b: 7a:4a:a8:66:0f:4c:ae:74:1e:08:b1:ac:f0:b7:6e: 6b:01:ca:69:53:c5:27:80:be:46:df:87:4c:52:84: 48:9e:67:40:61:10:9c:bf:51:1e:d5:d3:ca:bb:46: 24:3f:90:2a:1d:af:13:ed:0f:ab:7a:a0:a0:18:5c: f3:84:96:3c:1c:64:69:1a:62:09:9b:73:00:73:1b: 86:a5:d8:1f:9d:8e:14:c7:59:62:e3:88:31:5d:13: 73:4c:3d:d1:75:d8:50:96:48:c4:a5:b5:41:1b:5f: e1:e8:d4:ee:ba:ed:49:64:6c:d2:14:4c:10:73:78: 7b:ad:b0:e2:2a:2e:bd:2c:a3:5a:bb:d3:e9:b9:13: 4b:c5:c3:4e:12:a2:f4:79:62:8f:f0:5d:5b:e2:10: 3e:83:8f:f1:5f:52:74:47:73:99:9f:6c:06:fe:a0: 25:ad:15:15:e8:28:c5:19:68:88:4a:8a:88:67:c5: 39:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E9:B9:3B:4C:9E:18:71:E0:B3:0A:36:A1:DE:38:91:C6:38:5E:37 X509v3 Authority Key Identifier: keyid:CA:32:D5:11:46:2A:B4:26:18:A8:8D:BA:05:86:9A:FE:BE:A0:E5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/89283C80809211EB938F4016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.191.0.0/16 Signature Algorithm: sha256WithRSAEncryption 10:a1:15:75:e1:b9:4c:3d:55:81:ae:f9:1b:64:a2:55:0f:f2: a6:a3:2b:ce:90:a2:8b:ef:0c:b3:b7:05:1b:20:5a:64:e8:92: dd:1f:fc:8a:c9:a3:ac:aa:41:28:af:80:b8:8d:fb:ad:bd:5d: a1:bb:5f:2c:a8:0a:3d:9f:9e:ca:26:6b:6b:b6:86:a9:e1:bc: e1:26:e4:f9:05:f9:49:59:cb:d8:58:dd:71:ab:8d:2f:ae:ed: 7f:44:3f:4f:b1:d6:6b:a1:84:a5:bd:a1:41:7b:69:e9:34:52: 83:86:75:57:f2:82:14:e8:eb:43:dc:bf:00:16:de:99:01:c7: 5a:bc:47:1f:ea:2e:1b:10:58:92:c9:91:5f:19:4a:e6:2d:53: 02:44:a6:2f:ed:34:77:eb:c8:0f:81:c1:2c:70:37:c4:8b:47: 33:b2:32:24:ea:74:a3:e8:ae:88:4b:4d:db:7d:f0:83:3a:57: 72:bb:84:85:07:aa:07:1a:33:75:8f:4e:09:7b:2b:88:36:54: 4a:83:10:2f:e9:72:c4:f0:ef:27:df:39:e8:45:2a:3a:76:a0: 0d:fe:ed:2f:8d:6d:47:0b:28:db:ee:1e:b5:1f:db:67:18:2e: 64:f8:31:00:0b:03:ba:f6:f8:39:df:07:ea:61:38:e1:aa:3e: 1c:ca:20:f5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKENBMzJENTExNDYyQUI0MjYxOEE4OERCQTA1ODY5QUZF QkVBMEU1MUEwHhcNMjQwNzE2MjM0MTA3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3MDUxMy03M2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyx8/JeXd5Jxk59o5v5m4QHuCd2oESZCCUYo7ZFYLCM/ENZBrju+90Gb4r2O s1d5iaCpfr4ATRVKdCdQLb6T4wQwrZV4Udrk1ot6SqhmD0yudB4Isazwt25rAcpp U8UngL5G34dMUoRInmdAYRCcv1Ee1dPKu0YkP5AqHa8T7Q+reqCgGFzzhJY8HGRp GmIJm3MAcxuGpdgfnY4Ux1li44gxXRNzTD3RddhQlkjEpbVBG1/h6NTuuu1JZGzS FEwQc3h7rbDiKi69LKNau9PpuRNLxcNOEqL0eWKP8F1b4hA+g4/xX1J0R3OZn2wG /qAlrRUV6CjFGWiISoqIZ8U5jQIDAQABo4IClDCCApAwHQYDVR0OBBYEFO/puTtM nhhx4LMKNqHeOJHGOF43MB8GA1UdIwQYMBaAFMoy1RFGKrQmGKiNugWGmv6+oOUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8xM0VENjgwMjgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi95akxWRVVZcXRDWVlxSTI2QllhYV9yNmc1 Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lqTFZFVVlxdENZWXFJMjZCWWFhX3I2ZzVSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjg5QzEvMTNFRDY4MDI4MDg2MTFFQkI0QzZEMTE2QzRGOUFFMDIvODkyODNDODA4 MDkyMTFFQjkzOEY0MDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCWvzANBgkqhkiG9w0BAQsFAAOCAQEAEKEVdeG5TD1Vga75 G2SiVQ/ypqMrzpCii+8Ms7cFGyBaZOiS3R/8ismjrKpBKK+AuI37rb1dobtfLKgK PZ+eyiZra7aGqeG84Sbk+QX5SVnL2FjdcauNL67tf0Q/T7HWa6GEpb2hQXtp6TRS g4Z1V/KCFOjrQ9y/ABbemQHHWrxHH+ouGxBYksmRXxlK5i1TAkSmL+00d+vID4HB LHA3xItHM7IyJOp0o+iuiEtN233wgzpXcruEhQeqBxozdY9OCXsriDZUSoMQL+ly xPDvJ9856EUqOnagDf7tL41tRwso2+4etR/bZxguZPgxAAsDuvb4Od8H6mE44ao+ HMog9Q== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:37 2024 by rpki-client on console-fra.rpki-client.org